Re: [TLS] Adoption call for draft-rescorla-tls-ctls

Antoine Delignat-Lavaud <> Mon, 25 November 2019 13:49 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id CDEA612095E for <>; Mon, 25 Nov 2019 05:49:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id NRzI6WHTbLGH for <>; Mon, 25 Nov 2019 05:49:49 -0800 (PST)
Received: from ( [IPv6:2001:41d0:2:7f22::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 0150612095D for <>; Mon, 25 Nov 2019 05:49:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;; s=dkim; h=Message-ID:References:In-Reply-To:Subject:Cc: To:From:Date:Content-Transfer-Encoding:Content-Type:MIME-Version; bh=pttqqabnU4r5Y+yP5j86RSgTstgzv85ATSVHsc50uOw=; b=O3Ayo21RWnXo9xOc+j4VJC9jvs LcntR26rD7p86am5cOvIJiCG15iwvy4U0amJF9tqBlF3FCAFDu9h+Uv5R+oLTB/K7s5DfhnTkeRbx pW57YYNck7fWa1HW3Nf/I0Rr0olaCpkfu1t/KJvO+Wbf73chcX98Fa1eGbH8jIU+nPBjP0aipO1gn 5BGrGZbojeYqT+0gmgPTqw+F9o2iv2r7YxJzc8+hmImWxVNhH9vpfRAXIwXuMeLlWDw0PB/ei+Tmz P05tsNo4i8bXkQVigdstFGL95v7rbjGmuDwfQSW4huT6LHRXPvd4iqOlV4+RHOeAnU3fTskpXpQ0g oPD1h/Og==;
Received: from localhost (authenticated.user.IP.removed [::1]) by with esmtpa (envelope-from <>) id 1iZEkM-00024u-Tx ; Mon, 25 Nov 2019 14:49:46 +0100
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; format=flowed
Content-Transfer-Encoding: 7bit
Date: Mon, 25 Nov 2019 13:49:45 +0000
From: Antoine Delignat-Lavaud <>
To: Sean Turner <>
Cc: TLS List <>
Organization: Microsoft Research
In-Reply-To: <>
References: <>
Message-ID: <>
User-Agent: Roundcube Webmail/1.2.3
Archived-At: <>
Subject: Re: [TLS] Adoption call for draft-rescorla-tls-ctls
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 25 Nov 2019 13:49:52 -0000

I support this effort, and would like to point out that we have recently 
published a paper [1] and a collection of tools [2] to automatically 
verify the security (non malleability) of binary message formats, which 
we successfully applied to all of TLS [3] (which revealed many small 
specification errors in published RFCs, and some malleability problems 
such as the lack of tag in the CertificateEntry type).

Using this collection of tool, if the new compact format is expressible 
in the same syntax as TLS, it may be relatively easy to formally prove 
that the compact and full message formats are equivalent (and most of 
the proof is automated), by writing the lifting from the compact to the 
full specification types. I also recommend to formalize the message 
format specification language such that automatic tools like ours can 
directly operate over the formats described in the RFC.




On 2019-11-21 05:36, Sean Turner wrote:
> At IETF 105, ekr presented cTLS (Compact TLS) [0][1][2] to both the
> TLS WG and the LAKE BOF, which is now a chartered WG [3].  After some
> discussions, the ADs suggested [4] that the TLS WG consider whether
> this draft be adopted as a TLS WG item. LAKE could then later
> specify/refer/adopt/profile it, as appropriate. The authors revised
> cTLS and presented the revised draft at IETF 106 [5].  At IETF 106
> there was support for adoption of cTLS as a WG item.  To confirm this
> on the list: if you believe that the TLS WG should not adopt this as a
> WG item, then please let the chairs know by posting a message to the
> TLS list by 2359 UTC 13 December 2019 (and say why).
> : If the consensus is that this draft should be adopted as a WG item,
> then this will necessarily result in a WG rechartering discussions.
> We would have gotten to this rechartering discussion anyway now that
> DTLS 1.3 is progressing out of the WG.
> Thanks,
> Chris, Joe, and Sean
> [0]
> [1]
> [2]
> [3]
> [4] 
> [5]
> _______________________________________________
> TLS mailing list