Hi all,
In the RFC9147, in the last paragraph of Section 4 it's stated:
"""
This 128-bit value is used in the ACK message as well as in the
"record_sequence_number" input to the Authenticated Encryption with
Associated Data (AEAD) function.
"""
But the very last sentence of the same paragraph states:
"""
In DTLS 1.3 the 64-bit sequence_number is used as the sequence number
for the AEAD computation; unlike DTLS 1.2, the epoch is not included.
"""
Aren't these statements contradictory?
I think only the 64-bit sequence number is meant to be used and the
first paragraph is a replace-error done while increasing the epoch size
from the last draft.
Thanks,
Marco
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls
