YES, this is a significant use-case, wherein a server is provisioned
with a certificate and clients generate a symmetric key
(per session or transaction). Said key is encrypted using the server
public key and used for integrity protection and
encryption during the session/transaction.
<CHAIR>
If you voted at the face-2-face please do not vote again. If you want to
provide comments please change the title from POLL to DISCUSS.
Should we add the ability to have a randomly generated MAC key protected by
a different key? The other key could be either a pre-shared symmetric key
or a public key.
Room vote: 3 yes, 5 no, 3 discuss
_______________________________________________
jose mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/jose
_______________________________________________
jose mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/jose
