One document matched: draft-oiwa-httpauth-mutual-algo-02.ps
%!PS-Adobe-3.0
%%Title: Mutual Authentication Protocol for HTTP: KAM3-based Cryptographic Algorithms
%%Creator: html2ps version 1.0 beta5
%%CreationDate: Thu Apr 24 10:26:30 2014
%%DocumentNeededResources: font Times-Roman Times-Bold Courier Helvetica
%%DocumentData: Clean7Bit
%%Orientation: Portrait
%%BoundingBox: 0 0 596 842
%%Pages: 11
%%EndComments
%%BeginProlog
/d {bind def} bind def
/D {def} d
/ie {ifelse} d
/E {exch} d
/t true D
/f false D
/FL [/Times-Roman
/Times-Italic
/Times-Bold
/Times-BoldItalic
/Courier
/Courier-Oblique
/Courier-Bold
/Courier-BoldOblique
/Helvetica
/Helvetica-Oblique
/Helvetica-Bold
/Helvetica-BoldOblique] D
/Cd {aload length 2 idiv dup dict begin {D} repeat currentdict end} D
/reencodeISO {
dup dup findfont dup length dict begin{1 index /FID ne{D}{pop pop}ie}forall
/Encoding ISOLatin1Encoding D currentdict end definefont} D
/ISOLatin1Encoding [
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/space/exclam/quotedbl/numbersign/dollar/percent/ampersand/quoteright
/parenleft/parenright/asterisk/plus/comma/hyphen/period/slash
/zero/one/two/three/four/five/six/seven/eight/nine/colon/semicolon
/less/equal/greater/question/at/A/B/C/D/E/F/G/H/I/J/K/L/M/N
/O/P/Q/R/S/T/U/V/W/X/Y/Z/bracketleft/backslash/bracketright
/asciicircum/underscore/quoteleft/a/b/c/d/e/f/g/h/i/j/k/l/m
/n/o/p/q/r/s/t/u/v/w/x/y/z/braceleft/bar/braceright/asciitilde
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef/.notdef
/.notdef/space/exclamdown/cent/sterling/currency/yen/brokenbar
/section/dieresis/copyright/ordfeminine/guillemotleft/logicalnot
/hyphen/registered/macron/degree/plusminus/twosuperior/threesuperior
/acute/mu/paragraph/periodcentered/cedilla/onesuperior/ordmasculine
/guillemotright/onequarter/onehalf/threequarters/questiondown
/Agrave/Aacute/Acircumflex/Atilde/Adieresis/Aring/AE/Ccedilla
/Egrave/Eacute/Ecircumflex/Edieresis/Igrave/Iacute/Icircumflex
/Idieresis/Eth/Ntilde/Ograve/Oacute/Ocircumflex/Otilde/Odieresis
/multiply/Oslash/Ugrave/Uacute/Ucircumflex/Udieresis/Yacute
/Thorn/germandbls/agrave/aacute/acircumflex/atilde/adieresis
/aring/ae/ccedilla/egrave/eacute/ecircumflex/edieresis/igrave
/iacute/icircumflex/idieresis/eth/ntilde/ograve/oacute/ocircumflex
/otilde/odieresis/divide/oslash/ugrave/uacute/ucircumflex/udieresis
/yacute/thorn/ydieresis
] D
[128/backslash 129/parenleft 130/parenright 141/circumflex 142/tilde
143/perthousand 144/dagger 145/daggerdbl 146/Ydieresis 147/scaron 148/Scaron
149/oe 150/OE 151/guilsinglleft 152/guilsinglright 153/quotesinglbase
154/quotedblbase 155/quotedblleft 156/quotedblright 157/endash 158/emdash
159/trademark]
aload length 2 idiv 1 1 3 -1 roll{pop ISOLatin1Encoding 3 1 roll put}for
/colorimage where{pop}{
/colorimage {
pop pop /Pr E D {/Cv Pr D /Gr Cv length 3 idiv string D 0 1 Gr length 1 sub
{Gr E dup /i E 3 mul D Cv i get 0.299 mul Cv i 1 add get 0.587 mul add
Cv i 2 add get 0.114 mul add cvi put}for Gr} image} D
}ie
/pdfmark where{pop}{userdict /pdfmark /cleartomark load put}ie
/MySymbol 10 dict dup begin
/FontType 3 D /FontMatrix [.001 0 0 .001 0 0 ] D /FontBBox [25 -10 600 600] D
/Encoding 256 array D 0 1 255{Encoding exch /.notdef put}for
Encoding (e) 0 get /euro put
/Metrics 2 dict D Metrics begin
/.notdef 0 D
/euro 651 D
end
/BBox 2 dict D BBox begin
/.notdef [0 0 0 0] D
/euro [25 -10 600 600] D
end
/CharacterDefs 2 dict D CharacterDefs begin
/.notdef {} D
/euro{newpath 114 600 moveto 631 600 lineto 464 200 lineto 573 200 lineto
573 0 lineto -94 0 lineto 31 300 lineto -10 300 lineto closepath clip
50 setlinewidth newpath 656 300 moveto 381 300 275 0 360 arc stroke
-19 350 moveto 600 0 rlineto -19 250 moveto 600 0 rlineto stroke}d
end
/BuildChar{0 begin
/char E D /fontdict E D /charname fontdict /Encoding get char get D
fontdict begin
Metrics charname get 0 BBox charname get aload pop setcachedevice
CharacterDefs charname get exec
end
end}D
/BuildChar load 0 3 dict put /UniqueID 1 D
end
definefont pop
/Nf {dup 0 ge{FL E get}{-1 eq{/Symbol}{/MySymbol}ie}ie findfont
E scalefont setfont} D
/IP {currentfile picstr readhexstring pop} D
/WF t D
/F 1 D
/N {showpage} d
/RL {rlineto} d
/S {show} d
/L {lineto} d
/M {moveto} d
/A {awidthshow} d
/RM {rmoveto} d
%%EndProlog
%%BeginSetup
%%PaperSize: A4
WF{FL{reencodeISO D}forall}{4 1 FL length 1 sub{FL E get reencodeISO D}for}ie
/Symbol dup dup findfont dup length dict begin
{1 index /FID ne{D}{pop pop}ie}forall /Encoding [Encoding aload pop]
dup 128 /therefore put D currentdict end definefont D
[/Creator (html2ps version 1.0 beta5) /Author () /Keywords (HTTP, authentication) /Subject () /Title (Mutual Authentication Protocol for HTTP: KAM3-based Cryptographic Algorithms) /DOCINFO pdfmark
[/PageMode /UseOutlines /DOCVIEW pdfmark
[/Count 1 /Dest /48 /Title (Mutual Authentication Protocol for HTTP: KAM3-based Cryptographic Algorithms draft-oiwa-httpauth-mutual-algo-02) /OUT pdfmark
[/Count 19 /Dest /49 /Title () /OUT pdfmark
[/Dest /49 /Title (Abstract) /OUT pdfmark
[/Dest /50 /Title (Status of this Memo) /OUT pdfmark
[/Dest /51 /Title (Copyright Notice) /OUT pdfmark
[/Dest /52 /Title (Table of Contents) /OUT pdfmark
[/Count -1 /Dest /53 /Title (1. Introduction) /OUT pdfmark
[/Dest /54 /Title (1.1. Terminology) /OUT pdfmark
[/Count -3 /Dest /55 /Title (2. Authentication Algorithms) /OUT pdfmark
[/Dest /56 /Title (2.1. Support Functions and Notations) /OUT pdfmark
[/Dest /57 /Title (2.2. Functions for Discrete-Logarithm Settings) /OUT pdfmark
[/Dest /58 /Title (2.3. Functions for Elliptic-Curve Settings) /OUT pdfmark
[/Dest /59 /Title (3. IANA Considerations) /OUT pdfmark
[/Dest /60 /Title (4. Security Considerations) /OUT pdfmark
[/Dest /61 /Title (5. Notice on intellectual properties) /OUT pdfmark
[/Count -2 /Dest /62 /Title (6. References) /OUT pdfmark
[/Dest /63 /Title (6.1. Normative References) /OUT pdfmark
[/Dest /64 /Title (6.2. Informative References) /OUT pdfmark
[/Dest /65 /Title (Appendix A. \(Informative\) Group Parameters for Discrete-Logarithm Based Algorithms) /OUT pdfmark
[/Dest /66 /Title (Appendix B. \(Informative\) Derived Numerical Values) /OUT pdfmark
[/Dest /67 /Title (Appendix C. \(Informative\) Draft Change Log) /OUT pdfmark
[/Dest /68 /Title (C.1. Changes in HTTPAUTH revision 02) /OUT pdfmark
[/Dest /69 /Title (C.2. Changes in HTTPAUTH revision 01) /OUT pdfmark
[/Dest /70 /Title (C.3. Changes in revision 02) /OUT pdfmark
[/Dest /71 /Title (C.4. Changes in revision 01) /OUT pdfmark
[/Dest /72 /Title (C.5. Changes in revision 00) /OUT pdfmark
[/Dest /73 /Title (Authors' Addresses) /OUT pdfmark
%%EndSetup
%%Page: 1 1
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 842 null] /Dest /0 /DEST pdfmark
0 -0 M
save
2.5 -13.5 M
%%IncludeResource: font Times-Roman
11 0 Nf
(HTTPAUTH Working ) S
(Group) S
201 -13.5 M
(Y. ) S
(Oiwa) S
2.5 -32.2 M
(Internet-Draft) S
201 -32.2 M
(H. ) S
(Watanabe) S
2.5 -51 M
(Intended status: ) S
(Experimental) S
201 -51 M
(H. ) S
(Takagi) S
2.5 -69.8 M
(Expires: October 26, ) S
(2014) S
201 -69.8 M
(RISEC, ) S
(AIST) S
2.5 -88.5 M
(\240) S
201 -88.5 M
(K. ) S
(Maeda) S
2.5 -107.2 M
(\240) S
201 -107.2 M
(T. ) S
(Hayashi) S
2.5 -126 M
(\240) S
201 -126 M
(Lepidum) S
2.5 -144.8 M
(\240) S
201 -144.8 M
(Y. ) S
(Ioku) S
2.5 -163.5 M
(\240) S
201 -163.5 M
(Individual) S
2.5 -182.2 M
(\240) S
201 -182.2 M
(April 24, ) S
(2014) S
0 -187.5 M
restore
227 -202.7 M
[/View [/XYZ -4 842 null] /Dest /48 /DEST pdfmark
51.3 -221.7 M
%%IncludeResource: font Times-Bold
19 2 Nf
(Mutual Authentication Protocol for HTTP:) S
61.8 -244.5 M
(KAM3-based Cryptographic ) S
(Algorithms) S
80.8 -267.3 M
(draft-oiwa-httpauth-mutual-algo-02) S
0 -297.3 M
15 2 Nf
(Abstract) S
[/View [/XYZ -4 477.7 null] /Dest /49 /DEST pdfmark
0 -321.5 M
11 0 Nf
2.66496396 0 32 0 0 (This document specifies some cryptographic algorithms which will be used for the Mutual user) A
0 -334.7 M
(authentication method for the Hyper-text Transport Protocol ) S
(\(HTTP\).) S
0 -364.7 M
15 2 Nf
(Status) S
[/View [/XYZ -4 410.3 null] /Dest /50 /DEST pdfmark
( of this ) S
(Memo) S
0 -388.9 M
11 0 Nf
(This Internet-Draft is submitted in full conformance with the provisions of BCP\24078 and ) S
(BCP\24079.) S
0 -413.1 M
