One document matched: draft-ietf-httpauth-mutual-algo-03.ps
%!PS-Adobe-3.0
%%Title: Mutual Authentication Protocol for HTTP: KAM3-based Cryptographic Algorithms
%%Creator: html2ps version 1.0 beta7
%%CreationDate: Mon Jul 6 07:57:33 2015
%%DocumentNeededResources: font Times-Roman Times-Bold Courier Helvetica
%%DocumentData: Clean7Bit
%%Orientation: Portrait
%%BoundingBox: 0 0 596 842
%%Pages: 12
%%EndComments
%%BeginProlog
/d {bind def} bind def
/D {def} d
/ie {ifelse} d
/E {exch} d
/t true D
/f false D
/FL [/Times-Roman
/Times-Italic
/Times-Bold
/Times-BoldItalic
/Courier
/Courier-Oblique
/Courier-Bold
/Courier-BoldOblique
/Helvetica
/Helvetica-Oblique
/Helvetica-Bold
/Helvetica-BoldOblique] D
/Cd {aload length 2 idiv dup dict begin {D} repeat currentdict end} D
/reencodeISO {
dup dup findfont dup length dict begin{1 index /FID ne{D}{pop pop}ie}forall
/Encoding ISOLatin1Encoding D currentdict end definefont} D
/ISOLatin1Encoding [
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/space/exclam/quotedbl/numbersign/dollar/percent/ampersand/quoteright
/parenleft/parenright/asterisk/plus/comma/hyphen/period/slash
/zero/one/two/three/four/five/six/seven/eight/nine/colon/semicolon
/less/equal/greater/question/at/A/B/C/D/E/F/G/H/I/J/K/L/M/N
/O/P/Q/R/S/T/U/V/W/X/Y/Z/bracketleft/backslash/bracketright
/asciicircum/underscore/quoteleft/a/b/c/d/e/f/g/h/i/j/k/l/m
/n/o/p/q/r/s/t/u/v/w/x/y/z/braceleft/bar/braceright/asciitilde
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/space/exclamdown/cent/sterling/currency/yen/brokenbar
/section/dieresis/copyright/ordfeminine/guillemotleft/logicalnot
/hyphen/registered/macron/degree/plusminus/twosuperior/threesuperior
/acute/mu/paragraph/periodcentered/cedilla/onesuperior/ordmasculine
/guillemotright/onequarter/onehalf/threequarters/questiondown
/Agrave/Aacute/Acircumflex/Atilde/Adieresis/Aring/AE/Ccedilla
/Egrave/Eacute/Ecircumflex/Edieresis/Igrave/Iacute/Icircumflex
/Idieresis/Eth/Ntilde/Ograve/Oacute/Ocircumflex/Otilde/Odieresis
/multiply/Oslash/Ugrave/Uacute/Ucircumflex/Udieresis/Yacute
/Thorn/germandbls/agrave/aacute/acircumflex/atilde/adieresis
/aring/ae/ccedilla/egrave/eacute/ecircumflex/edieresis/igrave
/iacute/icircumflex/idieresis/eth/ntilde/ograve/oacute/ocircumflex
/otilde/odieresis/divide/oslash/ugrave/uacute/ucircumflex/udieresis
/yacute/thorn/ydieresis
] D
[128/backslash 129/parenleft 130/parenright 141/circumflex 142/tilde
143/perthousand 144/dagger 145/daggerdbl 146/Ydieresis 147/scaron 148/Scaron
149/oe 150/OE 151/guilsinglleft 152/guilsinglright 153/quotesinglbase
154/quotedblbase 155/quotedblleft 156/quotedblright 157/endash 158/emdash
159/trademark]
aload length 2 idiv 1 1 3 -1 roll{pop ISOLatin1Encoding 3 1 roll put}for
/colorimage where{pop}{
/colorimage {
pop pop /Pr E D {/Cv Pr D /Gr Cv length 3 idiv string D 0 1 Gr length 1 sub
{Gr E dup /i E 3 mul D Cv i get 0.299 mul Cv i 1 add get 0.587 mul add
Cv i 2 add get 0.114 mul add cvi put}for Gr} image} D
}ie
/pdfmark where{pop}{userdict /pdfmark /cleartomark load put}ie
/MySymbol 10 dict dup begin
/FontType 3 D /FontMatrix [.001 0 0 .001 0 0 ] D /FontBBox [25 -10 600 600] D
/Encoding 256 array D 0 1 255{Encoding exch /.notdef put}for
Encoding (e) 0 get /euro put
/Metrics 2 dict D Metrics begin
/.notdef 0 D
/euro 651 D
end
/BBox 2 dict D BBox begin
/.notdef [0 0 0 0] D
/euro [25 -10 600 600] D
end
/CharacterDefs 2 dict D CharacterDefs begin
/.notdef {} D
/euro{newpath 114 600 moveto 631 600 lineto 464 200 lineto 573 200 lineto
573 0 lineto -94 0 lineto 31 300 lineto -10 300 lineto closepath clip
50 setlinewidth newpath 656 300 moveto 381 300 275 0 360 arc stroke
-19 350 moveto 600 0 rlineto -19 250 moveto 600 0 rlineto stroke}d
end
/BuildChar{0 begin
/char E D /fontdict E D /charname fontdict /Encoding get char get D
fontdict begin
Metrics charname get 0 BBox charname get aload pop setcachedevice
CharacterDefs charname get exec
end
end}D
/BuildChar load 0 3 dict put /UniqueID 1 D
end
definefont pop
/Nf {dup 0 ge{FL E get}{-1 eq{/Symbol}{/MySymbol}ie}ie findfont
E scalefont setfont} D
/IP {currentfile picstr readhexstring pop} D
/WF t D
/F 1 D
/N {showpage} d
/RL {rlineto} d
/S {show} d
/L {lineto} d
/M {moveto} d
/A {awidthshow} d
/RM {rmoveto} d
%%EndProlog
%%BeginSetup
%%PaperSize: A4
WF{FL{reencodeISO D}forall}{4 1 FL length 1 sub{FL E get reencodeISO D}for}ie
/Symbol dup dup findfont dup length dict begin
{1 index /FID ne{D}{pop pop}ie}forall /Encoding [Encoding aload pop]
dup 128 /therefore put D currentdict end definefont D
[/Creator (html2ps version 1.0 beta7) /Author () /Keywords (HTTP, authentication) /Subject () /Title (Mutual Authentication Protocol for HTTP: KAM3-based Cryptographic Algorithms) /DOCINFO pdfmark
[/PageMode /UseOutlines /DOCVIEW pdfmark
[/Count 1 /Dest /62 /Title (Mutual Authentication Protocol for HTTP: KAM3-based Cryptographic Algorithms draft-ietf-httpauth-mutual-algo-03) /OUT pdfmark
[/Count 24 /Dest /63 /Title () /OUT pdfmark
[/Dest /63 /Title (Abstract) /OUT pdfmark
[/Dest /64 /Title (Status of this Memo) /OUT pdfmark
[/Dest /65 /Title (Copyright Notice) /OUT pdfmark
[/Dest /66 /Title (Table of Contents) /OUT pdfmark
[/Count -1 /Dest /67 /Title (1. Introduction) /OUT pdfmark
[/Dest /68 /Title (1.1. Terminology) /OUT pdfmark
[/Dest /69 /Title (2. Cryptographic Overview \(Non-normative\)) /OUT pdfmark
[/Count -3 /Dest /70 /Title (3. Authentication Algorithms) /OUT pdfmark
[/Dest /71 /Title (3.1. Support Functions and Notations) /OUT pdfmark
[/Dest /72 /Title (3.2. Functions for Discrete-Logarithm Settings) /OUT pdfmark
[/Dest /73 /Title (3.3. Functions for Elliptic-Curve Settings) /OUT pdfmark
[/Dest /74 /Title (4. IANA Considerations) /OUT pdfmark
[/Count -2 /Dest /75 /Title (5. Security Considerations) /OUT pdfmark
[/Dest /76 /Title (5.1. General Implementation Considerations) /OUT pdfmark
[/Dest /77 /Title (5.2. Cryptographic Assumptions and Considerations) /OUT pdfmark
[/Dest /78 /Title (6. Notice on intellectual properties) /OUT pdfmark
[/Count -2 /Dest /79 /Title (7. References) /OUT pdfmark
[/Dest /80 /Title (7.1. Normative References) /OUT pdfmark
[/Dest /81 /Title (7.2. Informative References) /OUT pdfmark
[/Dest /82 /Title (Appendix A. \(Informative\) Group Parameters for Discrete-Logarithm Based Algorithms) /OUT pdfmark
[/Dest /83 /Title (Appendix B. \(Informative\) Derived Numerical Values) /OUT pdfmark
[/Dest /84 /Title (Appendix C. \(Informative\) Draft Change Log) /OUT pdfmark
[/Dest /85 /Title (C.1. Changes in HTTPAUTH-WG revision 03) /OUT pdfmark
[/Dest /86 /Title (C.2. Changes in HTTPAUTH-WG revision 02) /OUT pdfmark
[/Dest /87 /Title (C.3. Changes in HTTPAUTH-WG revision 01) /OUT pdfmark
[/Dest /88 /Title (C.4. Changes in HTTPAUTH-WG revision 00) /OUT pdfmark
[/Dest /89 /Title (C.5. Changes in HTTPAUTH revision 02) /OUT pdfmark
[/Dest /90 /Title (C.6. Changes in HTTPAUTH revision 01) /OUT pdfmark
[/Dest /91 /Title (C.7. Changes in revision 02) /OUT pdfmark
[/Dest /92 /Title (C.8. Changes in revision 01) /OUT pdfmark
[/Dest /93 /Title (C.9. Changes in revision 00) /OUT pdfmark
[/Dest /94 /Title (Authors' Addresses) /OUT pdfmark
%%EndSetup
%%Page: 1 1
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 842 null] /Dest /0 /DEST pdfmark
0 -0 M
save
2.5 -13.5 M
%%IncludeResource: font Times-Roman
11 0 Nf
(HTTPAUTH Working ) S
(Group) S
208 -13.5 M
(Y. ) S
(Oiwa) S
2.5 -32.2 M
(Internet-Draft) S
208 -32.2 M
(H. ) S
(Watanabe) S
2.5 -51 M
(Intended status: ) S
(Experimental) S
208 -51 M
(H. ) S
(Takagi) S
2.5 -69.8 M
(Expires: January 7, ) S
(2016) S
208 -69.8 M
(ITRI, ) S
(AIST) S
2.5 -88.5 M
(\240) S
208 -88.5 M
(K. ) S
(Maeda) S
2.5 -107.2 M
(\240) S
208 -107.2 M
(T. ) S
(Hayashi) S
2.5 -126 M
(\240) S
208 -126 M
(Lepidum) S
2.5 -144.8 M
(\240) S
208 -144.8 M
(Y. ) S
(Ioku) S
2.5 -163.5 M
(\240) S
208 -163.5 M
(Individual) S
2.5 -182.2 M
(\240) S
208 -182.2 M
(July 6, ) S
(2015) S
0 -187.5 M
restore
227 -202.7 M
[/View [/XYZ -4 842 null] /Dest /62 /DEST pdfmark
51.3 -221.7 M
%%IncludeResource: font Times-Bold
19 2 Nf
(Mutual Authentication Protocol for HTTP:) S
61.8 -244.5 M
(KAM3-based Cryptographic ) S
(Algorithms) S
86.7 -267.3 M
(draft-ietf-httpauth-mutual-algo-03) S
0 -297.3 M
15 2 Nf
(Abstract) S
[/View [/XYZ -4 477.7 null] /Dest /63 /DEST pdfmark
0 -321.5 M
11 0 Nf
2.66496396 0 32 0 0 (This document specifies some cryptographic algorithms which will be used for the Mutual user) A
0 -334.7 M
(authentication method for the Hyper-text Transport Protocol ) S
(\(HTTP\).) S
0 -364.7 M
15 2 Nf
(Status) S
[/View [/XYZ -4 410.3 null] /Dest /64 /DEST pdfmark
( of this ) S
(Memo) S
0 -388.9 M
11 0 Nf
(This Internet-Draft is submitted in full conformance with the provisions of BCP\24078 and ) S
(BCP\24079.) S
0 -413.1 M
0.34375 0 32 0 0 (Internet-Drafts are working documents of the Internet Engineering Task Force \(IETF\). Note that other) A
0 -426.3 M
0.389423072 0 32 0 0 (groups may also distribute working documents as Internet-Drafts. The list of current Internet-Drafts is) A
0 -439.5 M
(at ) S
(http://datatracker.ietf.org/drafts/current/.) S
0 -463.7 M
0.275781244 0 32 0 0 (Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced,) A
0 -476.9 M
1.51927078 0 32 0 0 (or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference) A
0 -490.1 M
(material or to cite them other than as \233work in ) S
(progress.\234) S
0 -514.3 M
(This Internet-Draft will expire on January 7, ) S
(2016.) S
0 -544.3 M
15 2 Nf
(Copyright) S
[/View [/XYZ -4 230.69989 null] /Dest /65 /DEST pdfmark
( ) S
(Notice) S
0 -568.5 M
11 0 Nf
(Copyright \(c\) 2015 IETF Trust and the persons identified as the document authors. All rights ) S
(reserved.) S
0 -592.7 M
3.1208334 0 32 0 0 (This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF) A
0 -605.9 M
1.34730113 0 32 0 0 (Documents \(http://trustee.ietf.org/license-info\) in effect on the date of publication of this document.) A
0 -619.1 M
