Re: [TLS] Working Group Last Call for draft-ietf-tls-tls13-18

Yuhong Bao <> Mon, 21 November 2016 01:42 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 5974C129454 for <>; Sun, 20 Nov 2016 17:42:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -3.267
X-Spam-Status: No, score=-3.267 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-1.497, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id hoCGMrMVP_XI for <>; Sun, 20 Nov 2016 17:42:39 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 9F451126BF7 for <>; Sun, 20 Nov 2016 17:42:39 -0800 (PST)
Received: from ([]) by over TLS secured channel with Microsoft SMTPSVC(7.5.7601.23008); Sun, 20 Nov 2016 17:42:39 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=B9Z6GR52JAvOsbVMvhqaGbJKrI/B+dzEwA1ICBNM3yE=; b=Zgd/BOmBS0ewGMR+N3O2eGwl1iBipJ2SYCkG6HK0z1Q4sX6y4hNCVgBaYJTjbFKO1vJ5japENlHdDn3qZFXfPlQikjs4doP1pB5OwBealHEMhTPvOonnGQ2ZYzUY5I/mBOs73HSLuN8LebF5GnWWup1WxTLwYr5HL2JI1u+Ukczirb5PL7Ef/QnNtp1ujuYmKb0dUKLC3OfIrBWmgJvpfahV9qt/FPAg5rGaYVoRdUe2fJEJg89UkcKQ7/i355s62ZX5i5G4+uVT14tSQA1qUT9+LlBpkQ6qJWJXB2hkWT+HmJiJxDUILOS52+cMdgWwD8QCHsuM1c8qOakCQ09+aw==
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.721.5; Mon, 21 Nov 2016 01:42:37 +0000
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.734.4 via Frontend Transport; Mon, 21 Nov 2016 01:42:37 +0000
Received: from ([]) by ([]) with mapi id 15.01.0721.024; Mon, 21 Nov 2016 01:42:37 +0000
From: Yuhong Bao <>
To: Joseph Salowey <>, "" <>
Thread-Topic: [TLS] Working Group Last Call for draft-ietf-tls-tls13-18
Thread-Index: AQHSL/2/Y48c/0f1ekKL0nwqIu5Fn6Di0QFC
Date: Mon, 21 Nov 2016 01:42:37 +0000
Message-ID: <>
References: <>
In-Reply-To: <>
Accept-Language: en-US
Content-Language: en-US
authentication-results:; dkim=none (message not signed) header.d=none;; dmarc=none action=none;
x-incomingtopheadermarker: OriginalChecksum:; UpperCasedChecksum:; SizeAsReceived:7445; Count:38
x-tmn: [KIxUOtMf2YDLNLgHvw9Yt0NMZPUFveIgGrDz2WIFob0=]
x-incomingheadercount: 38
x-eopattributedmessage: 0
x-microsoft-exchange-diagnostics: 1; BL2NAM02HT039; 5:aqRxoDeYa50YTVeaS+8uIARGb0g84Er5RDM9rz3cOrV/Kh4z8gXKAzm/d6cNSV9554elyiKrT/0QVmPXGddC4eEXxl8uw6b6Df7JyBK8vXnwVt1UIjC17j1CNw4TtQTNYaulKbQqYy9njZBEvidBEQ==; 24:naTRvqtnSzW6vpiAkUN412m9eZjDcSxRa90ycc9iJfJmJKPuxuVSS+BZQ9EUvzGl666uyqA5LpZdm+++EPj4MZwtE/woIDIlM/EtjJ6dtWU=; 7:S8Arenc5yF7xrhrOkzfXpIOk+rOxdJzozFPScR+InO6tsPNryp/TLoiUaA+RWBSqM3RCkoD6J5D57trNQXPvrML0P2Xft+z9ly7Bm9jZSBYJDVPhYwAhk8R+6Gg6yVUHyxa+U6H43TszCjWFFJeidv8hwR1WtCLZiT5+BMqI9tLIKfDycrpc1oEpEcjCH2ym/pAGSiK1TZWsHmZXHZ62RBrctBbT52UqcNxAiPER+ECFzI0IFtMO3s+Fs6LuarbatMzr9jgtMOU9cPRhO4JKU+JZCcEbFXguh+U3AhvfOR0hpNTRRI9FkrnfFQymbL4OWSX0gryIktY8wkEn9a0QS1HAjv1tUyrdGDOVkVZFgY0=
x-forefront-antispam-report: EFV:NLI; SFV:NSPM; SFS:(10019020)(98900003); DIR:OUT; SFP:1102; SCL:1; SRVR:BL2NAM02HT039;; FPR:; SPF:None; LANG:en;
x-ms-office365-filtering-correlation-id: 8c86ef1a-2d3e-48b3-4b5c-08d411afac5f
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(1601124038)(1603103113)(1603101340)(1601125047); SRVR:BL2NAM02HT039;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(432015012)(82015046); SRVR:BL2NAM02HT039; BCL:0; PCL:0; RULEID:; SRVR:BL2NAM02HT039;
x-forefront-prvs: 01334458E5
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Nov 2016 01:42:37.4457 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Internet
X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2NAM02HT039
X-OriginalArrivalTime: 21 Nov 2016 01:42:39.0246 (UTC) FILETIME=[8AF35AE0:01D24398]
Archived-At: <>
Subject: Re: [TLS] Working Group Last Call for draft-ietf-tls-tls13-18
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 21 Nov 2016 01:42:41 -0000

I can't help but notice the text:
"Versions of TLS before 1.3 supported compression with the list of supported compression methods being sent in this field. For every TLS 1.3 ClientHello,  this vector MUST contain exactly one byte set to zero, which corresponds to the “null” compression method in prior versions of TLS. If a TLS 1.3 ClientHello is received with any other value in this field, the server MUST abort the handshake with an “illegal_parameter”  alert. Note that TLS 1.3 servers might receive TLS 1.2 or prior ClientHellos which contain other compression methods and MUST follow the procedures for the appropriate prior version of TLS."
IMO, the compression methods section of ClientHello should be ignored as mentioned by Martin Rex.

It may be too late for that, but RC4 IMO should be a SHOULD NOT not a MUST NOT.
One reason for that is that it is not broken the way that say 56-bit encryption is.

From: TLS <> on behalf of Joseph Salowey <>
Sent: Wednesday, October 26, 2016 7:56 PM
Subject: [TLS] Working Group Last Call for draft-ietf-tls-tls13-18

This is a working group last call announcement for draft-ietf-tls-tls13-18, to run through November  20. If possible, we would like to receive comments on the list by November 13 so  they can be discussed at the meeting in Seoul. We hope to address any substantive issues raised during that process shortly thereafter.

In order to allow for cryptographic review, we will delay submission of the draft to the IESG until the end of January 2017; there will be an opportunity to address  any issues discovered by the cryptographic community prior to submission to the IESG.