0.34375 0 32 0 0 (Internet-Drafts are working documents of the Internet Engineering Task Force \(IETF\). Note that other) A
0 -426.3 M
0.389423072 0 32 0 0 (groups may also distribute working documents as Internet-Drafts. The list of current Internet-Drafts is) A
0 -439.5 M
(at ) S
(http://datatracker.ietf.org/drafts/current/.) S
0 -463.7 M
0.275781244 0 32 0 0 (Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced,) A
0 -476.9 M
1.51927078 0 32 0 0 (or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference) A
0 -490.1 M
(material or to cite them other than as \233work in ) S
(progress.\234) S
0 -514.3 M
(This Internet-Draft will expire on October 26, ) S
(2014.) S
0 -544.3 M
15 2 Nf
(Copyright) S
[/View [/XYZ -4 230.69989 null] /Dest /51 /DEST pdfmark
( ) S
(Notice) S
0 -568.5 M
11 0 Nf
(Copyright \(c\) 2014 IETF Trust and the persons identified as the document authors. All rights ) S
(reserved.) S
0 -592.7 M
3.1208334 0 32 0 0 (This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF) A
0 -605.9 M
1.34730113 0 32 0 0 (Documents \(http://trustee.ietf.org/license-info\) in effect on the date of publication of this document.) A
0 -619.1 M
0.819475472 0 32 0 0 (Please review these documents carefully, as they describe your rights and restrictions with respect to) A
0 -632.3 M
0.287109375 0 32 0 0 (this document. Code Components extracted from this document must include Simplified BSD License) A
0 -645.5 M
1.24951172 0 32 0 0 (text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as) A
0 -658.7 M
(described in the Simplified BSD ) S
(License.) S
0 -658.7 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 1 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 2 2
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /1 /DEST pdfmark
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Table) S
[/View [/XYZ -4 757.0 null] /Dest /52 /DEST pdfmark
( of ) S
(Contents) S
0 -42.2 M
gsave
newpath
0 -43.3 M
8.25 0 RL
stroke
grestore
%%IncludeResource: font Times-Roman
11 0 Nf
(1.) S
[/Rect [-1.0 -44.95 9.25 -32.85] /Subtype /Link /Border [0 0 0] /Dest /2 /ANN pdfmark
(\240 ) S
(Introduction) S
0 -55.4 M
(\240\240\240\240) S
gsave
newpath
11 -56.5 M
16.5 0 RL
stroke
grestore
(1.1.) S
[/Rect [10.0 -58.15 28.5 -46.0500031] /Subtype /Link /Border [0 0 0] /Dest /4 /ANN pdfmark
(\240 ) S
(Terminology) S
0 -68.6 M
gsave
newpath
0 -69.7 M
8.25 0 RL
stroke
grestore
(2.) S
[/Rect [-1.0 -71.3500061 9.25 -59.2500076] /Subtype /Link /Border [0 0 0] /Dest /6 /ANN pdfmark
(\240 Authentication ) S
(Algorithms) S
0 -81.8 M
(\240\240\240\240) S
gsave
newpath
11 -82.9 M
16.5 0 RL
stroke
grestore
(2.1.) S
[/Rect [10.0 -84.55 28.5 -72.4500046] /Subtype /Link /Border [0 0 0] /Dest /8 /ANN pdfmark
(\240 Support Functions and ) S
(Notations) S
0 -95 M
(\240\240\240\240) S
gsave
newpath
11 -96.1 M
16.5 0 RL
stroke
grestore
(2.2.) S
[/Rect [10.0 -97.75 28.5 -85.65] /Subtype /Link /Border [0 0 0] /Dest /10 /ANN pdfmark
(\240 Functions for Discrete-Logarithm ) S
(Settings) S
0 -108.2 M
(\240\240\240\240) S
gsave
newpath
11 -109.3 M
16.5 0 RL
stroke
grestore
(2.3.) S
[/Rect [10.0 -110.95 28.5 -98.85] /Subtype /Link /Border [0 0 0] /Dest /12 /ANN pdfmark
(\240 Functions for Elliptic-Curve ) S
(Settings) S
0 -121.4 M
gsave
newpath
0 -122.5 M
8.25 0 RL
stroke
grestore
(3.) S
[/Rect [-1.0 -124.149994 9.25 -112.049995] /Subtype /Link /Border [0 0 0] /Dest /14 /ANN pdfmark
(\240 IANA ) S
(Considerations) S
0 -134.6 M
gsave
newpath
0 -135.7 M
8.25 0 RL
stroke
grestore
(4.) S
[/Rect [-1.0 -137.349991 9.25 -125.249992] /Subtype /Link /Border [0 0 0] /Dest /16 /ANN pdfmark
(\240 Security ) S
(Considerations) S
0 -147.8 M
gsave
newpath
0 -148.9 M
8.25 0 RL
stroke
grestore
(5.) S
[/Rect [-1.0 -150.549988 9.25 -138.449982] /Subtype /Link /Border [0 0 0] /Dest /18 /ANN pdfmark
(\240 Notice on intellectual ) S
(properties) S
0 -161 M
gsave
newpath
0 -162.1 M
8.25 0 RL
stroke
grestore
(6.) S
[/Rect [-1.0 -163.749985 9.25 -151.649979] /Subtype /Link /Border [0 0 0] /Dest /22 /ANN pdfmark
(\240 ) S
(References) S
0 -174.2 M
(\240\240\240\240) S
gsave
newpath
11 -175.3 M
16.5 0 RL
stroke
grestore
(6.1.) S
[/Rect [10.0 -176.949982 28.5 -164.849976] /Subtype /Link /Border [0 0 0] /Dest /22 /ANN pdfmark
(\240 Normative ) S
(References) S
0 -187.4 M
(\240\240\240\240) S
gsave
newpath
11 -188.5 M
16.5 0 RL
stroke
grestore
(6.2.) S
[/Rect [10.0 -190.149979 28.5 -178.049973] /Subtype /Link /Border [0 0 0] /Dest /28 /ANN pdfmark
(\240 Informative ) S
(References) S
0 -200.6 M
gsave
newpath
0 -201.7 M
56.8203125 0 RL
stroke
grestore
(Appendix\240A.) S
[/Rect [-1.0 -203.349976 57.8203125 -191.249969] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
(\240 \(Informative\) Group Parameters for Discrete-Logarithm Based ) S
(Algorithms) S
0 -213.8 M
gsave
newpath
0 -214.9 M
56.2148438 0 RL
stroke
grestore
(Appendix\240B.) S
[/Rect [-1.0 -216.549973 57.2148438 -204.449966] /Subtype /Link /Border [0 0 0] /Dest /33 /ANN pdfmark
(\240 \(Informative\) Derived Numerical ) S
(Values) S
0 -227 M
gsave
newpath
0 -228.1 M
56.2148438 0 RL
stroke
grestore
(Appendix\240C.) S
[/Rect [-1.0 -229.749969 57.2148438 -217.649963] /Subtype /Link /Border [0 0 0] /Dest /35 /ANN pdfmark
(\240 \(Informative\) Draft Change ) S
(Log) S
0 -240.2 M
(\240\240\240\240) S
gsave
newpath
11 -241.3 M
18.3359375 0 RL
stroke
grestore
(C.1.) S
[/Rect [10.0 -242.949966 30.3359375 -230.84996] /Subtype /Link /Border [0 0 0] /Dest /37 /ANN pdfmark
(\240 Changes in HTTPAUTH revision ) S
(02) S
0 -253.4 M
(\240\240\240\240) S
gsave
newpath
11 -254.5 M
18.3359375 0 RL
stroke
grestore
(C.2.) S
[/Rect [10.0 -256.149963 30.3359375 -244.049957] /Subtype /Link /Border [0 0 0] /Dest /39 /ANN pdfmark
(\240 Changes in HTTPAUTH revision ) S
(01) S
0 -266.6 M
(\240\240\240\240) S
gsave
newpath
11 -267.7 M
18.3359375 0 RL
stroke
grestore
(C.3.) S
[/Rect [10.0 -269.349976 30.3359375 -257.249969] /Subtype /Link /Border [0 0 0] /Dest /41 /ANN pdfmark
(\240 Changes in revision ) S
(02) S
0 -279.8 M
(\240\240\240\240) S
gsave
newpath
11 -280.9 M
18.3359375 0 RL
stroke
grestore
(C.4.) S
[/Rect [10.0 -282.55 30.3359375 -270.449982] /Subtype /Link /Border [0 0 0] /Dest /43 /ANN pdfmark
(\240 Changes in revision ) S
(01) S
0 -293 M
(\240\240\240\240) S
gsave
newpath
11 -294.1 M
18.3359375 0 RL
stroke
grestore
(C.5.) S
[/Rect [10.0 -295.75 30.3359375 -283.65] /Subtype /Link /Border [0 0 0] /Dest /45 /ANN pdfmark
(\240 Changes in revision ) S
(00) S
0 -306.2 M
gsave
newpath
0 -307.3 M
5.5 0 RL
stroke
grestore
(\247) S
[/Rect [-1.0 -308.95 6.5 -296.85] /Subtype /Link /Border [0 0 0] /Dest /47 /ANN pdfmark
(\240 Authors' ) S
(Addresses) S
0 -317.2 M
[/View [/XYZ -4 439.8 null] /Dest /2 /DEST pdfmark
0 -317.2 M
[/View [/XYZ -4 439.8 null] /Dest /3 /DEST pdfmark
0 -336.2 M
15 2 Nf
(1.) S
[/View [/XYZ -4 438.8 null] /Dest /53 /DEST pdfmark
( ) S
(Introduction) S
0 -360.4 M
11 0 Nf
0.15234375 0 32 0 0 (This document specifies some algorithms for ) A
gsave
newpath
201.9 -361.5 M
252.113281 0 RL
stroke
grestore
0.15234375 0 32 0 0 (Mutual authentication protocol for Hyper-Text Transport) A
[/Rect [200.886719 -363.150024 455.0 -351.050018] /Subtype /Link /Border [0 0 0] /Dest /25 /ANN pdfmark
0 -373.6 M
gsave
newpath
0 -374.7 M
42.8954 0 RL
stroke
grestore
2.87977433 0 32 0 0 (Protocol ) A
gsave
newpath
42.9 -374.7 M
34.8125 0 RL
stroke
grestore
2.87977433 0 32 0 0 (\(HTTP\)) A
[/Rect [-1.0 -376.350037 78.7070312 -364.250031] /Subtype /Link /Border [0 0 0] /Dest /25 /ANN pdfmark
2.87977433 0 32 0 0 ( [I-D.ietf-httpauth-mutual]. The algorithms are based on so-called "Augumented) A
0 -386.8 M
0.605078101 0 32 0 0 (Password-based Authenticated Key Exchange" \(Augumented PAKE\) techniques. In particular, it uses) A
0 -400 M
1.26032364 0 32 0 0 (one of three key exchange algorithm defined in the ) A
gsave
newpath
238.2 -401.1 M
215.735214 0 RL
stroke
grestore
1.26032364 0 32 0 0 (ISO 11770-4: "Key management - Mechanisms) A
[/Rect [237.242188 -402.750061 454.964844 -390.650055] /Subtype /Link /Border [0 0 0] /Dest /29 /ANN pdfmark
0 -413.2 M
gsave
newpath
0 -414.3 M
67.5 0 RL
stroke
grestore
(based on weak ) S
gsave
newpath
67.5 -414.3 M
34.4023438 0 RL
stroke
grestore
(secrets") S