0.819475472 0 32 0 0 (Please review these documents carefully, as they describe your rights and restrictions with respect to) A
0 -632.3 M
0.287109375 0 32 0 0 (this document. Code Components extracted from this document must include Simplified BSD License) A
0 -645.5 M
1.24951172 0 32 0 0 (text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as) A
0 -658.7 M
(described in the Simplified BSD ) S
(License.) S
0 -658.7 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 1 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 2 2
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /1 /DEST pdfmark
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Table) S
[/View [/XYZ -4 757.0 null] /Dest /66 /DEST pdfmark
( of ) S
(Contents) S
0 -42.2 M
gsave
newpath
0 -43.3 M
8.25 0 RL
stroke
grestore
%%IncludeResource: font Times-Roman
11 0 Nf
(1.) S
[/Rect [-1.0 -44.95 9.25 -32.85] /Subtype /Link /Border [0 0 0] /Dest /2 /ANN pdfmark
(\240 ) S
(Introduction) S
0 -55.4 M
(\240\240\240\240) S
gsave
newpath
11 -56.5 M
16.5 0 RL
stroke
grestore
(1.1.) S
[/Rect [10.0 -58.15 28.5 -46.0500031] /Subtype /Link /Border [0 0 0] /Dest /4 /ANN pdfmark
(\240 ) S
(Terminology) S
0 -68.6 M
gsave
newpath
0 -69.7 M
8.25 0 RL
stroke
grestore
(2.) S
[/Rect [-1.0 -71.3500061 9.25 -59.2500076] /Subtype /Link /Border [0 0 0] /Dest /6 /ANN pdfmark
(\240 Cryptographic Overview ) S
(\(Non-normative\)) S
0 -81.8 M
gsave
newpath
0 -82.9 M
8.25 0 RL
stroke
grestore
(3.) S
[/Rect [-1.0 -84.55 9.25 -72.4500046] /Subtype /Link /Border [0 0 0] /Dest /8 /ANN pdfmark
(\240 Authentication ) S
(Algorithms) S
0 -95 M
(\240\240\240\240) S
gsave
newpath
11 -96.1 M
16.5 0 RL
stroke
grestore
(3.1.) S
[/Rect [10.0 -97.75 28.5 -85.65] /Subtype /Link /Border [0 0 0] /Dest /10 /ANN pdfmark
(\240 Support Functions and ) S
(Notations) S
0 -108.2 M
(\240\240\240\240) S
gsave
newpath
11 -109.3 M
16.5 0 RL
stroke
grestore
(3.2.) S
[/Rect [10.0 -110.95 28.5 -98.85] /Subtype /Link /Border [0 0 0] /Dest /12 /ANN pdfmark
(\240 Functions for Discrete-Logarithm ) S
(Settings) S
0 -121.4 M
(\240\240\240\240) S
gsave
newpath
11 -122.5 M
16.5 0 RL
stroke
grestore
(3.3.) S
[/Rect [10.0 -124.149994 28.5 -112.049995] /Subtype /Link /Border [0 0 0] /Dest /14 /ANN pdfmark
(\240 Functions for Elliptic-Curve ) S
(Settings) S
0 -134.6 M
gsave
newpath
0 -135.7 M
8.25 0 RL
stroke
grestore
(4.) S
[/Rect [-1.0 -137.349991 9.25 -125.249992] /Subtype /Link /Border [0 0 0] /Dest /16 /ANN pdfmark
(\240 IANA ) S
(Considerations) S
0 -147.8 M
gsave
newpath
0 -148.9 M
8.25 0 RL
stroke
grestore
(5.) S
[/Rect [-1.0 -150.549988 9.25 -138.449982] /Subtype /Link /Border [0 0 0] /Dest /18 /ANN pdfmark
(\240 Security ) S
(Considerations) S
0 -161 M
(\240\240\240\240) S
gsave
newpath
11 -162.1 M
16.5 0 RL
stroke
grestore
(5.1.) S
[/Rect [10.0 -163.749985 28.5 -151.649979] /Subtype /Link /Border [0 0 0] /Dest /20 /ANN pdfmark
(\240 General Implementation ) S
(Considerations) S
0 -174.2 M
(\240\240\240\240) S
gsave
newpath
11 -175.3 M
16.5 0 RL
stroke
grestore
(5.2.) S
[/Rect [10.0 -176.949982 28.5 -164.849976] /Subtype /Link /Border [0 0 0] /Dest /22 /ANN pdfmark
(\240 Cryptographic Assumptions and ) S
(Considerations) S
0 -187.4 M
gsave
newpath
0 -188.5 M
8.25 0 RL
stroke
grestore
(6.) S
[/Rect [-1.0 -190.149979 9.25 -178.049973] /Subtype /Link /Border [0 0 0] /Dest /24 /ANN pdfmark
(\240 Notice on intellectual ) S
(properties) S
0 -200.6 M
gsave
newpath
0 -201.7 M
8.25 0 RL
stroke
grestore
(7.) S
[/Rect [-1.0 -203.349976 9.25 -191.249969] /Subtype /Link /Border [0 0 0] /Dest /28 /ANN pdfmark
(\240 ) S
(References) S
0 -213.8 M
(\240\240\240\240) S
gsave
newpath
11 -214.9 M
16.5 0 RL
stroke
grestore
(7.1.) S
[/Rect [10.0 -216.549973 28.5 -204.449966] /Subtype /Link /Border [0 0 0] /Dest /28 /ANN pdfmark
(\240 Normative ) S
(References) S
0 -227 M
(\240\240\240\240) S
gsave
newpath
11 -228.1 M
16.5 0 RL
stroke
grestore
(7.2.) S
[/Rect [10.0 -229.749969 28.5 -217.649963] /Subtype /Link /Border [0 0 0] /Dest /34 /ANN pdfmark
(\240 Informative ) S
(References) S
0 -240.2 M
gsave
newpath
0 -241.3 M
56.8203125 0 RL
stroke
grestore
(Appendix\240A.) S
[/Rect [-1.0 -242.949966 57.8203125 -230.84996] /Subtype /Link /Border [0 0 0] /Dest /37 /ANN pdfmark
(\240 \(Informative\) Group Parameters for Discrete-Logarithm Based ) S
(Algorithms) S
0 -253.4 M
gsave
newpath
0 -254.5 M
56.2148438 0 RL
stroke
grestore
(Appendix\240B.) S
[/Rect [-1.0 -256.149963 57.2148438 -244.049957] /Subtype /Link /Border [0 0 0] /Dest /39 /ANN pdfmark
(\240 \(Informative\) Derived Numerical ) S
(Values) S
0 -266.6 M
gsave
newpath
0 -267.7 M
56.2148438 0 RL
stroke
grestore
(Appendix\240C.) S
[/Rect [-1.0 -269.349976 57.2148438 -257.249969] /Subtype /Link /Border [0 0 0] /Dest /41 /ANN pdfmark
(\240 \(Informative\) Draft Change ) S
(Log) S
0 -279.8 M
(\240\240\240\240) S
gsave
newpath
11 -280.9 M
18.3359375 0 RL
stroke
grestore
(C.1.) S
[/Rect [10.0 -282.55 30.3359375 -270.449982] /Subtype /Link /Border [0 0 0] /Dest /43 /ANN pdfmark
(\240 Changes in HTTPAUTH-WG revision ) S
(03) S
0 -293 M
(\240\240\240\240) S
gsave
newpath
11 -294.1 M
18.3359375 0 RL
stroke
grestore
(C.2.) S
[/Rect [10.0 -295.75 30.3359375 -283.65] /Subtype /Link /Border [0 0 0] /Dest /45 /ANN pdfmark
(\240 Changes in HTTPAUTH-WG revision ) S
(02) S
0 -306.2 M
(\240\240\240\240) S
gsave
newpath
11 -307.3 M
18.3359375 0 RL
stroke
grestore
(C.3.) S
[/Rect [10.0 -308.95 30.3359375 -296.85] /Subtype /Link /Border [0 0 0] /Dest /47 /ANN pdfmark
(\240 Changes in HTTPAUTH-WG revision ) S
(01) S
0 -319.4 M
(\240\240\240\240) S
gsave
newpath
11 -320.5 M
18.3359375 0 RL
stroke
grestore
(C.4.) S
[/Rect [10.0 -322.150024 30.3359375 -310.050018] /Subtype /Link /Border [0 0 0] /Dest /49 /ANN pdfmark
(\240 Changes in HTTPAUTH-WG revision ) S
(00) S
0 -332.6 M
(\240\240\240\240) S
gsave
newpath
11 -333.7 M
18.3359375 0 RL
stroke
grestore
(C.5.) S
[/Rect [10.0 -335.350037 30.3359375 -323.250031] /Subtype /Link /Border [0 0 0] /Dest /51 /ANN pdfmark
(\240 Changes in HTTPAUTH revision ) S
(02) S
0 -345.8 M
(\240\240\240\240) S
gsave
newpath
11 -346.9 M
18.3359375 0 RL
stroke
grestore
(C.6.) S
[/Rect [10.0 -348.550049 30.3359375 -336.450043] /Subtype /Link /Border [0 0 0] /Dest /53 /ANN pdfmark
(\240 Changes in HTTPAUTH revision ) S
(01) S
0 -359 M
(\240\240\240\240) S
gsave
newpath
11 -360.1 M
18.3359375 0 RL
stroke
grestore
(C.7.) S
[/Rect [10.0 -361.750061 30.3359375 -349.650055] /Subtype /Link /Border [0 0 0] /Dest /55 /ANN pdfmark
(\240 Changes in revision ) S
(02) S
0 -372.2 M
(\240\240\240\240) S
gsave
newpath
11 -373.3 M
18.3359375 0 RL
stroke
grestore
(C.8.) S
[/Rect [10.0 -374.950073 30.3359375 -362.850067] /Subtype /Link /Border [0 0 0] /Dest /57 /ANN pdfmark
(\240 Changes in revision ) S
(01) S
0 -385.4 M
(\240\240\240\240) S
gsave
newpath
11 -386.5 M
18.3359375 0 RL
stroke
grestore
(C.9.) S
[/Rect [10.0 -388.150085 30.3359375 -376.050079] /Subtype /Link /Border [0 0 0] /Dest /59 /ANN pdfmark
(\240 Changes in revision ) S
(00) S
0 -398.6 M
gsave
newpath
0 -399.7 M
5.5 0 RL
stroke
grestore
(\247) S
[/Rect [-1.0 -401.350098 6.5 -389.250092] /Subtype /Link /Border [0 0 0] /Dest /61 /ANN pdfmark
(\240 Authors' ) S
(Addresses) S
0 -409.6 M
[/View [/XYZ -4 347.399902 null] /Dest /2 /DEST pdfmark
0 -409.6 M
[/View [/XYZ -4 347.399902 null] /Dest /3 /DEST pdfmark
0 -428.6 M
15 2 Nf
(1.) S
[/View [/XYZ -4 346.399902 null] /Dest /67 /DEST pdfmark
( ) S
(Introduction) S
0 -452.8 M
11 0 Nf
0.15234375 0 32 0 0 (This document specifies some algorithms for ) A
gsave
newpath
201.9 -453.9 M
252.113281 0 RL
stroke
grestore
0.15234375 0 32 0 0 (Mutual authentication protocol for Hyper-Text Transport) A
[/Rect [200.886719 -455.55011 455.0 -443.450104] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
0 -466 M
gsave
newpath
0 -467.1 M
43.5065117 0 RL
stroke
grestore
3.4908855 0 32 0 0 (Protocol ) A
gsave
newpath
43.5 -467.1 M
34.8125 0 RL
stroke
grestore
3.4908855 0 32 0 0 (\(HTTP\)) A
[/Rect [-1.0 -468.750122 79.3164062 -456.650116] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
3.4908855 0 32 0 0 ( [I-D.ietf-httpauth-mutual]. The algorithms are based on so-called "Augmented) A
0 -479.2 M
1.15507817 0 32 0 0 (Password-based Authenticated Key Exchange" \(Augmented PAKE\) techniques. In particular, it uses) A
0 -492.4 M
1.26032364 0 32 0 0 (one of three key exchange algorithm defined in the ) A
gsave
newpath
238.2 -493.5 M
215.735214 0 RL
stroke
grestore
1.26032364 0 32 0 0 (ISO 11770-4: "Key management - Mechanisms) A
[/Rect [237.242188 -495.150146 454.964844 -483.05014] /Subtype /Link /Border [0 0 0] /Dest /35 /ANN pdfmark
0 -505.6 M
gsave
newpath
0 -506.7 M
67.5 0 RL
stroke
grestore
(based on weak ) S
gsave
newpath
67.5 -506.7 M
34.4023438 0 RL
stroke
grestore
(secrets") S
[/Rect [-1.0 -508.350159 102.902344 -496.250153] /Subtype /Link /Border [0 0 0] /Dest /35 /ANN pdfmark
( [ISO.11770-4.2006] as a basis. ) S
0 -529.8 M
11 0 Nf
0.210798 0 32 0 0 (In very brief summary, the Mutual authentication protocol exchanges four values, ) A
0.210798 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.210798 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.210798 0 32 0 0 (, ) A
0.210798 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.210798 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.210798 0 32 0 0 (, ) A
0.210798 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.210798 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.210798 0 32 0 0 ( and ) A
0.0 -2.2 RM
0 -545.2 M
11 0 Nf
4.45524073 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
4.45524073 0 32 0 0 (s) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
4.45524073 0 32 0 0 (, to perform authenticated key exchanges, using the password-derived secret pi and its) A
0.0 -2.2 RM
0 -560.6 M
11 0 Nf
0.807128906 0 32 0 0 ("augmented version" J\(pi\). This document defines the set of functions ) A
