Hi Tobias,
Thanks for the correction. What I meant to say is :
The PRF algorithm is derived from the integrity algorithm,
but only if a DH group is also configured.
Correct?
Regards,
Jafar
On 5/9/2018 2:21 AM, Tobias Brunner wrote:
Hi Jafar,
No need to configure a prf, it is already assumed when you
configured a DH group; so you can drop prfsha256.
Small correction, the PRF algorithm, if not configured explicitly, is
not derived from the DH group, but the integrity algorithm, in this case
sha256.
Regards,
Tobias