[/Rect [-1.0 -415.950073 102.902344 -403.850067] /Subtype /Link /Border [0 0 0] /Dest /29 /ANN pdfmark
( [ISO.11770-4.2006] as a basis. ) S
0 -437.4 M
11 0 Nf
0.210798 0 32 0 0 (In very brief summary, the Mutual authentication protocol exchanges four values, ) A
0.210798 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.210798 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.210798 0 32 0 0 (, ) A
0.210798 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.210798 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.210798 0 32 0 0 (, ) A
0.210798 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.210798 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.210798 0 32 0 0 ( and ) A
0.0 -2.2 RM
0 -452.8 M
11 0 Nf
4.45524073 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
4.45524073 0 32 0 0 (s) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
4.45524073 0 32 0 0 (, to perform authenticated key exchanges, using the password-derived secret pi and its) A
0.0 -2.2 RM
0 -468.2 M
11 0 Nf
0.463378906 0 32 0 0 ("augumented version" J\(pi\). This document defines the set of functions ) A
0.463378906 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.463378906 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.463378906 0 32 0 0 (, ) A
0.463378906 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.463378906 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.463378906 0 32 0 0 (, and J for a specific) A
0.0 -2.2 RM
0 -483.6 M
(algorithm family. ) S
0 -507.8 M
0.693209112 0 32 0 0 (Please note that, from the view of cryptographic literatures, the original functionality of Augumented) A
0 -521 M
11 0 Nf
0.963120401 0 32 0 0 (PAKE is separated into the functions ) A
0.963120401 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.963120401 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.963120401 0 32 0 0 ( and ) A
0.963120401 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.963120401 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.963120401 0 32 0 0 ( defined in this draft, and the functions ) A
0.963120401 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.963120401 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.963120401 0 32 0 0 ( and ) A
0.0 -2.2 RM
0 -536.4 M
11 0 Nf
1.75435698 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
1.75435698 0 32 0 0 (s) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
1.75435698 0 32 0 0 ( defined in Section 11 of ) A
gsave
newpath
143.5 -537.5 M
113.898438 0 RL
stroke
grestore
1.75435698 0 32 0 0 ([I-D.ietf-httpauth-mutual]) A
[/Rect [142.533203 -539.150085 258.431641 -527.05011] /Subtype /Link /Border [0 0 0] /Dest /25 /ANN pdfmark
1.75435698 0 32 0 0 ( as "default functions". For the purpose of) A
0.0 -2.2 RM
0 -551.8 M
(security analysis, please also refer to these functions. ) S
0 -562.8 M
[/View [/XYZ -4 194.19989 null] /Dest /4 /DEST pdfmark
0 -562.8 M
[/View [/XYZ -4 194.19989 null] /Dest /5 /DEST pdfmark
0 -578.4 M
13 2 Nf
(1.1.) S
[/View [/XYZ -4 194.19989 null] /Dest /54 /DEST pdfmark
( ) S
(Terminology) S
0 -602.6 M
11 0 Nf
2.37011719 0 32 0 0 (The key words "MUST", "MUST\240NOT", "REQUIRED", "SHALL", "SHALL\240NOT", "SHOULD",) A
0 -615.8 M
1.49739587 0 32 0 0 ("SHOULD\240NOT", "RECOMMENDED", "NOT\240RECOMMENDED", "MAY", and "OPTIONAL" in) A
0 -629 M
(this document are to be interpreted as described in ) S
gsave
newpath
223.9 -630.1 M
50.1054688 0 RL
stroke
grestore
([RFC2119]) S
[/Rect [222.863281 -631.750122 274.96875 -619.650146] /Subtype /Link /Border [0 0 0] /Dest /26 /ANN pdfmark
(.) S
0 -629 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 2 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 3 3
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
2.9309895 0 32 0 0 (The term "natural numbers" refers to the non-negative integers \(including zero\) throughout this ) A
0 -26.4 M
(document.) S
0 -50.6 M
0.861886144 0 32 0 0 (This document treats target \(codomain\) of hash functions to be octet strings. The notation INT\(H\(s\)\)) A
0 -63.8 M
(gives a natural-number output of hash function H applied to string ) S
(s.) S
0 -74.8 M
[/View [/XYZ -4 682.2 null] /Dest /6 /DEST pdfmark
0 -74.8 M
[/View [/XYZ -4 682.2 null] /Dest /7 /DEST pdfmark
0 -93.8 M
%%IncludeResource: font Times-Bold
15 2 Nf
(2.) S
[/View [/XYZ -4 681.2 null] /Dest /55 /DEST pdfmark
( Authentication ) S
(Algorithms) S
0 -118 M
11 0 Nf
0.81640625 0 32 0 0 (This document specifies only one family of the authentication algorithm. The family consists of four) A
0 -131.2 M
2.23366475 0 32 0 0 (authentication algorithms, which only differ in their underlying mathematical groups and security) A
0 -144.4 M
(parameters. The algorithms do not add any additional parameters. The tokens for these algorithms ) S
(are) S
11 -165 M
gsave
0 setgray
newpath
11.0 -164.97 2.75 0 360 arc
closepath
fill
grestore
22 -168.6 M
2.421875 0 32 0 0 (iso-kam3-dl-2048-sha256: for the 2048-bit discrete-logarithm setting with the SHA-256 hash) A
22 -181.8 M
(function. ) S
11 -192.4 M
gsave
0 setgray
newpath
11.0 -192.37 2.75 0 360 arc
closepath
fill
grestore
22 -196 M
2.421875 0 32 0 0 (iso-kam3-dl-4096-sha512: for the 4096-bit discrete-logarithm setting with the SHA-512 hash) A
22 -209.2 M
(function. ) S
11 -219.8 M
gsave
0 setgray
newpath
11.0 -219.769989 2.75 0 360 arc
closepath
fill
grestore
22 -223.4 M
2.0859375 0 32 0 0 (iso-kam3-ec-p256-sha256: for the 256-bit prime-field elliptic-curve setting with the SHA-256) A
22 -236.6 M
(hash function. ) S
11 -247.2 M
gsave
0 setgray
newpath
11.0 -247.169983 2.75 0 360 arc
closepath
fill
grestore
22 -250.8 M
2.0859375 0 32 0 0 (iso-kam3-ec-p521-sha512: for the 521-bit prime-field elliptic-curve setting with the SHA-512) A
22 -264 M
(hash ) S
(function.) S
0 -288.2 M
1.56119788 0 32 0 0 (For discrete-logarithm settings, the underlying groups are the 2048-bit and 4096-bit MODP groups) A
0 -301.4 M
1.51412261 0 32 0 0 (defined in ) A
gsave
newpath
50.1 -302.5 M
50.1054688 0 RL
stroke
grestore
1.51412261 0 32 0 0 ([RFC3526]) A
[/Rect [49.0585938 -304.15 101.164062 -292.05] /Subtype /Link /Border [0 0 0] /Dest /27 /ANN pdfmark
1.51412261 0 32 0 0 (, respectively. See ) A
gsave
newpath
187.5 -302.5 M
54.0703125 0 RL
stroke
grestore
1.51412261 0 32 0 0 (Appendix\240A) A
[/Rect [186.460938 -304.15 242.53125 -292.05] /Subtype /Link /Border [0 0 0] /Dest /31 /ANN pdfmark
1.51412261 0 32 0 0 ( for the exact specifications of the groups and) A
0 -314.6 M
0.0911458358 0 32 0 0 (associated parameters. The hash functions H are SHA-256 for the 2048-bit group and SHA-512 for the) A
0 -327.8 M
0.439778656 0 32 0 0 (4096-bit group, respectively, defined in ) A
gsave
newpath
179 -328.9 M
49.7701836 0 RL
stroke
grestore
0.439778656 0 32 0 0 (FIPS PUB ) A
gsave
newpath
228.8 -328.9 M
25.6601562 0 RL
stroke
grestore
0.439778656 0 32 0 0 (180-2) A
[/Rect [178.035156 -330.550018 255.460938 -318.45] /Subtype /Link /Border [0 0 0] /Dest /23 /ANN pdfmark
0.439778656 0 32 0 0 ( [FIPS.180-2.2002]. The hash iteration count) A
0 -341 M
(nIterPi is 16384. The representation of the parameters kc1, ks1, vkc, and vks is base64-fixed-number. ) S
0 -365.2 M
0.172916666 0 32 0 0 (For the elliptic-curve settings, the underlying groups are the elliptic curves over the prime fields P-256) A
0 -378.4 M
3.006392 0 32 0 0 (and P-521, respectively, specified in the appendix\240D.1.2 of ) A
gsave
newpath
285.2 -379.5 M
54.9034081 0 RL
stroke
grestore
3.006392 0 32 0 0 (FIPS PUB ) A
gsave
newpath
340.1 -379.5 M
25.6601562 0 RL
stroke
grestore
3.006392 0 32 0 0 (186-3) A
[/Rect [284.179688 -381.150055 366.738281 -369.050049] /Subtype /Link /Border [0 0 0] /Dest /24 /ANN pdfmark
3.006392 0 32 0 0 ( [FIPS.186-3.2009]) A
0 -391.6 M
0.460156262 0 32 0 0 (specification. The hash functions H, which are referenced by the core document, are SHA-256 for the) A
0 -404.8 M
0.17135416 0 32 0 0 (P-256 curve and SHA-512 for the P-521 curve, respectively. The hash iteration count nIterPi is 16384.) A
0 -418 M
(The representation of the parameters kc1, ks1, vkc, and vks is hex-fixed-number. ) S
0 -442.2 M
0.408203125 0 32 0 0 (Note: This algorithm is based on the Key Agreement Mechanism 3 \(KAM3\) defined in Section 6.3 of ) A
0 -455.4 M
gsave
newpath
0 -456.5 M
49.4101562 0 RL
