I seem to recall that Ted Krovetz some time ago submitted a draft (to CFRG?) defining OCB: https://tools.ietf.org/html/draft-krovetz-ocb-04 . Perhaps these two should be brought to sync, since the nonce construction changes? -- Regards, Uri Blumenthal
On 4/6/16, 10:47 , "TLS on behalf of Aaron Zauner" <tls-boun...@ietf.org on behalf of a...@azet.org> wrote: >Hi, > >I've uploaded a new version of the OCB draft a few days ago. Major >changes: > >- the nonce construction is now identical to the one from the chacha/poly >draft to reduce risk of nonce misuse/reuse >- added a security considerations section on data limit under a single >key (identical to GCM) >- IPR claims for TLS are now fully resolved as far as I can tell - the >draft contains updated information on the issue > >I'm happy to receive any feedback/critique on the draft if anyone is >interested in reviewing. > >BTW: Andy Polyakov has added AESNI optimized assembly for OCB to OpenSSL >(https://github.com/openssl/openssl/commit/bd30091c9725bdad1c82bce10839f33 >ceaa5623b). C/B numbers are quite impressive, IMO. > >Thanks for your consideration, >Aaron > >> Begin forwarded message: >> >> From: internet-dra...@ietf.org >> Subject: New Version Notification for draft-zauner-tls-aes-ocb-04.txt >> Date: 4 April 2016 at 18:45:26 GMT+2 >> To: "Aaron Zauner" <a...@azet.org> >> Message-Id: <20160404164526.15645.26001.idtrac...@ietfa.amsl.com> >> >> >> A new version of I-D, draft-zauner-tls-aes-ocb-04.txt >> has been successfully submitted by Aaron Zauner and posted to the >> IETF repository. >> >> Name: draft-zauner-tls-aes-ocb >> Revision: 04 >> Title: AES-OCB (Offset Codebook Mode) Ciphersuites for >> Transport Layer >>Security (TLS) >> Document date: 2016-04-04 >> Group: Individual Submission >> Pages: 8 >> URL: >>https://www.ietf.org/internet-drafts/draft-zauner-tls-aes-ocb-04.txt >> Status: >>https://datatracker.ietf.org/doc/draft-zauner-tls-aes-ocb/ >> Htmlized: https://tools.ietf.org/html/draft-zauner-tls-aes-ocb-04 >> Diff: >>https://www.ietf.org/rfcdiff?url2=draft-zauner-tls-aes-ocb-04 >> >> Abstract: >> This memo describes the use of the Advanced Encryption Standard (AES) >> in the Offset Codebook Mode (OCB) of operation within Transport Layer >> Security (TLS) and Datagram TLS (DTLS) to provide confidentiality and >> data origin authentication. The AES-OCB algorithm is highly >> parallelizable, provable secure and can be efficiently implemented in >> software and hardware providing high performance. Furthermore, use >> of AES-OCB in TLS is exempt from former IPR claims by various >> parties. >> >> >> >> >> Please note that it may take a couple of minutes from the time of >>submission >> until the htmlized version and diff are available at tools.ietf.org. >> >> The IETF Secretariat >> >
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
