{"draft":"draft-ietf-tls-encrypt-then-mac-03","doc_id":"RFC7366","title":"Encrypt-then-MAC for Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS)","authors":["P. Gutmann"],"format":["ASCII","HTML"],"page_count":"7","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Transport Layer Security","abstract":"This document describes a means of negotiating the use of the\r\nencrypt-then-MAC security mechanism in place of the existing MAC-then-encrypt\r\nmechanism in Transport Layer Security (TLS) and Datagram Transport Layer\r\nSecurity (DTLS).  The MAC-then-encrypt mechanism has been the subject of a\r\nnumber of security vulnerabilities over a period of many years.","pub_date":"September 2014","keywords":[],"obsoletes":[],"obsoleted_by":[],"updates":[],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC7366","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc7366"}