stroke
grestore
8.17578125 0 32 0 0 (ISO/IEC ) A
gsave
newpath
49.4 -456.5 M
36.6601562 0 RL
stroke
grestore
8.17578125 0 32 0 0 (11770-4) A
[/Rect [-1.0 -458.150116 87.0703125 -446.05011] /Subtype /Link /Border [0 0 0] /Dest /29 /ANN pdfmark
8.17578125 0 32 0 0 ( [ISO.11770-4.2006] with a few modifications/improvements. However,) A
0 -468.6 M
1.37469947 0 32 0 0 (implementers should use this document as the normative reference, because the algorithm has been) A
0 -481.8 M
(changed in several minor details as well as major improvements. ) S
0 -492.8 M
[/View [/XYZ -4 264.19986 null] /Dest /8 /DEST pdfmark
0 -492.8 M
[/View [/XYZ -4 264.19986 null] /Dest /9 /DEST pdfmark
0 -508.4 M
13 2 Nf
(2.1.) S
[/View [/XYZ -4 264.19986 null] /Dest /56 /DEST pdfmark
( Support Functions and ) S
(Notations) S
0 -532.6 M
11 0 Nf
(The algorithm definitions use several support functions and notations defined ) S
(below:) S
0 -556.8 M
(The integers in the specification are in decimal, or in hexadecimal when prefixed with ) S
("0x".) S
0 -581 M
3.04507208 0 32 0 0 (The functions named octet\(\), OCTETS\(\), and INT\(\) are those defined in the ) A
gsave
newpath
373.1 -582.1 M
24.7208538 0 RL
stroke
grestore
3.04507208 0 32 0 0 (core ) A
gsave
newpath
397.8 -582.1 M
56.1875 0 RL
stroke
grestore
3.04507208 0 32 0 0 (specification) A
[/Rect [372.066406 -583.750183 454.972656 -571.650208] /Subtype /Link /Border [0 0 0] /Dest /25 /ANN pdfmark
3.04507208 0 32 0 0 ( ) A
0 -594.2 M
([I-D.ietf-httpauth-mutual].) S
0 -618.4 M
2.67103791 0 32 0 0 (Note: The definition of OCTETS\(\) is different from the function GE2OS_x in the original ISO) A
0 -631.6 M
(specification, which takes the shortest representation without preceding zeros. ) S
0 -631.6 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 3 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 4 4
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
2.79947925 0 32 0 0 (All of the algorithms defined in this specification use the default functions defined in the core) A
0 -26.4 M
11 0 Nf
1.15966797 0 32 0 0 (specification \(defined in Section 11 of ) A
gsave
newpath
178 -27.5 M
113.898438 0 RL
stroke
grestore
1.15966797 0 32 0 0 ([I-D.ietf-httpauth-mutual]) A
[/Rect [176.96875 -29.1500015 292.867188 -17.0500011] /Subtype /Link /Border [0 0 0] /Dest /25 /ANN pdfmark
1.15966797 0 32 0 0 (\) for computing the values pi, ) A
1.15966797 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
1.15966797 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
0.0 -2.2 RM
0 -41.8 M
11 0 Nf
(and ) S
(VK) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(.) S
0.0 -2.2 RM
0 -55 M
[/View [/XYZ -4 702.0 null] /Dest /10 /DEST pdfmark
0 -55 M
[/View [/XYZ -4 702.0 null] /Dest /11 /DEST pdfmark
0 -70.6 M
%%IncludeResource: font Times-Bold
13 2 Nf
(2.2.) S
[/View [/XYZ -4 702.0 null] /Dest /57 /DEST pdfmark
( Functions for Discrete-Logarithm ) S
(Settings) S
0 -94.8 M
11 0 Nf
0.519886374 0 32 0 0 (In this section, an equation \(x / y mod z\) denotes a natural number w less than z that satisfies \(w * y\)) A
0 -108 M
(mod z = x mod z. ) S
0 -132.2 M
0.05 0 32 0 0 (For the discrete-logarithm, we refer to some of the domain parameters by using the following symbols: ) A
11 -152.8 M
gsave
0 setgray
newpath
11.0 -152.77 2.75 0 360 arc
closepath
fill
grestore
22 -156.4 M
(q: for "the prime" defining the MODP group. ) S
11 -167 M
gsave
0 setgray
newpath
11.0 -166.97 2.75 0 360 arc
closepath
fill
grestore
22 -170.6 M
(g: for "the generator" associated with the group. ) S
11 -181.2 M
gsave
0 setgray
newpath
11.0 -181.17 2.75 0 360 arc
closepath
fill
grestore
22 -184.8 M
(r: for the order of the subgroup generated by ) S
(g.) S
0 -209 M
(The function J is defined as ) S
0 -233.2 M
(J\(pi\) = g^\(pi\) mod q. ) S
0 -257.4 M
11 0 Nf
(The value of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( is derived as ) S
0.0 -2.2 RM
0 -283.8 M
11 0 Nf
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = ) S
(g^\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) mod q, ) S
0.0 -2.2 RM
0 -310.2 M
11 0 Nf
0.157645091 0 32 0 0 (where ) A
0.157645091 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.157645091 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.157645091 0 32 0 0 ( is a random integer within range [1, r-1] and r is the size of the subgroup generated by g. In) A
0.0 -2.2 RM
0 -325.6 M
11 0 Nf
(addition, ) S
(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( MUST be larger than log\(q\)/log\(g\) \(so that ) S
(g^\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) > q\). ) S
0.0 -2.2 RM
0 -352 M
11 0 Nf
2.4149816 0 32 0 0 (The value of ) A
2.4149816 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
2.4149816 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
2.4149816 0 32 0 0 ( SHALL satisfy 1 < ) A
2.4149816 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
2.4149816 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
2.4149816 0 32 0 0 ( < q-1. The server MUST check this condition upon) A
0.0 -2.2 RM
0 -367.4 M
(reception. ) S
0 -391.6 M
11 0 Nf
(Let an intermediate value ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( be ) S
0.0 -2.2 RM
0 -418 M
11 0 Nf
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = INT\(H\(octet\(1\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)\), ) S
0.0 -2.2 RM
0 -444.4 M
11 0 Nf
(the value of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( is derived from J\(pi\) and ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( as: ) S
0.0 -2.2 RM
0 -470.8 M
11 0 Nf
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = \(J\(pi\) * ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(^\(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)^\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) mod q ) S
0.0 -2.2 RM
0 -497.2 M
11 0 Nf
0.092726931 0 32 0 0 (where ) A
0.092726931 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.092726931 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.092726931 0 32 0 0 ( is a random number within range [1, r-1]. The value of ) A
0.092726931 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.092726931 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.092726931 0 32 0 0 ( MUST satisfy 1 < ) A
0.092726931 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.092726931 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.092726931 0 32 0 0 ( < q-1. If) A
0.0 -2.2 RM
0 -512.6 M
11 0 Nf
0.291704953 0 32 0 0 (this condition is not held, the server MUST retry using another value for ) A
0.291704953 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.291704953 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.291704953 0 32 0 0 (. The client MUST check) A
0.0 -2.2 RM
0 -528 M
(this condition upon reception. ) S
0 -552.2 M
11 0 Nf
(Let an intermediate value ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( be ) S
0.0 -2.2 RM
0 -578.6 M
11 0 Nf
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = INT\(H\(octet\(2\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)\), ) S
0.0 -2.2 RM
0 -605 M
(the value z on the client side is derived by the following equation: ) S
0 -629.2 M
11 0 Nf
(z = ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(^\(\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( + ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) / ) S
(\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( * ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( + pi\) mod r\) mod q. ) S
0.0 -2.2 RM
0 -631.4 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 4 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 5 5
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(The value z on the server side is derived by the following equation: ) S
0 -37.4 M
11 0 Nf
(z = ) S
(\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( * ) S
(g^\(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)^\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) mod q. ) S
0.0 -2.2 RM
0 -63.8 M
0.317522317 0 32 0 0 (\(Note: the original ISO specification contained a message pair containing verification of value z along) A
0 -77 M
2.38333344 0 32 0 0 (with the "transcript" of the protocol exchange. The functionality of this kind is contained in the) A