0.807128906 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.807128906 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.807128906 0 32 0 0 (, ) A
0.807128906 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.807128906 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.807128906 0 32 0 0 (, and J for a specific) A
0.0 -2.2 RM
0 -576 M
(algorithm family. ) S
0 -600.2 M
1.4453125 0 32 0 0 (Please note that, from the view of cryptographic literature, the original functionality of Augmented) A
0 -613.4 M
11 0 Nf
0.963120401 0 32 0 0 (PAKE is separated into the functions ) A
0.963120401 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.963120401 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.963120401 0 32 0 0 ( and ) A
0.963120401 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.963120401 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.963120401 0 32 0 0 ( defined in this draft, and the functions ) A
0.963120401 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.963120401 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.963120401 0 32 0 0 ( and ) A
0.0 -2.2 RM
0 -628.8 M
11 0 Nf
1.75435698 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
1.75435698 0 32 0 0 (s) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
1.75435698 0 32 0 0 ( defined in Section 11 of ) A
gsave
newpath
143.5 -629.9 M
113.898438 0 RL
stroke
grestore
1.75435698 0 32 0 0 ([I-D.ietf-httpauth-mutual]) A
[/Rect [142.533203 -631.550293 258.431641 -619.450317] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
1.75435698 0 32 0 0 ( as "default functions". For the purpose of) A
0.0 -2.2 RM
0 -644.2 M
(security analysis, please also refer to these functions. ) S
0 -644.2 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 2 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 3 3
%%PageResources: font Times-Roman Times-Bold Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /4 /DEST pdfmark
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /5 /DEST pdfmark
0 -15.6 M
%%IncludeResource: font Times-Bold
13 2 Nf
(1.1.) S
[/View [/XYZ -4 757.0 null] /Dest /68 /DEST pdfmark
( ) S
(Terminology) S
0 -39.8 M
%%IncludeResource: font Times-Roman
11 0 Nf
2.37011719 0 32 0 0 (The key words "MUST", "MUST\240NOT", "REQUIRED", "SHALL", "SHALL\240NOT", "SHOULD",) A
0 -53 M
1.49739587 0 32 0 0 ("SHOULD\240NOT", "RECOMMENDED", "NOT\240RECOMMENDED", "MAY", and "OPTIONAL" in) A
0 -66.2 M
(this document are to be interpreted as described in ) S
gsave
newpath
223.9 -67.3 M
50.1054688 0 RL
stroke
grestore
([RFC2119]) S
[/Rect [222.863281 -68.9500046 274.96875 -56.8500061] /Subtype /Link /Border [0 0 0] /Dest /32 /ANN pdfmark
(.) S
0 -90.4 M
2.9309895 0 32 0 0 (The term "natural numbers" refers to the non-negative integers \(including zero\) throughout this ) A
0 -103.6 M
(document.) S
0 -127.8 M
0.861886144 0 32 0 0 (This document treats target \(codomain\) of hash functions to be octet strings. The notation INT\(H\(s\)\)) A
0 -141 M
(gives a natural-number output of hash function H applied to string ) S
(s.) S
0 -152 M
[/View [/XYZ -4 605.0 null] /Dest /6 /DEST pdfmark
0 -152 M
[/View [/XYZ -4 605.0 null] /Dest /7 /DEST pdfmark
0 -171 M
15 2 Nf
(2.) S
[/View [/XYZ -4 604.0 null] /Dest /69 /DEST pdfmark
( Cryptographic Overview ) S
(\(Non-normative\)) S
0 -195.2 M
11 0 Nf
1.23158479 0 32 0 0 (The cryptographic primitive used in this algorithm specification is based on a variant of augmented) A
0 -208.4 M
2.88216138 0 32 0 0 (PAKE proposed by T. Kwon, called APKAS-AMP, originally submitted to IEEE P1363.2. The) A
0 -221.6 M
0.141741067 0 32 0 0 (general flow of the successful exchange is shown below, for informative purposes only. The DL-based) A
0 -234.8 M
(notations are used, and all group operations \(mod q and mod r\) are omitted. ) S
0 -259 M
4.06863832 0 32 0 0 (Note that the only messages corresponding to the earlier two exchanges are defined in this) A
0 -272.2 M
8.512784 0 32 0 0 (specification. Those for latter two exchanges are defined in the main specification ) A
0 -285.4 M
gsave
newpath
0 -286.5 M
113.898438 0 RL
stroke
grestore
([I-D.ietf-httpauth-mutual]) S
[/Rect [-1.0 -288.150024 114.898438 -276.050018] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
(. ) S
0 -307.2 M
%%IncludeResource: font Courier
9.0 4 Nf
( C: S) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = random) S
0.0 -1.8 RM
0 -319.8 M
9.0 4 Nf
( C: K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = g^\(S) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\)) S
0.0 -1.8 RM
0 -332.4 M
9.0 4 Nf
( ----- ID, K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( ----->) S
0.0 -1.8 RM
0 -345 M
9.0 4 Nf
( C: t) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = H1\(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\) S: t) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = H1\(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\)) S
0.0 -1.8 RM
0 -357.6 M
( S: fetch J = g^pi by ID) S
0 -368.4 M
9.0 4 Nf
( S: S) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = random) S
0.0 -1.8 RM
0 -381 M
9.0 4 Nf
( S: K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = \(J * K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(^\(t) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\)\)^\(S) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\)) S
0.0 -1.8 RM
0 -393.6 M
9.0 4 Nf
( <----- K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( -----) S
0.0 -1.8 RM
0 -406.2 M
9.0 4 Nf
( C: t) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(2) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = H2\(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\) S: t) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(2) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = H2\(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\)) S
0.0 -1.8 RM
0 -418.8 M
9.0 4 Nf
( C: z = K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(^\(\(S) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( + t) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(2) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\) / \(S) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( * t) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( + pi\)\)) S
0.0 -1.8 RM
0 -431.4 M
9.0 4 Nf
( S: z' = \(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( * g^\(t) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(2) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\)\)^\(S) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(\)) S
0.0 -1.8 RM
0 -444 M
( \(assumption at this point: z = z' if authentication succeeded\)) S
0 -465.6 M
9.0 4 Nf
( C: VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = H4\(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, z\) S: VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(' = H4\(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, z'\)) S
0.0 -1.8 RM
0 -478.2 M
9.0 4 Nf
( ----- VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( ------->) S
0.0 -1.8 RM
0 -490.8 M
9.0 4 Nf
( S: assert\(VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
('\)) S
0.0 -1.8 RM
0 -514.2 M
9.0 4 Nf
( C: VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(' = H3\(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, z\) S: VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = H3\(K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(c1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, K) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s1) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
(, z'\)) S
0.0 -1.8 RM
0 -526.8 M
9.0 4 Nf
( <----- VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( ------) S
0.0 -1.8 RM
0 -539.4 M
9.0 4 Nf
( C: assert\(VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
( = VK) S
2.1 0.0 RM
0.0 -1.8 RM
6.84653 4 Nf
(s) S
0.0 1.8 RM
2.7 0.0 RM
9.0 4 Nf
('\)) S
0.0 -1.8 RM
0 -550.2 M
[/View [/XYZ -4 206.799988 null] /Dest /8 /DEST pdfmark
0 -550.2 M
[/View [/XYZ -4 206.799988 null] /Dest /9 /DEST pdfmark
0 -571.2 M
15 2 Nf
(3.) S
[/View [/XYZ -4 203.799988 null] /Dest /70 /DEST pdfmark
( Authentication ) S
(Algorithms) S
0 -595.4 M
11 0 Nf
0.81640625 0 32 0 0 (This document specifies only one family of the authentication algorithm. The family consists of four) A
0 -608.6 M
2.23366475 0 32 0 0 (authentication algorithms, which only differ in their underlying mathematical groups and security) A
0 -621.8 M
(parameters. The algorithms do not add any additional parameters. The tokens for these algorithms ) S
(are) S
0 -632.8 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 3 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 4 4
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
11 -9.6 M
gsave
0 setgray
newpath
11.0 -9.57000065 2.75 0 360 arc
closepath
fill
grestore
22 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
2.421875 0 32 0 0 (iso-kam3-dl-2048-sha256: for the 2048-bit discrete-logarithm setting with the SHA-256 hash) A
22 -26.4 M
(function. ) S
11 -37 M
gsave
0 setgray
newpath
11.0 -36.97 2.75 0 360 arc
closepath
fill
grestore
22 -40.6 M
2.421875 0 32 0 0 (iso-kam3-dl-4096-sha512: for the 4096-bit discrete-logarithm setting with the SHA-512 hash) A
22 -53.8 M
(function. ) S
11 -64.4 M
gsave
0 setgray
newpath
11.0 -64.37 2.75 0 360 arc
closepath
fill
grestore
22 -68 M
2.0859375 0 32 0 0 (iso-kam3-ec-p256-sha256: for the 256-bit prime-field elliptic-curve setting with the SHA-256) A
22 -81.2 M
(hash function. ) S
11 -91.8 M
gsave
0 setgray
newpath
11.0 -91.77 2.75 0 360 arc
closepath
fill
grestore
22 -95.4 M
2.0859375 0 32 0 0 (iso-kam3-ec-p521-sha512: for the 521-bit prime-field elliptic-curve setting with the SHA-512) A
22 -108.6 M
(hash ) S
(function.) S
0 -132.8 M
1.56119788 0 32 0 0 (For discrete-logarithm settings, the underlying groups are the 2048-bit and 4096-bit MODP groups) A
0 -146 M
1.51412261 0 32 0 0 (defined in ) A
gsave
newpath
50.1 -147.1 M
