IETF Logo Mail Archive

I-D Action: draft-dkg-tls-reject-static-dh-01.txt

internet-drafts@ietf.org Wed, 05 December 2018 04:44 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 692CA126F72 for <i-d-announce@ietf.org>; Tue, 4 Dec 2018 20:44:41 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-dkg-tls-reject-static-dh-01.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 6.89.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <154398508139.4969.14876179646826036811@ietfa.amsl.com>
Date: Tue, 04 Dec 2018 20:44:41 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/4SosyrGfUQ7OA_OBqccXW2rpMmo>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Dec 2018 04:44:41 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.


        Title           : TLS clients should reject static Diffie-Hellman
        Author          : Daniel Kahn Gillmor
	Filename        : draft-dkg-tls-reject-static-dh-01.txt
	Pages           : 8
	Date            : 2018-12-04

Abstract:
   This draft addresses problematic proposals that contradict the
   expected security properties of TLS.  In particular, the ETSI
   "Middlebox Security Protocol" standard deliberately weakens the
   cryptographic guarantees of TLS unilaterally by the server, using
   static Diffie-Hellman keys where ephemeral keys are expected.
   Responsible TLS clients should avoid connecting to servers that
   appear to implement such a specification.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-dkg-tls-reject-static-dh/

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-dkg-tls-reject-static-dh-01
https://datatracker.ietf.org/doc/html/draft-dkg-tls-reject-static-dh-01

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-dkg-tls-reject-static-dh-01


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

v2.23.0 | Report a Bug | By Email