0 -90.2 M
11 0 Nf
(functions ) S
(VK) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( and ) S
(VK) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(.\)) S
0.0 -2.2 RM
0 -103.4 M
[/View [/XYZ -4 653.6 null] /Dest /12 /DEST pdfmark
0 -103.4 M
[/View [/XYZ -4 653.6 null] /Dest /13 /DEST pdfmark
0 -119 M
%%IncludeResource: font Times-Bold
13 2 Nf
(2.3.) S
[/View [/XYZ -4 653.6 null] /Dest /58 /DEST pdfmark
( Functions for Elliptic-Curve ) S
(Settings) S
0 -143.2 M
11 0 Nf
(For the elliptic-curve setting, we refer to some of the domain parameters by the following symbols: ) S
11 -163.8 M
gsave
0 setgray
newpath
11.0 -163.77 2.75 0 360 arc
closepath
fill
grestore
22 -167.4 M
(q: for the prime used to define the group. ) S
11 -178 M
gsave
0 setgray
newpath
11.0 -177.97 2.75 0 360 arc
closepath
fill
grestore
22 -181.6 M
(G: for the defined point called the generator. ) S
11 -192.2 M
gsave
0 setgray
newpath
11.0 -192.17 2.75 0 360 arc
closepath
fill
grestore
22 -195.8 M
(r: for the order of the subgroup generated by ) S
(G.) S
0 -220 M
0.547080576 0 32 0 0 (The function P\(p\) converts a curve point p into an integer representing point p, by computing x * 2 +) A
0 -233.2 M
1.34505212 0 32 0 0 (\(y mod 2\), where \(x, y\) are the coordinates of point p. P'\(z\) is the inverse of function P, that is, it) A
0 -246.4 M
2.06347656 0 32 0 0 (converts an integer z to a point p that satisfies P\(p\) = z. If such p exists, it is uniquely defined.) A
0 -259.6 M
0.799218774 0 32 0 0 (Otherwise, z does not represent a valid curve point. The operator + indicates the elliptic-curve group) A
0 -272.8 M
0.0770970359 0 32 0 0 (operation, and the operation [x] * p denotes an integer-multiplication of point p: it calculates p + p + ...) A
0 -286 M
1.2265625 0 32 0 0 (\(x times\) ... + p. See the literatures on elliptic-curve cryptography for the exact algorithms used for) A
0 -299.2 M
11 0 Nf
0.959284842 0 32 0 0 (those functions \(e.g. Section 3 of ) A
gsave
newpath
153.6 -300.3 M
50.1054688 0 RL
stroke
grestore
0.959284842 0 32 0 0 ([RFC6090]) A
[/Rect [152.578125 -301.95 204.683594 -289.85] /Subtype /Link /Border [0 0 0] /Dest /30 /ANN pdfmark
0.959284842 0 32 0 0 (, which uses different notations, though.\) ) A
0.959284842 0 32 0 0 (0) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.959284842 0 32 0 0 (E) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.959284842 0 32 0 0 ( represents) A
0.0 -2.2 RM
0 -314.6 M
0.209635422 0 32 0 0 (the infinity point. The equation \(x / y mod z\) denotes a natural number w less than z that satisfies \(w *) A
0 -327.8 M
(y\) mod z = x mod z. ) S
0 -352 M
(The function J is defined as ) S
0 -376.2 M
(J\(pi\) = [pi] * G. ) S
0 -400.4 M
11 0 Nf
(The value of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( is derived as ) S
0.0 -2.2 RM
0 -426.8 M
11 0 Nf
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = ) S
(P\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
('\), where ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(' = ) S
([S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * G, ) S
0.0 -2.2 RM
0 -453.2 M
11 0 Nf
0.393663198 0 32 0 0 (where ) A
0.393663198 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.393663198 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.393663198 0 32 0 0 ( is a random number within range [1, r-1]. The value of ) A
0.393663198 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.393663198 0 32 0 0 (c1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.393663198 0 32 0 0 ( MUST represent a valid curve) A
0.0 -2.2 RM
0 -468.6 M
11 0 Nf
(point, and ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(' SHALL\240NOT be ) S
(0) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(E) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(. The server MUST check this condition upon reception. ) S
0.0 -2.2 RM
0 -495 M
11 0 Nf
(Let an intermediate integer ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( be ) S
0.0 -2.2 RM
0 -521.4 M
11 0 Nf
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = INT\(H\(octet\(1\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)\), ) S
0.0 -2.2 RM
0 -547.8 M
11 0 Nf
(the value of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( is derived from J\(pi\) and ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(' = ) S
(P'\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) as: ) S
0.0 -2.2 RM
0 -574.2 M
11 0 Nf
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = ) S
(P\([S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * \(J\(pi\) + ) S
([t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
('\)\), ) S
0.0 -2.2 RM
0 -600.6 M
11 0 Nf
0.444878459 0 32 0 0 (where ) A
0.444878459 0 32 0 0 (S) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.444878459 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.444878459 0 32 0 0 ( is a random number within range [1, r-1]. The value of ) A
0.444878459 0 32 0 0 (K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.444878459 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.444878459 0 32 0 0 ( MUST represent a valid curve) A
0.0 -2.2 RM
0 -616 M
11 0 Nf
0.799262166 0 32 0 0 (point and satisfy [4] * ) A
0.799262166 0 32 0 0 (P'\(K) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.799262166 0 32 0 0 (s1) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.799262166 0 32 0 0 (\) <> ) A
0.799262166 0 32 0 0 (0) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.799262166 0 32 0 0 (E) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.799262166 0 32 0 0 (. If this condition is not satisfied, the server MUST retry using) A
0.0 -2.2 RM
0 -631.4 M
11 0 Nf
(another value for ) S
(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(. The client MUST check this condition upon reception. ) S
0.0 -2.2 RM
0 -633.6 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 5 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 6 6
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(Let an intermediate integer ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( be ) S
0.0 -2.2 RM
0 -39.6 M
11 0 Nf
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( = INT\(H\(octet\(2\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) | ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\)\), ) S
0.0 -2.2 RM
0 -66 M
(the value z on the client side is derived by the following equation: ) S
0 -90.2 M
11 0 Nf
(z = ) S
(P\([\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( + ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) / ) S
(\(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( * ) S
(t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( + pi\) mod r] * ) S
(P'\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\)\). ) S
0.0 -2.2 RM
0 -116.6 M
(The value z on the server side is derived by the following equation: ) S
0 -140.8 M
11 0 Nf
(z = ) S
(P\([S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(s1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * ) S
(\(P'\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) + ) S
([t) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(2) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(] * G\)\). ) S
0.0 -2.2 RM
0 -154 M
[/View [/XYZ -4 603.0 null] /Dest /14 /DEST pdfmark
0 -154 M
[/View [/XYZ -4 603.0 null] /Dest /15 /DEST pdfmark
0 -173 M
%%IncludeResource: font Times-Bold
15 2 Nf
(3.) S
[/View [/XYZ -4 602.0 null] /Dest /59 /DEST pdfmark
( IANA ) S
(Considerations) S
0 -197.2 M
11 0 Nf
5.45859385 0 32 0 0 (Four tokens iso-kam3-dl-2048-sha256, iso-kam3-dl-4096-sha512, iso-kam3-ec-p256-sha256 and) A
0 -210.4 M
2.30436206 0 32 0 0 (iso-kam3-ec-p521-sha512 shall be allocated and registered according to the provision of the core) A
0 -223.6 M
(documentation when this document is promoted to an RFC. ) S
0 -247.8 M
(Note: More formal declarations will be added in the future drafts to meet the RFC 5226 requirements. ) S
0 -258.8 M
[/View [/XYZ -4 498.2 null] /Dest /16 /DEST pdfmark
0 -258.8 M
[/View [/XYZ -4 498.2 null] /Dest /17 /DEST pdfmark
0 -277.8 M
15 2 Nf
(4.) S
[/View [/XYZ -4 497.2 null] /Dest /60 /DEST pdfmark
( Security ) S
(Considerations) S
0 -302 M
11 0 Nf
4.87460947 0 32 0 0 (Refer the corresponding section of the core specification for algorithm-independent, generic) A
