Re: [Tls-reg-review] Question about the TLS cipher suite registry
Yoav Nir <ynir.ietf@gmail.com> Thu, 05 March 2020 04:13 UTC
Return-Path: <ynir.ietf@gmail.com>
X-Original-To: tls-reg-review@ietfa.amsl.com
Delivered-To: tls-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF8E93A0B37 for <tls-reg-review@ietfa.amsl.com>; Wed, 4 Mar 2020 20:13:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SBbt-_1sJxs5 for <tls-reg-review@ietfa.amsl.com>; Wed, 4 Mar 2020 20:13:25 -0800 (PST)
Received: from mail-wr1-x434.google.com (mail-wr1-x434.google.com [IPv6:2a00:1450:4864:20::434]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA8903A0B35 for <tls-reg-review@ietf.org>; Wed, 4 Mar 2020 20:13:24 -0800 (PST)
Received: by mail-wr1-x434.google.com with SMTP id j16so5296914wrt.3 for <tls-reg-review@ietf.org>; Wed, 04 Mar 2020 20:13:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=qQNXVA6SCwS8eRpunjiCAQTkdpOBBxyGM4Ue96PKz90=; b=JHYQ+t0/kBRA2kJLJe+E69/O+l8WiUlaHYVfjYZ9xrg8c1fO2IafpITCbfuqjZU79X wL+gxeCmuPAXOIrxuqC5njaJ2WTMDRMIrLEQVKZXieb/saQupIlKKoTxK8fAIKb9rXG7 pqOF6HB47kWtzHN0F4pwteNrLIJhwjkik+hLqt6J26NxRP6etd+jOYfBP4MJ093/A5Um Ym7gnC59vnidzknJ2dMeT1NdmsMd0alTYOjAPHdcwodjZmr1GWOrgL5Vw38mCvicBgGd 68Y3fuoqQ/6u5wkpQ2C48gsM4zpUYZRb3H5xCS5O8qsI32hivLuMAX9j1cH1+cCmxVKu PdUw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=qQNXVA6SCwS8eRpunjiCAQTkdpOBBxyGM4Ue96PKz90=; b=T+5n/bGvpf1W/Q8bBpwrJIhy25CBc4f1H6VOVoVpHmzzP5VfNjJpoLq/tBFZiHFy6Y d41NmD8F53WSoEEHkp1rDvmb6LB11zkFpPZlRt5ER6jHLg7HRg2bYwW86aGC/xDjnbBc TCRPbuhzPIZt3RTqU+OPIbdr8A1GndT4AXxMkWoMUQdty5eq5pW3NpvCBGwIWqarrtgC D4OMz7usGSOkcMxTAACt8i5Mwi49pZnPZHocjvSyFt7wM965VhOYIWOujdl09yuMG8T4 2OKcZcRFNHU/5tCWyXuRGFwdWdPCXGEmIHSs1uWzbot/Cavdc0O348P/U0lLgF8PhWzt SQJQ==
X-Gm-Message-State: ANhLgQ1/PtLWu3d2fv4vhMbPjdlSnO/u0UY0n3UchXp08b4UEhxIIkMv ZSvqdVtroTpdCjMIuqRgS1s=
X-Google-Smtp-Source: ADFU+vuXTDbXJc+Xh3exa+fd0unrxn/7uDuM8fnmg9USBGKmLQyKQXkPgqmXE8JqO4/Whaw0b8+eyA==
X-Received: by 2002:a5d:534c:: with SMTP id t12mr8100748wrv.105.1583381603310; Wed, 04 Mar 2020 20:13:23 -0800 (PST)
Received: from [192.168.1.12] ([46.120.57.147]) by smtp.gmail.com with ESMTPSA id z135sm7466950wmc.20.2020.03.04.20.13.21 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 04 Mar 2020 20:13:22 -0800 (PST)
From: Yoav Nir <ynir.ietf@gmail.com>
Message-Id: <A7DCA25A-D57D-4998-A8ED-6BBDE37DCB46@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_A53D0FBF-B1C3-4A9C-B5FF-49737C2BAC72"
Mime-Version: 1.0 (Mac OS X Mail 13.0 \(3608.60.0.2.5\))
Date: Thu, 05 Mar 2020 06:13:19 +0200
In-Reply-To: <9ED5942D-EDA8-42C8-8786-EC16C4E2AD97@akamai.com>
Cc: Adam Foltzer <acfoltzer@fastly.com>, Mark Nottingham <mnot@mnot.net>, "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>
To: "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>
References: <D8454EC5-D056-4627-934D-8BEB2A654B5D@mnot.net> <CAB8hvnH3ZPMXmSw7cC+m7r1JPrZjFpJpKm6O5wZ60V8Z_pjLZg@mail.gmail.com> <9ED5942D-EDA8-42C8-8786-EC16C4E2AD97@akamai.com>
X-Mailer: Apple Mail (2.3608.60.0.2.5)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls-reg-review/cYQM0XkeGIvuy1JlKM0-dkcrTRU>
