Re: [TLS] Fwd: Re: AD review of draft-ietf-tls-dtls-connection-id-07

Benjamin Kaduk <kaduk@mit.edu> Wed, 14 October 2020 21:20 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 43D0A3A1096; Wed, 14 Oct 2020 14:20:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NtgGWvvK-eDu; Wed, 14 Oct 2020 14:20:19 -0700 (PDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C29793A1095; Wed, 14 Oct 2020 14:20:18 -0700 (PDT)
Received: from kduck.mit.edu ([24.16.140.251]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id 09ELK9Pg024406 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 14 Oct 2020 17:20:14 -0400
Date: Wed, 14 Oct 2020 14:20:09 -0700
From: Benjamin Kaduk <kaduk@mit.edu>
To: Achim Kraus <achimkraus@gmx.net>
Cc: draft-ietf-tls-dtls-connection-id@ietf.org, "tls@ietf.org" <tls@ietf.org>
Message-ID: <20201014212009.GO50845@kduck.mit.edu>
References: <0da9b525-ec78-bef5-6ceb-5f377019ade4@gmx.net> <4ca7c2f9-1e9d-0d16-0089-649f013b4565@gmx.net> <20201008233454.GF89563@kduck.mit.edu> <6185242d-8ba8-2d2f-5938-afad46c2e854@gmx.net> <20201009212240.GK89563@kduck.mit.edu> <fe7eab66-a14a-5f18-46be-7bae471c3b20@gmx.net> <20201012204535.GE1212@kduck.mit.edu> <b006ad5d-bf93-db96-02fd-72be723dd331@gmx.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <b006ad5d-bf93-db96-02fd-72be723dd331@gmx.net>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/8QLq6R4B5je8016BZUAN32QE0uk>
Subject: Re: [TLS] Fwd: Re: AD review of draft-ietf-tls-dtls-connection-id-07
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Oct 2020 21:20:20 -0000

On Tue, Oct 13, 2020 at 06:50:52AM +0200, Achim Kraus wrote:
> Hi Ben,
> 
> > Sure, there's pretty standard common-knowledge guidance, though I'm not
> > sure it's documented anyplace particularly discoverable:
> >
> > - include in the MAC as much application/protocol context and protocol
> >    fields as you can without breaking operation of the procotol
> > - ensure that the mapping from (set of protocol fields and values derived
> >    from application context) to (bytes given as input to the MAC function) is
> >    an injective mapping
> >
> > In some (many?) cases, there is not any additional contextual information
> > available, and the protocol header itself has a deterministic/fixed-length
> > encoding, so both points can be achieved by just using the protocol
> > header/payload as it appears on the wire as MAC input.  For better or for
> > worse, the current construction in the -07 diverges significantly from the
> > actual protocol header, so we have to do a bit of thinking to ensure that
> > we are compliant to the guidelines (that I just described, so I assume you
> > did not previously think about them in that formulation).
> >
> 
> Hope, I'm not again catched by my bad english :-):

Sorry, my writing became less clear when I attempted to edit it :(

> If the forumlation refers to draft-ietf-tls-dtls-connection-id-07 (and
> not my e-mails), I can't say, what was thought or not by the authors. My
> role in that discussion quite a year ago, was just to ask, which of the
> many variants should then be chosen in order not to change it every year.

I was just saying "I only told you the list of two things that are the
standard guidance just now; I don't expect that you used those two things
as part of your thought processes before I told them to you".

-Ben