RFR review of draft CSR JDK-8261456: KeyAgreement spec update on multi-party key exchange support

Sean Mullan sean.mullan at oracle.com
Tue Feb 9 21:07:54 UTC 2021


Looks good to me.

--Sean

On 2/9/21 1:36 PM, Jamil Nimeh wrote:
> Hello all,
> 
> I'm looking for a review on a minor spec clarification for the 
> KeyAgreement API.  This change adds an additional sentence to the 
> existing introduction to the KeyAgreement spec allowing 3 or more party 
> exchanges to be optional unless required by the underlying 
> specification.  It makes no changes to the API which still supports an 
> arbitrary number of participants.
> 
> I did have difficulty finding an official, valid link to PKCS#3. I can 
> find the spec from a few different sites, but they didn't look like the 
> official source.  I've put RFC 2631 in there are a placeholder, but it 
> describes the X9.42 variant.  I'll keep looking for the official PKCS#3 
> link, but if anyone knows it off-hand please throw it my way and I'll 
> add it.
> 
> Thanks,
> 
> --Jamil
> 
> https://bugs.openjdk.java.net/browse/JDK-8261456
> 
> 



More information about the security-dev mailing list