[TLS] Support of integrity only cipher suites in TLS 1.3
"Fries, Steffen" <steffen.fries@siemens.com> Mon, 03 April 2017 16:18 UTC
Return-Path: <steffen.fries@siemens.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A54C4129467 for <tls@ietfa.amsl.com>; Mon, 3 Apr 2017 09:18:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.909
X-Spam-Level:
X-Spam-Status: No, score=-6.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, T_FILL_THIS_FORM_SHORT=0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TCWHRlqqypLL for <tls@ietfa.amsl.com>; Mon, 3 Apr 2017 09:18:02 -0700 (PDT)
Received: from david.siemens.de (david.siemens.de [192.35.17.14]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0BF42120326 for <tls@ietf.org>; Mon, 3 Apr 2017 09:17:57 -0700 (PDT)
Received: from mail2.sbs.de (mail2.sbs.de [192.129.41.66]) by david.siemens.de (8.15.2/8.15.2) with ESMTPS id v33GHugC027173 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for <tls@ietf.org>; Mon, 3 Apr 2017 18:17:56 +0200
Received: from DEFTHW99ERHMSX.ww902.siemens.net (defthw99erhmsx.ww902.siemens.net [139.22.70.133]) by mail2.sbs.de (8.15.2/8.15.2) with ESMTPS id v33GHjrC032724 (version=TLSv1 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for <tls@ietf.org>; Mon, 3 Apr 2017 18:17:56 +0200
Received: from DEFTHW99ER4MSX.ww902.siemens.net (139.22.70.78) by DEFTHW99ERHMSX.ww902.siemens.net (139.22.70.133) with Microsoft SMTP Server (TLS) id 14.3.339.0; Mon, 3 Apr 2017 18:17:46 +0200
Received: from DENBGAT9EH2MSX.ww902.siemens.net ([169.254.6.223]) by DEFTHW99ER4MSX.ww902.siemens.net ([139.22.70.78]) with mapi id 14.03.0339.000; Mon, 3 Apr 2017 18:17:46 +0200
From: "Fries, Steffen" <steffen.fries@siemens.com>
To: TLS WG <tls@ietf.org>
Thread-Topic: Support of integrity only cipher suites in TLS 1.3
Thread-Index: AdKsldO7ZRItAwyZRXCzcLu6YsWN5Q==
Date: Mon, 03 Apr 2017 16:17:45 +0000
Message-ID: <E6C9F0E527F94F4692731382340B337847DB9A@DENBGAT9EH2MSX.ww902.siemens.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [139.22.70.49]
Content-Type: multipart/alternative; boundary="_000_E6C9F0E527F94F4692731382340B337847DB9ADENBGAT9EH2MSXww9_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/Mkw3Ug-nsupNqvGQqfoRLKj1uoQ>
Subject: [TLS] Support of integrity only cipher suites in TLS 1.3
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Apr 2017 16:18:05 -0000
Hi all, by reviewing the current TLS 1.3 draft I saw that already in version -02 the support for integrity only cipher suites has been removed in favor of AEAD cipher suites. Was there a specific reason to only support the encrypted cipher suites? The reason I'm asking is that in industrial communication it is often sufficient to have source authentication and message integrity while probes on the network are still able to monitor the traffic for certain properties or verify allowed exchanges. An example is ICCP for inter control center communication. The two control center are connected via an IPSec tunnel terminated in the DMZ. The desire is to have the TLS tunnel end-to-end to allow for source authentication and also for message integrity, while doing traffic inspection in the DMZ. There exist other scenarios, with a similar requirement. If I interpret the TLS 1.3 draft right, these scenarios will not be possible in the future without a trusted intermediate host terminating the TLS link to both peers. Hence the question if the decision to use encryption only is only bound to the base specification of TLS 1.3 and that additional cipher suites (allowing integrity only) can be defined later on. Best regards Steffen -- Steffen Fries Siemens AG Corporate Technology CT RDA ITS Otto-Hahn-Ring 6 81739 Muenchen, Germany Tel.: +49 89 636-633604 Fax: +49 89 636-48000 mailto:steffen.fries@siemens.com Siemens Aktiengesellschaft: Chairman of the Supervisory Board: Gerhard Cromme; Managing Board: Joe Kaeser, Chairman, President and Chief Executive Officer; Roland Busch, Lisa Davis, Klaus Helmrich, Janina Kugel, Siegfried Russwurm, Ralf P. Thomas; Registered offices: Berlin and Munich, Germany; Commercial registries: Berlin Charlottenburg, HRB 12300, Munich, HRB 6684; WEEE-Reg.-No. DE 23691322
- [TLS] Support of integrity only cipher suites in … Fries, Steffen
- Re: [TLS] Support of integrity only cipher suites… Harlan Lieberman-Berg
- Re: [TLS] Support of integrity only cipher suites… Fries, Steffen
- Re: [TLS] Support of integrity only cipher suites… Hanno Böck
- Re: [TLS] Support of integrity only cipher suites… Fries, Steffen
- Re: [TLS] Support of integrity only cipher suites… Salz, Rich
- Re: [TLS] Support of integrity only cipher suites… Eric Rescorla
- Re: [TLS] Support of integrity only cipher suites… Fries, Steffen
- Re: [TLS] Support of integrity only cipher suites… Fries, Steffen
- Re: [TLS] Support of integrity only cipher suites… Kyle Rose
- Re: [TLS] Support of integrity only cipher suites… Peter Gutmann