0 -315.2 M
(considerations. ) S
11 -335.8 M
gsave
0 setgray
newpath
11.0 -335.77002 2.75 0 360 arc
closepath
fill
grestore
22 -339.4 M
6.48011351 0 32 0 0 (All random numbers used in these algorithms MUST be at least cryptographically) A
22 -352.6 M
(computationally secure against forward and backward guessing attacks. ) S
11 -363.2 M
gsave
0 setgray
newpath
11.0 -363.170044 2.75 0 360 arc
closepath
fill
grestore
22 -366.8 M
4.10507822 0 32 0 0 (Computation times of all numerical operations on discrete-logarithm group elements and) A
22 -380 M
0.668269217 0 32 0 0 (elliptic-curve points MUST be normalized and made independent of the exact values, to prevent) A
22 -393.2 M
(timing-based side-channel ) S
(attacks.) S
0 -417.4 M
2.55859375 0 32 0 0 (The usual construction of authenticated key exchange algorithms are build from a key-exchange) A
0 -430.6 M
3.56529021 0 32 0 0 (period and a key verification period, and the latter usually involving some kind of exchange) A
0 -443.8 M
0.458072931 0 32 0 0 (transaction to be verified, to avoid security risks or vulnerabilities caused from mixing of values from) A
0 -457 M
0.850873172 0 32 0 0 (two or more key exchanges. In the design of the algorithms in this document, such a functionality is) A
0 -470.2 M
1.24041188 0 32 0 0 (defined in generalized manner in the core specification ) A
gsave
newpath
254.2 -471.3 M
113.898438 0 RL
stroke
grestore
1.24041188 0 32 0 0 ([I-D.ietf-httpauth-mutual]) A
[/Rect [253.210938 -472.950134 369.109375 -460.850128] /Subtype /Link /Border [0 0 0] /Dest /25 /ANN pdfmark
1.24041188 0 32 0 0 ( \(see definitions of ) A
0 -483.4 M
11 0 Nf
0.840332031 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.840332031 0 32 0 0 (c) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.840332031 0 32 0 0 ( and ) A
0.840332031 0 32 0 0 (VK) A
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
0.840332031 0 32 0 0 (s) A
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
0.840332031 0 32 0 0 (\). If any attempts to reuse the algorithm defined above with any other protocols exist,) A
0.0 -2.2 RM
0 -498.8 M
(care MUST be taken on that aspect. ) S
0 -509.8 M
[/View [/XYZ -4 247.19986 null] /Dest /18 /DEST pdfmark
0 -509.8 M
[/View [/XYZ -4 247.19986 null] /Dest /19 /DEST pdfmark
0 -528.8 M
15 2 Nf
(5.) S
[/View [/XYZ -4 246.199829 null] /Dest /61 /DEST pdfmark
( Notice on intellectual ) S
(properties) S
0 -553 M
11 0 Nf
0.270432681 0 32 0 0 (The National Institute of Advanced Industrial Science and Technology \(AIST\) and Yahoo! Japan, Inc.) A
0 -566.2 M
0.311197907 0 32 0 0 (has jointly submitted a patent application on the protocol proposed in this documentation to the Patent) A
0 -579.4 M
0.125868052 0 32 0 0 (Office of Japan. The patent is intended to be open to any implementors of this protocol and its variants) A
0 -592.6 M
0.2734375 0 32 0 0 (under non-exclusive royalty-free manner. For the details of the patent application and its status, please) A
0 -605.8 M
(contact the author of this document. ) S
0 -630 M
1.08359373 0 32 0 0 (The elliptic-curve based authentication algorithms might involve several existing third-party patents.) A
0 -643.2 M
0.114889704 0 32 0 0 (The authors of the document take no position regarding the validity or scope of such patents, and other) A
0 -656.4 M
(patents as well. ) S
0 -656.4 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 6 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 7 7
%%PageResources: font Times-Roman Times-Bold Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /20 /DEST pdfmark
0 0 M
[/View [/XYZ -4 757.0 null] /Dest /21 /DEST pdfmark
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(6.) S
[/View [/XYZ -4 757.0 null] /Dest /62 /DEST pdfmark
( ) S
(References) S
0 -25.5 M
[/View [/XYZ -4 731.5 null] /Dest /22 /DEST pdfmark
0 -44 M
13 2 Nf
(6.1.) S
[/View [/XYZ -4 728.6 null] /Dest /63 /DEST pdfmark
( Normative ) S
(References) S
8 -71.3 M
%%IncludeResource: font Times-Roman
11 0 Nf
([FIPS.180-2.2002]) S
[/View [/XYZ -4 842 null] /Dest /23 /DEST pdfmark
136.7 -71.3 M
(National Institute of Standards and Technology, ) S
(\233) S
gsave
newpath
355.7 -72.4 M
58.0234375 0 RL
stroke
grestore
(Secure Hash ) S
[/Rect [354.69455 -74.05 414.718 -61.9500046] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips180-2/fips180-2.pdf)] Cd /ANN pdfmark
136.7 -84.5 M
gsave
newpath
136.7 -85.6 M
39.09375 0 RL
stroke
grestore
(Standard) S
[/Rect [135.698456 -87.25 176.792206 -75.15] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips180-2/fips180-2.pdf)] Cd /ANN pdfmark
(,\234 FIPS\240PUB 180-2, ) S
(August\2402002.) S
8 -106.2 M
([FIPS.186-3.2009]) S
[/View [/XYZ -4 842 null] /Dest /24 /DEST pdfmark
136.7 -106.2 M
(National Institute of Standards and Technology, ) S
(\233) S
gsave
newpath
355.7 -107.3 M
75.4414062 0 RL
stroke
grestore
(Digital Signature) S
[/Rect [354.69455 -109.0 432.135956 -96.9] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips186-3/fips186-3.pdf)] Cd /ANN pdfmark
136.7 -119.5 M
gsave
newpath
136.7 -120.5 M
41.84375 0 RL
stroke
grestore
(Standard ) S
gsave
newpath
178.5 -120.5 M
27.4882812 0 RL
stroke
grestore
(\(DSS\)) S
[/Rect [135.698456 -122.2 207.030487 -110.1] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://csrc.nist.gov/publications/fips/fips186-3/fips186-3.pdf)] Cd /ANN pdfmark
(,\234 FIPS\240PUB 186-3, ) S
(June\2402009.) S
8 -130.2 M
0.989464402 0.989464402 scale
-0.0 -11.0 RM
([I-D.ietf-httpauth-mutual]) S
[/View [/XYZ -4 842 null] /Dest /25 /DEST pdfmark
1.01064777 1.01064777 scale
136.7 -141.2 M
(Oiwa, Y., Watanabe, H., Takagi, H., Maeda, K., Hayashi, T., and Y.) S
136.7 -154.4 M
(Ioku, ) S
(\233) S
gsave
newpath
167.2 -155.5 M
158.21875 0 RL
stroke
grestore
(Mutual Authentication Protocol for ) S
gsave
newpath
325.5 -155.5 M
27.4921875 0 RL
stroke
grestore
(HTTP) S
[/Rect [166.241425 -157.15 353.952362 -145.049988] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://www.ietf.org/internet-drafts/draft-ietf-httpauth-mutual-02.txt)] Cd /ANN pdfmark
(,\234) S
136.7 -167.6 M
(draft-ietf-httpauth-mutual-02 \(work in progress\), ) S
(April\2402014.) S
8 -189.3 M
([RFC2119]) S
[/View [/XYZ -4 842 null] /Dest /26 /DEST pdfmark
136.7 -189.3 M
gsave
newpath
136.7 -190.5 M
40.921875 0 RL
stroke
grestore
(Bradner, ) S
gsave
newpath
177.6 -190.5 M
8.86328125 0 RL
stroke
grestore
(S.) S
(, ) S
(\233) S
gsave
newpath
196.9 -190.5 M
231.832031 0 RL
stroke
grestore
(Key words for use in RFCs to Indicate Requirement ) S
[/Rect [195.866425 -192.1 429.698456 -180.0] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc2119)] Cd /ANN pdfmark
136.7 -202.6 M
gsave
newpath
136.7 -203.7 M
29.3164062 0 RL
stroke
grestore
(Levels) S
[/Rect [135.698456 -205.3 167.014862 -193.2] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc2119)] Cd /ANN pdfmark
(,\234 BCP\24014, RFC\2402119, March\2401997 ) S
(\() S
gsave
newpath
327.3 -203.7 M
21.3789062 0 RL
stroke
grestore
(TXT) S
[/Rect [326.331268 -205.3 349.710175 -193.2] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://www.rfc-editor.org/rfc/rfc2119.txt)] Cd /ANN pdfmark
(, ) S
gsave
newpath
354.2 -203.7 M
31.15625 0 RL
stroke
grestore
(HTML) S
[/Rect [353.210175 -205.3 386.366425 -193.2] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/html/rfc2119.html)] Cd /ANN pdfmark
(, ) S
gsave
newpath
390.9 -203.7 M
24.4375 0 RL
stroke
grestore
(XML) S
[/Rect [389.866425 -205.3 416.303925 -193.2] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://xml.resource.org/public/rfc/xml/rfc2119.xml)] Cd /ANN pdfmark
(\).) S
8 -224.3 M
([RFC3526]) S
[/View [/XYZ -4 842 null] /Dest /27 /DEST pdfmark
136.7 -224.3 M
(Kivinen, T. and M. Kojo, ) S
(\233) S
gsave
newpath
256.1 -225.4 M
162.1875 0 RL
stroke
grestore
(More Modular Exponential \(MODP\)) S
[/Rect [255.139862 -227.05 419.327362 -214.95] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc3526)] Cd /ANN pdfmark
136.7 -237.5 M
gsave
newpath
136.7 -238.6 M
222.929688 0 RL
stroke
grestore
(Diffie-Hellman groups for Internet Key Exchange ) S
gsave
newpath
359.6 -238.6 M
25.640625 0 RL
stroke
grestore
(\(IKE\)) S
[/Rect [135.698456 -240.25 386.268768 -228.15] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc3526)] Cd /ANN pdfmark
