Add text in Security Considerations on the uniqueness of OSCORE parameters

Tag: WGLC

Göran Selander wrote (https://mailarchive.ietf.org/arch/msg/6tisch/fWK4i3bs3r4VmFCkSoGzgtlWSuo):

The importance of not reusing the nonce with the same key may be repeated in the security considerations.

I am not sure if discussing nonce uniqueness with a given key really belongs to this document. To me, that really belongs to OSCORE. That said, I think it would be really good to add, as you suggest, a discussion in security considerations on the uniqueness of OSCORE parameters, referring to the OSCORE document.

Comments (2)