On Fri, Jul 20, 2018 at 01:02:19PM -0700, Eric Rescorla wrote:
> On Fri, Jul 20, 2018 at 12:52 PM, John Mattsson
> wrote:
>
> > encrypted_sni = AEAD-Encrypt(key, iv, KeyShareClientHello,
> > PaddedServerNameList)
> >
> > Unless it causes problems of some kind, I would recommend doing that.
> >
John,
Thanks for your comments. It's good to know that someone has already done
this!
On Fri, Jul 20, 2018 at 12:52 PM, John Mattsson
wrote:
> Hi,
>
> I looked through the draft, mainly focusing on the crypto parts. This is
> more or less ECIES, but with a more modern style of key derivation
Hi,
I looked through the draft, mainly focusing on the crypto parts. This is more
or less ECIES, but with a more modern style of key derivation that most
existing standards. This solution is very similar to the standardized 3GPP
identity encryption (SUCI) with the difference that the static
