IETF Logo Mail Archive

Re: [quicwg/base-drafts] Tweak the split between quic-transport and quic-tls drafts (#3717)

Mike Bishop <notifications@github.com> Fri, 18 September 2020 14:27 UTC

Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A33583A09E1 for <quic-issues@ietfa.amsl.com>; Fri, 18 Sep 2020 07:27:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.391
X-Spam-Level:
X-Spam-Status: No, score=-3.391 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.695, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_28=1.404, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3oPMKbhAwWbq for <quic-issues@ietfa.amsl.com>; Fri, 18 Sep 2020 07:26:59 -0700 (PDT)
Received: from out-18.smtp.github.com (out-18.smtp.github.com [192.30.252.201]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 46F6D3A09CD for <quic-issues@ietf.org>; Fri, 18 Sep 2020 07:26:59 -0700 (PDT)
Received: from github-lowworker-5fb2734.va3-iad.github.net (github-lowworker-5fb2734.va3-iad.github.net [10.48.19.27]) by smtp.github.com (Postfix) with ESMTP id 04B37340752 for <quic-issues@ietf.org>; Fri, 18 Sep 2020 07:26:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1600439218; bh=nbBwgnveYTj4vWSeCsE9MQoxm/LsSlthr/P24OU8oic=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=Sj/2B4tzcjxbGfeh8i2EhdlQSHTk4KMNZupaluKgGEIIsQ1b3NjQie05fzuLnmrdY EBQEEi5bn+JbIbObAG2eLcHOGAilOnJWNXTWQqNim66eMe0OdLaybUdPOt7OTDZd/m Q0Xf1BF20bYt2R9E2SnZ+WMN/CBrTkQnX88ELfKg=
Date: Fri, 18 Sep 2020 07:26:57 -0700
From: Mike Bishop <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+AFTOJK4GE3N2Z4DIPAUBVXF5OCSLDEVBNHHCLE33VA@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/3717/694900675@github.com>
In-Reply-To: <quicwg/base-drafts/issues/3717@github.com>
References: <quicwg/base-drafts/issues/3717@github.com>
Subject: Re: [quicwg/base-drafts] Tweak the split between quic-transport and quic-tls drafts (#3717)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5f64c3b1e9413_1e1019f02089a"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: MikeBishop
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/zOfRZI9SEAfZJchToBt8RGx3RAs>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Sep 2020 14:27:01 -0000

Looking at what would be entailed, my first instinct was to try slotting it into new subsections of Section 12.1.  However, that makes the TOC deeper than is ideal and would probably require more editorial fine-tuning to get right.  If you want to pursue this, I think the fastest path to coherency is to make a new top-level section at the end of the document on Packet Protection and just adjust the cross-references to be forward-references there.

Then:
- New text on the values supplied by TLS (packet protection keys, header protection keys, ability to generate new keys on demand) in a subsection of TRANS-7
- Move TLS-5.0 into TRANS-(new).0
- Retain TLS-5.1 and TLS-5.2 in TLS
- Split TLS-5.3, moving the "how to apply selected AEAD and key" into TRANS-(new).1
- Move most of TLS-5.4 through TLS-5.6 into subsections of TRANS-(new), leaving only the key derivation in TLS
- TLS-5.7 should mostly move to a subsection of TRANS-13.1, but some TLS specifics would need to be abstracted out
- TLS-5.8 should move under TRANS-(new)
- TLS-7 should move under TRANS-(new), possibly removing specific references to TLS and discussing tampering with the cryptographic handshake generically.

TLS-6 is trickier.  The mechanics of how to perform a key update on the wire need to move, probably to the final subsection of TRANS-(new); the mechanics of how to obtain the new key need to remain in TLS.  These aren't currently clearly separated, and might require some additional text to abstract them.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/issues/3717#issuecomment-694900675

v2.23.0 | Report a Bug | By Email