IETF Logo Mail Archive

Re: [quicwg/base-drafts] Use the same KDF regardless of TLS version (#2034)

ekr <notifications@github.com> Thu, 22 November 2018 23:42 UTC

Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B25B2130DCB for <quic-issues@ietfa.amsl.com>; Thu, 22 Nov 2018 15:42:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.46
X-Spam-Level:
X-Spam-Status: No, score=-9.46 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.46, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ds6yQBV6MxEI for <quic-issues@ietfa.amsl.com>; Thu, 22 Nov 2018 15:42:35 -0800 (PST)
Received: from out-4.smtp.github.com (out-4.smtp.github.com [192.30.252.195]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E8728124D68 for <quic-issues@ietf.org>; Thu, 22 Nov 2018 15:42:34 -0800 (PST)
Date: Thu, 22 Nov 2018 15:42:33 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1542930153; bh=xjjfH/aeS7x4F2RcxrnfC5smCtlPt/lIES76ecAs1T0=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=r1HLwL79zfnkXt4a03DEmINMnODFnW1q4fnhMlb9ssQVVsoqy/ceBi43TbTZFaNxc 7juI3FjEATQNLf3a705iz8GlBAnZYWRUTW7hySureGxyCpf3mIBKD/Hk1S5c7MSX14 yarSRG1baFsWGBq/J4iFCsgWIwJDOEuXs2FVLo1k=
From: ekr <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4abcb0d78daeccc32f5a3b3a6267a500a0a1a4c94bc92cf00000001180f00e992a169ce16d3c410@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/2034/c441134372@github.com>
In-Reply-To: <quicwg/base-drafts/pull/2034@github.com>
References: <quicwg/base-drafts/pull/2034@github.com>
Subject: Re: [quicwg/base-drafts] Use the same KDF regardless of TLS version (#2034)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5bf73ee9ef519_7fd33faf8f6d45c42805e4"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: ekr
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/lPBWtjIjy6MchK4l-zpfGCP6eWc>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Nov 2018 23:42:37 -0000

@martinthomson I'm not sure how persuasive this argument is. We already feed out the TLS 1.3 cipher suite and the HKDF settings are really part of that. Moreover, using the same KDF allows us to ensure that we don't get collisions (which is the point of the different labels). [Imagine, hypothetically, that the TLS 1.3 KDF is HKDF with the label "quic "]

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/pull/2034#issuecomment-441134372

v2.23.0 | Report a Bug | By Email