50.1054688 0 RL
stroke
grestore
1.51412261 0 32 0 0 ([RFC3526]) A
[/Rect [49.0585938 -148.749985 101.164062 -136.649979] /Subtype /Link /Border [0 0 0] /Dest /33 /ANN pdfmark
1.51412261 0 32 0 0 (, respectively. See ) A
gsave
newpath
187.5 -147.1 M
54.0703125 0 RL
stroke
grestore
1.51412261 0 32 0 0 (Appendix\240A) A
[/Rect [186.460938 -148.749985 242.53125 -136.649979] /Subtype /Link /Border [0 0 0] /Dest /37 /ANN pdfmark
1.51412261 0 32 0 0 ( for the exact specifications of the groups and) A
0 -159.2 M
0.0911458358 0 32 0 0 (associated parameters. The hash functions H are SHA-256 for the 2048-bit group and SHA-512 for the) A
0 -172.4 M
0.439778656 0 32 0 0 (4096-bit group, respectively, defined in ) A
gsave
newpath
179 -173.5 M
49.7701836 0 RL
stroke
grestore
0.439778656 0 32 0 0 (FIPS PUB ) A
gsave
newpath
228.8 -173.5 M
25.6601562 0 RL
stroke
grestore
0.439778656 0 32 0 0 (180-2) A
[/Rect [178.035156 -175.149979 255.460938 -163.049973] /Subtype /Link /Border [0 0 0] /Dest /29 /ANN pdfmark
0.439778656 0 32 0 0 ( [FIPS.180-2.2002]. The hash iteration count) A
0 -185.6 M
(nIterPi is 16384. The representation of the parameters kc1, ks1, vkc, and vks is base64-fixed-number. ) S
0 -209.8 M
0.172916666 0 32 0 0 (For the elliptic-curve settings, the underlying groups are the elliptic curves over the prime fields P-256) A
0 -223 M
3.006392 0 32 0 0 (and P-521, respectively, specified in the appendix\240D.1.2 of ) A
gsave
newpath
285.2 -224.1 M
54.9034081 0 RL
stroke
grestore
3.006392 0 32 0 0 (FIPS PUB ) A
gsave
newpath
340.1 -224.1 M
25.6601562 0 RL
stroke
grestore
3.006392 0 32 0 0 (186-4) A
[/Rect [284.179688 -225.749969 366.738281 -213.649963] /Subtype /Link /Border [0 0 0] /Dest /30 /ANN pdfmark
3.006392 0 32 0 0 ( [FIPS.186-4.2013]) A
0 -236.2 M
0.460156262 0 32 0 0 (specification. The hash functions H, which are referenced by the core document, are SHA-256 for the) A
0 -249.4 M
0.219970703 0 32 0 0 (P-256 curve and SHA-512 for the P-521 curve, respectively. Cofactors of these curves are 1. The hash) A
0 -262.6 M
2.67630219 0 32 0 0 (iteration count nIterPi is 16384. The representation of the parameters kc1, ks1, vkc, and vks is) A
0 -275.8 M
(hex-fixed-number. ) S
0 -300 M
0.763281226 0 32 0 0 ([[Editorial Note: remove before submission] We should take a care on recent hot discussion topic on) A
0 -313.2 M
(the choice of elliptic curves for cryptography.]] ) S
0 -337.4 M
0.408203125 0 32 0 0 (Note: This algorithm is based on the Key Agreement Mechanism 3 \(KAM3\) defined in Section 6.3 of ) A
0 -350.6 M
gsave
newpath
0 -351.7 M
49.4101562 0 RL
stroke
grestore
8.17578125 0 32 0 0 (ISO/IEC ) A
gsave
newpath
49.4 -351.7 M
36.6601562 0 RL
stroke
grestore
8.17578125 0 32 0 0 (11770-4) A
[/Rect [-1.0 -353.350037 87.0703125 -341.250031] /Subtype /Link /Border [0 0 0] /Dest /35 /ANN pdfmark
8.17578125 0 32 0 0 ( [ISO.11770-4.2006] with a few modifications/improvements. However,) A
0 -363.8 M
1.37469947 0 32 0 0 (implementers should use this document as the normative reference, because the algorithm has been) A
0 -377 M
(changed in several minor details as well as major improvements. ) S
0 -388 M
[/View [/XYZ -4 368.999939 null] /Dest /10 /DEST pdfmark
0 -388 M
[/View [/XYZ -4 368.999939 null] /Dest /11 /DEST pdfmark
0 -403.6 M
%%IncludeResource: font Times-Bold
13 2 Nf
(3.1.) S
[/View [/XYZ -4 368.999939 null] /Dest /71 /DEST pdfmark
( Support Functions and ) S
(Notations) S
0 -427.8 M
11 0 Nf
(The algorithm definitions use several support functions and notations defined ) S
(below:) S
0 -452 M
(The integers in the specification are in decimal, or in hexadecimal when prefixed with ) S
("0x".) S
0 -476.2 M
3.04507208 0 32 0 0 (The functions named octet\(\), OCTETS\(\), and INT\(\) are those defined in the ) A
gsave
newpath
373.1 -477.3 M
24.7208538 0 RL
stroke
grestore
3.04507208 0 32 0 0 (core ) A
gsave
newpath
397.8 -477.3 M
56.1875 0 RL
stroke
grestore
3.04507208 0 32 0 0 (specification) A
[/Rect [372.066406 -478.950104 454.972656 -466.850098] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
3.04507208 0 32 0 0 ( ) A
0 -489.4 M
([I-D.ietf-httpauth-mutual].) S
0 -513.6 M
2.67103791 0 32 0 0 (Note: The definition of OCTETS\(\) is different from the function GE2OS_x in the original ISO) A
0 -526.8 M
(specification, which takes the shortest representation without preceding zeros. ) S
0 -551 M
2.79947925 0 32 0 0 (All of the algorithms defined in this specification use the default functions defined in the core) A
0 -564.2 M
11 0 Nf
1.15966797 0 32 0 0 (specification \(defined in Section 11 of ) A
gsave
newpath
178 -565.3 M
113.898438 0 RL
stroke
grestore
1.15966797 0 32 0 0 ([I-D.ietf-httpauth-mutual]) A
[/Rect [176.96875 -566.950134 292.867188 -554.850159] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
1.15966797 0 32 0 0 (\) for computing the values pi, ) A
1.15966797 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
1.15966797 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
0.0 -2.2 RM
0 -579.6 M
11 0 Nf
(and ) S
(VK) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(.) S
0.0 -2.2 RM
0 -592.8 M
[/View [/XYZ -4 164.199829 null] /Dest /12 /DEST pdfmark
0 -592.8 M
[/View [/XYZ -4 164.199829 null] /Dest /13 /DEST pdfmark
0 -608.4 M
13 2 Nf
(3.2.) S
[/View [/XYZ -4 164.199829 null] /Dest /72 /DEST pdfmark
( Functions for Discrete-Logarithm ) S
(Settings) S
0 -632.6 M
11 0 Nf
0.519886374 0 32 0 0 (In this section, an equation \(x / y mod z\) denotes a natural number w less than z that satisfies \(w * y\)) A
0 -645.8 M
(mod z = x mod z. ) S
0 -645.8 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 4 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 5 5
%%PageResources: font Times-Roman Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.05 0 32 0 0 (For the discrete-logarithm, we refer to some of the domain parameters by using the following symbols: ) A
11 -33.8 M
gsave
0 setgray
newpath
11.0 -33.77 2.75 0 360 arc
closepath
fill
grestore
22 -37.4 M
(q: for "the prime" defining the MODP group. ) S
11 -48 M
gsave
0 setgray
newpath
11.0 -47.97 2.75 0 360 arc
closepath
fill
grestore
22 -51.6 M
(g: for "the generator" associated with the group. ) S
11 -62.2 M
gsave
0 setgray
newpath
11.0 -62.170002 2.75 0 360 arc
closepath
fill
grestore
22 -65.8 M
(r: for the order of the subgroup generated by ) S
(g.) S
0 -90 M
(The function J is defined as ) S
0 -114.2 M
(J\(pi\) = g^\(pi\) mod q. ) S
0 -138.4 M
11 0 Nf
(The value of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( is derived as ) S
0.0 -2.2 RM
0 -164.8 M
11 0 Nf
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = ) S
(g^\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) mod q, ) S
0.0 -2.2 RM
0 -191.2 M
11 0 Nf
0.157645091 0 32 0 0 (where ) A
0.157645091 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.157645091 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.157645091 0 32 0 0 ( is a random integer within range [1, r-1] and r is the size of the subgroup generated by g. In) A
0.0 -2.2 RM
0 -206.6 M
11 0 Nf
(addition, ) S
(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( MUST be larger than log\(q\)/log\(g\) \(so that ) S
(g^\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) > q\). ) S
0.0 -2.2 RM
0 -233 M
11 0 Nf
2.4149816 0 32 0 0 (The value of ) A
2.4149816 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
2.4149816 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
2.4149816 0 32 0 0 ( SHALL satisfy 1 < ) A
2.4149816 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
2.4149816 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
2.4149816 0 32 0 0 ( < q-1. The server MUST check this condition upon) A
0.0 -2.2 RM
0 -248.4 M
(reception. ) S
0 -272.6 M
11 0 Nf
(Let an intermediate value ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( be ) S
0.0 -2.2 RM
0 -299 M
11 0 Nf
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = INT\(H\(octet\(1\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)\), ) S
0.0 -2.2 RM
0 -325.4 M
11 0 Nf
(the value of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( is derived from J\(pi\) and ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( as: ) S
0.0 -2.2 RM
0 -351.8 M
11 0 Nf
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = \(J\(pi\) * ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(^\(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)^\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) mod q ) S
0.0 -2.2 RM
0 -378.2 M
11 0 Nf
0.092726931 0 32 0 0 (where ) A
0.092726931 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.092726931 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.092726931 0 32 0 0 ( is a random number within range [1, r-1]. The value of ) A
0.092726931 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.092726931 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.092726931 0 32 0 0 ( MUST satisfy 1 < ) A
0.092726931 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.092726931 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.092726931 0 32 0 0 ( < q-1. If) A
0.0 -2.2 RM
0 -393.6 M
0.0837402344 0 32 0 0 (this condition is not held, the server MUST reject the exchange. The client MUST check this condition) A
0 -406.8 M
(upon reception. ) S
0 -431 M
11 0 Nf
(Let an intermediate value ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( be ) S
0.0 -2.2 RM
0 -457.4 M
11 0 Nf
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = INT\(H\(octet\(2\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)\), ) S
0.0 -2.2 RM
0 -483.8 M
(the value z on the client side is derived by the following equation: ) S
0 -508 M
11 0 Nf
(z = ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(^\(\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( + ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) / ) S
(\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( * ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( + pi\) mod r\) mod q. ) S
