On 24 February 2017 at 21:02, Ilari Liusvaara wrote:
> This technique seems to assume there is some fixed known set of exporter
> labels that are used. Since if you don't know the full set, you need to
> keep the master exporter secret around anyway.
This is correct. I assume here that many appl
Hi Hugo,
On 25 February 2017 at 03:47, Hugo Krawczyk wrote:
> Martin,
>
> Which of these two derivation schemes are you proposing?
I mean the latter of your two, where you have effectively three layers
of HKDF-Expand from the master secret.
master secret -> exporter secret
exporter secret + e
