Re: applying AES-GCM to secure shell: proposed "tweak"

To: Nicolas Williams <Nicolas.Williams%sun.com@localhost>
Subject: Re: applying AES-GCM to secure shell: proposed "tweak"
From: Jeffrey Hutzelman <jhutz%cmu.edu@localhost>
Date: Fri, 10 Apr 2009 01:26:42 -0400

--On Friday, April 10, 2009 12:03:31 AM -0500 Nicolas Williams<Nicolas.Williams%sun.com@localhost> wrote:

On Fri, Apr 10, 2009 at 12:02:35AM -0500, Nicolas Williams wrote:

On Fri, Apr 10, 2009 at 12:58:56AM -0400, Jeffrey Hutzelman wrote:
> - generality
> - allowing the feature to be negotiated for any algorithm, not just
>  a particular gcm algorithm, without a cross product explosion

I'd rather have a magic alg name that does this.  It's less code, a lot
less code.  We don't need no stinking generality here :) given that we
weren't given it to begin with :)

BTW, I would love to use the reserved field of KEXINIT to negotiate
retriable key exchagne (a big deal for gss keyex).


Sent to soon.  I meant to add that your scheme isn't general enough to
give us retriable kexinit...


Why not?

References:
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: Peter Gutmann
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: Jeffrey Hutzelman
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: Nicolas Williams
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: Jeffrey Hutzelman
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: Nicolas Williams
- Re: applying AES-GCM to secure shell: proposed "tweak"
  - From: Nicolas Williams

Prev by Date: RE: applying AES-GCM to secure shell: proposed "tweak"
Next by Date: Re: applying AES-GCM to secure shell: proposed "tweak"
Previous by Thread: Re: applying AES-GCM to secure shell: proposed "tweak"
Next by Thread: Re: applying AES-GCM to secure shell: proposed "tweak"
Indexes:

Home | Main Index | Thread Index | Old Index