(,\234) S
136.7 -250.7 M
(RFC\2403526, May\2402003 ) S
(\() S
gsave
newpath
239.1 -251.8 M
21.3789062 0 RL
stroke
grestore
(TXT) S
[/Rect [238.053925 -253.45 261.432831 -241.349991] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://www.rfc-editor.org/rfc/rfc3526.txt)] Cd /ANN pdfmark
(\).) S
0 -270.4 M
[/View [/XYZ -4 486.550018 null] /Dest /28 /DEST pdfmark
0 -286 M
13 2 Nf
(6.2.) S
[/View [/XYZ -4 486.550018 null] /Dest /64 /DEST pdfmark
( Informative ) S
(References) S
8 -302.3 M
0.989316106 0.989316106 scale
-0.0 -11.0 RM
11 0 Nf
([ISO.11770-4.2006]) S
[/View [/XYZ -4 842 null] /Dest /29 /DEST pdfmark
1.01079929 1.01079929 scale
112.2 -313.3 M
(International Organization for Standardization, \233Information technology \235) S
112.2 -326.5 M
(Security techniques \235 Key management \235 Part 4: Mechanisms based on) S
112.2 -339.8 M
(weak secrets,\234 ISO\240Standard 11770-4, ) S
(May\2402006.) S
8 -361.5 M
([RFC6090]) S
[/View [/XYZ -4 842 null] /Dest /30 /DEST pdfmark
112.2 -361.5 M
(McGrew, D., Igoe, K., and M. Salter, ) S
(\233) S
gsave
newpath
284.2 -362.6 M
122.179688 0 RL
stroke
grestore
(Fundamental Elliptic Curve) S
[/Rect [283.195496 -364.249969 407.375183 -352.149963] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc6090)] Cd /ANN pdfmark
112.2 -374.7 M
gsave
newpath
112.2 -375.8 M
63.84375 0 RL
stroke
grestore
(Cryptography ) S
gsave
newpath
176.1 -375.8 M
50.0976562 0 RL
stroke
grestore
(Algorithms) S
[/Rect [111.242355 -377.449982 227.183762 -365.349976] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://tools.ietf.org/html/rfc6090)] Cd /ANN pdfmark
(,\234 RFC\2406090, February\2402011 ) S
(\() S
gsave
newpath
358.5 -375.8 M
21.3789062 0 RL
stroke
grestore
(TXT) S
[/Rect [357.461121 -377.449982 380.840027 -365.349976] /Subtype /Link /Border [0 0 0] /Action [/Subtype /URI /URI (http://www.rfc-editor.org/rfc/rfc6090.txt)] Cd /ANN pdfmark
(\).) S
0 -394.4 M
[/View [/XYZ -4 362.550018 null] /Dest /31 /DEST pdfmark
0 -394.4 M
[/View [/XYZ -4 362.550018 null] /Dest /32 /DEST pdfmark
0 -413.4 M
15 2 Nf
(Appendix) S
[/View [/XYZ -4 361.550018 null] /Dest /65 /DEST pdfmark
( A. \(Informative\) Group Parameters for Discrete-Logarithm) S
0 -431.4 M
(Based ) S
(Algorithms) S
0 -455.6 M
11 0 Nf
3.01204419 0 32 0 0 (The MODP group used for the iso-kam3-dl-2048-sha256 algorithm is defined by the following ) A
0 -468.9 M
(parameters.) S
0 -493.1 M
(The prime ) S
(is:) S
0 -514.9 M
%%IncludeResource: font Courier
9.0 4 Nf
( q = 0xFFFFFFFF FFFFFFFF C90FDAA2 2168C234 C4C6628B 80DC1CD1) S
0 -525.7 M
( 29024E08 8A67CC74 020BBEA6 3B139B22 514A0879 8E3404DD) S
0 -536.4 M
( EF9519B3 CD3A431B 302B0A6D F25F1437 4FE1356D 6D51C245) S
0 -547.2 M
( E485B576 625E7EC6 F44C42E9 A637ED6B 0BFF5CB6 F406B7ED) S
0 -558 M
( EE386BFB 5A899FA5 AE9F2411 7C4B1FE6 49286651 ECE45B3D) S
0 -568.8 M
( C2007CB8 A163BF05 98DA4836 1C55D39A 69163FA8 FD24CF5F) S
0 -579.6 M
( 83655D23 DCA3AD96 1C62F356 208552BB 9ED52907 7096966D) S
0 -590.4 M
( 670C354E 4ABC9804 F1746C08 CA18217C 32905E46 2E36CE3B) S
0 -601.2 M
( E39E772C 180E8603 9B2783A2 EC07A28F B5C55DF0 6F4C52C9) S
0 -612 M
( DE2BCBF6 95581718 3995497C EA956AE5 15D22618 98FA0510) S
0 -622.8 M
( 15728E5A 8AACAA68 FFFFFFFF FFFFFFFF.) S
0 -631.8 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 7 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 8 8
%%PageResources: font Times-Roman Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -13.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
(The generator ) S
(is:) S
0 -35 M
%%IncludeResource: font Courier
9.0 4 Nf
( g = 2.) S
0 -59.2 M
11 0 Nf
(The size of the subgroup generated by g ) S
(is:) S
0 -81 M
9.0 4 Nf
( r = \(q - 1\) / 2 =) S
0 -91.8 M
( 0x7FFFFFFF FFFFFFFF E487ED51 10B4611A 62633145 C06E0E68) S
0 -102.6 M
( 94812704 4533E63A 0105DF53 1D89CD91 28A5043C C71A026E) S
0 -113.4 M
( F7CA8CD9 E69D218D 98158536 F92F8A1B A7F09AB6 B6A8E122) S
0 -124.2 M
( F242DABB 312F3F63 7A262174 D31BF6B5 85FFAE5B 7A035BF6) S
0 -135 M
( F71C35FD AD44CFD2 D74F9208 BE258FF3 24943328 F6722D9E) S
0 -145.8 M
( E1003E5C 50B1DF82 CC6D241B 0E2AE9CD 348B1FD4 7E9267AF) S
0 -156.6 M
( C1B2AE91 EE51D6CB 0E3179AB 1042A95D CF6A9483 B84B4B36) S
0 -167.4 M
( B3861AA7 255E4C02 78BA3604 650C10BE 19482F23 171B671D) S
0 -178.2 M
( F1CF3B96 0C074301 CD93C1D1 7603D147 DAE2AEF8 37A62964) S
0 -189 M
( EF15E5FB 4AAC0B8C 1CCAA4BE 754AB572 8AE9130C 4C7D0288) S
0 -199.8 M
( 0AB9472D 45565534 7FFFFFFF FFFFFFFF.) S
0 -224 M
11 0 Nf
3.01204419 0 32 0 0 (The MODP group used for the iso-kam3-dl-4096-sha512 algorithm is defined by the following ) A
0 -237.2 M
(parameters.) S
0 -261.4 M
(The prime ) S
(is:) S
0 -283.2 M
9.0 4 Nf
( q = 0xFFFFFFFF FFFFFFFF C90FDAA2 2168C234 C4C6628B 80DC1CD1) S
0 -294 M
( 29024E08 8A67CC74 020BBEA6 3B139B22 514A0879 8E3404DD) S
0 -304.8 M
( EF9519B3 CD3A431B 302B0A6D F25F1437 4FE1356D 6D51C245) S
0 -315.6 M
( E485B576 625E7EC6 F44C42E9 A637ED6B 0BFF5CB6 F406B7ED) S
0 -326.4 M
( EE386BFB 5A899FA5 AE9F2411 7C4B1FE6 49286651 ECE45B3D) S
0 -337.2 M
( C2007CB8 A163BF05 98DA4836 1C55D39A 69163FA8 FD24CF5F) S
0 -348 M
( 83655D23 DCA3AD96 1C62F356 208552BB 9ED52907 7096966D) S
0 -358.8 M
( 670C354E 4ABC9804 F1746C08 CA18217C 32905E46 2E36CE3B) S
0 -369.6 M
( E39E772C 180E8603 9B2783A2 EC07A28F B5C55DF0 6F4C52C9) S
0 -380.4 M
( DE2BCBF6 95581718 3995497C EA956AE5 15D22618 98FA0510) S
0 -391.2 M
( 15728E5A 8AAAC42D AD33170D 04507A33 A85521AB DF1CBA64) S
0 -402 M
( ECFB8504 58DBEF0A 8AEA7157 5D060C7D B3970F85 A6E1E4C7) S
0 -412.8 M
( ABF5AE8C DB0933D7 1E8C94E0 4A25619D CEE3D226 1AD2EE6B) S
0 -423.6 M
( F12FFA06 D98A0864 D8760273 3EC86A64 521F2B18 177B200C) S
0 -434.4 M
( BBE11757 7A615D6C 770988C0 BAD946E2 08E24FA0 74E5AB31) S
0 -445.2 M
( 43DB5BFC E0FD108E 4B82D120 A9210801 1A723C12 A787E6D7) S
0 -456 M
( 88719A10 BDBA5B26 99C32718 6AF4E23C 1A946834 B6150BDA) S
0 -466.8 M
( 2583E9CA 2AD44CE8 DBBBC2DB 04DE8EF9 2E8EFC14 1FBECAA6) S
0 -477.6 M
( 287C5947 4E6BC05D 99B2964F A090C3A2 233BA186 515BE7ED) S
0 -488.4 M
( 1F612970 CEE2D7AF B81BDD76 2170481C D0069127 D5B05AA9) S
0 -499.2 M
( 93B4EA98 8D8FDDC1 86FFB7DC 90A6C08F 4DF435C9 34063199) S
0 -510 M
( FFFFFFFF FFFFFFFF.) S
0 -534.2 M
11 0 Nf
(The generator ) S
(is:) S
0 -556 M
9.0 4 Nf
( g = 2.) S
0 -580.2 M
11 0 Nf
(The size of the subgroup generated by g ) S
(is:) S
0 -602 M
9.0 4 Nf
( r = \(q - 1\) / 2 =) S
0 -612.8 M
( 0x7FFFFFFF FFFFFFFF E487ED51 10B4611A 62633145 C06E0E68) S
0 -623.6 M
( 94812704 4533E63A 0105DF53 1D89CD91 28A5043C C71A026E) S
0 -634.4 M
( F7CA8CD9 E69D218D 98158536 F92F8A1B A7F09AB6 B6A8E122) S
0 -645.2 M
( F242DABB 312F3F63 7A262174 D31BF6B5 85FFAE5B 7A035BF6) S
0 -656 M
( F71C35FD AD44CFD2 D74F9208 BE258FF3 24943328 F6722D9E) S
0 -666.8 M
( E1003E5C 50B1DF82 CC6D241B 0E2AE9CD 348B1FD4 7E9267AF) S
0 -666.8 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 8 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 9 9
%%PageResources: font Times-Roman Times-Bold Courier Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -10.8 M
%%IncludeResource: font Courier
9.0 4 Nf
( C1B2AE91 EE51D6CB 0E3179AB 1042A95D CF6A9483 B84B4B36) S
0 -21.6 M
9.0 4 Nf
( B3861AA7 255E4C02 78BA3604 650C10BE 19482F23 171B671D) S
0 -32.4 M
( F1CF3B96 0C074301 CD93C1D1 7603D147 DAE2AEF8 37A62964) S
0 -43.2 M
( EF15E5FB 4AAC0B8C 1CCAA4BE 754AB572 8AE9130C 4C7D0288) S
0 -54 M
( 0AB9472D 45556216 D6998B86 82283D19 D42A90D5 EF8E5D32) S
0 -64.8 M
( 767DC282 2C6DF785 457538AB AE83063E D9CB87C2 D370F263) S
0 -75.6 M
( D5FAD746 6D8499EB 8F464A70 2512B0CE E771E913 0D697735) S
0 -86.4 M
( F897FD03 6CC50432 6C3B0139 9F643532 290F958C 0BBD9006) S
0 -97.2 M
( 5DF08BAB BD30AEB6 3B84C460 5D6CA371 047127D0 3A72D598) S
0 -108 M
( A1EDADFE 707E8847 25C16890 54908400 8D391E09 53C3F36B) S
0 -118.8 M
( C438CD08 5EDD2D93 4CE1938C 357A711E 0D4A341A 5B0A85ED) S
0 -129.6 M
( 12C1F4E5 156A2674 6DDDE16D 826F477C 97477E0A 0FDF6553) S
0 -140.4 M
( 143E2CA3 A735E02E CCD94B27 D04861D1 119DD0C3 28ADF3F6) S
0 -151.2 M
( 8FB094B8 67716BD7 DC0DEEBB 10B8240E 68034893 EAD82D54) S
0 -162 M
( C9DA754C 46C7EEE0 C37FDBEE 48536047 A6FA1AE4 9A0318CC) S
0 -172.8 M
( FFFFFFFF FFFFFFFF.) S
0 -181.8 M
[/View [/XYZ -4 575.199951 null] /Dest /33 /DEST pdfmark
0 -181.8 M