0.0 -2.2 RM
0 -534.4 M
(The value z on the server side is derived by the following equation: ) S
0 -558.6 M
11 0 Nf
(z = ) S
(\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( * ) S
(g^\(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)^\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) mod q. ) S
0.0 -2.2 RM
0 -585 M
0.317522317 0 32 0 0 (\(Note: the original ISO specification contained a message pair containing verification of value z along) A
0 -598.2 M
2.38333344 0 32 0 0 (with the "transcript" of the protocol exchange. The functionality of this kind is contained in the) A
0 -611.4 M
11 0 Nf
(functions ) S
(VK) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( and ) S
(VK) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(.\)) S
0.0 -2.2 RM
0 -624.6 M
[/View [/XYZ -4 132.399963 null] /Dest /14 /DEST pdfmark
0 -624.6 M
[/View [/XYZ -4 132.399963 null] /Dest /15 /DEST pdfmark
0 -624.6 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 5 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 6 6
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -15.6 M
%%IncludeResource: font Times-Bold
13 2 Nf
(3.3.) S
[/View [/XYZ -4 757.0 null] /Dest /73 /DEST pdfmark
( Functions for Elliptic-Curve ) S
(Settings) S
0 -39.8 M
%%IncludeResource: font Times-Roman
11 0 Nf
(For the elliptic-curve setting, we refer to some of the domain parameters by the following symbols: ) S
11 -60.4 M
gsave
0 setgray
newpath
11.0 -60.3700027 2.75 0 360 arc
closepath
fill
grestore
22 -64 M
(q: for the prime used to define the group. ) S
11 -74.6 M
gsave
0 setgray
newpath
11.0 -74.57 2.75 0 360 arc
closepath
fill
grestore
22 -78.2 M
(G: for the defined point called the generator. ) S
11 -88.8 M
gsave
0 setgray
newpath
11.0 -88.77 2.75 0 360 arc
closepath
fill
grestore
22 -92.4 M
(h: for the cofactor of the group. ) S
11 -103 M
gsave
0 setgray
newpath
11.0 -102.969994 2.75 0 360 arc
closepath
fill
grestore
22 -106.6 M
(r: for the order of the subgroup generated by ) S
(G.) S
0 -130.8 M
0.547080576 0 32 0 0 (The function P\(p\) converts a curve point p into an integer representing point p, by computing x * 2 +) A
0 -144 M
1.34505212 0 32 0 0 (\(y mod 2\), where \(x, y\) are the coordinates of point p. P'\(z\) is the inverse of function P, that is, it) A
0 -157.2 M
2.06347656 0 32 0 0 (converts an integer z to a point p that satisfies P\(p\) = z. If such p exists, it is uniquely defined.) A
0 -170.4 M
0.799218774 0 32 0 0 (Otherwise, z does not represent a valid curve point. The operator + indicates the elliptic-curve group) A
0 -183.6 M
0.0770970359 0 32 0 0 (operation, and the operation [x] * p denotes an integer-multiplication of point p: it calculates p + p + ...) A
0 -196.8 M
1.49389648 0 32 0 0 (\(x times\) ... + p. See the literature on elliptic-curve cryptography for the exact algorithms used for) A
0 -210 M
11 0 Nf
0.959284842 0 32 0 0 (those functions \(e.g. Section 3 of ) A
gsave
newpath
153.6 -211.1 M
50.1054688 0 RL
stroke
grestore
0.959284842 0 32 0 0 ([RFC6090]) A
[/Rect [152.578125 -212.749969 204.683594 -200.649963] /Subtype /Link /Border [0 0 0] /Dest /36 /ANN pdfmark
0.959284842 0 32 0 0 (, which uses different notations, though.\) ) A
0.959284842 0 32 0 0 (0) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.959284842 0 32 0 0 (E) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.959284842 0 32 0 0 ( represents) A
0.0 -2.2 RM
0 -225.4 M
0.209635422 0 32 0 0 (the infinity point. The equation \(x / y mod z\) denotes a natural number w less than z that satisfies \(w *) A
0 -238.6 M
(y\) mod z = x mod z. ) S
0 -262.8 M
(The function J is defined as ) S
0 -287 M
(J\(pi\) = [pi] * G. ) S
0 -311.2 M
11 0 Nf
(The value of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( is derived as ) S
0.0 -2.2 RM
0 -337.6 M
11 0 Nf
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = ) S
(P\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
('\), where ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(' = ) S
([S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * G, ) S
0.0 -2.2 RM
0 -364 M
11 0 Nf
0.393663198 0 32 0 0 (where ) A
0.393663198 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.393663198 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.393663198 0 32 0 0 ( is a random number within range [1, r-1]. The value of ) A
0.393663198 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.393663198 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.393663198 0 32 0 0 ( MUST represent a valid curve) A
0.0 -2.2 RM
0 -379.4 M
11 0 Nf
(point, and [h] * ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(' SHALL\240NOT be ) S
(0) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(E) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(. The server MUST check this condition upon reception. ) S
0.0 -2.2 RM
0 -405.8 M
11 0 Nf
(Let an intermediate integer ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( be ) S
0.0 -2.2 RM
0 -432.2 M
11 0 Nf
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = INT\(H\(octet\(1\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)\), ) S
0.0 -2.2 RM
0 -458.6 M
11 0 Nf
(the value of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( is derived from J\(pi\) and ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(' = ) S
(P'\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) as: ) S
0.0 -2.2 RM
0 -485 M
11 0 Nf
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = ) S
(P\([S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * \(J\(pi\) + ) S
([t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
('\)\), ) S
0.0 -2.2 RM
0 -511.4 M
11 0 Nf
0.444878459 0 32 0 0 (where ) A
0.444878459 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.444878459 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.444878459 0 32 0 0 ( is a random number within range [1, r-1]. The value of ) A
0.444878459 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.444878459 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.444878459 0 32 0 0 ( MUST represent a valid curve) A
0.0 -2.2 RM
0 -526.8 M
11 0 Nf
1.17339408 0 32 0 0 (point and satisfy [h] * ) A
1.17339408 0 32 0 0 (P'\(K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
1.17339408 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
1.17339408 0 32 0 0 (\) <> ) A
1.17339408 0 32 0 0 (0) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
1.17339408 0 32 0 0 (E) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
1.17339408 0 32 0 0 (. If this condition is not satisfied, the server MUST reject the) A
0.0 -2.2 RM
0 -542.2 M
(exchange. The client MUST check this condition upon reception. ) S
0 -566.4 M
11 0 Nf
(Let an intermediate integer ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( be ) S
0.0 -2.2 RM
0 -592.8 M
11 0 Nf
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = INT\(H\(octet\(2\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)\), ) S
0.0 -2.2 RM
0 -619.2 M
(the value z on the client side is derived by the following equation: ) S
0 -630.2 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 6 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 7 7
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(z = ) S
(P\([\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( + ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) / ) S
(\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( * ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( + pi\) mod r] * ) S
(P'\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\). ) S
0.0 -2.2 RM
0 -39.6 M
(The value z on the server side is derived by the following equation: ) S
0 -63.8 M
11 0 Nf
(z = ) S
(P\([S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * ) S
(\(P'\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) + ) S
([t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * G\)\). ) S
0.0 -2.2 RM
0 -77 M
[/View [/XYZ -4 680.0 null] /Dest /16 /DEST pdfmark
0 -77 M
[/View [/XYZ -4 680.0 null] /Dest /17 /DEST pdfmark
0 -96 M
%%IncludeResource: font Times-Bold
15 2 Nf
(4.) S
[/View [/XYZ -4 679.0 null] /Dest /74 /DEST pdfmark
( IANA ) S
(Considerations) S
0 -120.2 M
11 0 Nf
1.73918271 0 32 0 0 (This document defines four new tokens to be added for "HTTP Mutual authentication algorithms") A
0 -133.4 M
10.7216797 0 32 0 0 (registry; iso-kam3-dl-2048-sha256, iso-kam3-dl-4096-sha512, iso-kam3-ec-p256-sha256 and) A
0 -146.6 M
(iso-kam3-ec-p521-sha512, as follows: ) S
54.5 -174.9 M
11 2 Nf
(Token) S
175.5 -174.9 M
11 2 Nf
(Description) S
333.7 -174.9 M
11 2 Nf
(Specification) S
54.5 -194.7 M
11 0 Nf
(iso-kam3-dl-2048-sha256) S
175.5 -194.7 M
(ISO-11770-4 KAM3, 2048-bit ) S
(DL) S
333.7 -194.7 M
(This ) S
(document) S
54.5 -214.4 M
(iso-kam3-dl-4096-sha512) S
175.5 -214.4 M
(ISO-11770-4 KAM3, 4096-bit ) S
(DL) S
333.7 -214.4 M
(This ) S
(document) S
54.5 -234.2 M
(iso-kam3-ec-p256-sha256) S
175.5 -234.2 M
(ISO-11770-4 KAM3, 256-bit ) S
(EC) S
333.7 -234.2 M
(This ) S
(document) S
54.5 -253.9 M
(iso-kam3-ec-p521-sha512) S
175.5 -253.9 M
(ISO-11770-4 KAM3, 521-bit ) S
(EC) S
333.7 -253.9 M
(This ) S
(document) S
0 -270.6 M
[/View [/XYZ -4 486.35 null] /Dest /18 /DEST pdfmark
0 -270.6 M
[/View [/XYZ -4 486.35 null] /Dest /19 /DEST pdfmark
0 -289.6 M
15 2 Nf
(5.) S
[/View [/XYZ -4 485.35 null] /Dest /75 /DEST pdfmark
( Security ) S
(Considerations) S
0 -313.9 M
11 0 Nf
4.87460947 0 32 0 0 (Refer the corresponding section of the core specification for algorithm-independent, generic) A
0 -327.1 M
(considerations, too. ) S
0 -338.1 M
[/View [/XYZ -4 418.949982 null] /Dest /20 /DEST pdfmark
0 -338.1 M
[/View [/XYZ -4 418.949982 null] /Dest /21 /DEST pdfmark
0 -353.7 M
13 2 Nf
(5.1.) S
[/View [/XYZ -4 418.949982 null] /Dest /76 /DEST pdfmark
( General Implementation ) S
(Considerations) S
11 -374.2 M
gsave
0 setgray
newpath
11.0 -374.220032 2.75 0 360 arc
closepath
fill
grestore
22 -377.9 M
11 0 Nf
