[TLS] Re: Disallowing reuse of ephemeral keys
Martin Thomson <mt@lowentropy.net> Sat, 14 December 2024 00:01 UTC
Return-Path: <mt@lowentropy.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D284C180B5C for <tls@ietfa.amsl.com>; Fri, 13 Dec 2024 16:01:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b="XF+lU58v"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="hno9ryXH"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g3UFXWukTG-f for <tls@ietfa.amsl.com>; Fri, 13 Dec 2024 16:01:19 -0800 (PST)
Received: from fhigh-a5-smtp.messagingengine.com (fhigh-a5-smtp.messagingengine.com [103.168.172.156]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 69B56C14F61B for <tls@ietf.org>; Fri, 13 Dec 2024 16:01:19 -0800 (PST)
Received: from phl-compute-05.internal (phl-compute-05.phl.internal [10.202.2.45]) by mailfhigh.phl.internal (Postfix) with ESMTP id 5D5B61140081 for <tls@ietf.org>; Fri, 13 Dec 2024 19:01:18 -0500 (EST)
Received: from phl-imap-01 ([10.202.2.91]) by phl-compute-05.internal (MEProxy); Fri, 13 Dec 2024 19:01:18 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=cc:content-transfer-encoding:content-type:content-type:date :date:from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:subject:subject:to:to; s=fm2; t=1734134478; x=1734220878; bh=C6kD+Vf/1sH7V6dyVlC6d0pHeuntzMMpergSubtQxJQ=; b= XF+lU58vw2JrSTd/zMAmCKF3bMOnRSYSmz4H47M0XepQjiVTRPteZoK3pQI28yO7 i4cqeStbOcUvb4lEqz0jarsh+7fGbdGCEFyqFbn8UyPxk6GnUZ9CQx1fIJUvFFRB Xpx2jvC5crcib4FFI9N3UrKyWarXrVzcHTtWd1rdKVUGSiAF5WeMLCV4MFqpECcM KSrAFzwMXba5wFTMkwLkLKiGgJiCqre3iSGLT0KCdedFNmONkrlN1QWcS3AoIVNi rYLErnoh2IAImSazYV73APEzqC+n5yIS9XEq4iHhaP8XMteU45l+uhUul4jydAVk xZakfmHK7EPVdVoHKVxPbA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :content-type:date:date:feedback-id:feedback-id:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:subject:subject:to:to:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm1; t=1734134478; x=1734220878; bh=C 6kD+Vf/1sH7V6dyVlC6d0pHeuntzMMpergSubtQxJQ=; b=hno9ryXHatDn77iQS BKwciLeHwO3aP2RdE6Wi70xc/y2IsjPQ+RdPIpefWHV+cEG43EywCC29JfzqGZcr a308tOKepkK9UPW1ERthJO2V4YMfqCKW3H/TRIlKxB7Ebvsm5ztLp1llFKNEhZBC b5j8FMYmg2gSmZU5I3mdk0fOWLsK1cjDxyk6ofePB9m2NGH06qElmc3TZ5D2WYwC W+9hTYPurK35OMlrzvWYwq7GAdsMB2nWtJx/tPuxZLegL5btvGgmnv0pzOaygyoq 9h2UV+83rtehrTHskQnaaacvMwPgyDbal0cCHWp+qbMLRvHwh3YPgLmYgOGgcYW5 LYsqw==
X-ME-Sender: <xms:zspcZ4M9FFY8QfUBuLKL6nPugAWzJLn5QHtnC81IUu8_bq-I7Vhp3A> <xme:zspcZ-_-m2yBQYi1NsbVI18AJ_LrxYWRVnR5OdvnGTtmYaS92o6nuEY4k526KRwU0 0TZcKjnBe-XnRlJ9Js>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeefuddrkeekgdduiecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpggftfghnshhusghstghrihgsvgdpuffr tefokffrpgfnqfghnecuuegrihhlohhuthemuceftddtnecunecujfgurhepofggfffhvf fkjghfufgtgfesthejredtredttdenucfhrhhomhepfdforghrthhinhcuvfhhohhmshho nhdfuceomhhtsehlohifvghnthhrohhphidrnhgvtheqnecuggftrfgrthhtvghrnhepue eludegfeelhfektdffveelgefhtefguddtfeevteettdevgefgfeeilefftefgnecuvehl uhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhtsehlohifvg hnthhrohhphidrnhgvthdpnhgspghrtghpthhtohepuddpmhhouggvpehsmhhtphhouhht pdhrtghpthhtohepthhlshesihgvthhfrdhorhhg
X-ME-Proxy: <xmx:zspcZ_SdKqMnL7X7mw_8FU8xEKzKxTD3N3OswN2N3sh6o2WsAFSnrw> <xmx:zspcZwvl4Twh0u7Qsy7PAbRtgCfWb8I4HnW0gsLWmm_0xad7cBNCnQ> <xmx:zspcZwcsXsyfaE5ChGD48_rMCxuF4SOORVMaXb4_cTUhUhUwG8SAlQ> <xmx:zspcZ02lAcm6YBmT0N66yf4IQ3NNoQ12dmtij1jPBbIwXjJdzx4JUg> <xmx:zspcZ4kFKglow6csx9OYShOvcQrO40a4zLOUUDqa_X8EUTzJffJ0bc5e>
Feedback-ID: ic129442d:Fastmail
Received: by mailuser.phl.internal (Postfix, from userid 501) id 089ED3360079; Fri, 13 Dec 2024 19:01:18 -0500 (EST)
X-Mailer: MessagingEngine.com Webmail Interface
MIME-Version: 1.0
Date: Sat, 14 Dec 2024 11:00:57 +1100
From: Martin Thomson <mt@lowentropy.net>
To: tls@ietf.org
Message-Id: <b63c656f-c753-4a72-8a95-ae8abf779b42@betaapp.fastmail.com>
In-Reply-To: <847e08ed-8d34-4ebb-b3d6-bcbe54976cb4@cs.tcd.ie>
References: <CAOgPGoCHnXZzzoAFT8GGmByr=7y1j5wM3ptPc4_JBF3FhtVNmQ@mail.gmail.com> <bf28dd19-0534-4403-8e20-50bcbbc0fcdd@app.fastmail.com> <CAL02cgQ9610CzMfcJEPcfpDRemyvAh3-AEH=GZbmV4QdWtQCXA@mail.gmail.com> <847e08ed-8d34-4ebb-b3d6-bcbe54976cb4@cs.tcd.ie>
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
Message-ID-Hash: TAWJAGGEMSZH25VP675QCNGWER4UDJKQ
X-Message-ID-Hash: TAWJAGGEMSZH25VP675QCNGWER4UDJKQ
X-MailFrom: mt@lowentropy.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: Disallowing reuse of ephemeral keys
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/c1o81EJs0t_MEf1qrkR0YMDjIag>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
On Fri, Dec 13, 2024, at 23:19, Stephen Farrell wrote: > On 12/12/2024 17:59, Richard Barnes wrote: >> My preference order would be 3 > 1 >> 2. > > I agree with the above for reasons already stated on the list. As do I.
- [TLS] Re: Disallowing reuse of ephemeral keys Richard Barnes
- [TLS] Re: Disallowing reuse of ephemeral keys Russ Housley
- [TLS] Re: Disallowing reuse of ephemeral keys Filippo Valsorda
- [TLS] Re: Disallowing reuse of ephemeral keys Richard Barnes
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… Andrei Popov
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… Christian Huitema
- [TLS] Re: Disallowing reuse of ephemeral keys Eric Rescorla
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… Andrei Popov
- [TLS] Re: Disallowing reuse of ephemeral keys Peter Gutmann
- [TLS] Re: Disallowing reuse of ephemeral keys Thom Wiggers
- [TLS] Re: Disallowing reuse of ephemeral keys Bas Westerbaan
- [TLS] Re: Disallowing reuse of ephemeral keys Loganaden Velvindron
- [TLS] Re: [EXTERNAL] Disallowing reuse of ephemer… Alicja Kario
- [TLS] Re: Disallowing reuse of ephemeral keys Martin Thomson
- [TLS] Re: [EXTERNAL] Disallowing reuse of ephemer… Scott Fluhrer (sfluhrer)
- [TLS] Re: [EXTERNAL] Disallowing reuse of ephemer… Richard Barnes
- [TLS] Re: [EXTERNAL] Disallowing reuse of ephemer… Scott Fluhrer (sfluhrer)
- [TLS] Re: Disallowing reuse of ephemeral keys Scott Fluhrer (sfluhrer)
- [TLS] Re: [EXTERNAL] Disallowing reuse of ephemer… Dang, Quynh H. (Fed)
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… Andrei Popov
- [TLS] Re: Disallowing reuse of ephemeral keys Stephen Farrell
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… Viktor Dukhovni
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… Sophie Schmieg
- [TLS] Re: Disallowing reuse of ephemeral keys Joseph Salowey
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… John Mattsson
- [TLS] Disallowing reuse of ephemeral keys Joseph Salowey
- [TLS] Re: [EXTERNAL] Disallowing reuse of ephemer… Richard Barnes
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… Joseph Birr-Pixton
- [TLS] Re: [EXTERNAL] Re: Disallowing reuse of eph… Eric Rescorla
- [TLS] Re: Disallowing reuse of ephemeral keys D. J. Bernstein