Which RFC explains how the mac-then-encrypt needs to be implemented

Jakob Bohm jb-openssl at wisemo.com
Tue Mar 3 07:02:17 UTC 2020


On 2020-03-03 07:46, Phani 2004 wrote:
> Hi Team,
>
> I am trying to implement mac-then-encrypt for aes_cbc_hmac_sha1 
> combined cipher. From the code i could understand that the first 16 
> bytes were being used as explicit IV while decrypting and the hmac is 
> done for 13 bye AAD and 16 byte Fin record in finish message.
>
> Which RFC/section explains this in detail?
>
>
For TLS 1.2, this is RFC5246 Section 6.2.3.2

Note that each version of TLS makes arbitrary changes to the record
encryption.

Enjoy

Jakob
-- 
Jakob Bohm, CIO, Partner, WiseMo A/S.  https://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark.  Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded



More information about the openssl-users mailing list