Subject: Re: [Tls-reg-review] Question about the TLS cipher suite registry
X-BeenThere: tls-reg-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TLS REVIEW <tls-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls-reg-review/>
List-Post: <mailto:tls-reg-review@ietf.org>
List-Help: <mailto:tls-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Mar 2020 04:13:27 -0000
No, the range immediately (not) after that: 0xFA,0xCA -F9 0xFA,0x00-C9 Unassigned 0xFA,0xFA Reserved Y N [RFC8701 <https://www.iana.org/go/rfc8701>] 0xFA,0xFB-FF Unassigned It’s not assigned to anything, but it seems to be missing. > On 5 Mar 2020, at 4:36, Salz, Rich <rsalz=40akamai.com@dmarc.ietf.org> wrote: > > Using the tls-reg-review mail alias so that IANA sees this. > > I don’t know how the csv or XHTML files are maintained. Looking athttps://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4 <https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4>, I see this: > 0xFA,0x00-C9 > Unassigned > > Is that the range you mean? > > From: Adam Foltzer <acfoltzer@fastly.com> > Date: Wednesday, March 4, 2020 at 6:58 PM > To: Mark Nottingham <mnot@mnot.net> > Cc: Yoav Nir <ynir.ietf@gmail.com>, Rich Salz <rsalz@akamai.com>, Nick Sullivan <nick@cloudflare.com> > Subject: Re: Question about the TLS cipher suite registry > > Thanks, Mark! > > Hi everyone, > > I was working with the CSV of the cipher suite registry (https://www.iana.org/assignments/tls-parameters/tls-parameters-4.csv <https://urldefense.proofpoint.com/v2/url?u=https-3A__www.iana.org_assignments_tls-2Dparameters_tls-2Dparameters-2D4.csv&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=dpcjQ2TVZH5UswHqtHodv3nFO9QiYT-91jWev8I1OVg&s=oWGFQzXXyHhRfUn7HdSz_GjjhhIOk39VO5CKXJ1mG38&e=>) and noticed that the value range 0xFA,0xCA-F9 is missing both from the CSV and the XHTML table. As far as I can tell, this is the only missing range. > > I wanted to bring this to your attention, as well as ask whether it'd be correct to treat these values as Unassigned for the time being. > > Thank you! > > Adam > > On Wed, Mar 4, 2020 at 3:38 PM Mark Nottingham <mnot@mnot.net <mailto:mnot@mnot.net>> wrote: >> Gents, >> >> One of my colleagues, Adam (CC:ed) has a question about the TLS cipher suite registry. >> >> Over to you, Adam! >> >> Cheers, >> >> -- >> Mark Nottingham https://www.mnot.net/ <https://urldefense.proofpoint.com/v2/url?u=https-3A__www.mnot.net_&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=dpcjQ2TVZH5UswHqtHodv3nFO9QiYT-91jWev8I1OVg&s=SHPGhce_r4u8Yg6qhyG0JBGpU5AMG_DFPiqHswyyPGc&e=> > > > -- > Adam C. Foltzer | Senior Software Engineer > fastly.com <https://urldefense.proofpoint.com/v2/url?u=http-3A__fastly.com&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=dpcjQ2TVZH5UswHqtHodv3nFO9QiYT-91jWev8I1OVg&s=VXi94D-mlhEn_pyKojowqvnn4s_EtDXYYUZAnU6uKwI&e=> | @fastly > _______________________________________________ > tls-reg-review mailing list > tls-reg-review@ietf.org <mailto:tls-reg-review@ietf.org> > https://www.ietf.org/mailman/listinfo/tls-reg-review <https://www.ietf.org/mailman/listinfo/tls-reg-review>