[TLS] ECH AAD for HRR
Stephen Farrell <stephen.farrell@cs.tcd.ie> Wed, 01 September 2021 17:00 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC4383A0DBC for <tls@ietfa.amsl.com>; Wed, 1 Sep 2021 10:00:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qDWpkyXp3WiW for <tls@ietfa.amsl.com>; Wed, 1 Sep 2021 10:00:47 -0700 (PDT)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (mail-eopbgr40124.outbound.protection.outlook.com [40.107.4.124]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BD4C23A0DBA for <tls@ietf.org>; Wed, 1 Sep 2021 10:00:46 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XlYSw3l5ZZO48+QdKpxRAlk0SEBO+9Haewr4mkQtXnfnHnBceQIRw2KjQfbebkTTQPI+41w93MOykg5X65+JRxvqwEIufxjeS+tu2TNfo4voYSKM22Y8BNk2OafoT99Wi53Gfkqn1j1UWVOUN1KPP5aikNtsr9v4lzqf+T/zqvjoOk5t3BbzOI9iuAjG0QCE3eZMZS8dtfP1nj0ssMFKTfCrRupcZqtedl39OpjTxoVpPfYbr7LQ9HdHRsGHkWiJB4+AIQ8uidiDGQZQkrT4LgwaPRg9YzMwutEmDwpuKZRGjoTHdyVh0RWxwrMLCLGvIJvksAqzDQrpmd6dC6w7Hw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=u+zSklWcOjgY6aBaYDmgpDcDIPTS7EHh/6zyJq9KHaI=; b=LcRNvd3qGT7H8y9xjqKiVWzsXmqi9j9YnaiJ7+x21QxGeRaAZaZjbdNeSjxGmVTVF7JRnYbp1MAQfwaXu7UOQkYy/aELWXXAkLUOki9vx0W4ca9Z8uUGU3mu4ZScHCdkW7n4ZNuRYl9/5tiq5wrMEFTpbg1QHHq56b8aQUpZxWmeVMOu59FWfbuMf3BmDWjhmZZbRvBs30WbKMTTPXuy1MD5sFvM7Srs8i4s2a52DXDDVuZiOLsou7CqVl0yKwaj4Tw1At4LQLw4Zhdi/r21R4TG9yBZYxL1agNktKvmkQUaXs1YZhTba0XlIEPQRogK+kMCzrzrmBKjDAsc60TaOg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=u+zSklWcOjgY6aBaYDmgpDcDIPTS7EHh/6zyJq9KHaI=; b=CuEfXSy+9qXHcfRudFE9Gs00+wNcqkJhn899jpiUPcWUor190RwQhhtG0PLtzTc8X6xkqU13tHf1QHip/swpCjfF29jkXrfm6wBdB86zte2q8aNdB1YIbN2n89hx0/91gzOjxhWBl9Gs/i1iyJaVYcGc8KjyfRSvYabufHGNKiDE+S2s5kQU4U1XsrNxUOrzrZp7VHEnjEJcWiWWePr6dZNU56qXtDj/x0tbbSVWFwW7Hh5Eqrduwq+8BtACIjkK3Cw5xoJMzt96IETIabW+0qsKxKvEKcLf43Zql7Fee03nUzRRVsmb8PuPvEzBfM98JDjMc9LfSnGW4XDIHkNrLA==
Authentication-Results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15) by DB6PR0202MB2966.eurprd02.prod.outlook.com (2603:10a6:4:ad::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4457.24; Wed, 1 Sep 2021 17:00:43 +0000
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::4198:a9d1:7246:8272]) by DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::4198:a9d1:7246:8272%3]) with mapi id 15.20.4457.024; Wed, 1 Sep 2021 17:00:43 +0000
To: "tls@ietf.org" <tls@ietf.org>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Message-ID: <07c00cd9-677c-ec35-7dba-0c4eccac35cd@cs.tcd.ie>
Date: Wed, 01 Sep 2021 18:00:41 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.11.0
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="z7oSNtoVb3rexi9jSXOgSKb3ZpN87l85m"
X-ClientProxiedBy: DU2PR04CA0020.eurprd04.prod.outlook.com (2603:10a6:10:3b::25) To DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from [10.244.2.124] (95.45.153.252) by DU2PR04CA0020.eurprd04.prod.outlook.com (2603:10a6:10:3b::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4478.19 via Frontend Transport; Wed, 1 Sep 2021 17:00:43 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: d33e8ef1-bc4d-45ec-c8f9-08d96d6a08de
X-MS-TrafficTypeDiagnostic: DB6PR0202MB2966:
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-Microsoft-Antispam-PRVS: <DB6PR0202MB2966B5E54A97679C59EE4D9BA8CD9@DB6PR0202MB2966.eurprd02.prod.outlook.com>
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Oob-TLC-OOBClassifiers: OLM:3826;
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR02MB5113.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(16576012)(186003)(33964004)(2616005)(44832011)(38100700002)(956004)(6486002)(26005)(31686004)(316002)(31696002)(8676002)(8936002)(86362001)(5660300002)(66946007)(66476007)(235185007)(83380400001)(3480700007)(2906002)(66616009)(66556008)(6916009)(36756003)(21480400003)(508600001)(43740500002)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: d33e8ef1-bc4d-45ec-c8f9-08d96d6a08de
X-MS-Exchange-CrossTenant-AuthSource: DB7PR02MB5113.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 01 Sep 2021 17:00:43.3494 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 6k+DoUSgBiAwnc5qvIgXOTtqXZvnT8eu0vPSw90NAzKtZnOrU4D5Tf1DwVtJ8PMq
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0202MB2966
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/Rg3GkZyET9GCZL8kIrUTqyUvEUU>
Subject: [TLS] ECH AAD for HRR
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Sep 2021 17:00:53 -0000
(Apologies for the acronym laden subject:-) I'm more or less at the "code complete" stage of implementing draft-13 incl. HRR. (If anyone wants to try interop, for now please contact me, but I should have a server up in a few days.) I'm sure as usual I'll have gotten some details wrong, but I wasn't clear about one thing: - When sending the 2nd CH following HRR, the spec calls for omitting the "enc" field of the ECH extension ("enc" holds the sender's public HPKE value that's re-used from the 1st CH). - The AAD for that ECH encryption is the outer CH with zeros replacing where the ciphertext will go. - I concluded that the sender's ECH public value (the "enc" field) ought not be present in the AAD in that case, as well as being omitted in the ECH value, but it wasn't entirely clear to me from the spec (and it'd work either way). So my question is: did I get that right or not? Thanks in advance, S.
- [TLS] ECH AAD for HRR Stephen Farrell
- Re: [TLS] ECH AAD for HRR David Benjamin
- Re: [TLS] ECH AAD for HRR Christopher Patton
- Re: [TLS] ECH AAD for HRR Stephen Farrell
- Re: [TLS] ECH AAD for HRR Stephen Farrell