Skip to main content

The RC4-HMAC Kerberos Encryption Types Used by Microsoft Windows
draft-jaganathan-rc4-hmac-03

Revision differences

Document history

Date Rev. By Action
2012-08-22
03 (System) post-migration administrative database adjustment to the Yes position for Sam Hartman
2012-08-22
03 (System) post-migration administrative database adjustment to the No Objection position for Russ Housley
2006-11-08
03 (System) Request for Early review by SECDIR Completed. Reviewer: Kurt Zeilenga.
2006-09-24
03 Amy Vezza State Changes to RFC Ed Queue from Approved-announcement sent by Amy Vezza
2006-09-18
03 Amy Vezza IESG state changed to Approved-announcement sent
2006-09-18
03 Amy Vezza IESG has approved the document
2006-09-18
03 Amy Vezza Closed "Approve" ballot
2006-09-18
03 Sam Hartman State Changes to Approved-announcement to be sent from IESG Evaluation::AD Followup by Sam Hartman
2006-09-18
03 Sam Hartman [Ballot Position Update] Position for Sam Hartman has been changed to Yes from Discuss by Sam Hartman
2006-09-15
03 (System) Removed from agenda for telechat - 2006-09-14
2006-09-14
03 Amy Vezza State Changes to IESG Evaluation::AD Followup from IESG Evaluation by Amy Vezza
2006-09-14
03 Lisa Dusseault [Ballot Position Update] New position, No Objection, has been recorded by Lisa Dusseault
2006-09-14
03 Russ Housley [Ballot Position Update] Position for Russ Housley has been changed to No Objection from Discuss by Russ Housley
2006-09-14
03 Ross Callon [Ballot Position Update] New position, No Objection, has been recorded by Ross Callon
2006-09-14
03 Russ Housley
[Ballot comment]
I am also concerned about the "export language" raised by others, but
  I see no reason to "pile on" another DISCUSS on …
[Ballot comment]
I am also concerned about the "export language" raised by others, but
  I see no reason to "pile on" another DISCUSS on that point.  I'm sure
  it will be fixed.

  In several places, SGN_ALG contains an integrity algorithm indicator.
  And the document says that "11 00 - HMAC".  I hope that this means
  HMAC-MD5 and that HMAC-SHA1 might be used in the future with a value
  other than "11 00."
2006-09-14
03 Russ Housley
[Ballot discuss]
Section says:
  >
  > The pseudo-random operation [RFC3961] for both enctypes above is
  > defined as follows:
  …
[Ballot discuss]
Section says:
  >
  > The pseudo-random operation [RFC3961] for both enctypes above is
  > defined as follows:
  >
  >        pseudo-random(K, S) = HMAC-SHA1(K, S)
  >
  So, a normative reference to SHA-1 is needed.
2006-09-14
03 Russ Housley [Ballot Position Update] New position, Discuss, has been recorded by Russ Housley
2006-09-14
03 Sam Hartman
[Ballot discuss]
As has been pointed out by Cullen and Jari, the export control
language in this draft is inaccurate.  Please revise the claim about …
[Ballot discuss]
As has been pointed out by Cullen and Jari, the export control
language in this draft is inaccurate.  Please revise the claim about
3DES being unavailable for export to claim that when Windows 2000 was
released, 3DES was unavailable.

