On 4 November 2016 at 09:11, Salz, Rich <rs...@akamai.com> wrote: > I think the issue about signature contexts first, and mainly, came up with > TLS which generates a variety of private key material based on shared secret > info, and the concern that those different keys could be used for > cross-protocol attacks.
There are a lot of ways that keys (particularly those in certificates) might be used. Context strings reduce the chances that those keys are misused such that data from one context can be transplanted into another. Simon's proposal works better in this context. If only all keys were so single-minded. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
