Peter:
>I believe that this document and the companion document that tells
how to use
>AES-CCM and AES-GCM are ready for WGLC.
Uhhmmm, I beg to differ... it still doesn't contain the changes I sent some
time ago to handle encrypt + MAC combinations (e.g. AES + HMAC), and there was
no agreement about handling of auth.attributes - two people pointed out that
the existing scheme has problems, but this hasn't been resolved yet.
On the first item, you never sent text. We discussed potential ways
to handle it, but you never provided a section to add to the
document. I see no reason to delay the AES-CCM and AES-GCM document
until you do so.
On the second item, I disagree. The authenticated attributes are
handled the same as in AuthenticatedData. While I understand that
the use of a SEQUENCE instead of a SET would be easier to process,
but that would mean that an implementation could not take advantage
of existing attribute handling routines.
Russ