…LS_DH_anon_WITH_CAMELLIA_256_CBC_SHA RFC5932 0x00,0x8A TLS_PSK_WITH_RC4_128_SHA RFC4279 ][ RFC6347 ][ RFC9847 0x00,0x8B TLS_PSK_WITH_3DES_EDE_CBC_SHA RFC4279 0x00,0x8C TLS_PSK_WITH_AES_128_CBC_SHA RFC4279 0x00,0x8D TLS_PSK_WITH_AES_256_CBC_SHA RFC4279 0x00,0x8E TLS_DHE_PSK_WITH_R…
…tiated, whatever the negotiated TLS version is. The applicability statement in [RFC4279] applies to this document as well. 1.2. Conventions Used in This Document The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and …
… TLS_KRB5_EXPORT_WITH_RC4_40_MD5 [ RFC2712 0x00,0x8A TLS_PSK_WITH_RC4_128_SHA [ RFC4279 0x00,0x8E TLS_DHE_PSK_WITH_RC4_128_SHA [ RFC4279 0x00,0x92 TLS_RSA_PSK_WITH_RC4_128_SHA [ RFC4279 0xC0,0x02 TLS_ECDH_ECDSA_WITH_RC4_128_SHA [ RFC4492 0xC0,0x07 TLS_ECDHE_ECDSA_WITH_RC4_128_SHA…
…ertificate_list<0..2^24-1>; case psk: opaque psk_identity<0..2^16-1>; /* from [ RFC4279 ] */ }; } ClientIdentity; The structure StatePlaintext stores the TLS session state including the master_secret. The timestamp within this structure allows the TLS server to expire tickets. To…
…meant to identify that a standard is used for pre-shared keys such as TLS-PSK [ RFC4279 ], and that the ciphersuite used for keys will be established during protocol negotiation. Table 22 Vocabulary Terms in PSKSecurityScheme Level Vocabulary term Description Assignment Type iden…
… keys) SHOULD be used if possible on LANs, meaning one of the ciphersuites in [ RFC4279 ]. This does require that Things are assigned PSKs in a common security domain, which is typically done by following an onboarding process. Unfortunately, specific onboarding processes are cur…
…ertificate_list<0..2^24-1>; case psk: opaque psk_identity<0..2^16-1>; /* from [ RFC4279 ] */ }; } ClientIdentity; The structure StatePlaintext stores the TLS session state including the master_secret. The timestamp within this structure allows the TLS server to expire tickets. To…
…ertificate_list<0..2^24-1>; case psk: opaque psk_identity<0..2^16-1>; /* from [ RFC4279 ] */ }; } ClientIdentity; The structure StatePlaintext stores the TLS session state including the master_secret. The timestamp within this structure allows the TLS server to expire tickets. To…
… management. PreSharedKey: DTLS is enabled, there is a list of pre-shared keys [RFC4279], and each key includes a list of which nodes it can be used to communicate with as described in Section 9.1.3.1. At the extreme, there may be one key for each node this CoAP node needs to com…
…certificate_list<0..2^24-1>; case psk: opaque psk_identity<0..2^16-1>; /* from [RFC4279] */ }; } ClientIdentity; Notes: The ticket construction recommended in section 4 appears to be unimplementable in two respects: 1. Tickets are up to 2^16-1 bytes in length, given they appear i…
…certificate_list<0..2^24-1>; case psk: opaque psk_identity<0..2^16-1>; /* from [RFC4279] */ }; } ClientIdentity; Notes: The ticket construction recommended in section 4 appears to be unimplementable in two respects: 1. Tickets are up to 2^16-1 bytes in length, given they appear i…