Last Call Review of draft-krawczyk-hkdf-
review-krawczyk-hkdf-secdir-lc-eastlake-2010-02-02-00
| Request | Review of | draft-krawczyk-hkdf |
|---|---|---|
| Requested revision | No specific revision (document currently at 01) | |
| Type | Last Call Review | |
| Team | Security Area Directorate (secdir) | |
| Deadline | 2010-02-23 | |
| Requested | 2010-01-29 | |
| Authors | Dr. Hugo Krawczyk , Pasi Eronen | |
| I-D last updated | 2010-02-02 | |
| Completed reviews |
Secdir Last Call review of -??
by Donald E. Eastlake 3rd
|
|
| Assignment | Reviewer | Donald E. Eastlake 3rd |
| State | Completed | |
| Request | Last Call review on draft-krawczyk-hkdf by Security Area Directorate Assigned | |
| Completed | 2010-02-02 |
review-krawczyk-hkdf-secdir-lc-eastlake-2010-02-02-00
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. Document editors and WG chairs should treat these comments just like any other last call comments. This draft specifies an HMAC key derivation function that is divided into two steps: an extract step to get a fixed length pseudo-random key from some inputs and an expand step which expands this pseudo-random key into the desired output keying material. It appears to be simple, useful, and, to my very limited cryptographic judgement, secure. Editorial: Section 2.1, page 3, "has always" -> "always has" Thanks, Donald ============================= Donald E. Eastlake 3rd +1-508-634-2066 (home) 155 Beaver Street Milford, MA 01757 USA d3e3e3 at gmail.com