Re: [TLS] draft-turner-ssl-must-not

Peter Gutmann <pgut001@cs.auckland.ac.nz> Tue, 06 July 2010 03:32 UTC

From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: marsh@xs01.extendedsubset.com, pgut001@cs.auckland.ac.nz
In-Reply-To: <20100706030455.GA31051@xs01.extendedsubset.com>
Message-Id: <E1OVysa-00056x-6r@wintermute02.cs.auckland.ac.nz>
Date: Tue, 06 Jul 2010 15:31:28 +1200
Cc: tls@ietf.org
Subject: Re: [TLS] draft-turner-ssl-must-not
Precedence: list

Marsh Ray <marsh@xs01.extendedsubset.com> writes:
>On Tue, Jul 06, 2010 at 02:39:52PM +1200, Peter Gutmann wrote:
>> Martin Rex <mrex@sap.com> writes:
>>
>> >Personally, I dislike the extreme truncation of the Finished messages in TLS
>> >to 12 octets.
>>
>> But if we didn't use exactly 96 bits for this then the IPsec cargo cult gods
>> might smite us!
>
>Is that where that came from, IPsec?

In IPsec there were exactly 96 bits left in a (evenly-sized) packet for a 24- 
byte AH header (to fit the IPv6 8-byte quantisation) so they decided to 
truncate the MAC value to fit it.

Since then, cargo cult design has seen it adopted in TLS, in SSH, in SNMP, in
RADIUS, in iSCSI, in Kerberos, in Gigabeam, in HIP, heck I bet there's a
standards group trying to put it into DHCP somewhere... rot bilong kago.

Peter.

[TLS] draft-turner-ssl-must-not Nikos Mavrogiannopoulos
Re: [TLS] draft-turner-ssl-must-not Sean Turner
Re: [TLS] draft-turner-ssl-must-not Nikos Mavrogiannopoulos
Re: [TLS] draft-turner-ssl-must-not Juho Vähä-Herttua
Re: [TLS] draft-turner-ssl-must-not Ivan Ristic
Re: [TLS] draft-turner-ssl-must-not Martin Rex
Re: [TLS] draft-turner-ssl-must-not Sean Turner
Re: [TLS] draft-turner-ssl-must-not Yngve Nysaeter Pettersen
Re: [TLS] draft-turner-ssl-must-not Martin Rex
Re: [TLS] draft-turner-ssl-must-not Peter Gutmann
Re: [TLS] draft-turner-ssl-must-not Peter Gutmann
Re: [TLS] draft-turner-ssl-must-not Yngve N. Pettersen (Developer Opera Software ASA)
Re: [TLS] draft-turner-ssl-must-not Nikos Mavrogiannopoulos
Re: [TLS] draft-turner-ssl-must-not Juho Vähä-Herttua
Re: [TLS] draft-turner-ssl-must-not Nikos Mavrogiannopoulos
Re: [TLS] draft-turner-ssl-must-not Yngve Nysaeter Pettersen
Re: [TLS] draft-turner-ssl-must-not Yngve Nysaeter Pettersen
Re: [TLS] draft-turner-ssl-must-not Yngve Nysaeter Pettersen
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Juho Vähä-Herttua
Re: [TLS] draft-turner-ssl-must-not Nasko Oskov
Re: [TLS] draft-turner-ssl-must-not Peter Gutmann
Re: [TLS] draft-turner-ssl-must-not Nelson B Bolyard
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Ben Laurie
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Bodo Moeller
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Bodo Moeller
Re: [TLS] draft-turner-ssl-must-not Martin Rex
Re: [TLS] draft-turner-ssl-must-not Martin Rex
Re: [TLS] draft-turner-ssl-must-not Yngve N. Pettersen (Developer Opera Software ASA)
Re: [TLS] draft-turner-ssl-must-not Martin Rex
Re: [TLS] draft-turner-ssl-must-not Peter Gutmann
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Peter Gutmann
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Peter Gutmann
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Yoav Nir
Re: [TLS] draft-turner-ssl-must-not Martin Rex
Re: [TLS] draft-turner-ssl-must-not Nikos Mavrogiannopoulos
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Blumenthal, Uri - 0668 - MITLL
Re: [TLS] draft-turner-ssl-must-not Marsh Ray
Re: [TLS] draft-turner-ssl-must-not Simon Josefsson
[TLS] Finished verify_data collision (Was Re: dra… Marsh Ray
Re: [TLS] Finished verify_data collision (Was Re:… Nikos Mavrogiannopoulos
Re: [TLS] Finished verify_data collision (Was Re:… Marsh Ray