0.99202472 0 32 0 0 (During the exchange, the value ) A
0.99202472 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.99202472 0 32 0 0 (s) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.99202472 0 32 0 0 (, defined in ) A
gsave
newpath
244.2 -379 M
113.898438 0 RL
stroke
grestore
0.99202472 0 32 0 0 ([I-D.ietf-httpauth-mutual]) A
[/Rect [243.150391 -380.600037 359.048828 -368.500031] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
0.99202472 0 32 0 0 (, MUST only be sent) A
0.0 -2.2 RM
22 -393.3 M
11 0 Nf
1.9076823 0 32 0 0 (when the server has received a correct \(expected\) value of ) A
1.9076823 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
1.9076823 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
1.9076823 0 32 0 0 (. This is a requirement from) A
0.0 -2.2 RM
22 -408.7 M
(underlying cryptography stated in ) S
gsave
newpath
173.5 -409.8 M
89.1953125 0 RL
stroke
grestore
([ISO.11770-4.2006]) S
[/Rect [172.5 -411.400055 263.695312 -399.300049] /Subtype /Link /Border [0 0 0] /Dest /35 /ANN pdfmark
(. ) S
11 -419.2 M
gsave
0 setgray
newpath
11.0 -419.220062 2.75 0 360 arc
closepath
fill
grestore
22 -422.9 M
6.48011351 0 32 0 0 (All random numbers used in these algorithms MUST be at least cryptographically) A
22 -436.1 M
(computationally secure against forward and backward guessing attacks. ) S
11 -446.6 M
gsave
0 setgray
newpath
11.0 -446.620087 2.75 0 360 arc
closepath
fill
grestore
22 -450.3 M
4.10507822 0 32 0 0 (Computation times of all numerical operations on discrete-logarithm group elements and) A
22 -463.5 M
0.668269217 0 32 0 0 (elliptic-curve points MUST be normalized and made independent of the exact values, to prevent) A
22 -476.7 M
(timing-based side-channel ) S
(attacks.) S
0 -487.7 M
[/View [/XYZ -4 269.349884 null] /Dest /22 /DEST pdfmark
0 -487.7 M
[/View [/XYZ -4 269.349884 null] /Dest /23 /DEST pdfmark
0 -503.3 M
13 2 Nf
(5.2.) S
[/View [/XYZ -4 269.349884 null] /Dest /77 /DEST pdfmark
( Cryptographic Assumptions and ) S
(Considerations) S
0 -527.5 M
11 0 Nf
0.113970585 0 32 0 0 (The notices on this subsection is mostly for those who analyze the security of this algorithm, and those) A
0 -540.7 M
(who might want to make a derived work of this algorithm specification. ) S
11 -561.2 M
gsave
0 setgray
newpath
11.0 -561.220154 2.75 0 360 arc
closepath
fill
grestore
22 -564.9 M
11 0 Nf
1.02434897 0 32 0 0 (Handling of invalid ) A
1.02434897 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
1.02434897 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
1.02434897 0 32 0 0 ( value in the exchange \(now: to reject the exchange\) has been changed) A
0.0 -2.2 RM
22 -580.3 M
11 0 Nf
0.47408855 0 32 0 0 (from original ISO specification \(original: to retry with another random ) A
0.47408855 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.47408855 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.47408855 0 32 0 0 ( value\). This is due to) A
0.0 -2.2 RM
22 -595.7 M
0.761197925 0 32 0 0 (an observation that this condition is less likely from the random error caused by unlucky choice) A
22 -608.9 M
11 0 Nf
2.4708426 0 32 0 0 (of ) A
2.4708426 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
2.4708426 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
2.4708426 0 32 0 0 (, but more likely from the systematic failure from invalid J\(pi\) value, even implying) A
0.0 -2.2 RM
22 -624.3 M
(possible denial-of-service attacks. ) S
11 -634.8 M
gsave
0 setgray
newpath
11.0 -634.820251 2.75 0 360 arc
closepath
fill
grestore
22 -638.5 M
0.725260437 0 32 0 0 (The usual construction of authenticated key exchange algorithms are build from a key-exchange) A
22 -651.7 M
1.99386156 0 32 0 0 (period and a key verification period, and the latter usually involving some kind of exchange) A
22 -664.9 M
0.642578125 0 32 0 0 (transaction to be verified, to avoid security risks or vulnerabilities caused from mixing of values) A
22 -664.9 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 7 -) S
0 setgray
44 -8 M
grestore
pgsave restore N
%%Page: 8 8
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
22 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
2.33569336 0 32 0 0 (from two or more key exchanges. In the design of the algorithms in this document, such a) A
22 -26.4 M
11 0 Nf
0.4765625 0 32 0 0 (functionality is defined in generalized manner in the core specification ) A
gsave
newpath
340.1 -27.5 M
113.898438 0 RL
stroke
grestore
0.4765625 0 32 0 0 ([I-D.ietf-httpauth-mutual]) A
[/Rect [339.101562 -29.1500015 455.0 -17.0500011] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
22 -39.6 M
11 0 Nf
0.286865234 0 32 0 0 (\(see definitions of ) A
0.286865234 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.286865234 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.286865234 0 32 0 0 ( and ) A
0.286865234 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.286865234 0 32 0 0 (s) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.286865234 0 32 0 0 (\). If any attempts to reuse the algorithm defined above with any) A
0.0 -2.2 RM
22 -55 M
(other protocols exist, care MUST be taken on that aspect. ) S
11 -65.6 M
gsave
0 setgray
newpath
11.0 -65.5700073 2.75 0 360 arc
closepath
fill
grestore
22 -69.2 M
2.045573 0 32 0 0 (The domain parameters chosen and specified in this draft has a few assumptions. In the DL) A
22 -69.2 M
0.990497351 0.990497351 scale
0.0 -13.2 RM
(setting, q has to be safe prime \([\(q - 1\) / 2] must also be prime\), and r should be the largest possible) S
1.00959384 1.00959384 scale
22 -82.3 M
0.984273672 0.984273672 scale
0.0 -13.2 RM
(value [\(q - 1\) / 2]. In the EC setting, r has to be prime. Defining a variation of this algorithm using a) S
1.01597762 1.01597762 scale
22 -108.5 M
(different domain parameter SHOULD care about these conditions. ) S
0 -119.5 M
[/View [/XYZ -4 637.533 null] /Dest /24 /DEST pdfmark
0 -119.5 M
[/View [/XYZ -4 637.533 null] /Dest /25 /DEST pdfmark
0 -138.5 M
%%IncludeResource: font Times-Bold
15 2 Nf
(6.) S
[/View [/XYZ -4 636.533 null] /Dest /78 /DEST pdfmark
( Notice on intellectual ) S
(properties) S
0 -162.7 M
11 0 Nf
0.270432681 0 32 0 0 (The National Institute of Advanced Industrial Science and Technology \(AIST\) and Yahoo! Japan, Inc.) A
0 -175.9 M
0.311197907 0 32 0 0 (has jointly submitted a patent application on the protocol proposed in this documentation to the Patent) A
0 -189.1 M
0.16015625 0 32 0 0 (Office of Japan. The patent is intended to be open to any implementers of this protocol and its variants) A
0 -202.3 M
0.2734375 0 32 0 0 (under non-exclusive royalty-free manner. For the details of the patent application and its status, please) A
0 -215.5 M
(contact the author of this document. ) S
0 -239.7 M
1.08359373 0 32 0 0 (The elliptic-curve based authentication algorithms might involve several existing third-party patents.) A
0 -252.9 M
0.114889704 0 32 0 0 (The authors of the document take no position regarding the validity or scope of such patents, and other) A
0 -266.1 M
(patents as well. ) S
0 -277.1 M
[/View [/XYZ -4 479.933044 null] /Dest /26 /DEST pdfmark
0 -277.1 M
[/View [/XYZ -4 479.933044 null] /Dest /27 /DEST pdfmark
0 -296.1 M
15 2 Nf
(7.) S
[/View [/XYZ -4 478.933044 null] /Dest /79 /DEST pdfmark
( ) S
(References) S
0 -303.6 M
[/View [/XYZ -4 453.433044 null] /Dest /28 /DEST pdfmark
0 -322.1 M
13 2 Nf
(7.1.) S
[/View [/XYZ -4 450.533051 null] /Dest /80 /DEST pdfmark
( Normative ) S
(References) S
8 -349.4 M
11 0 Nf
([FIPS.180-2.2002]) S
[/View [/XYZ -4 842 null] /Dest /29 /DEST pdfmark
136.7 -349.4 M
(National Institute of Standards and Technology, ) S
(\233) S
gsave
newpath
355.7 -350.5 M
58.0234375 0 RL
stroke
grestore
(Secure Hash ) S
[/Rect [354.69455 -352.116943 414.718 -340.016937] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips180-2/fips180-2.pdf)] Cd /ANN pdfmark
136.7 -362.6 M
gsave
newpath
136.7 -363.7 M
39.09375 0 RL
stroke
grestore
(Standard) S
[/Rect [135.698456 -365.316956 176.792206 -353.216949] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips180-2/fips180-2.pdf)] Cd /ANN pdfmark
(,\234 FIPS\240PUB 180-2, ) S
(August\2402002.) S
8 -384.3 M
([FIPS.186-4.2013]) S
[/View [/XYZ -4 842 null] /Dest /30 /DEST pdfmark
136.7 -384.3 M
(National Institute of Standards and Technology, ) S
(\233) S
gsave
newpath
355.7 -385.4 M
75.4414062 0 RL
stroke
grestore
(Digital Signature) S
[/Rect [354.69455 -387.066956 432.135956 -374.966949] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf)] Cd /ANN pdfmark
136.7 -397.5 M
gsave
newpath
136.7 -398.6 M
41.84375 0 RL
stroke
grestore
(Standard ) S
gsave
newpath
178.5 -398.6 M
27.4882812 0 RL
stroke
grestore
(\(DSS\)) S
[/Rect [135.698456 -400.266968 207.030487 -388.166962] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf)] Cd /ANN pdfmark
(,\234 FIPS\240PUB 186-4, ) S
(July\2402013.) S
8 -408.3 M
0.989464402 0.989464402 scale
-0.0 -11.0 RM
([I-D.ietf-httpauth-mutual]) S
[/View [/XYZ -4 842 null] /Dest /31 /DEST pdfmark
1.01064777 1.01064777 scale
136.7 -419.3 M
(Oiwa, Y., Watanabe, H., Takagi, H., Maeda, K., Hayashi, T., and Y.) S
136.7 -432.5 M
(Ioku, ) S
(\233) S
gsave
newpath
167.2 -433.6 M
158.21875 0 RL
stroke
grestore
(Mutual Authentication Protocol for ) S
gsave
newpath
325.5 -433.6 M
27.4921875 0 RL
stroke
grestore
(HTTP) S
[/Rect [166.241425 -435.216949 353.952362 -423.116943] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://www.ietf.org/internet-drafts/draft-ietf-httpauth-mutual-05.txt)] Cd /ANN pdfmark
(,\234) S
136.7 -445.7 M
(draft-ietf-httpauth-mutual-05 \(work in progress\), ) S
(July\2402015.) S
8 -467.4 M
([RFC2119]) S
[/View [/XYZ -4 842 null] /Dest /32 /DEST pdfmark
136.7 -467.4 M
gsave
newpath
136.7 -468.5 M
40.921875 0 RL
stroke
grestore
(Bradner, ) S
gsave
newpath
177.6 -468.5 M
8.86328125 0 RL
stroke
grestore
(S.) S
(, ) S
(\233) S
gsave
newpath
196.9 -468.5 M
231.832031 0 RL
stroke
grestore
(Key words for use in RFCs to Indicate Requirement ) S
[/Rect [195.866425 -470.166931 429.698456 -458.066925] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc2119)] Cd /ANN pdfmark
136.7 -480.6 M
gsave
newpath
136.7 -481.7 M
29.3164062 0 RL
stroke
grestore
(Levels) S
[/Rect [135.698456 -483.366943 167.014862 -471.266937] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc2119)] Cd /ANN pdfmark
(,\234 BCP\24014, RFC\2402119, March\2401997 ) S
(\() S
gsave
newpath
327.3 -481.7 M
21.3789062 0 RL
stroke
grestore
(TXT) S
[/Rect [326.331268 -483.366943 349.710175 -471.266937] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://www.rfc-editor.org/rfc/rfc2119.txt)] Cd /ANN pdfmark
(, ) S
gsave
newpath
354.2 -481.7 M
31.15625 0 RL
stroke
grestore
(HTML) S
[/Rect [353.210175 -483.366943 386.366425 -471.266937] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/html/rfc2119.html)] Cd /ANN pdfmark
(, ) S
gsave
newpath
390.9 -481.7 M
24.4375 0 RL
stroke
grestore
(XML) S
[/Rect [389.866425 -483.366943 416.303925 -471.266937] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/xml/rfc2119.xml)] Cd /ANN pdfmark
(\).) S
8 -502.4 M
([RFC3526]) S
[/View [/XYZ -4 842 null] /Dest /33 /DEST pdfmark
136.7 -502.4 M
(Kivinen, T. and M. Kojo, ) S
(\233) S
gsave
newpath
256.1 -503.5 M
162.1875 0 RL
stroke
grestore
(More Modular Exponential \(MODP\)) S
[/Rect [255.139862 -505.116943 419.327362 -493.016937] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc3526)] Cd /ANN pdfmark
136.7 -515.6 M
gsave
newpath
136.7 -516.7 M
222.929688 0 RL
stroke
grestore
(Diffie-Hellman groups for Internet Key Exchange ) S
gsave
newpath
359.6 -516.7 M
25.640625 0 RL
stroke
grestore
(\(IKE\)) S
[/Rect [135.698456 -518.316956 386.268768 -506.216949] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc3526)] Cd /ANN pdfmark
(,\234) S
136.7 -528.8 M
(RFC\2403526, May\2402003 ) S
(\() S
gsave
newpath
239.1 -529.9 M
21.3789062 0 RL
stroke
grestore
(TXT) S
[/Rect [238.053925 -531.516968 261.432831 -519.417] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://www.rfc-editor.org/rfc/rfc3526.txt)] Cd /ANN pdfmark
(\).) S
0 -548.5 M
[/View [/XYZ -4 208.483032 null] /Dest /34 /DEST pdfmark
0 -564.1 M
13 2 Nf
(7.2.) S
[/View [/XYZ -4 208.483032 null] /Dest /81 /DEST pdfmark
( Informative ) S
(References) S
8 -580.4 M
0.989316106 0.989316106 scale
-0.0 -11.0 RM
11 0 Nf
([ISO.11770-4.2006]) S
[/View [/XYZ -4 842 null] /Dest /35 /DEST pdfmark
1.01079929 1.01079929 scale
112.2 -591.4 M
(International Organization for Standardization, \233Information technology \235) S
112.2 -604.6 M
(Security techniques \235 Key management \235 Part 4: Mechanisms based on) S
112.2 -617.8 M
(weak secrets,\234 ISO\240Standard 11770-4, ) S
(May\2402006.) S
8 -639.6 M
([RFC6090]) S
[/View [/XYZ -4 842 null] /Dest /36 /DEST pdfmark
112.2 -639.6 M
(McGrew, D., Igoe, K., and M. Salter, ) S
(\233) S
gsave
newpath
284.2 -640.7 M
122.179688 0 RL
stroke
grestore
(Fundamental Elliptic Curve) S
[/Rect [283.195496 -642.316956 407.375183 -630.217] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc6090)] Cd /ANN pdfmark
112.2 -652.8 M
gsave
newpath
112.2 -653.9 M
63.84375 0 RL
stroke
grestore
(Cryptography ) S
gsave
newpath
176.1 -653.9 M
50.0976562 0 RL
stroke
grestore
(Algorithms) S
[/Rect [111.242355 -655.516968 227.183762 -643.417] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc6090)] Cd /ANN pdfmark
(,\234 RFC\2406090, February\2402011 ) S
(\() S
gsave
newpath
358.5 -653.9 M
21.3789062 0 RL
stroke
grestore
(TXT) S
[/Rect [357.461121 -655.516968 380.840027 -643.417] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://www.rfc-editor.org/rfc/rfc6090.txt)] Cd /ANN pdfmark
(\).) S
0 -661.5 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 8 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 9 9
%%PageResources: font Times-Roman Times-Bold Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /37 /DEST pdfmark
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /38 /DEST pdfmark
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Appendix) S
[/View [/XYZ -4 757.0 null] /Dest /82 /DEST pdfmark
( A. \(Informative\) Group Parameters for Discrete-Logarithm) S
0 -36 M
(Based ) S
(Algorithms) S
0 -60.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
3.01204419 0 32 0 0 (The MODP group used for the iso-kam3-dl-2048-sha256 algorithm is defined by the following ) A
0 -73.4 M
(parameters.) S
0 -97.6 M
(The prime ) S
(is:) S
0 -119.4 M
%%IncludeResource: font Courier
9.0 4 Nf
( q = 0xFFFFFFFF FFFFFFFF C90FDAA2 2168C234 C4C6628B 80DC1CD1) S
0 -130.2 M
( 29024E08 8A67CC74 020BBEA6 3B139B22 514A0879 8E3404DD) S
0 -141 M
( EF9519B3 CD3A431B 302B0A6D F25F1437 4FE1356D 6D51C245) S
0 -151.8 M
( E485B576 625E7EC6 F44C42E9 A637ED6B 0BFF5CB6 F406B7ED) S
0 -162.6 M
( EE386BFB 5A899FA5 AE9F2411 7C4B1FE6 49286651 ECE45B3D) S
0 -173.4 M
( C2007CB8 A163BF05 98DA4836 1C55D39A 69163FA8 FD24CF5F) S
0 -184.2 M
( 83655D23 DCA3AD96 1C62F356 208552BB 9ED52907 7096966D) S
0 -195 M
( 670C354E 4ABC9804 F1746C08 CA18217C 32905E46 2E36CE3B) S
0 -205.8 M
( E39E772C 180E8603 9B2783A2 EC07A28F B5C55DF0 6F4C52C9) S
0 -216.6 M
( DE2BCBF6 95581718 3995497C EA956AE5 15D22618 98FA0510) S
0 -227.4 M
( 15728E5A 8AACAA68 FFFFFFFF FFFFFFFF.) S
0 -251.6 M
11 0 Nf
(The generator ) S
(is:) S
0 -273.4 M
9.0 4 Nf
( g = 2.) S
0 -297.6 M
11 0 Nf
(The size of the subgroup generated by g ) S
(is:) S
0 -319.4 M
9.0 4 Nf
( r = \(q - 1\) / 2 =) S
0 -330.2 M
( 0x7FFFFFFF FFFFFFFF E487ED51 10B4611A 62633145 C06E0E68) S
0 -341 M
( 94812704 4533E63A 0105DF53 1D89CD91 28A5043C C71A026E) S
0 -351.8 M
( F7CA8CD9 E69D218D 98158536 F92F8A1B A7F09AB6 B6A8E122) S
0 -362.6 M
( F242DABB 312F3F63 7A262174 D31BF6B5 85FFAE5B 7A035BF6) S
0 -373.4 M
( F71C35FD AD44CFD2 D74F9208 BE258FF3 24943328 F6722D9E) S
0 -384.2 M
( E1003E5C 50B1DF82 CC6D241B 0E2AE9CD 348B1FD4 7E9267AF) S
0 -395 M
( C1B2AE91 EE51D6CB 0E3179AB 1042A95D CF6A9483 B84B4B36) S
0 -405.8 M
( B3861AA7 255E4C02 78BA3604 650C10BE 19482F23 171B671D) S
0 -416.6 M
( F1CF3B96 0C074301 CD93C1D1 7603D147 DAE2AEF8 37A62964) S
0 -427.4 M
( EF15E5FB 4AAC0B8C 1CCAA4BE 754AB572 8AE9130C 4C7D0288) S
0 -438.2 M
( 0AB9472D 45565534 7FFFFFFF FFFFFFFF.) S
0 -462.4 M
11 0 Nf
3.01204419 0 32 0 0 (The MODP group used for the iso-kam3-dl-4096-sha512 algorithm is defined by the following ) A
0 -475.6 M
(parameters.) S
0 -499.8 M
(The prime ) S
(is:) S
0 -521.6 M
9.0 4 Nf
( q = 0xFFFFFFFF FFFFFFFF C90FDAA2 2168C234 C4C6628B 80DC1CD1) S
0 -532.4 M
( 29024E08 8A67CC74 020BBEA6 3B139B22 514A0879 8E3404DD) S
0 -543.2 M
( EF9519B3 CD3A431B 302B0A6D F25F1437 4FE1356D 6D51C245) S
0 -554 M
( E485B576 625E7EC6 F44C42E9 A637ED6B 0BFF5CB6 F406B7ED) S
0 -564.8 M
( EE386BFB 5A899FA5 AE9F2411 7C4B1FE6 49286651 ECE45B3D) S
0 -575.6 M
( C2007CB8 A163BF05 98DA4836 1C55D39A 69163FA8 FD24CF5F) S
0 -586.4 M
( 83655D23 DCA3AD96 1C62F356 208552BB 9ED52907 7096966D) S
0 -597.2 M
( 670C354E 4ABC9804 F1746C08 CA18217C 32905E46 2E36CE3B) S
0 -608 M
( E39E772C 180E8603 9B2783A2 EC07A28F B5C55DF0 6F4C52C9) S
0 -618.8 M
( DE2BCBF6 95581718 3995497C EA956AE5 15D22618 98FA0510) S
0 -629.6 M
( 15728E5A 8AAAC42D AD33170D 04507A33 A85521AB DF1CBA64) S
0 -640.4 M
( ECFB8504 58DBEF0A 8AEA7157 5D060C7D B3970F85 A6E1E4C7) S
0 -651.2 M
( ABF5AE8C DB0933D7 1E8C94E0 4A25619D CEE3D226 1AD2EE6B) S
0 -662 M
( F12FFA06 D98A0864 D8760273 3EC86A64 521F2B18 177B200C) S
0 -662 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 9 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 10 10
%%PageResources: font Times-Roman Times-Bold Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -10.8 M
%%IncludeResource: font Courier
9.0 4 Nf
( BBE11757 7A615D6C 770988C0 BAD946E2 08E24FA0 74E5AB31) S
0 -21.6 M
9.0 4 Nf
( 43DB5BFC E0FD108E 4B82D120 A9210801 1A723C12 A787E6D7) S
0 -32.4 M
( 88719A10 BDBA5B26 99C32718 6AF4E23C 1A946834 B6150BDA) S
0 -43.2 M
( 2583E9CA 2AD44CE8 DBBBC2DB 04DE8EF9 2E8EFC14 1FBECAA6) S
0 -54 M
( 287C5947 4E6BC05D 99B2964F A090C3A2 233BA186 515BE7ED) S
0 -64.8 M
( 1F612970 CEE2D7AF B81BDD76 2170481C D0069127 D5B05AA9) S
0 -75.6 M
( 93B4EA98 8D8FDDC1 86FFB7DC 90A6C08F 4DF435C9 34063199) S
0 -86.4 M
( FFFFFFFF FFFFFFFF.) S
0 -110.6 M
%%IncludeResource: font Times-Roman
11 0 Nf
(The generator ) S
(is:) S
0 -132.4 M
9.0 4 Nf
( g = 2.) S
0 -156.6 M
11 0 Nf
(The size of the subgroup generated by g ) S
(is:) S
0 -178.4 M
9.0 4 Nf
( r = \(q - 1\) / 2 =) S
0 -189.2 M
( 0x7FFFFFFF FFFFFFFF E487ED51 10B4611A 62633145 C06E0E68) S
0 -200 M
( 94812704 4533E63A 0105DF53 1D89CD91 28A5043C C71A026E) S
0 -210.8 M
( F7CA8CD9 E69D218D 98158536 F92F8A1B A7F09AB6 B6A8E122) S
0 -221.6 M
( F242DABB 312F3F63 7A262174 D31BF6B5 85FFAE5B 7A035BF6) S
0 -232.4 M
( F71C35FD AD44CFD2 D74F9208 BE258FF3 24943328 F6722D9E) S
0 -243.2 M
( E1003E5C 50B1DF82 CC6D241B 0E2AE9CD 348B1FD4 7E9267AF) S
0 -254 M
( C1B2AE91 EE51D6CB 0E3179AB 1042A95D CF6A9483 B84B4B36) S
0 -264.8 M
( B3861AA7 255E4C02 78BA3604 650C10BE 19482F23 171B671D) S
0 -275.6 M
( F1CF3B96 0C074301 CD93C1D1 7603D147 DAE2AEF8 37A62964) S
0 -286.4 M
( EF15E5FB 4AAC0B8C 1CCAA4BE 754AB572 8AE9130C 4C7D0288) S
0 -297.2 M
( 0AB9472D 45556216 D6998B86 82283D19 D42A90D5 EF8E5D32) S
0 -308 M
( 767DC282 2C6DF785 457538AB AE83063E D9CB87C2 D370F263) S
0 -318.8 M
( D5FAD746 6D8499EB 8F464A70 2512B0CE E771E913 0D697735) S
0 -329.6 M
( F897FD03 6CC50432 6C3B0139 9F643532 290F958C 0BBD9006) S
0 -340.4 M
( 5DF08BAB BD30AEB6 3B84C460 5D6CA371 047127D0 3A72D598) S
0 -351.2 M
( A1EDADFE 707E8847 25C16890 54908400 8D391E09 53C3F36B) S
0 -362 M
( C438CD08 5EDD2D93 4CE1938C 357A711E 0D4A341A 5B0A85ED) S
0 -372.8 M
( 12C1F4E5 156A2674 6DDDE16D 826F477C 97477E0A 0FDF6553) S
0 -383.6 M
( 143E2CA3 A735E02E CCD94B27 D04861D1 119DD0C3 28ADF3F6) S
0 -394.4 M
( 8FB094B8 67716BD7 DC0DEEBB 10B8240E 68034893 EAD82D54) S
0 -405.2 M
( C9DA754C 46C7EEE0 C37FDBEE 48536047 A6FA1AE4 9A0318CC) S
0 -416 M
( FFFFFFFF FFFFFFFF.) S
0 -425 M
