Protocol Action: 'Transport Layer Security (TLS) Session Resumption without Server-Side State' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Tue, 11 September 2007 17:11 UTC
Return-path: <ietf-announce-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IV9GS-0004Te-JR; Tue, 11 Sep 2007 13:11:04 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IV9GQ-0004TQ-TK for ietf-announce@ietf.org; Tue, 11 Sep 2007 13:11:02 -0400
Received: from ns0.neustar.com ([156.154.16.158]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1IV9GP-0001Da-Pr for ietf-announce@ietf.org; Tue, 11 Sep 2007 13:11:02 -0400
Received: from stiedprstage1.ietf.org (stiedprstage1.va.neustar.com [10.31.47.10]) by ns0.neustar.com (Postfix) with ESMTP id B08D932880; Tue, 11 Sep 2007 17:10:31 +0000 (GMT)
Received: from ietf by stiedprstage1.ietf.org with local (Exim 4.43) id 1IV9Fv-00037f-KS; Tue, 11 Sep 2007 13:10:31 -0400
X-test-idtracker: no
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Message-Id: <E1IV9Fv-00037f-KS@stiedprstage1.ietf.org>
Date: Tue, 11 Sep 2007 13:10:31 -0400
X-Spam-Score: 0.0 (/)
X-Scan-Signature: d8ae4fd88fcaf47c1a71c804d04f413d
Cc: Internet Architecture Board <iab@iab.org>, RFC Editor <rfc-editor@rfc-editor.org>
Subject: Protocol Action: 'Transport Layer Security (TLS) Session Resumption without Server-Side State' to Proposed Standard
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-announce.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
Errors-To: ietf-announce-bounces@ietf.org
The IESG has approved the following document: - 'Transport Layer Security (TLS) Session Resumption without Server-Side State ' <draft-salowey-tls-rfc4507bis-01.txt> as a Proposed Standard This document has been reviewed in the IETF but is not the product of an IETF Working Group. The IESG contact person is Tim Polk. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-salowey-tls-rfc4507bis-01.txt Technical Summary This document obsoletes RFC 4507 [RFC4507] to correct an error in the encoding that caused the specification to differ from deployed implementations. This update to RFC 4507 aligns the document with this currently deployed implementations. Working Group Summary This document is an individual submission, and not the product of any IETF working group. Protocol Quality Tim Polk reviewed this document for the IESG. Multiple implementations of this specification exist. Note to RFC Editor - Section 3.1, next to last paragraph: OLD the server does not wish issue a new ticket and therefore does not ... NEW the server does not wish to issue a new ticket and therefore does not ... - Section 3.2, third paragraph first sentence: OLD The server uses an zero-length SessionTicket extension to indicate to ... NEW The server uses a zero-length SessionTicket extension to indicate to ... - Add to the end of Appendix A: NEW In addition this documents makes a few additional changes to RFC 4507 including o Clarifying that the server can allow session resumption using a ticket without issuing a new ticket in section in Section 3.1 o Clarifying that the NewSessionTicket handshake message is included in the hash generated for the Finished messages in Section 3.3 o Recommending the use of SHA-256 for the integrity protection of the ticket in Section 4 o Clarifying that additional data can be included in the StatePlaintext structure in Section 4 - In the authors' contact information for Hannes Tschofenig: OLD EMail: Hannes.Tschofenig@siemens.com NEW Email: Hannes.Tschofenig@nsn.com _______________________________________________ IETF-Announce mailing list IETF-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/ietf-announce