Re: [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769)

Sean Turner <> Fri, 10 March 2017 02:25 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 4A151126579 for <>; Thu, 9 Mar 2017 18:25:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id hnou07wj7yYv for <>; Thu, 9 Mar 2017 18:25:33 -0800 (PST)
Received: from ( [IPv6:2607:f8b0:400d:c09::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 5F6011294E0 for <>; Thu, 9 Mar 2017 18:25:20 -0800 (PST)
Received: by with SMTP id y76so149386922qkb.0 for <>; Thu, 09 Mar 2017 18:25:20 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=google; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=U6LBCog31s4ivf+Z+ydpGgC6wr1LlEd0L6pWB1eUjTU=; b=Cwx3XJbL9usQaMUgxu5mXoao7sr8ZMe2PJhWLp4KJK5xp65aDPgIUVfezpiyzA8Eru iClY2HiWo5lSt7pxs1oKPJdjOmZXMu2XHISPf5YKO+wpdt7NUifPhNovQ1TQgkXkpjlW NAm0YAGFg2WyirS4X+bT5B+408fkFggdndMZw=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=U6LBCog31s4ivf+Z+ydpGgC6wr1LlEd0L6pWB1eUjTU=; b=k2F7tCp9od7AFNVDnPpxBsYTgKeufk3ZvFvUyfZ62W3TZH8PbqZnPiaGj7vnwF7sYu 4Wps3WESOBTk1rIL5flS9dKrPEgLQZCUm0KAN4oCaCM31wSzR0/EVtoEQhzROxLu3ZO3 mTNMT81UKSIrvTgGNX+2X66EtJKlcmARUmdP3oyC62pA9dn4WxVWnXfVyZKvz96TApoJ ZcZ6xmicDeyo6SK4Kp98cG5BfmhQ+WHZiVj5a6WtI4uir19RNxbS7JLDSzIMOWzx9LJp fRxuHEZDQKwnbqOSUqQi1JV3qIocmDmMdkJK7aQ9/DLp/F57DqGsBcUzacLAIc5aCtl4 iEaw==
X-Gm-Message-State: AFeK/H0D582oK6CsGoRh/4F5HR7JdKVCCMMa1uZH7nQa1B6fzRz1aOPiQIli7s0CfuO4Ig==
X-Received: by with SMTP id j67mr18117091qkf.4.1489112319996; Thu, 09 Mar 2017 18:18:39 -0800 (PST)
Received: from [] ([]) by with ESMTPSA id f21sm5546309qtg.3.2017. (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 09 Mar 2017 18:18:39 -0800 (PST)
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 10.2 \(3259\))
From: Sean Turner <>
In-Reply-To: <>
Date: Thu, 9 Mar 2017 21:18:37 -0500
Content-Transfer-Encoding: quoted-printable
Message-Id: <>
References: <>
To: "<>" <>
X-Mailer: Apple Mail (2.3259)
Archived-At: <>
Subject: Re: [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769)
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Crypto Forum Research Group <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 10 Mar 2017 02:25:43 -0000

After many emails about the wording for s5.5 Limits on Key Usage, it’s time to judge consensus on whether or not to make any changes to that section.  The important thing is that the SHOULD implement the key update from s4.5.3 was never in question.  There was no consensus to change the actual GCM limits on key usage; again the text related to ChaCha20/Poly1305 never really was in question.  The discussion has wound down to whether it was better to count records or bytes/blocks for the GCM limit calculation.  We didn’t see any strong consensus to change this description.  Therefore, we see no consensus to change the text in s5.5.  ekr please close PR#765 and PR#769.


> On Feb 10, 2017, at 12:07 AM, Sean Turner <> wrote:
> All,
> We’ve got two outstanding PRs that propose changes to draft-ietf-tls-tls13 Section 5.5 “Limits on Key Usage”.  As it relates to rekeying, these limits have been discussed a couple of times and we need to resolve once and for all whether the TLS WG wants to:
> a) Close these two PRs and go with the existing text [0]
> b) Adopt PR#765 [1]
> c) Adopt PR#769 [2]
> Please indicate you preference to the TLS mailing list before Feb 17.  Note that unless there’s clear consensus to change the text will remain as is (i.e., option a).
> J&S
> [0]
> [1]
> [2]