Hi all, In case you missed it, we've posted a new version of draft-bmw-tls-pake13-02 in advance of IETF 123 with modifications discussed at IETF 122, namely:
Combining the PAKE shared secret with the regular (EC)DHE or concatenated_shared_secret inputs to the key schedule Allowing and specifying how certificates may be used with the PAKE extension We appreciate any feedback/discussion either here on the list or on the GitHub: https://github.com/chris-wood/draft-bmw-tls-pake13 > Begin forwarded message: > > From: [email protected] > Subject: New Version Notification for draft-bmw-tls-pake13-02.txt > Date: July 7, 2025 at 4:17:24 PM PDT > To: "Christopher A. Wood" <[email protected]>, Christopher Wood > <[email protected]>, David Benjamin <[email protected]>, Laura Bauman > <[email protected]>, Samir Menon <[email protected]> > > A new version of Internet-Draft draft-bmw-tls-pake13-02.txt has been > successfully submitted by Laura Bauman and posted to the > IETF repository. > > Name: draft-bmw-tls-pake13 > Revision: 02 > Title: A Password Authenticated Key Exchange Extension for TLS 1.3 > Date: 2025-07-07 > Group: Individual Submission > Pages: 15 > URL: https://www.ietf.org/archive/id/draft-bmw-tls-pake13-02.txt > Status: https://datatracker.ietf.org/doc/draft-bmw-tls-pake13/ > HTML: https://www.ietf.org/archive/id/draft-bmw-tls-pake13-02.html > HTMLized: https://datatracker.ietf.org/doc/html/draft-bmw-tls-pake13 > Diff: https://author-tools.ietf.org/iddiff?url2=draft-bmw-tls-pake13-02 > > Abstract: > > The pre-shared key mechanism available in TLS 1.3 is not suitable for > usage with low-entropy keys, such as passwords entered by users. > This document describes an extension that enables the use of > password-authenticated key exchange protocols with TLS 1.3. > > > > The IETF Secretariat > >
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
