OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

pkcs11 message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Re: Proposed changes to TLS 1.2 mechanisms


As I told Wan Teh yesterday, I've no objections. As these are basically moving the deck chairs around and involve no substantive changes I'd suggest a voice vote sometime near the end of the day.

Mike


On 9/17/2013 10:52 AM, Wan-Teh Chang wrote:
Hi,

The attached document shows my proposed changes to the TLS 1.2
mechanims proposal. I discussed these changes with Bob Relyea and
Michael StJohns yesterday and got their approval.

Summary of changes:

1. Move the new "prfHashMechanism" field to the end of the parameter
structures. Resurrect the obsolete "bIsExport" field (a CK_BBOOL).

Rationale: this allows (but does not require) a PKCS #11 provider or
consumer to use the new parameter structures as extended versions of
the old parameter structures, sharing more code.

2. Merge the three TLS MAC mechanisms into one (CKM_TLS12_MAC, renamed
CKM_TLS_MAC).

Rationale: this reduces the number of mechanisms and matches the
design of CKM_TLS_KDF.

Wan-Teh



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]