[/View [/XYZ -4 575.199951 null] /Dest /34 /DEST pdfmark
0 -202.8 M
%%IncludeResource: font Times-Bold
15 2 Nf
(Appendix) S
[/View [/XYZ -4 572.199951 null] /Dest /66 /DEST pdfmark
( B. \(Informative\) Derived Numerical ) S
(Values) S
0 -227 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.24609375 0 32 0 0 (This section provides several numerical values for implementing this protocol, derived from the above) A
0 -240.2 M
(specifications. The values shown in this section are for informative purposes only. ) S
203.1 -268.5 M
11 2 Nf
(dl-2048) S
244.1 -268.5 M
11 2 Nf
(dl-4096) S
285 -268.5 M
11 2 Nf
(ec-p256) S
327.1 -268.5 M
11 2 Nf
(ec-p521) S
51.7 -288.3 M
11 0 Nf
(Size of ) S
(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
( ) S
(etc.) S
0.0 -2.2 RM
203.1 -289.4 M
(2048) S
244.1 -289.4 M
(4096) S
285 -289.4 M
(257) S
327.1 -289.4 M
(522) S
369.3 -289.4 M
(\(bits\)) S
51.7 -310.2 M
(hSize, Size of ) S
(H\(...\)) S
203.1 -310.2 M
(256) S
244.1 -310.2 M
(512) S
285 -310.2 M
(256) S
327.1 -310.2 M
(512) S
369.3 -310.2 M
(\(bits\)) S
51.7 -330 M
11 0 Nf
(length of ) S
(OCTETS\(K) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
11 0 Nf
(\) ) S
(etc.) S
0.0 -2.2 RM
203.1 -331.1 M
(256) S
244.1 -331.1 M
(512) S
285 -331.1 M
(33) S
327.1 -331.1 M
(66) S
369.3 -331.1 M
(\(octets\)) S
51.7 -351.9 M
(length of kc1, ks1 param. ) S
(values.) S
203.1 -351.9 M
(344 ) S
(*) S
244.1 -351.9 M
(684 ) S
(*) S
285 -351.9 M
(66) S
327.1 -351.9 M
(132) S
369.3 -351.9 M
(\(octets\)) S
51.7 -371.7 M
(length of vkc, vks param. ) S
(values.) S
203.1 -371.7 M
(44 ) S
(*) S
244.1 -371.7 M
(88 ) S
(*) S
285 -371.7 M
(64) S
327.1 -371.7 M
(128) S
369.3 -371.7 M
(\(octets\)) S
51.7 -391.4 M
11 0 Nf
(minimum allowed ) S
(S) S
1.2 0.0 RM
0.0 -2.2 RM
8.36798 0 Nf
(c1) S
0.0 2.2 RM
1.5 0.0 RM
0.0 -2.2 RM
203.1 -392.5 M
11 0 Nf
(2048) S
244.1 -392.5 M
(4096) S
285 -392.5 M
(1) S
327.1 -392.5 M
(1) S
369.3 -392.5 M
(\240) S
0 -423.6 M
11 0 Nf
(\(The numbers marked with an * do not include any enclosing quotation ) S
(marks.\)) S
0 -434.6 M
[/View [/XYZ -4 322.449951 null] /Dest /35 /DEST pdfmark
0 -434.6 M
[/View [/XYZ -4 322.449951 null] /Dest /36 /DEST pdfmark
0 -453.6 M
15 2 Nf
(Appendix) S
[/View [/XYZ -4 321.449951 null] /Dest /67 /DEST pdfmark
( C. \(Informative\) Draft Change ) S
(Log) S
0 -461.1 M
[/View [/XYZ -4 295.949951 null] /Dest /37 /DEST pdfmark
0 -461.1 M
[/View [/XYZ -4 295.949951 null] /Dest /38 /DEST pdfmark
0 -483.6 M
15 2 Nf
(C.1.) S
[/View [/XYZ -4 291.449951 null] /Dest /68 /DEST pdfmark
( Changes in HTTPAUTH revision ) S
(02) S
11 -504.1 M
gsave
0 setgray
newpath
11.0 -504.120056 2.75 0 360 arc
closepath
fill
grestore
22 -507.8 M
11 0 Nf
(Added nIterPi parameter to adjust to the changes to the core draft. ) S
11 -518.3 M
gsave
0 setgray
newpath
11.0 -518.320068 2.75 0 360 arc
closepath
fill
grestore
22 -522 M
(Added a note on the verification of exchange ) S
(transaction.) S
0 -533 M
[/View [/XYZ -4 224.049927 null] /Dest /39 /DEST pdfmark
0 -533 M
[/View [/XYZ -4 224.049927 null] /Dest /40 /DEST pdfmark
0 -552 M
15 2 Nf
(C.2.) S
[/View [/XYZ -4 223.049927 null] /Dest /69 /DEST pdfmark
( Changes in HTTPAUTH revision ) S
(01) S
11 -572.5 M
gsave
0 setgray
newpath
11.0 -572.520081 2.75 0 360 arc
closepath
fill
grestore
22 -576.2 M
11 0 Nf
1.74939907 0 32 0 0 (Notation change: integer output of hash function will be notated as INT\(H\(*\)\), changed from ) A
22 -589.4 M
(H\(*\).) S
0 -600.4 M
[/View [/XYZ -4 156.649902 null] /Dest /41 /DEST pdfmark
0 -600.4 M
[/View [/XYZ -4 156.649902 null] /Dest /42 /DEST pdfmark
0 -601.4 M
gsave
0 setgray
219.9 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 9 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%Page: 10 10
%%PageResources: font Times-Roman Times-Bold Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -18 M
%%IncludeResource: font Times-Bold
15 2 Nf
(C.3.) S
[/View [/XYZ -4 757.0 null] /Dest /70 /DEST pdfmark
( Changes in revision ) S
(02) S
11 -38.6 M
gsave
0 setgray
newpath
11.0 -38.57 2.75 0 360 arc
closepath
fill
grestore
22 -42.2 M
%%IncludeResource: font Times-Roman
11 0 Nf
0.992968738 0 32 0 0 (Implementation hints in appendix changed \(number of characters for base64-fixed-number does) A
22 -55.4 M
(not contain ) S
(double-quotes\).) S
0 -66.4 M
[/View [/XYZ -4 690.6 null] /Dest /43 /DEST pdfmark
0 -66.4 M
[/View [/XYZ -4 690.6 null] /Dest /44 /DEST pdfmark
0 -85.4 M
15 2 Nf
(C.4.) S
[/View [/XYZ -4 689.6 null] /Dest /71 /DEST pdfmark
( Changes in revision ) S
(01) S
11 -106 M
gsave
0 setgray
newpath
11.0 -105.97 2.75 0 360 arc
closepath
fill
grestore
22 -109.6 M
11 0 Nf
(Parameter names renamed. ) S
11 -120.2 M
gsave
0 setgray
newpath
11.0 -120.170006 2.75 0 360 arc
closepath
fill
grestore
22 -123.8 M
(Some expressions clarified without changing the ) S
(value.) S
0 -134.8 M
[/View [/XYZ -4 622.2 null] /Dest /45 /DEST pdfmark
0 -134.8 M
[/View [/XYZ -4 622.2 null] /Dest /46 /DEST pdfmark
0 -153.8 M
15 2 Nf
(C.5.) S
[/View [/XYZ -4 621.2 null] /Dest /72 /DEST pdfmark
( Changes in revision ) S
(00) S
0 -178 M
11 0 Nf
(The document is separated from the revision 08 of the core documentation. ) S
0 -189 M
[/View [/XYZ -4 568.0 null] /Dest /47 /DEST pdfmark
0 -208 M
15 2 Nf
(Authors') S
[/View [/XYZ -4 567.0 null] /Dest /73 /DEST pdfmark
( ) S
(Addresses) S
0 -233.3 M
11 0 Nf
(\240) S
44.6 -233.3 M
(Yutaka ) S
(Oiwa) S
0 -247.1 M
(\240) S
44.6 -247.1 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -260.8 M
(\240) S
44.6 -260.8 M
(Research Institute for Secure ) S
(Systems) S
0 -274.6 M
(\240) S
44.6 -274.6 M
(3-11-46 ) S
(Nakouji) S
0 -288.3 M
(\240) S
44.6 -288.3 M
(Amagasaki, ) S
(Hyogo) S
0 -302.1 M
(\240) S
44.6 -302.1 M
(JP) S
12.6 -315.8 M
(Email:\240) S
44.6 -315.8 M
gsave
newpath
44.6 -316.9 M
154.285156 0 RL
stroke
grestore
(mutual-auth-contact-ml@aist.go.jp) S
0 -329.6 M
(\240) S
44.6 -329.6 M
(\240) S
0 -343.3 M
(\240) S
44.6 -343.3 M
(Hajime ) S
(Watanabe) S
0 -357.1 M
(\240) S
44.6 -357.1 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -370.8 M
(\240) S
44.6 -370.8 M
(Research Institute for Secure ) S
(Systems) S
0 -384.6 M
(\240) S
44.6 -384.6 M
(Tsukuba Central ) S
(2) S
0 -398.3 M
(\240) S
44.6 -398.3 M
(1-1-1 ) S
(Umezono) S
0 -412.1 M
(\240) S
44.6 -412.1 M
(Tsukuba-shi, ) S
(Ibaraki) S
0 -425.8 M
(\240) S
44.6 -425.8 M
(JP) S
0 -439.6 M
(\240) S
44.6 -439.6 M
(\240) S
0 -453.3 M
(\240) S
44.6 -453.3 M
(Hiromitsu ) S
(Takagi) S
0 -467.1 M
(\240) S
44.6 -467.1 M
(National Institute of Advanced Industrial Science and ) S
(Technology) S
0 -480.8 M
(\240) S
44.6 -480.8 M
(Research Institute for Secure ) S
(Systems) S
0 -494.6 M
(\240) S
44.6 -494.6 M
(Tsukuba Central ) S
(2) S
0 -508.3 M
(\240) S
44.6 -508.3 M
(1-1-1 ) S
(Umezono) S
0 -522 M
(\240) S
44.6 -522 M
(Tsukuba-shi, ) S
(Ibaraki) S
0 -535.8 M
(\240) S
44.6 -535.8 M
(JP) S
0 -549.5 M
(\240) S
44.6 -549.5 M
(\240) S
0 -563.3 M
(\240) S
44.6 -563.3 M
(Kaoru ) S
(Maeda) S
0 -577 M
(\240) S
44.6 -577 M
(Lepidum Co. ) S
(Ltd.) S
0 -590.8 M
(\240) S
44.6 -590.8 M
(#602, Village Sasazuka ) S
(3) S
0 -604.5 M
(\240) S
44.6 -604.5 M
(1-30-3 ) S
(Sasazuka) S
0 -618.3 M
(\240) S
44.6 -618.3 M
(Shibuya-ku, ) S
(Tokyo) S
0 -632 M
(\240) S
44.6 -632 M
(JP) S
0 -645.8 M
(\240) S
44.6 -645.8 M
(\240) S
0 -659.5 M
(\240) S
44.6 -659.5 M
(Tatsuya ) S
(Hayashi) S
44.6 -659.5 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 10 -) S
0 setgray
89.3 -8 M
grestore
pgsave restore N
%%Page: 11 11
%%PageResources: font Times-Roman Helvetica
%%BeginPageSetup
/pgsave save D
71 757 translate
%%EndPageSetup
0 0 M
0.6 setlinewidth
0 -11 M
%%IncludeResource: font Times-Roman
11 0 Nf
(\240) S
44.6 -11 M
(Lepidum Co. ) S
(Ltd.) S
0 -24.8 M
(\240) S
44.6 -24.8 M
(#602, Village Sasazuka ) S
(3) S
0 -38.5 M
(\240) S
44.6 -38.5 M
(1-30-3 ) S
(Sasazuka) S
0 -52.2 M
(\240) S
44.6 -52.2 M
(Shibuya-ku, ) S
(Tokyo) S
0 -66 M
(\240) S
44.6 -66 M
(JP) S
0 -79.8 M
(\240) S
44.6 -79.8 M
(\240) S
0 -93.5 M
(\240) S
44.6 -93.5 M
(Yuichi ) S
(Ioku) S
0 -107.2 M
(\240) S
44.6 -107.2 M
(Individual) S
0 -121 M
gsave
0 setgray
217.7 -712 M
%%IncludeResource: font Helvetica
8 8 Nf
(- 11 -) S
0 setgray
0 -8 M
grestore
pgsave restore N
%%EOF
| PAFTECH AB 2003-2026 | 2026-04-24 13:04:24 |