Also, the IANA actions section is inaccurate; the references for the
rc4 enctypes should be updated to point to this specification.
2006-09-14
03 Sam Hartman [Ballot Position Update] Position for Sam Hartman has been changed to Discuss from Yes by Sam Hartman
2006-09-14
03 Sam Hartman Note field has been cleared by Sam Hartman
2006-09-14
03 Jari Arkko
[Ballot comment]
Like Cullen, I am concerned about the export control
statements. We know for a fact that strong crypto
is exportable, just look at …
[Ballot comment]
Like Cullen, I am concerned about the export control
statements. We know for a fact that strong crypto
is exportable, just look at what a random U.S. based
security product vendor sells elsewhere in the world;
of course its possible that there are conditions
relating to the type of product or how its delivered,
what country we are talking about etc. But it serves
the IETF no good to make make broad statements
like this in RFCs, someone may actually believe
them and not use the best possible crypto. Please
remove or qualify.
2006-09-14
03 Jari Arkko [Ballot Position Update] New position, No Objection, has been recorded by Jari Arkko
2006-09-13
03 David Kessens [Ballot Position Update] New position, No Objection, has been recorded by David Kessens
2006-09-13
03 Magnus Westerlund [Ballot Position Update] New position, No Objection, has been recorded by Magnus Westerlund
2006-09-13
03 Lars Eggert [Ballot Position Update] New position, No Objection, has been recorded by Lars Eggert
2006-09-12
03 Cullen Jennings [Ballot Position Update] New position, No Objection, has been recorded by Cullen Jennings
2006-09-12
03 Cullen Jennings [Ballot comment]
Document says that "3DES is not available" for export. Is this really right? Could it be made a little more precise.
2006-09-10
03 Dan Romascanu [Ballot Position Update] New position, No Objection, has been recorded by Dan Romascanu
2006-09-10
03 Sam Hartman Ballot has been issued by Sam Hartman
2006-09-10
03 Sam Hartman State Changes to IESG Evaluation from Waiting for AD Go-Ahead by Sam Hartman
2006-09-10
03 Sam Hartman State Changes to Waiting for AD Go-Ahead from Waiting for Writeup by Sam Hartman
2006-09-10
03 Sam Hartman [Ballot Position Update] New position, Yes, has been recorded for Sam Hartman
2006-09-10
03 Sam Hartman Ballot has been issued by Sam Hartman
2006-09-10
03 Sam Hartman Created "Approve" ballot
2006-09-08
03 (System) State has been changed to Waiting for Writeup from In Last Call by system
2006-09-07
03 Sam Hartman Placed on agenda for telechat - 2006-09-14 by Sam Hartman
2006-08-11
03 Amy Vezza Last call sent
2006-08-11
03 Amy Vezza State Changes to In Last Call from Last Call Requested by Amy Vezza
2006-08-11
03 Sam Hartman Last Call was requested by Sam Hartman
2006-08-11
03 Sam Hartman State Changes to Last Call Requested from AD Evaluation::AD Followup by Sam Hartman
2006-08-11
03 (System) Ballot writeup text was added
2006-08-11
03 (System) Last call text was added
2006-08-11
03 (System) Ballot approval text was added
2006-08-03
03 (System) Sub state has been changed to AD Follow up from New Id Needed
2006-08-03
03 (System) New version available: draft-jaganathan-rc4-hmac-03.txt
2006-07-29
03 Sam Hartman State Changes to AD Evaluation::Revised ID Needed from AD Evaluation by Sam Hartman
2006-07-29
03 Sam Hartman Asked for updated security considerations section
2006-07-29
03 Sam Hartman State Changes to AD Evaluation from Expert Review::AD Followup by Sam Hartman
2006-03-03
03 (System) Sub state has been changed to AD Follow up from New Id Needed
2006-03-03
02 (System) New version available: draft-jaganathan-rc4-hmac-02.txt
2006-01-11
03 Sam Hartman State Changes to Expert Review::Revised ID Needed from Expert Review by Sam Hartman
2006-01-11
03 Sam Hartman
[Note]: 'The expert has reviewed the draft and sent comments to the author.  I believe a revised ID is required to address these comments.' added …
[Note]: 'The expert has reviewed the draft and sent comments to the author.  I believe a revised ID is required to address these comments.' added by Sam Hartman
2006-01-11
03 Sam Hartman Status date has been changed to 2006-01-11 from 2005-11-21
2005-11-21
03 Sam Hartman State Changes to Expert Review from AD Evaluation by Sam Hartman
2005-11-21
03 Sam Hartman [Note]: 'Asking RFC 3961 IANA reviewer to take a look as this requests a registration in that registry' added by Sam Hartman
2005-11-21
03 Sam Hartman [Note]: 'Asking RFC 3961 IANA reviewer to take a look as this requests a registration in that registry ' added by Sam Hartman
2005-11-21
03 Sam Hartman
Hi.  I've taken a brief look at the draft.  You are missing an IANA
section, which should request the registration of the enctypes.

I am …
Hi.  I've taken a brief look at the draft.  You are missing an IANA
section, which should request the registration of the enctypes.

I am asking Ken Raeburn as the RFC 3961 IANA expert to take a look at
this document.


Also, you should probably update the security considerations section
to mention related key attacks against RC4; see
draft-harris-ssh-arcfour-fixes for a recent security consideration
section for an RC4 system approved by the IESG.
2005-11-21
03 Sam Hartman Status date has been changed to 2005-11-21 from
2005-11-21
03 Sam Hartman State Changes to AD Evaluation from Publication Requested by Sam Hartman
2005-09-19
03 Sam Hartman Draft Added by Sam Hartman in state Publication Requested
2005-07-20
01 (System) New version available: draft-jaganathan-rc4-hmac-01.txt
2005-07-11
00 (System) New version available: draft-jaganathan-rc4-hmac-00.txt