We have written: + <t> + As per <xref target="RFC7925" /> section 3.3 and section 4.4, the + mandatory cipher suite for DTLS in EST-coaps is + TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8 defined in <xref target="RFC7251"/>, + and the the curve secp256r1 MUST + be supported <xref target="RFC4492"/>; this curve is equivalent to the + NIST P-256 curve. Crypto agility is important, and the + recommendations in <xref target="RFC7925" /> section 4.4 and any + updates to RFC7925 concerning Curve25519 and other CFRG curves also applies.
https://github.com/SanKumar2015/EST-coaps/commit/94812c98492b6a6b0440155025357fa0b58ca017?diff=split We had a discussion about whether section 4.2 (PSK) and 4.3 (RPK) also applies, and in general they do, but we don't understand the use cases that would result in that usage. (Is it PSK, or EAP-SIM for for instance?) -- Michael Richardson <[email protected]>, Sandelman Software Works -= IPv6 IoT consulting =-
signature.asc
Description: PGP signature
_______________________________________________ Ace mailing list [email protected] https://www.ietf.org/mailman/listinfo/ace
