Re: [TLS] DTLS RRC and heartbeat
Achim Kraus <achimkraus@gmx.net> Thu, 21 October 2021 15:06 UTC
Return-Path: <achimkraus@gmx.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D477B3A1798 for <tls@ietfa.amsl.com>; Thu, 21 Oct 2021 08:06:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=gmx.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id C1FWhEWIwtn8 for <tls@ietfa.amsl.com>; Thu, 21 Oct 2021 08:06:42 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.17.22]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2FA183A1792 for <tls@ietf.org>; Thu, 21 Oct 2021 08:06:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=gmx.net; s=badeba3b8450; t=1634828798; bh=i3s3VEj5i0iUo9DeAS/5fjdy3UBsVlnVko1d0W/T/ck=; h=X-UI-Sender-Class:Subject:To:Cc:References:From:Date:In-Reply-To; b=SixzIg/Xc9K8lOcSoTByrH22ZuuXALzhGEiZaVyv8PK6C1Cqun0pGF+AYmrjLENsC RiOCQ0Zl9HIbhS6ycyXeLA32OcSWDepz/S28rxvihKSiAHQ07/qWXXI502cygXfeEw OjbXn4x+kQZ9KKLwUIuVCnfwbTB2SZeOsV+eBrRw=
X-UI-Sender-Class: 01bb95c1-4bf8-414a-932a-4f6e2808ef9c
Received: from [192.168.178.10] ([5.146.193.130]) by mail.gmx.net (mrgmx105 [212.227.17.168]) with ESMTPSA (Nemesis) id 1N17YY-1mp6BA2hgY-012c7o; Thu, 21 Oct 2021 17:06:38 +0200
To: Mohit Sahni <mohit06jan@gmail.com>
Cc: tls@ietf.org
References: <CAObGJnObgKwJE6dHUE_bPOHAzYNgaSDguXCz6gZ1Ld9bVKfecg@mail.gmail.com> <20211021163027.2dd6c9a5@computer> <CAEpwuw2wwPu5rU-i0YcHFJyHhKsbx0S0DEoXn0JAk_W8Sti8gQ@mail.gmail.com>
From: Achim Kraus <achimkraus@gmx.net>
Message-ID: <ce799f3a-dc32-25cb-012f-616612a03e16@gmx.net>
Date: Thu, 21 Oct 2021 17:06:38 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.13.0
MIME-Version: 1.0
In-Reply-To: <CAEpwuw2wwPu5rU-i0YcHFJyHhKsbx0S0DEoXn0JAk_W8Sti8gQ@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: de-AT-frami
Content-Transfer-Encoding: quoted-printable
X-Provags-ID: V03:K1:NZWZJcmZ/bi5kuTlyx8hVsKLwmRZUhRUCmJPas1QTyO7EeLSXXH mm+/M0tyCK4f+IXpyc9GdWPJ85tJOknZKHiHBGe6lAr7xqvonq+uCq8HZB/CUCfAHiF2q9E iyYymLirj9FhO3YQdy8WbAPbUX2AYmHVIvVd/b6kZUZ7wE0lQSJEwKEG2WowJ5mbHxFl2Za U/gqAc6MEdgOjzIPJbyFg==
X-UI-Out-Filterresults: notjunk:1;V03:K0:dthqprDjR5A=:lUyLNBRjNsbkfzytKWUmKK Cj/VJ70dnDaBuR2E/TD4EbgqCrtbCXKD9b7H8wAlV/3XJu6yYTUR1P5ni3Hi+SW++2AyY5cYf 3fwOsYBhUt4RQsrnswOcBT5Wov18hoG1q0KjorXKVBFW3IdUp6VQSBtKgsap0GMxNT4UkshWJ 9ElxT4rdLVMWYU3tPIh++ncOIWwlNJ4LewhH5fP0ou7ZFgNzwZt8VXgtip7+6ucbNxkaZPtOc QA9fENCnJcrR/ZpjYo9re5g5FkSzK4iH5BFXZVxDzjHgpEB7k+fvFL9sptyLnKVLZyafFof+T W65BF2AEFFM9dg1mA5MU46+nU5+otFoq5XcehHX4iFR9SBYZ1zi3jZ+1STtIGhkadzuDuQ53R SXQXyMNUf2HT1ePH4G4yaQAWG38mP9UgZ8OQnbcIg0tJ0wghi8uI6IvX2FfZbgBsj1lTccavL jsJYxpAoUt6M4nmqKuRVMvnfzCsloyoaJN+r3OdfEVcfTzjbqstZJkpyy3vCX+eQQjnsfMKX3 pILRkLkHSHm0sYHY+200V24NPkeimmmx8zUfcMH9SBexFczSYc9sMmV4vjCZjUqca+djCPYrH PqTvk6fxzGghDxdvi/vJQ2xXk4mBhfFhOQOekjtwT7bcdn/WU9yhKP4CSLFvXB1uf6JDDsEh5 PZeuX+p09ybvjkfQ1WxWacdf9VegD8zCh2BoN++JtFqrUDBLHTnWN7Y7GeKmzjDj3zUkxlvze WUVTwsUTUusQHzgqwCXJutcHDuUtrClIOWij0418Ev+VejzW21g2yrGG5buXpv3yv8DX1syXh oZ3RZq3GRGL0ftU/w8VJGwbagERp/KOk6GO6GC9abHDqChpnrMd2NI945tQB1dNaKBjxPY0Wa qFAMygCiY/iAstE9cwUcBpEnkeAyj/iPUsnEhMwxHzTZOaYfLHy4c6FOs0AToZBI+gLLcC7Uz /tnUFvWX+Zw1XmqTXzel9TnjpU/1XtMW4yV6kDaAIYFMn8MUGypQO6Lrit34KG6icg7RJad+P pwWxux/cUhCwf0+X/d8FrANm8eKNqUvNddI0Bcni9PRjDh+RB1bxr6Of+0CToya2d8LBqqpfS 1DdJ3n1URLCU6s=
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/VF9TcDcDKtAeud7nIlw70YWynPU>
Subject: Re: [TLS] DTLS RRC and heartbeat
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Oct 2021 15:06:46 -0000
Hi Mohit, Am 21.10.21 um 16:40 schrieb Mohit Sahni: > Just want to highlight one more issue with using the original extension, > many network security devices have threat signatures to identify the > heartbeat extension in packet streams and they will block the sessions > that match the signatures. > that sounds as a good reason, to ask for a new code-point. best regards Achim Kraus
- [TLS] DTLS RRC and heartbeat Thomas Fossati
- Re: [TLS] DTLS RRC and heartbeat Hanno Böck
- Re: [TLS] DTLS RRC and heartbeat Mohit Sahni
- Re: [TLS] DTLS RRC and heartbeat Achim Kraus
- Re: [TLS] DTLS RRC and heartbeat Achim Kraus
- Re: [TLS] DTLS RRC and heartbeat Salz, Rich
- Re: [TLS] DTLS RRC and heartbeat Salz, Rich
- Re: [TLS] DTLS RRC and heartbeat Thomas Fossati
- Re: [TLS] DTLS RRC and heartbeat Salz, Rich