[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Generating Keying Material

To: David Faucher <dfaucher@lucent.com>
Subject: Re: Generating Keying Material
From: Uri Blumenthal <uri@lucent.com>
Date: Mon, 18 Nov 2002 16:27:08 -0500
Cc: ipsec@lists.tislabs.com
Organization: Lucent Technologies
Original-CC: ipsec@lists.tislabs.com
References: <015301c28ce3$d8697550$23f22b42@mv.lucent.com>
Sender: owner-ipsec@lists.tislabs.com

David Faucher wrote:
> 
> Section 4.3 of draft-ietf-ipsec-ikev2-03.txt states
> 
>    "Keying material will always be derived as the output of the
>    negotiated prf algorithm. If the amount of keying material is greater
>    than the size of the output of the prf algorithm, we will use the prf
>    iteratively..."
> 
> Rather than having two methods for generating key material (based on the
> size of key material needed vs. the size of the prf output), wouldn't it
> easier to have prf+ generate a pseudo-random stream from which all key
> material is taken?

My understanding of PRF is that it produces a pseudo-random STREAM.
Otherwise it's not a PRF! (:-)

We can talk about it at the meeting, or at CFRG.

> Keeps it simple and straight forward.
 
Strongly agree.

References:
- Generating Keying Material
  - From: "David Faucher" <dfaucher@lucent.com>

Prev by Date: Re: Adding revised identities to IKEv2
Next by Date: Re: Adding revised identities to IKEv2
Prev by thread: Generating Keying Material
Next by thread: Re: Generating Keying Material
Index(es):
- Date
- Thread