Update OCB ciphersuites to follow new nonce scheme from -04 draft

author: Jack Lloyd <[email protected]> 2016-04-04 21:15:27 -0400
committer: Jack Lloyd <[email protected]> 2016-04-04 21:15:27 -0400
commit: 6a902a886c5b71ac16f2d957b5bdd319ab6eae0b (patch)
tree: 51031d94f225bce4d7cb9582aac6aad8dea3e5b0 /doc/news.rst
parent: c4faa7f938b4a70b691666d11b7baf53b4a305a3 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/doc/news.rst b/doc/news.rst
index 80b0dfe5a..7a5b3b115 100644
--- a/doc/news.rst
+++ b/doc/news.rst
@@ -9,6 +9,11 @@ Version 1.11.30, Not Yet Released
   (non-standard) ChaCha20Poly1305 ciphersuites from
   draft-agl-tls-chacha20poly1305 remain but are deprecated.
 
+* The OCB TLS ciphersuites have been updated to use the new nonce
+  scheme from draft-zauner-tls-aes-ocb-04. This is incompatible with
+  previous versions of the draft, and the ciphersuite numbers used for
+  the (still experimental) OCB ciphersuites have changed.
+
 * A bug in the IETF version of ChaCha20Poly1305 (with 96 bit nonces)
   caused incorrect computation when the plaintext or AAD was exactly
   a multiple of 16 bytes.
author	Jack Lloyd <[email protected]>	2016-04-04 21:15:27 -0400
committer	Jack Lloyd <[email protected]>	2016-04-04 21:15:27 -0400
commit	6a902a886c5b71ac16f2d957b5bdd319ab6eae0b (patch)
tree	51031d94f225bce4d7cb9582aac6aad8dea3e5b0 /doc/news.rst
parent	c4faa7f938b4a70b691666d11b7baf53b4a305a3 (diff)