Re: [quicwg/base-drafts] Use the same KDF regardless of TLS version (#2034)
MikkelFJ <notifications@github.com> Fri, 23 November 2018 00:46 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 53A20130DD6 for <quic-issues@ietfa.amsl.com>; Thu, 22 Nov 2018 16:46:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.46
X-Spam-Level:
X-Spam-Status: No, score=-9.46 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.46, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u7QczGORCQ97 for <quic-issues@ietfa.amsl.com>; Thu, 22 Nov 2018 16:46:45 -0800 (PST)
Received: from out-6.smtp.github.com (out-6.smtp.github.com [192.30.252.197]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F35C7130DC4 for <quic-issues@ietf.org>; Thu, 22 Nov 2018 16:46:44 -0800 (PST)
Date: Thu, 22 Nov 2018 16:46:44 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1542934004; bh=a1T6wBR7L8M3wfP+eHAcv/65a02krdiQ+C0z9NRHb6g=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=vUMh1AF9SUHpz5TEvodjw/BKK8Li4RdSOO4n53qMYc6uqdyUH8FD4l8niS5GnysSF QWiGJIW4Zj/HvFk0NFnc48N+YMrbX2qrs7XMawgGY1Z7/xMUNM2mgP/cBYHAZ7rbUs M9RUFRuKc+4F4AHBK9ELRpR7Ywol31T/6e6EHcgg=
From: MikkelFJ <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4abfcc2d0d2722bcc3926ff156689eec4154ab1010792cf00000001180f0ff492a169ce16d3c410@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/2034/c441138419@github.com>
In-Reply-To: <quicwg/base-drafts/pull/2034@github.com>
References: <quicwg/base-drafts/pull/2034@github.com>
Subject: Re: [quicwg/base-drafts] Use the same KDF regardless of TLS version (#2034)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5bf74df44874e_12f53ff5aeed45c08931a"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: mikkelfj
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/MXnvsz-119I8M_r0DAA8IdNq7Cs>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Nov 2018 00:46:46 -0000
I think it is fine to have different HKDF in initial secrets. You also have AES-128-GCM in initial which might be implemented in a completely slow and sloppy manner in order to progress to a different cipher suitable for some IoT device. It makes sense to me to follow the HKDF of the negotiated cipher for the rest of the connection. This also paves the road for future more efficient HKDF algorithms if/when they become available - although likely in another QUIC version. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/pull/2034#issuecomment-441138419
- [quicwg/base-drafts] Use the same KDF regardless … Martin Thomson
- Re: [quicwg/base-drafts] Use the same KDF regardl… Kazuho Oku
- Re: [quicwg/base-drafts] Use the same KDF regardl… Martin Thomson
- Re: [quicwg/base-drafts] Use the same KDF regardl… Kazuho Oku
- Re: [quicwg/base-drafts] Use the same KDF regardl… MikkelFJ
- Re: [quicwg/base-drafts] Use the same KDF regardl… Martin Thomson
- Re: [quicwg/base-drafts] Use the same KDF regardl… Kazuho Oku
- Re: [quicwg/base-drafts] Use the same KDF regardl… MikkelFJ
- Re: [quicwg/base-drafts] Use the same KDF regardl… Martin Thomson
- Re: [quicwg/base-drafts] Use the same KDF regardl… janaiyengar
- Re: [quicwg/base-drafts] Use the same KDF regardl… Marten Seemann
- Re: [quicwg/base-drafts] Use the same KDF regardl… Alessandro Ghedini
- Re: [quicwg/base-drafts] Use the same KDF regardl… Martin Thomson
- Re: [quicwg/base-drafts] Use the same KDF regardl… ekr
- Re: [quicwg/base-drafts] Use the same KDF regardl… Martin Thomson
- Re: [quicwg/base-drafts] Use the same KDF regardl… MikkelFJ
- Re: [quicwg/base-drafts] Use the same KDF regardl… MikkelFJ
- Re: [quicwg/base-drafts] Use the same KDF regardl… MikkelFJ
- Re: [quicwg/base-drafts] Use the same KDF regardl… ekr
- Re: [quicwg/base-drafts] Use the same KDF regardl… Martin Thomson