[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Promoting PRF_AES128_CBC and AUTH_AES_XCBC_96 from SHOULD to SHOULD+

At 1:16 AM +0300 6/10/03, Hugo Krawczyk wrote:
>I see no need for further I-D's. As I said in a recent message all is
>needed is a pointer to the AES-XCBC-MAC draft for the definition of what
>ikev2 calls PRF_AES128_CBC. All other issues regarding the use of prf are
>taken care by the ikev2 draft itself. In particular, the draft completely
>specifies the use of prf's whether with variable length key (such as
>HMAC-SHA) or fixed length key (such as aes128-cbc). The only prf's that
>are defined as MUST NOT USE are those whose output is shorter than the key
>itself (such as 3DES). All other discussions regarding prf use in ikev2
>were resolved and reflected in the ikev2 draft.

Based on the fact that the AES-XCBC-MAC-96 draft is in the RFC 
Editor's queue and therefore cannot be changed, I wrote a very short 
Internet Draft embodying what Hugo said here. It is available at 

Assuming Hugo agrees that this matches his intent above, would the WG 
chairs please add this as a WG item as soon as possible so that 
Jeff's document and my document can point to it?

--Paul Hoffman, Director
--VPN Consortium