Pre-Shared Key Cipher Suites for TLS with SHA-256/384 and AES Galois Counter Mode
RFC 5487, “Pre-Shared Key Cipher Suites for TLS with SHA-256/384 and AES Galois Counter Mode”, is a Proposed Standard document published in March 2009 by M. Badra. The canonical text is published by the RFC Editor.
Abstract
RFC 4279 and RFC 4785 describe pre-shared key cipher suites for Transport Layer Security (TLS). However, all those cipher suites use SHA-1 in their Message Authentication Code (MAC) algorithm. This document describes a set of pre-shared key cipher suites for TLS that uses stronger digest algorithms (i.e., SHA-256 or SHA-384) and another set that uses the Advanced Encryption Standard (AES) in Galois Counter Mode (GCM). [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 5487 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 5486 Session Peering for Multimedia Interconnect Terminology
- RFC 5488 Network Mobility Management Information Base
- RFC 5485 Digital Signatures on Internet-Draft Documents
- RFC 5489 ECDHE_PSK Cipher Suites for Transport Layer Security
- RFC 5484 Associating Time-Codes with RTP Streams
- RFC 5490 The Sieve Mail-Filtering Language -- Extensions for Checking Mailbox Status and Accessing Mailbox Metadata
- RFC 5483 ENUM Implementation Issues and Experiences
- RFC 5491 GEOPRIV Presence Information Data Format Location Object Usage Clarification, Considerations, and Recommendations