Here are a few comments gathered from Verisign Labs on
draft-ietf-tls-external-psk-importer-04.
1. Overview of draft goals and techniques. We've summarized our understanding
of the draft here. Our subsequent comments are based on this understanding.
a. Goal: The draft's goal is to define a
Here are a few comments gathered from Verisign Labs on
draft-dt-tls-external-psk-guidance-01:
1. Sec. 6, requirement 1 states "Low entropy keys are only secure against
active attack if a Password Authenticated Key Exchange (PAKE) is used with
TLS." "only secure ... if" may be too strong a
> -Original Message-
> From: Christopher Wood
> Sent: Friday, April 24, 2020 7:09 PM
> To: Hollenbeck, Scott ; TLS@ietf.org
> Subject: [EXTERNAL] Re: [TLS] Comments on draft-ietf-tls-external-psk-
> importer-04
[snip]
> > > Hmm, not quite. The statement inte
elow.
>
> On Tue, Apr 21, 2020, at 6:57 AM, Hollenbeck, Scott wrote:
> > 2. Technical comments.
> >
> > a. Distinct identities? Sec. 3 states "Non-imported and imported PSKs
> > are distinct since their identities are different on the wire." We
> >
elow.
>
> On Mon, Apr 20, 2020, at 7:26 AM, Hollenbeck, Scott wrote:
> > Here are a few comments gathered from Verisign Labs on
> > draft-dt-tls-external-psk-guidance-01:
> >
> > 1. Sec. 6, requirement 1 states "Low entropy keys are only secure
> > aga
