Pre-Shared Key Cipher Suites for Transport Layer Security (TLS) with SHA-256/384 and AES Galois Counter Mode

Document Type Replaced Internet-Draft (individual)
Author Mohamad Badra 
Last updated 2008-10-02 (latest revision 2008-05-17)
Replaced by RFC 5487
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-tls-psk-new-mac-aes-gcm
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


RFC 4279 and RFC 4785 describe pre-shared key cipher suites for Transport Layer Security (TLS). However, all those cipher suites use SHA-1 as their MAC algorithm. This document describes a set of cipher suites for TLS/DTLS which uses stronger digest algorithms (i.e., SHA-256 or SHA-384) and another which uses the Advanced Encryption Standard (AES) in Galois Counter Mode (GCM).


Mohamad Badra (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)