On Nov 1, 2013, at 10:07 PM, Michael Richardson <[email protected]> wrote: > Tero Kivinen <[email protected]> wrote: >> Fix PRF_AES128_CBC to PRF_AES128_XCBC and downgrade it from SHOULD+ to >> SHOULD. > > this is the only one which I didn't understand. >
Which one? There's two parts there. AES-XCBC was supposed to take the world over by storm from the HMAC constructions. Except it didn't - everybody still uses HMAC-SHA1, it's still considered secure, and those who don't use HMAC-SHA1, use GHASH. So we no longer expect this to become a MUST in the future, hence the removal of the "+". Yoav _______________________________________________ IPsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/ipsec
