Technical Summary
This document specifies a set of cipher suites for the Transport Security
Layer (TLS) protocol to support the ARIA encryption algorithm as a block
cipher.
Working Group Summary
The draft was circulated to the TLS WG. There was little (if any)
discussion on this particular draft. The one point raised, on the list
and by the Responsible AD, was the relationship with ARIA and SEED, which
are both national algorithms of the Republic of Korea. While SEED is
mainly used for for electronic commerce and financial service, ARIA is
for government use and public purpose. In particular, ARIA will be used
in VoIP for government.
The meta issue surrounding TLS cipher suite drafts was whether the drafts
should progress on standards or informational track. The Security ADs
polled the SAAG list (and presented this question to a SAAG session) on
this particular issue. There was rough consensus that these drafts
should progress on the informational track.
The AD requested that this draft collect all of the modes for ARIA in one
place to aid implementers. Also, the AD requested that SHA-1 be dropped
from the list of suites.
Document Quality
There are no existing implementations of the protocol but the
specifications will be used in VoIP for governmental use. Thus many
vendors will implement this specification. No reviewer gave special
mention. There was not a MIB Doctor, Media Type, or other Expert Review
(yet).
Personnel
The document shepherd for this document is Woo-Hwan Kim
<whkim5@ensec.re.kr>.
The responsible Area Director is Sean Turner <turners@ieca.com>.
The IANA Expert is Eric Rescorla <ekr@rtfm.com>.
RFC Editor Note
Please make the following changes to the Introduction:
OLD:
This document proposes the addition of new cipher suites to the
Transport Layer Security (TLS) [RFC5246] protocol to support the
ARIA [RFC5794] encryption algorithm as a block cipher algorithm. The
proposed cipher suites include variants using SHA-2 family of
cryptographic hash functions and ARIA Galois counter mode. Elliptic
curve cipher suites and pre-shared key (PSK) cipher suites are also
included.
NEW:
This document specifies cipher suites for the
Transport Layer Security (TLS) [RFC5246] protocol to support the
ARIA [RFC5794] encryption algorithm as a block cipher algorithm. The
cipher suites include variants using SHA-2 family of
cryptographic hash functions and ARIA Galois counter mode. Elliptic
curve cipher suites and pre-shared key (PSK) cipher suites are also
defined.
Also please expand PRF in Section 3.3:
OLD:
The PRFs SHALL be as follows:
NEW:
The pseudorandom functions (PRFs) SHALL be as follows: