IETF Logo Mail Archive

Re: [TLS] Comments on TLS identity protection

Eric Rescorla <ekr@networkresonance.com> Wed, 20 December 2006 14:53 UTC

Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1Gx2pT-0001aj-Ql; Wed, 20 Dec 2006 09:53:59 -0500
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1Gx2pS-0001ad-CE for tls@ietf.org; Wed, 20 Dec 2006 09:53:58 -0500
Received: from raman.networkresonance.com ([198.144.196.3]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1Gx2pQ-0007Z3-08 for tls@ietf.org; Wed, 20 Dec 2006 09:53:58 -0500
Received: by raman.networkresonance.com (Postfix, from userid 1001) id C8F271E8C5D; Wed, 20 Dec 2006 06:53:50 -0800 (PST)
To: Peter Williams <home_pw@msn.com>
Subject: Re: [TLS] Comments on TLS identity protection
References: <BAY103-W6AD24C4B15A2B5777C8F192CF0@phx.gbl>
From: Eric Rescorla <ekr@networkresonance.com>
Date: Wed, 20 Dec 2006 06:53:50 -0800
In-Reply-To: <BAY103-W6AD24C4B15A2B5777C8F192CF0@phx.gbl> (Peter Williams's message of "Tue, 19 Dec 2006 22:54:21 -0800")
Message-ID: <86bqlyk48x.fsf@raman.networkresonance.com>
User-Agent: Gnus/5.1007 (Gnus v5.10.7) XEmacs/21.4.19 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 0ddefe323dd869ab027dbfff7eff0465
Cc: tls@ietf.org
X-BeenThere: tls@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: EKR <ekr@networkresonance.com>
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/tls>
List-Post: <mailto:tls@lists.ietf.org>
List-Help: <mailto:tls-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
Errors-To: tls-bounces@lists.ietf.org

Peter Williams <home_pw@msn.com> writes:

> Eric:
>  
> I hope Im doing ok on CRLFs. I add them manually in my paragraphs, when I 
> remember. As far as I can determine , there is no way for a  hotmail.com users 
> to meet the IETF usability rules (wordwrap before 65chars, affixing CRLF each line),
> I'm happy to be shown how, tho, by  power user! I'm keeping msn, tho, as it
> gives me excellent IETF S/MIME from my EVDO PDA, via a webmail.

Prehistoric technology, dude! OK, I'll try to adjust.


>> > Peter Williams <home_pw@msn.com> writes:> > Id say the nth handshake can select to send "no server cert" whenever its > > cooperating to complete an anonymous-ciphersuite-targeted handshake.> > So, assume there are only two ciphers suite values in the HSM : RSA, RSA-ANON. > > There is no such thing as RSA anon in SSLv3 or TLS. 
> For a long time Ive regarded SSLv3 as http://wp.netscape.com/eng/ssl3/3-SPEC.HTM#8-1
> Its an old bookmark!

Here's the SSLv3 spec that I usually use as a reference.

http://wp.netscape.com/eng/ssl3/draft302.txt

You'll note that it's very similar to TLS :)


> it doesnt even contain a set of ciphersuite declarations. It clearly
> reinforces what I said tho: server cert presentation is ALWAYS optional
> architecturally, and ServerKeyExchange is then used, instead. Netcape
> documents were never particular formal! They were always in a rush.

I don't agree with this interpretation.

Here's the key text, from A.6.

   The following CipherSuite definitions require that the server
   provide an RSA certificate that can be used for key exchange.  The
   server may request either an RSA or a DSS signature-capable
   certificate in the certificate request message.

     CipherSuite SSL_RSA_WITH_NULL_MD5                  = { 0x00,0x01 };
     CipherSuite SSL_RSA_WITH_NULL_SHA                  = { 0x00,0x02 };
     CipherSuite SSL_RSA_EXPORT_WITH_RC4_40_MD5         = { 0x00,0x03 };
     CipherSuite SSL_RSA_WITH_RC4_128_MD5               = { 0x00,0x04 };
     CipherSuite SSL_RSA_WITH_RC4_128_SHA               = { 0x00,0x05 };
     CipherSuite SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5     = { 0x00,0x06 };
     CipherSuite SSL_RSA_WITH_IDEA_CBC_SHA              = { 0x00,0x07 };
     CipherSuite SSL_RSA_EXPORT_WITH_DES40_CBC_SHA      = { 0x00,0x08 };
     CipherSuite SSL_RSA_WITH_DES_CBC_SHA               = { 0x00,0x09 };
     CipherSuite SSL_RSA_WITH_3DES_EDE_CBC_SHA          = { 0x00,0x0A };

-Ekr

_______________________________________________
TLS mailing list
TLS@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

v2.23.0 | Report a Bug | By Email