TLS Elliptic Curve Cipher Suites with SHA-256/384 and AES Galois Counter Mode (GCM)
draft-ietf-tls-ecc-new-mac-07

• Status
• IESG evaluation record
• IESG writeups
• Email expansions
• History

Approval announcement
Draft of message to be sent after approval:

Announcement

From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Cc: Internet Architecture Board <iab@iab.org>,
    RFC Editor <rfc-editor@rfc-editor.org>, 
    tls mailing list <tls@ietf.org>, 
    tls chair <tls-chairs@tools.ietf.org>
Subject: Document Action: 'TLS Elliptic Curve Cipher Suites with 
         SHA-256/384 and AES Galois Counter Mode (GCM)' to Informational 
         RFC 

The IESG has approved the following document:

- 'TLS Elliptic Curve Cipher Suites with SHA-256/384 and AES Galois 
   Counter Mode (GCM) '
   <draft-ietf-tls-ecc-new-mac-08.txt> as an Informational RFC

This document is the product of the Transport Layer Security Working 
Group. 

The IESG contact persons are Pasi Eronen and Tim Polk.

A URL of this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-tls-ecc-new-mac-08.txt

Ballot Text

Technical Summary

   This document describes new ECC cipher suites for TLS which
   specify stronger MAC algorithms. Eight use HMAC with SHA-256 or
   SHA-384 and eight use AES in Galois Counter Mode (GCM).

Working Group Summary

   This document is a product of the Transport Layer Security (TLS)
   Working Group. The document represents the consensus of the TLS
   working group.

Document Quality

   There has been significant review of the document by members of
   the TLS working group on the document and changes were made to
   improve the document based on these reviews.

Personnel

   The Document Shepherd for this document is Joseph Salowey, and the
   responsible Area Director is Pasi Eronen.

RFC Editor Note

   In document title, expand "GCM" to "Galois Counter Mode (GCM)"

   Abstract:
   OLD:
      However, all those cipher suites use SHA-1 as their MAC
      algorithm.  This document describes sixteen new cipher suites
      for TLS which specify stronger digest algorithms.
   NEW:
      However, all those cipher suites use HMAC-SHA1 as their MAC
      algorithm.  This document describes sixteen new cipher suites
      for TLS which specify stronger MAC algorithms.

   Section 3.1
   OLD:
      These eight cipher suites are the same as the corresponding
      cipher suites in RFC 4492 (with names ending in "_SHA" in place
      of "_SHA256" or "_SHA384"), except for the hash and PRF
      algorithms.
   NEW:
      These eight cipher suites are the same as the corresponding
      cipher suites in RFC 4492 (with names ending in "_SHA" in place
      of "_SHA256" or "_SHA384"), except for the MAC and PRF
      algorithms.

RFC Editor Note