Results of IETF-conflict review for draft-sheffer-tls-pinning-ticket-11
The IESG <iesg-secretary@ietf.org> Mon, 17 June 2019 21:34 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 3C3BA12004F; Mon, 17 Jun 2019 14:34:06 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: Adrian Farrel <rfc-ise@rfc-editor.org>, draft-sheffer-tls-pinning-ticket@ietf.org, rfc-ise@rfc-editor.org
Subject: Results of IETF-conflict review for draft-sheffer-tls-pinning-ticket-11
X-Test-IDTracker: no
X-IETF-IDTracker: 6.98.0
Auto-Submitted: auto-generated
Precedence: bulk
Cc: IETF-Announce <ietf-announce@ietf.org>, The IESG <iesg@ietf.org>, iana@iana.org
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Message-ID: <156080724620.22312.18331070683751791470.idtracker@ietfa.amsl.com>
Date: Mon, 17 Jun 2019 14:34:06 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/YW5QtXFOWRkKXL3osQqFaEku9kE>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Jun 2019 21:34:06 -0000
The IESG has completed a review of draft-sheffer-tls-pinning-ticket-11 consistent with RFC5742. The IESG has no problem with the publication of 'TLS Server Identity Pinning with Tickets' <draft-sheffer-tls-pinning-ticket-11.txt> as an Experimental RFC. The IESG has concluded that this work is related to IETF work done in the TLS WG ,but this relationship does not prevent publishing. Additionally, the IESG requests the following note be added to the document if it is published: The cryptographic construction used in this document to derive a pinning_protection_key from an existing resumption_protection_key (e.g., one that is shared across a cluster of servers authoritative for the same domain) reuses the same long-term cryptographic key for both bulk encryption (of TLS session tickets) and as the PRK input to HMAC [RFC2104] via the HKDF-Expand() [RFC5689] construction. This reuse of key material without an intermediate derivation step has not undergone extensive cryptanalysis and may introduce unforseen weaknesses for both the original session-ticket encryption usage [RFC5077] and the new usage proposed in this document. The IESG would also like the Independent Submissions Editor to review the comments in the datatracker related to this document and determine whether or not they merit incorporation into the document. Comments may exist in both the ballot and the history log. The IESG review is documented at: https://datatracker.ietf.org/doc/conflict-review-sheffer-tls-pinning-ticket/ A URL of the reviewed Internet Draft is: https://datatracker.ietf.org/doc/draft-sheffer-tls-pinning-ticket/ The process for such documents is described at https://www.rfc-editor.org/indsubs.html Thank you, The IESG Secretary