IETF Logo Mail Archive

Re: Discussion of 9.2.2

Roland Zink <roland@zinks.de> Thu, 25 September 2014 16:53 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 455AE1A8706 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 25 Sep 2014 09:53:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.788
X-Spam-Level:
X-Spam-Status: No, score=-7.788 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.786, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jWkjDY0-wsC1 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 25 Sep 2014 09:53:31 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A5C3E1A00AD for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 25 Sep 2014 09:53:31 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1XXCGD-0000ze-Fi for ietf-http-wg-dist@listhub.w3.org; Thu, 25 Sep 2014 16:51:17 +0000
Resent-Date: Thu, 25 Sep 2014 16:51:17 +0000
Resent-Message-Id: <E1XXCGD-0000ze-Fi@frink.w3.org>
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <roland@zinks.de>) id 1XXCFs-0000yM-TX for ietf-http-wg@listhub.w3.org; Thu, 25 Sep 2014 16:50:56 +0000
Received: from mo4-p00-ob.smtp.rzone.de ([81.169.146.219]) by lisa.w3.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.72) (envelope-from <roland@zinks.de>) id 1XXCFr-0000FK-Bw for ietf-http-wg@w3.org; Thu, 25 Sep 2014 16:50:56 +0000
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; t=1411663832; l=519; s=domk; d=zinks.de; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:References: Subject:To:MIME-Version:From:Date; bh=iawe9qNFTbSqV2nPqz5J5QV+E0A=; b=jUTrQajflBu/AZbGcN/kiP3j/pAn1bndl/zZqgWNs0PJc1kcTPwyFXWNhDrbGQGBgex GdPN6U2Pz52i/rVPUavzzah/1B/Gb0qbvNbe1sQO4C0ACTYhFcbDTvXAKIgn/c0CoNgX8 3Ju7QrFDbdDm0P+5zU4RfRkP08wnUYjaay4=
X-RZG-AUTH: :PmMIdE6sW+WWP9q/oR3Lt+I+9KAK33vRJaCwLQNJU2mlIkBC0t1G+0bSVECAiLyIkuZ3s/SowJT+9bUzOamXR705iw==
X-RZG-CLASS-ID: mo00
Received: from [IPv6:2001:4dd0:ff67:0:903e:5f8a:9b52:e7cb] ([2001:4dd0:ff67:0:903e:5f8a:9b52:e7cb]) by smtp.strato.de (RZmta 35.9 AUTH) with ESMTPSA id c02d57q8PGoW2C3 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) for <ietf-http-wg@w3.org>; Thu, 25 Sep 2014 18:50:32 +0200 (CEST)
Message-ID: <542447D8.8040605@zinks.de>
Date: Thu, 25 Sep 2014 18:50:32 +0200
From: Roland Zink <roland@zinks.de>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: ietf-http-wg@w3.org
References: <F0D4BA2A-46B2-4F1A-8A23-1A319A3E5FC0@mnot.net> <CABkgnnV0HFeshNAe9CAzFDeED6Os_GmG6kxm827N18wduCkjiA@mail.gmail.com> <CAH_y2NFu=kyTVK_neACEVyWp9m4wfLOUu-=Dc9nZoMhP+fNSsg@mail.gmail.com> <CABcZeBMOqi+5LFzf1MmQuuW+4O7Pmvky68riNqtJDcbzQnvQig@mail.gmail.com>
In-Reply-To: <CABcZeBMOqi+5LFzf1MmQuuW+4O7Pmvky68riNqtJDcbzQnvQig@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Received-SPF: none client-ip=81.169.146.219; envelope-from=roland@zinks.de; helo=mo4-p00-ob.smtp.rzone.de
X-W3C-Hub-Spam-Status: No, score=-3.5
X-W3C-Hub-Spam-Report: AWL=-3.445, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001
X-W3C-Scan-Sig: lisa.w3.org 1XXCFr-0000FK-Bw 17614521fe74825161f771be21e0016b
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Discussion of 9.2.2
Archived-At: <http://www.w3.org/mid/542447D8.8040605@zinks.de>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/27235
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On 25.09.2014 18:36, Eric Rescorla wrote:
> TLS divides cipher suites into three categories:
>
> - block
> - stream
> - AEAD
>
> So, AEAD isn't an exception, it's a third category. One might imagine 
> adding
> a fourth category, but that wouldn't fall afoul of 9.2.2 because 9.2.2 
> prohibits
> block and stream, but doesn't say *only* AEAD.
>
>
Assuming somebody invents a fourth category and adds it to TLS then 
servers and clients might out of sync if it is allowed for h2 and 
negotiation may fail.

v2.46.0 | Report a Bug | By Email | System Status