TLS Working Group Joo-won Jung INTERNET-DRAFT ChangHee Lee INITECH, Inc. 12 July 2000 TLS Extension for SEED and HAS-160 draft-ietf-tls-seedhas-00.txt Status of this Memo This document is an Internet-Draft and is in full conformance with all provisions of Section 10 of RFC2026. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF), its areas, and its working groups. Note that other groups may also distribute working documents as Internet- Drafts. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet- Drafts as reference material or to cite them other than as "work in progress." The list of current Internet-Drafts can be accessed at http://www.ietf.org/ietf/1id-abstracts.txt The list of Internet-Draft Shadow Directories can be accessed at http://www.ietf.org/shadow.html. Introduction This document proposes the addition of new cipher suites to the TLS protocol 1.0 [TLS] to support SEED and HAS-160. The SEED algorithm is 128-bit symmetric block cipher algorithm. [SEED] The HAS-160 is 160-bit secure hash function, whose block size is 512 bit. [HAS] Both algorithms are developed in Korea since 1997 for stronger communication security. Currently, SEED is widely used and is the mandatory cipher in banking and stock applications in Korea. HMAC of HAS-160 HMAC of HAS160 can be defined like HMAC_MD5 or HMAC_SHA1. Since HAS-160 is 512-bit block, 160-bit output secure hash algorithm, B=64 and L=20 as the notation of [HMAC]. The test values of HMAC_HAS160 is provided as appendix of this Jung & Lee Expires in 12 January 2001 [Page 1] Internet-Draft TLS Extension for SEED and HAS-160 12 July 2000 document. HMAC_HAS160 is used just for MAC of record layer. Adding HMAC_HAS160 does not affect the definitions of PRF, Finished message and other definitions using HMAC_MD5 or HMAC_SHA1. Cipher Suites In spite of the existence of Korean digital signature algorithm, KCDSA, RSA algorithm is more widely used in Korea. Therefore, we define cipher suites with RSA key exchange. CipherSuite TLS_RSA_WITH_SEED_CBC_MD5 = { 0x00, 0x2C }; CipherSuite TLS_RSA_WITH_SEED_CBC_SHA = { 0x00, 0x2D }; CipherSuite TLS_RSA_WITH_SEED_CBC_HAS160 = { 0x00, 0x2E }; Note: The above numeric definitions for Cipher Suites have not yet been registered. The numeric definitions are the following numbers of CipherSuite of TLS standard.[TLS] References [HAS] TTA.IS-10118, "Hash Function Standard - Part 2 : Hash Function Algorithm (HAS-160)", Telecommunications Technology Association, Republic of Korea, November, 1998. [HMAC] Krawczyk, H., Bellare, M., and R. Canetti, "HMAC: Keyed- Hashing for Message Authentication," RFC 2104, February, 1997. [SEED] TTA.KO-12.0004, "128-bit Symmetric Block Cipher (SEED)", Telecommunications Technology Association, Republic of Korea, September 28, 1999. [TLS] T. Dierks, and C. Allen, "The TLS Protocol Version 1.0", RFC 2246, January 1999. Test Values of HMAC_HAS160 test_case = 1 key = 0x0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b key_len = 20 data = "Hi There" data_len = 8 digest = 0xf5b44115a53f716b6f488de1098ee7c251418623 test_case = 2 Jung & Lee Expires in 12 January 2001 [Page 2] Internet-Draft TLS Extension for SEED and HAS-160 12 July 2000 key = "Jefe" key_len = 4 data = "what do ya want for nothing?" data_len = 28 digest = 0xa74547c1ef0aa147c7428ab7e71664549be2a412 test_case = 3 key = 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa key_len = 20 data = 0xdd repeated 50 times data_len = 50 digest = 0xe4c91bc71782fa44a56be1a34aae167e8ffc9734 test_case = 4 key = 0x0102030405060708090a0b0c0d0e0f10111213141516171819 key_len = 25 data = 0xcd repeated 50 times data_len = 50 digest = 0x14d1055da875222053bf1180bbef8892eba3ac30 test_case = 5 key = 0x0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c key_len = 20 data = "Test With Truncation" data_len = 20 digest = 0x63750d67af40e3fde33526545d300972a1527053 test_case = 6 key = 0xaa repeated 80 times key_len = 80 data = "Test Using Larger Than Block-Size Key - Hash Key First" data_len = 54 digest = 0x63750d67af40e3fde33526545d300972a1527053 test_case = 7 key = 0xaa repeated 80 times key_len = 80 data = "Test Using Larger Than Block-Size Key and Larger Than One Block-Size Data" data_len = 73 digest = 0x1bdb821e399e208352c64f0655f6601e2a8a087c Note: These values are not cross-verified with other organization. Author's Address Joo-won Jung Jung & Lee Expires in 12 January 2001 [Page 3] Internet-Draft TLS Extension for SEED and HAS-160 12 July 2000 INITECH, Inc. EMail: jwjung@initech.com ChangHee Lee INITECH, Inc. EMail: chlee@initech.com Phone: +82 2 3430 5700 Jung & Lee Expires in 12 January 2001 [Page 4]