[/View [/XYZ -4 332.000153 null] /Dest /39 /DEST pdfmark
0 -425 M
[/View [/XYZ -4 332.000153 null] /Dest /40 /DEST pdfmark
0 -446 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Appendix) S
[/View [/XYZ -4 329.000153 null] /Dest /83 /DEST pdfmark
( B. \(Informative\) Derived Numerical ) S
(Values) S
0 -470.2 M
11 0 Nf
0.24609375 0 32 0 0 (This section provides several numerical values for implementing this protocol, derived from the above) A
0 -483.4 M
(specifications. The values shown in this section are for informative purposes only. ) S
203.1 -511.7 M
11 2 Nf
(dl-2048) S
244.1 -511.7 M
11 2 Nf
(dl-4096) S
285 -511.7 M
11 2 Nf
(ec-p256) S
327.1 -511.7 M
11 2 Nf
(ec-p521) S
51.7 -531.4 M
11 0 Nf
(Size of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( ) S
(etc.) S
0.0 -2.2 RM
203.1 -532.5 M
(2048) S
244.1 -532.5 M
(4096) S
285 -532.5 M
(257) S
327.1 -532.5 M
(522) S
369.3 -532.5 M
(\(bits\)) S
51.7 -553.4 M
(hSize, Size of ) S
(H\(...\)) S
203.1 -553.4 M
(256) S
244.1 -553.4 M
(512) S
285 -553.4 M
(256) S
327.1 -553.4 M
(512) S
369.3 -553.4 M
(\(bits\)) S
51.7 -573.1 M
11 0 Nf
(length of ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) ) S
(etc.) S
0.0 -2.2 RM
203.1 -574.2 M
(256) S
244.1 -574.2 M
(512) S
285 -574.2 M
(33) S
327.1 -574.2 M
(66) S
369.3 -574.2 M
(\(octets\)) S
51.7 -595.1 M
(length of kc1, ks1 param. ) S
(values.) S
203.1 -595.1 M
(344 ) S
(*) S
244.1 -595.1 M
(684 ) S
(*) S
285 -595.1 M
(66) S
327.1 -595.1 M
(132) S
369.3 -595.1 M
(\(octets\)) S
51.7 -614.8 M
(length of vkc, vks param. ) S
(values.) S
203.1 -614.8 M
(44 ) S
(*) S
244.1 -614.8 M
(88 ) S
(*) S
285 -614.8 M
(64) S
327.1 -614.8 M
(128) S
369.3 -614.8 M
(\(octets\)) S
51.7 -634.6 M
11 0 Nf
(minimum allowed ) S
(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
0.0 -2.2 RM
203.1 -635.7 M
11 0 Nf
(2048) S
244.1 -635.7 M
(4096) S
285 -635.7 M
(1) S
327.1 -635.7 M
(1) S
369.3 -635.7 M
(\240) S
0 -642.5 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 10 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 11 11
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(\(The numbers marked with an * do not include any enclosing quotation ) S
(marks.\)) S
0 -24.2 M
[/View [/XYZ -4 732.8 null] /Dest /41 /DEST pdfmark
0 -24.2 M
[/View [/XYZ -4 732.8 null] /Dest /42 /DEST pdfmark
0 -43.2 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Appendix) S
[/View [/XYZ -4 731.8 null] /Dest /84 /DEST pdfmark
( C. \(Informative\) Draft Change ) S
(Log) S
0 -50.7 M
[/View [/XYZ -4 706.3 null] /Dest /43 /DEST pdfmark
0 -50.7 M
[/View [/XYZ -4 706.3 null] /Dest /44 /DEST pdfmark
0 -73.2 M
15 2 Nf
(C.1.) S
[/View [/XYZ -4 701.8 null] /Dest /85 /DEST pdfmark
( Changes in HTTPAUTH-WG revision ) S
(03) S
11 -93.8 M
gsave
0 setgray
newpath
11.0 -93.77 2.75 0 360 arc
closepath
fill
grestore
22 -97.4 M
11 0 Nf
(IANA registration information ) S
(added.) S
0 -108.4 M
[/View [/XYZ -4 648.6 null] /Dest /45 /DEST pdfmark
0 -108.4 M
[/View [/XYZ -4 648.6 null] /Dest /46 /DEST pdfmark
0 -127.4 M
15 2 Nf
(C.2.) S
[/View [/XYZ -4 647.6 null] /Dest /86 /DEST pdfmark
( Changes in HTTPAUTH-WG revision ) S
(02) S
11 -148 M
gsave
0 setgray
newpath
11.0 -147.97 2.75 0 360 arc
closepath
fill
grestore
22 -151.6 M
11 0 Nf
(No technical changes: references ) S
(updated.) S
0 -162.6 M
[/View [/XYZ -4 594.4 null] /Dest /47 /DEST pdfmark
0 -162.6 M
[/View [/XYZ -4 594.4 null] /Dest /48 /DEST pdfmark
0 -181.6 M
15 2 Nf
(C.3.) S
[/View [/XYZ -4 593.4 null] /Dest /87 /DEST pdfmark
( Changes in HTTPAUTH-WG revision ) S
(01) S
11 -202.2 M
gsave
0 setgray
newpath
11.0 -202.17 2.75 0 360 arc
closepath
fill
grestore
22 -205.8 M
11 0 Nf
(Changed behavior on failed generation of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(. ) S
0.0 -2.2 RM
11 -218.6 M
gsave
0 setgray
newpath
11.0 -218.569992 2.75 0 360 arc
closepath
fill
grestore
22 -222.2 M
(Security considerations ) S
(updated.) S
0 -233.2 M
[/View [/XYZ -4 523.800049 null] /Dest /49 /DEST pdfmark
0 -233.2 M
[/View [/XYZ -4 523.800049 null] /Dest /50 /DEST pdfmark
0 -252.2 M
15 2 Nf
(C.4.) S
[/View [/XYZ -4 522.800049 null] /Dest /88 /DEST pdfmark
( Changes in HTTPAUTH-WG revision ) S
(00) S
11 -272.8 M
gsave
0 setgray
newpath
11.0 -272.77 2.75 0 360 arc
closepath
fill
grestore
22 -276.4 M
11 0 Nf
(Added a note on the choice of elliptic ) S
(curves.) S
0 -287.4 M
[/View [/XYZ -4 469.6 null] /Dest /51 /DEST pdfmark
0 -287.4 M
[/View [/XYZ -4 469.6 null] /Dest /52 /DEST pdfmark
0 -306.4 M
15 2 Nf
(C.5.) S
[/View [/XYZ -4 468.6 null] /Dest /89 /DEST pdfmark
( Changes in HTTPAUTH revision ) S
(02) S
11 -327 M
gsave
0 setgray
newpath
11.0 -326.97 2.75 0 360 arc
closepath
fill
grestore
22 -330.6 M
11 0 Nf
(Added nIterPi parameter to adjust to the changes to the core draft. ) S
11 -341.2 M
gsave
0 setgray
newpath
11.0 -341.17 2.75 0 360 arc
closepath
fill
grestore
22 -344.8 M
(Added a note on the verification of exchange ) S
(transaction.) S
0 -355.8 M
[/View [/XYZ -4 401.199982 null] /Dest /53 /DEST pdfmark
0 -355.8 M
[/View [/XYZ -4 401.199982 null] /Dest /54 /DEST pdfmark
0 -374.8 M
15 2 Nf
(C.6.) S
[/View [/XYZ -4 400.199982 null] /Dest /90 /DEST pdfmark
( Changes in HTTPAUTH revision ) S
(01) S
11 -395.4 M
gsave
0 setgray
newpath
11.0 -395.370026 2.75 0 360 arc
closepath
fill
grestore
22 -399 M
11 0 Nf
1.74939907 0 32 0 0 (Notation change: integer output of hash function will be notated as INT\(H\(*\)\), changed from ) A
22 -412.2 M
(H\(*\).) S
0 -423.2 M
[/View [/XYZ -4 333.799957 null] /Dest /55 /DEST pdfmark
0 -423.2 M
[/View [/XYZ -4 333.799957 null] /Dest /56 /DEST pdfmark
0 -442.2 M
15 2 Nf
(C.7.) S
[/View [/XYZ -4 332.799957 null] /Dest /91 /DEST pdfmark
( Changes in revision ) S
(02) S
11 -462.8 M
gsave
0 setgray
newpath
11.0 -462.77005 2.75 0 360 arc
closepath
fill
grestore
22 -466.4 M
11 0 Nf
0.992968738 0 32 0 0 (Implementation hints in appendix changed \(number of characters for base64-fixed-number does) A
22 -479.6 M
(not contain ) S
(double-quotes\).) S
0 -490.6 M
[/View [/XYZ -4 266.399933 null] /Dest /57 /DEST pdfmark
0 -490.6 M
[/View [/XYZ -4 266.399933 null] /Dest /58 /DEST pdfmark
0 -509.6 M
15 2 Nf
(C.8.) S
[/View [/XYZ -4 265.399933 null] /Dest /92 /DEST pdfmark
( Changes in revision ) S
(01) S
11 -530.2 M
gsave
0 setgray
newpath
11.0 -530.170105 2.75 0 360 arc
closepath
fill
grestore
22 -533.8 M
11 0 Nf
(Parameter names renamed. ) S
11 -544.4 M
gsave
0 setgray
newpath
11.0 -544.370117 2.75 0 360 arc
closepath
fill
grestore
22 -548 M
(Some expressions clarified without changing the ) S
(value.) S
0 -559 M
[/View [/XYZ -4 197.999878 null] /Dest /59 /DEST pdfmark
0 -559 M
[/View [/XYZ -4 197.999878 null] /Dest /60 /DEST pdfmark
0 -578 M
15 2 Nf
(C.9.) S
[/View [/XYZ -4 196.999878 null] /Dest /93 /DEST pdfmark
( Changes in revision ) S
(00) S
0 -602.2 M
11 0 Nf
(The document is separated from the revision 08 of the core documentation. ) S
0 -613.2 M
[/View [/XYZ -4 143.799866 null] /Dest /61 /DEST pdfmark
0 -614.2 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 11 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 12 12
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Authors') S
[/View [/XYZ -4 757.0 null] /Dest /94 /DEST pdfmark
( ) S
(Addresses) S
0 -43.3 M
%%IncludeResource: font Times-Roman
11 0 Nf
(\240) S
44.6 -43.3 M
(Yutaka ) S
(Oiwa) S
0 -57 M
(\240) S
44.6 -57 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -70.8 M
(\240) S
44.6 -70.8 M
(Information Technology Research ) S
(Institute) S
0 -84.5 M
(\240) S
44.6 -84.5 M
(Tsukuba Central ) S
(2) S
0 -98.3 M
(\240) S
44.6 -98.3 M
(1-1-1 ) S
(Umezono) S
0 -112 M
(\240) S
44.6 -112 M
(Tsukuba-shi, ) S
(Ibaraki) S
0 -125.8 M
(\240) S
44.6 -125.8 M
(JP) S
12.6 -139.6 M
(Email:\240) S
44.6 -139.6 M
gsave
newpath
44.6 -140.7 M
154.285156 0 RL
stroke
grestore
(mutual-auth-contact-ml@aist.go.jp) S
0 -153.3 M
(\240) S
44.6 -153.3 M
(\240) S
0 -167.1 M
(\240) S
44.6 -167.1 M
(Hajime ) S
(Watanabe) S
0 -180.8 M
(\240) S
44.6 -180.8 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -194.6 M
(\240) S
44.6 -194.6 M
(Information Technology Research ) S
(Institute) S
0 -208.3 M
(\240) S
44.6 -208.3 M
(Tsukuba Central ) S
(2) S
0 -222.1 M
(\240) S
44.6 -222.1 M
(1-1-1 ) S
(Umezono) S
0 -235.8 M
(\240) S
44.6 -235.8 M
(Tsukuba-shi, ) S
(Ibaraki) S
0 -249.6 M
(\240) S
44.6 -249.6 M
(JP) S
0 -263.3 M
(\240) S
44.6 -263.3 M
(\240) S
0 -277.1 M
(\240) S
44.6 -277.1 M
(Hiromitsu ) S
(Takagi) S
0 -290.8 M
(\240) S
44.6 -290.8 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -304.6 M
(\240) S
44.6 -304.6 M
(Information Technology Research ) S
(Institute) S
0 -318.3 M
(\240) S
44.6 -318.3 M
(Tsukuba Central ) S
(2) S
0 -332.1 M
(\240) S
44.6 -332.1 M
(1-1-1 ) S
(Umezono) S
0 -345.8 M
(\240) S
44.6 -345.8 M
(Tsukuba-shi, ) S
(Ibaraki) S
0 -359.6 M
(\240) S
44.6 -359.6 M
(JP) S
0 -373.3 M
(\240) S
44.6 -373.3 M
(\240) S
0 -387.1 M
(\240) S
44.6 -387.1 M
(Kaoru ) S
(Maeda) S
0 -400.8 M
(\240) S
44.6 -400.8 M
(Lepidum Co. ) S
(Ltd.) S
0 -414.6 M
(\240) S
44.6 -414.6 M
(#602, Village Sasazuka ) S
(3) S
0 -428.3 M
(\240) S
44.6 -428.3 M
(1-30-3 ) S
(Sasazuka) S
0 -442.1 M
(\240) S
44.6 -442.1 M
(Shibuya-ku, ) S
(Tokyo) S
0 -455.8 M
(\240) S
44.6 -455.8 M
(JP) S
0 -469.6 M
(\240) S
44.6 -469.6 M
(\240) S
0 -483.3 M
(\240) S
44.6 -483.3 M
(Tatsuya ) S
(Hayashi) S
0 -497.1 M
(\240) S
44.6 -497.1 M
(Lepidum Co. ) S
(Ltd.) S
0 -510.8 M
(\240) S
44.6 -510.8 M
(#602, Village Sasazuka ) S
(3) S
0 -524.5 M
(\240) S
44.6 -524.5 M
(1-30-3 ) S
(Sasazuka) S
0 -538.3 M
(\240) S
44.6 -538.3 M
(Shibuya-ku, ) S
(Tokyo) S
0 -552 M
(\240) S
44.6 -552 M
(JP) S
0 -565.8 M
(\240) S
44.6 -565.8 M
(\240) S
0 -579.5 M
(\240) S
44.6 -579.5 M
(Yuichi ) S
(Ioku) S
0 -593.3 M
(\240) S
44.6 -593.3 M
(Individual) S
0 -607 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 12 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%EOF
| PAFTECH AB 2003-2026 | 2026-04-24 11:19:23 |