TLS 1.2 PRF
E192650
TLS 1.2 PRF is a pseudorandom function used in the TLS 1.2 protocol to derive cryptographic keying material and verify handshake integrity from shared secrets and handshake data.
All labels observed (1)
| Label | Occurrences |
|---|---|
| TLS 1.2 PRF canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T1711739 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: TLS 1.2 PRF Context triple: [TLS 1.2 Finished message, computedUsing, TLS 1.2 PRF]
-
A.
TLS 1.2 Finished message
The TLS 1.2 Finished message is the protocol’s final handshake message that proves both parties share the same session keys and that the preceding handshake messages have not been tampered with.
-
B.
Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS)
"Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS)" is an IETF standard (RFC 7919) that defines secure, standardized finite-field Diffie-Hellman parameter sets for use in TLS to improve cryptographic security and interoperability.
-
C.
Poly1305
Poly1305 is a high-speed message authentication code (MAC) algorithm commonly used with stream ciphers like ChaCha20 to provide data integrity and authenticity.
-
D.
TLS 1.1
TLS 1.1 is an older version of the Transport Layer Security protocol that improved upon earlier SSL standards but has since been deprecated in favor of more secure versions like TLS 1.2 and 1.3.
-
E.
RFC 5246
RFC 5246 is the Internet Engineering Task Force (IETF) standard that specifies Transport Layer Security (TLS) version 1.2, a widely used protocol for securing communications over computer networks.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: TLS 1.2 PRF Target entity description: TLS 1.2 PRF is a pseudorandom function used in the TLS 1.2 protocol to derive cryptographic keying material and verify handshake integrity from shared secrets and handshake data.
-
A.
TLS 1.2 Finished message
The TLS 1.2 Finished message is the protocol’s final handshake message that proves both parties share the same session keys and that the preceding handshake messages have not been tampered with.
-
B.
Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS)
"Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS)" is an IETF standard (RFC 7919) that defines secure, standardized finite-field Diffie-Hellman parameter sets for use in TLS to improve cryptographic security and interoperability.
-
C.
Poly1305
Poly1305 is a high-speed message authentication code (MAC) algorithm commonly used with stream ciphers like ChaCha20 to provide data integrity and authenticity.
-
D.
TLS 1.1
TLS 1.1 is an older version of the Transport Layer Security protocol that improved upon earlier SSL standards but has since been deprecated in favor of more secure versions like TLS 1.2 and 1.3.
-
E.
RFC 5246
RFC 5246 is the Internet Engineering Task Force (IETF) standard that specifies Transport Layer Security (TLS) version 1.2, a widely used protocol for securing communications over computer networks.
- F. None of above. chosen
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
cryptographic primitive
ⓘ
pseudorandom function ⓘ |
| A_nDefinition |
A(1) = HMAC_hash(secret, seed)
ⓘ
A(i) = HMAC_hash(secret, A(i-1)) for i > 1 ⓘ |
| backwardCompatibleWith | TLS 1.0 ⓘ |
| basedOn | HMAC ⓘ |
| category | key derivation function ⓘ |
| construction | HMAC-based key derivation function ⓘ |
| definedBy | TLS 1.2 cipher suite PRF hash ⓘ |
| derives |
IVs
ⓘ
MAC keys ⓘ encryption keys ⓘ key block ⓘ master secret ⓘ |
| designGoal |
backward compatibility with earlier TLS versions
ⓘ
improved cryptographic agility ⓘ |
| domain |
TLS
ⓘ
surface form:
Transport Layer Security
|
| improvesOver | MD5-SHA1 combined PRF of TLS 1.0 ⓘ |
| inputIncludes |
label
ⓘ
secret ⓘ seed ⓘ |
| introducedIn | TLS version 1.2 ⓘ |
| operatesAt | transport layer security protocol level ⓘ |
| outputLength | arbitrary length ⓘ |
| outputType | byte string ⓘ |
| P_hashDefinition | P_hash(secret, seed) = HMAC_hash(secret, A(1) || seed) || HMAC_hash(secret, A(2) || seed) || ... ⓘ |
| primaryPurpose |
handshake integrity verification
ⓘ
key derivation ⓘ |
| relevantFor | secure channel establishment ⓘ |
| replaces |
TLS 1.0
ⓘ
surface form:
TLS 1.0 PRF
|
| securityDependsOn | underlying hash function ⓘ |
| specifiedAs | PRF(secret, label, seed) = P_hash(secret, label || seed) ⓘ |
| standardizedIn | RFC 5246 ⓘ |
| supports | negotiable hash algorithms ⓘ |
| takesAsInput |
client random
ⓘ
pre-master secret ⓘ server random ⓘ |
| usedBy | TLS 1.2 implementations ⓘ |
| usedDuring |
TLS handshake
ⓘ
TLS session key establishment ⓘ |
| usedFor |
Finished message verification
ⓘ
exporter keying material ⓘ |
| usedInProtocol | TLS 1.2 ⓘ |
| usesComponent | P_hash function ⓘ |
| usesHashFunction |
SHA-256
ⓘ
SHA-384 ⓘ other negotiated hash function ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: TLS 1.2 PRF Description of subject: TLS 1.2 PRF is a pseudorandom function used in the TLS 1.2 protocol to derive cryptographic keying material and verify handshake integrity from shared secrets and handshake data.
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.