Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-11.txt
Mohit Sethi M <mohit.m.sethi@ericsson.com> Wed, 14 October 2020 18:01 UTC
Return-Path: <mohit.m.sethi@ericsson.com>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 062B03A0FA8 for <emu@ietfa.amsl.com>; Wed, 14 Oct 2020 11:01:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.514
X-Spam-Level:
X-Spam-Status: No, score=-3.514 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.2, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.213, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lLkBcmESmas8 for <emu@ietfa.amsl.com>; Wed, 14 Oct 2020 11:01:11 -0700 (PDT)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50067.outbound.protection.outlook.com [40.107.5.67]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DD3393A0D40 for <emu@ietf.org>; Wed, 14 Oct 2020 11:01:10 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=R7E3iaDUjFRqndnLh9MorXupd9Jiuf1ApPi3eBOYV8umi5ufmBD5uYpbzvDfp0n10ryoCtL2Hz84OuPang7wEXjmzgeAyCCZKyUjxEC/bPP97LCCSbFGLxtx3rFRqLJSs6YwPFz7xZXIYoCPcGbFyCNGDxDNOCIUlSVkcO9WbOXInabk100vmXDpR7lwpWH+GtnXkcmKEj1r+wPgbfqSAYRqerCDJxUN5B85OMXuWmQ+t3Y9PVt/NeUC+gNtek1E7UNa4/B7wnzMv+3C59dZw3tzv88/NWg8TfItUTtGvVZ0END8riDfV74XT+z4B0F1aoODHMMo1ifCMY3AXfqS9A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ImyDMORS3dxKUOZzYsuLT5XcCs9Ua2X3QJvuUDYV7tk=; b=Teu94OcN0iyFrEfljzVzsPJMW5OXH7keUUXjwzv0fkjZuClWlJyHvuTtcFfu8dhvj/ATIcDj279CUunNeUj+C1g3ieTsuMf/MFuXftladDoUMJbdt9xz0Mi1pVF6IyftnvZ66ysolrvJaSA8/DmNXxx9hgvwD1YufCBLL55vdJS+QhV6MU289MXtPhursS42FlEfZQHGAoe8PEyD1q2DBbsNxw/pzAvcYW7XxY1W63nlql6edJhLtfDU/CNZB4AOrcc3ikLIzN8AsFjfNKjZH0K67Hafkz4EFdi0VSAv0Gto6kAYO8oIcMsOj2JS2wWFI0hR57no55Cv/OMEDXyX9w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ImyDMORS3dxKUOZzYsuLT5XcCs9Ua2X3QJvuUDYV7tk=; b=BKK2iG/xS3Ad6nyo+mt9vjl07J3yhFKpiuarQCRxCmIhejXMKRZza0P1NVl2Y0obQDd9QQ95NLaJDIvoccUY+InO5VHlzuf0aylVkK0agedpk5JgaS1zp2aw59FKGE/Q+hzwFxkinMuD5oL5S1QC71nODbl+3hAiAjYSsZtWMT4=
Received: from HE1PR07MB3209.eurprd07.prod.outlook.com (2603:10a6:7:32::14) by HE1PR0701MB2090.eurprd07.prod.outlook.com (2603:10a6:3:2b::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3477.11; Wed, 14 Oct 2020 18:01:08 +0000
Received: from HE1PR07MB3209.eurprd07.prod.outlook.com ([fe80::1550:2d88:a5be:95ca]) by HE1PR07MB3209.eurprd07.prod.outlook.com ([fe80::1550:2d88:a5be:95ca%6]) with mapi id 15.20.3477.020; Wed, 14 Oct 2020 18:01:08 +0000
From: Mohit Sethi M <mohit.m.sethi@ericsson.com>
To: "emu@ietf.org" <emu@ietf.org>
Thread-Topic: [Emu] I-D Action: draft-ietf-emu-eap-tls13-11.txt
Thread-Index: AQHWolP9NXXhHncCU0GTakdqjKveNQ==
Date: Wed, 14 Oct 2020 18:01:08 +0000
Message-ID: <55be6146-248f-e139-e9c1-77317c473e5c@ericsson.com>
References: <160269728910.12450.1037477820698723012@ietfa.amsl.com>
In-Reply-To: <160269728910.12450.1037477820698723012@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [87.93.142.12]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 6fac3d27-0d05-443f-d5ba-08d8706b20a8
x-ms-traffictypediagnostic: HE1PR0701MB2090:
x-microsoft-antispam-prvs: <HE1PR0701MB2090F583A6E5E81217EFE483D0050@HE1PR0701MB2090.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: IQaKAJ7JgBp7XiCZoB+cZux56BBHExSruNXINluWqEzjEVm8jH3fS6FuhXorrKC3khAkAUME6XJPS0UYYKaH4JGszAANdar+46Gc+E6SawDfs7pQ8agKJSFHMzXZ9oavPNoays4oP651585be8EJLVNdnfJoqz32Q8m3W/3kH4wrzBbSkL0cWAnLe9GJNrVRiEBspEFPyI3DJjyeuvRVlgmuBk1yC7cw47JU5FvxK1j5lT4UvdNElBFrqp1NqspJsOCERS6IxCNnYnFHeJFqhO9XmrDPeAnQ7W3ecSW+QaUiR1mwAH0jg3hPTmzYMmYBjRdkGwNxaNj5SEFklrDDlYf2QgxPKrrzofzg+FHdA6fh7KQTOPBCNjPhftwQjX4LypR7+pLV+o9pu164sB/5irAj11gy5brRrJD9vTvSOYIkDJcw6tQb70zC4BvRZwDm4VfrzM1BLF5xib57dUc0Rw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB3209.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(346002)(39860400002)(376002)(366004)(136003)(53546011)(966005)(64756008)(66446008)(36756003)(66574015)(83080400001)(6486002)(31686004)(4001150100001)(26005)(83380400001)(478600001)(2906002)(86362001)(2616005)(66556008)(6512007)(76116006)(316002)(66476007)(66946007)(186003)(8936002)(6506007)(31696002)(71200400001)(8676002)(6916009)(5660300002)(43740500002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <A5268DE3697EE244BE49CA8AF43DAB56@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB3209.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6fac3d27-0d05-443f-d5ba-08d8706b20a8
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Oct 2020 18:01:08.3013 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: HxqTgzySXqY1r8lp2fatiPCwktJM6+/kqfrvw1P/9JQzrfaLH4kmyGCLNnx9cuw5UstBSMOoIco/KCpyCRG+U/8WEvBzmazQuJTFkdTOqTU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2090
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/81_cyCWBvMoI-0867guBl0cu_ZA>
Subject: Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-11.txt
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Oct 2020 18:01:13 -0000
Dear all, This version includes additional clarifications on resumption suggested by Terry Burton. Based on the mailing list discussion, we still use 1-byte of encrypted application data as the commitment message: https://mailarchive.ietf.org/arch/msg/emu/6f36UTSysJ_xzGdkOtC4TDNTZbI/. --Mohit On 10/14/20 8:41 PM, internet-drafts@ietf.org wrote: > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the EAP Method Update WG of the IETF. > > Title : Using EAP-TLS with TLS 1.3 > Authors : John Preuß Mattsson > Mohit Sethi > Filename : draft-ietf-emu-eap-tls13-11.txt > Pages : 30 > Date : 2020-10-14 > > Abstract: > This document specifies the use of EAP-TLS with TLS 1.3 while > remaining backwards compatible with existing implementations of EAP- > TLS. TLS 1.3 provides significantly improved security, privacy, and > reduced latency when compared to earlier versions of TLS. EAP-TLS > with TLS 1.3 further improves security and privacy by mandating use > of privacy and revocation checking. This document also provides > guidance on authorization and resumption for EAP-TLS in general > (regardless of the underlying TLS version used). This document > updates RFC 5216. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-emu-eap-tls13/ > > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-emu-eap-tls13-11 > https://datatracker.ietf.org/doc/html/draft-ietf-emu-eap-tls13-11 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-emu-eap-tls13-11 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > > _______________________________________________ > Emu mailing list > Emu@ietf.org > https://www.ietf.org/mailman/listinfo/emu
- [Emu] I-D Action: draft-ietf-emu-eap-tls13-11.txt internet-drafts
- Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-11… Mohit Sethi M