Collaborate Disseminate
Regarding the TLS 1.3 Handshake Protocol:
When the Server sends it’s certificate, exactly how does the Client validate this?
I know at a high level the Client is verifying the data the Server sent matches what the Certificate Authority con… Continue reading What happens at a low level when authenticating server certificates?
When using AES GCM for encryption within TLS and referring to the below diagram:
Is iv[0:3] the fixed IV established from the handshake and iv[4:11] are the current (write) sequence number + 1?
For TLS 1.2 the additional data is type || … Continue reading How to form the IV and Additional Data for TLS when encrypting the plaintext
When TLS 1.3 is used with GCM AES (128), does the GCM auth tag (calculated right at the end) get included within the record?
I am looking at the 1.3 RFC and section 5.2 doesn’t seem to explicitly mention the GCM auth tag being included an… Continue reading Does TLS 1.3 include the auth tag from GCM in the record?