[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: allocation of key material into keys



Here's a rephrase which I think is more precise.  Let me know if this
is not what you intended..

    I'd like to propose that the key management protocol
    specifications only be responsible for generating a "blob" of
    key material at least N bits long containing at least K bits of
    entropy.  For obvious reasons, K <= N.

    Each transform would need to specify minimum values for K and
    N, and precisely how to transform a variable-length "blob"
    of key material of at least N bits into the session keys, initial
    sequence numbers, and other shared state it needs.

---

I think this is also more-or-less what Hilary suggested last week some
time.  She used "VPI" instead of "blob", but I don't think that's an
important difference here.. :-)


							- Bill


Follow-Ups: