[TLS] Fwd: New Version Notification for draft-tiloca-tls-dos-handshake-02.txt
Marco Tiloca <marco.tiloca@ri.se> Fri, 16 March 2018 15:48 UTC
Return-Path: <marco.tiloca@ri.se>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0D3D9124D6C for <tls@ietfa.amsl.com>; Fri, 16 Mar 2018 08:48:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UjtJSKWgaDgs for <tls@ietfa.amsl.com>; Fri, 16 Mar 2018 08:47:59 -0700 (PDT)
Received: from se-out2.mx-wecloud.net (se-out2.mx-wecloud.net [89.221.255.177]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3525A12E049 for <tls@ietf.org>; Fri, 16 Mar 2018 08:47:46 -0700 (PDT)
Received: from sp-mail-2.sp.se (unknown [194.218.146.197]) by se-out2.mx-wecloud.net (Postfix) with ESMTPS id 8FC2D22452D for <tls@ietf.org>; Fri, 16 Mar 2018 15:47:45 +0000 (UTC)
Received: from [193.10.66.141] (10.116.0.226) by sp-mail-2.sp.se (10.100.0.162) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1261.35; Fri, 16 Mar 2018 16:47:43 +0100
Message-ID: <5AABE71A.2050305@ri.se>
Date: Fri, 16 Mar 2018 16:47:38 +0100
From: Marco Tiloca <marco.tiloca@ri.se>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.8.0
MIME-Version: 1.0
To: tls@ietf.org
References: <152027500908.14563.2841950923441788383.idtracker@ietfa.amsl.com>
In-Reply-To: <152027500908.14563.2841950923441788383.idtracker@ietfa.amsl.com>
X-Forwarded-Message-Id: <152027500908.14563.2841950923441788383.idtracker@ietfa.amsl.com>
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="KgtaedwOm4kVh1B4vndwJ8pFXaF7VhURm"
X-Originating-IP: [10.116.0.226]
X-ClientProxiedBy: sp-mail-1.sp.se (10.100.0.161) To sp-mail-2.sp.se (10.100.0.162)
X-CMAE-Score: 0
X-CMAE-Analysis: v=2.2 cv=K9NSJ2eI c=1 sm=1 tr=0 a=L5DDne6A+dD0FbDkt2Fblw==:117 a=L5DDne6A+dD0FbDkt2Fblw==:17 a=sZ8rJzgPlrQA:10 a=v2DPQv5-lfwA:10 a=r77TgQKjGQsHNAKrUKIA:9 a=xtERp6CFAAAA:8 a=48vgC7mUAAAA:8 a=uTM5gQLEAAAA:8 a=gKmFwSsBAAAA:8 a=hirsTDsGu0qzsSCDrqwA:9 a=iHVGzADOtDR_qz5Q:21 a=dFoSSxYX0ML2hx20:21 a=QEXdDO2ut3YA:10 a=lxdVPgLXOyuE39dS:21 a=nMXXG5qPstx2F7f7:21 a=pymWJyHtM-jvNV_i:21 a=_W_S_7VecoQA:10 a=SBd8qcqpH7v4p6Rj4NMA:9 a=ONNS8QRKHyMA:10 a=w1C3t2QeGrPiZgrLijVG:22 a=X0a8wEfk66sNBbu13Lvv:22 a=nnPW6aIcBuj1ljLj_o6Q:22
X-Virus-Scanned: clamav-milter 0.99.4 at MailSecurity
X-Virus-Status: Clean
X-MailSecurity-Status: 0
X-Scanned-By: WeCloud MailSecurity
X-MailSecurity-Score: 0
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/bmvmLhIG59lmkfQrci4bJq7wv2M>
Subject: [TLS] Fwd: New Version Notification for draft-tiloca-tls-dos-handshake-02.txt
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Mar 2018 15:48:03 -0000
Hi all, We have recently submitted an updated version of the draft based on comments at IETF100. Also, a proof-of-concept implementation for DTLS 1.2 in Californium/Scandium is available at [1]. Best, /Marco [1] https://bitbucket.org/sicssec/dos_dtls -------- Forwarded Message -------- Subject: New Version Notification for draft-tiloca-tls-dos-handshake-02.txt Date: Mon, 5 Mar 2018 10:36:49 -0800 From: internet-drafts@ietf.org To: Maarten Hoeve <maarten.hoeve@encs.eu>, Ludwig Seitz <ludwig.seitz@ri.se>, Olaf Bergmann <bergmann@tzi.org>, Marco Tiloca <marco.tiloca@ri.se> A new version of I-D, draft-tiloca-tls-dos-handshake-02.txt has been successfully submitted by Marco Tiloca and posted to the IETF repository. Name: draft-tiloca-tls-dos-handshake Revision: 02 Title: Extension for protecting (D)TLS handshakes against Denial of Service Document date: 2018-03-05 Group: Individual Submission Pages: 15 URL: https://www.ietf.org/internet-drafts/draft-tiloca-tls-dos-handshake-02.txt Status: https://datatracker.ietf.org/doc/draft-tiloca-tls-dos-handshake/ Htmlized: https://tools.ietf.org/html/draft-tiloca-tls-dos-handshake-02 Htmlized: https://datatracker.ietf.org/doc/html/draft-tiloca-tls-dos-handshake-02 Diff: https://www.ietf.org/rfcdiff?url2=draft-tiloca-tls-dos-handshake-02 Abstract: This document describes an extension for TLS and DTLS to protect the server from Denial of Service attacks against the handshake protocol, carried out by an on-path adversary. The extension includes a nonce and a Message Authentication Code (MAC) over that nonce, encoded as a Handshake Token that a Trust Anchor entity computes and provides to the client. The server registered at the Trust Anchor verifies the MAC to determine whether continuing or aborting the handshake. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat
- [TLS] Fwd: New Version Notification for draft-til… Marco Tiloca