Key Derivation Functions and their Uses

Document Type Expired Internet-Draft (cfrg RG)
Last updated 2010-02-26
Stream IRTF
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream IRTF state (None)
Consensus Boilerplate Unknown
Document shepherd No shepherd assigned
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This note surveys the existing designs for Key Derivation Functions (KDFs), the purposes for which they are used, and their security and usability goals. Importantly, some important protocols use KDFs for multiple purposes. We offer conclusions to guide future standards work and research on KDFs.


David McGrew (
Brian Weis (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)