Re: [TLS] Call for adoption: draft-bhargavan-tls-session-hash

Watson Ladd <watsonbladd@gmail.com> Mon, 21 July 2014 15:19 UTC

Return-Path: <watsonbladd@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EF1001A02A5 for <tls@ietfa.amsl.com>; Mon, 21 Jul 2014 08:19:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mecfdPHgleD5 for <tls@ietfa.amsl.com>; Mon, 21 Jul 2014 08:19:41 -0700 (PDT)
Received: from mail-yk0-x234.google.com (mail-yk0-x234.google.com [IPv6:2607:f8b0:4002:c07::234]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 705C61A0252 for <tls@ietf.org>; Mon, 21 Jul 2014 08:19:40 -0700 (PDT)
Received: by mail-yk0-f180.google.com with SMTP id 200so4009011ykr.11 for <tls@ietf.org>; Mon, 21 Jul 2014 08:19:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=nij3/sfkh39oc62t3cQkEMaL7EKqsuzgzEuo3BjjKhM=; b=Y+xBEfjC6fNjGXFnen2UA+44TVSGxnVpiy8fQkehjNQ7pzAqhbXLMoLGj5+wQ8oxY2 wfoQA4ifTvi48RMBLKTytA8hPTet/qrVDmLXNlFORulaYpGvkKy3K45grF3ziC22uHht QJrlJ7ajrRM/yWL4Mnr3HIrN+WVL1w2KkQ2LMtuyf/jPYmXPjDEsoT1mcfPKG2/L2z5g BKZGW+++nSmZLNNZL9+kkcVR4GzvuSb2bl1hZa62QdZf0TjVRQAdID+SGjx9+2wCX24y 4XQ5/qvDZLWO48kXjiSGix4sdSsiXHUAfVxCNtqnIbMXZ1bN/oj1cq6TA/tIMAvTGZh+ A33A==
MIME-Version: 1.0
X-Received: by 10.236.152.169 with SMTP id d29mr41412520yhk.83.1405955979712; Mon, 21 Jul 2014 08:19:39 -0700 (PDT)
Received: by 10.170.202.8 with HTTP; Mon, 21 Jul 2014 08:19:39 -0700 (PDT)
Received: by 10.170.202.8 with HTTP; Mon, 21 Jul 2014 08:19:39 -0700 (PDT)
In-Reply-To: <502C3758-9F12-4ABC-B595-FD0994A28B18@ieca.com>
References: <502C3758-9F12-4ABC-B595-FD0994A28B18@ieca.com>
Date: Mon, 21 Jul 2014 08:19:39 -0700
Message-ID: <CACsn0ck=Hz2SWcE6pUHVtjFzrkLbidhNs5yuNmAqBz+p0FEG5g@mail.gmail.com>
From: Watson Ladd <watsonbladd@gmail.com>
To: Sean Turner <TurnerS@ieca.com>
Content-Type: multipart/alternative; boundary=20cf3040ede8bd9fbe04feb5a238
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/ILN9srqpFbZzRjq_NLlqTaLz6io
Cc: "TLS@ietf.org \(tls@ietf.org\)" <tls@ietf.org>
Subject: Re: [TLS] Call for adoption: draft-bhargavan-tls-session-hash
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Jul 2014 15:19:45 -0000

On Jul 21, 2014 8:09 AM, "Sean Turner" <TurnerS@ieca.com> wrote:
>
> At the TLS interim meeting held Sunday the 20th of July 2014, we
discussed adopting the following draft:
>
> http://datatracker.ietf.org/doc/draft-bhargavan-tls-session-hash/
>
> There was consensus to adopt it with the stipulation that the Signaling
Cipher Suite Value (SCSV) be removed.  Please indicate whether you object
to adoption (and why) by July 25, 2014.

I cannot say: does this fix the key exchange or not? It is unclear from the
MiTLS papers, but because TLS is a mess I don't know if it fixes the
problem without the MiTLS proof.

>
> spt
>
> PS Stay tuned for an early code point assignment thread.
>
>
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls