@techreport{josefsson-sasl-tls-cb-03,
    number =    {draft-josefsson-sasl-tls-cb-03},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-josefsson-sasl-tls-cb/03/},
    author =    {Simon Josefsson},
    title =     {{Channel Bindings for TLS based on the PRF}},
    pagetotal = 5,
    year =      2015,
    month =     mar,
    day =       2,
    abstract =  {This document specify how to compute the 'tls-unique-prf' data that is cryptographically bound to a specific Transport Layer Security (TLS) session. The intention is to use this data as a name of the secure channel for the purpose of a channel binding. The channel bindings can be used by authentication protocols to avoid tunneling attacks and security layer re-use. The data is derived using the TLS Pseudo-Random Function (PRF). Applications of this include SASL- based protocols like IMAP, SMTP and XMPP. The channel binding 'tls- unique-prf' defined in this document is an alternative to 'tls- unique' as described by RFC 5929 and used by SCRAM and GS2.},
}