Re: Curve25519/448 key agreement for SSH

To: <ietf-ssh%NetBSD.org@localhost>
Subject: Re: Curve25519/448 key agreement for SSH
From: James Cloos <cloos%jhcloos.com@localhost>
Date: Mon, 16 Nov 2015 12:32:06 -0500

Given that one of the design goals of the modern curves is to exchange
the public data as opaque bit strings, the protocol should not use
anything like a mpint to exchange the keys but instead should exchange
them as the opaque bit strings they are.

How the crypto primitives use them is irrelevant to how they should be
exchanged.

Every 25519 public key should be exactly 32 octets and every goldilocks
public key should be exactly 60 octets.  Full stop.

-JimC
-- 
James Cloos <cloos%jhcloos.com@localhost>         OpenPGP: 0x997A9F17ED7DAEA6

Prev by Date: Re: DH group exchange (Re: SSH key algorithm updates)
Next by Date: Re: Curve25519/448 key agreement for SSH
Previous by Thread: Re: Curve25519/448 key agreement for SSH
Next by Thread: Re: Curve25519/448 key agreement for SSH
Indexes:

Home | Main Index | Thread Index | Old Index