Which RFC explains how the mac-then-encrypt needs to be implemented

Jakob Bohm jb-openssl at wisemo.com
Tue Mar 3 07:02:17 UTC 2020

On 2020-03-03 07:46, Phani 2004 wrote:
> Hi Team,
> I am trying to implement mac-then-encrypt for aes_cbc_hmac_sha1 
> combined cipher. From the code i could understand that the first 16 
> bytes were being used as explicit IV while decrypting and the hmac is 
> done for 13 bye AAD and 16 byte Fin record in finish message.
> Which RFC/section explains this in detail?
For TLS 1.2, this is RFC5246 Section

Note that each version of TLS makes arbitrary changes to the record


Jakob Bohm, CIO, Partner, WiseMo A/S.  https://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark.  Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded

More information about the openssl-users mailing list