> TLS does not use AES in a way that is consistent with what you would get if > you just used a typical AES library.
Let me agree with Eric: TLS adds things like padding and identifiers that make it *impossible* to use a TLS library to get AES, unless that library exposes an AES API. AES can be hard to get right. If you are concerned about naïve users using AES, trying to pull it out of a TLS library is a bad way to get to a solution. You should look at crypto API's that are more resistant to mistakes and mis-use. NaCL, TINK, etc. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
