Protocol Action: 'Encrypt-then-MAC for TLS and DTLS' to Proposed Standard (draft-ietf-tls-encrypt-then-mac-03.txt)

The IESG <> Mon, 11 August 2014 18:38 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id 959981A075B; Mon, 11 Aug 2014 11:38:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id QDc3vXuls4xA; Mon, 11 Aug 2014 11:38:35 -0700 (PDT)
Received: from (localhost [IPv6:::1]) by (Postfix) with ESMTP id CC4BA1A0766; Mon, 11 Aug 2014 11:38:33 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <>
To: IETF-Announce <>
Subject: Protocol Action: 'Encrypt-then-MAC for TLS and DTLS' to Proposed Standard (draft-ietf-tls-encrypt-then-mac-03.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 5.6.2.p5
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <>
Date: Mon, 11 Aug 2014 11:38:33 -0700
Cc: tls mailing list <>, tls chair <>, RFC Editor <>
X-Mailman-Version: 2.1.15
List-Id: "IETF announcement list. No discussions." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 11 Aug 2014 18:38:36 -0000

The IESG has approved the following document:
- 'Encrypt-then-MAC for TLS and DTLS'
  (draft-ietf-tls-encrypt-then-mac-03.txt) as Proposed Standard

This document is the product of the Transport Layer Security Working

The IESG contact persons are Stephen Farrell and Kathleen Moriarty.

A URL of this Internet Draft is:

Technical Summary

 This document defines a means to negotiate the use of
 encrypt-then-MAC instead of the existing MAC-then-encrypt one.  
 WRT the existing mechanism, there are a number of identified 
 vulnerabilities (see the references in the draft).

Working Group Summary:

 This draft has been kicking around for a number of years and was 
 adopted and progressed fairly quickly.  There were really just two
 debates 1) how to do the negotiation (see sec 2.1 of the draft), and
 2) whether this applied to both stream and block ciphers (ended up
 applying to just block). 

Document Quality

 There's a test server up and running.  There's also a number of known


 Stephen Farrell is the responsible AD.  Sean Turner is the shepherd.


  Please make the relevant temporary registration permanent.