[External] : Re: New Draft of the KDF JEP for the Java Platform
Wei-Jun Wang
weijun.wang at oracle.com
Wed Mar 13 12:52:16 UTC 2024
> On Mar 12, 2024, at 6:34 PM, Martin Balao <mbalao at redhat.com> wrote:
>
> As I understand it, it's not that state is not maintained but that we are keeping it on the parameters side. For example, a extraction phase call will generate a PRK that will be kept in the parameters side for the following expansion phase calls.
For an extract-once expand-multiple use case, I think you can do an extract-only deriveKey and this returns the PRK. You can then use this PRK to do multiple expand-only deriveKeys. There is no need to store the PRK inside the params after the 1st step. Or, are you worrying about the PRK been leaked?
Thanks,
Weijun
More information about the security-dev
mailing list