On 19 October 2015 at 09:28, Eric Rescorla <e...@rtfm.com> wrote: > 1. Don't MAC the version at all. > 2. MAC the negotiated version (which should be clear at > this point).
3. Nothing The version is implicit in the key derivation (yeah, there are lots of rounds of HMAC between, but it's there. The sequence number is fed into the nonce. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
