Skip to main content

AES-OCB (Offset Codebook Mode) Ciphersuites for Transport Layer Security (TLS)

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Aaron Zauner
Last updated 2016-10-06 (Latest revision 2016-04-04)
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This memo describes the use of the Advanced Encryption Standard (AES) in the Offset Codebook Mode (OCB) of operation within Transport Layer Security (TLS) and Datagram TLS (DTLS) to provide confidentiality and data origin authentication. The AES-OCB algorithm is highly parallelizable, provable secure and can be efficiently implemented in software and hardware providing high performance. Furthermore, use of AES-OCB in TLS is exempt from former IPR claims by various parties.


Aaron Zauner

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)