Re: [TLS] Proposed text for removing renegotiation

Martin Thomson <martin.thomson@gmail.com> Mon, 23 June 2014 16:54 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 43C3F1B2B79 for <tls@ietfa.amsl.com>; Mon, 23 Jun 2014 09:54:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id w4SO-_aF34YK for <tls@ietfa.amsl.com>; Mon, 23 Jun 2014 09:54:02 -0700 (PDT)
Received: from mail-wi0-x22a.google.com (mail-wi0-x22a.google.com [IPv6:2a00:1450:400c:c05::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3AD9D1B2BEA for <tls@ietf.org>; Mon, 23 Jun 2014 09:43:47 -0700 (PDT)
Received: by mail-wi0-f170.google.com with SMTP id cc10so4724662wib.1 for <tls@ietf.org>; Mon, 23 Jun 2014 09:43:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=l7nV5W14QcXUSMB3LEbVPZ2zJ7vU8LG1VuvZrKTQsBI=; b=TupASaTYDJb/KUxRSiQ2bjmpat7PSYksIPXp9Qci6cmcvU8w4WKNxe1UrzfB+wLMgA YC3FGJW4E/bLxnM9myNcVtYAbqGwsX0RaOczFkqJO9isVv0P5ifqruMCGyXtWknBzNMa ChPAKH8aVUIqDc5oaQ+dSYQ5MTu/I5I61SlMu85oesQJIjXLX0m0y3J3qzVCtssw2Kyf 2/TyVSN7bz8dPVnmmC/OH7y0HoXPc3UyG1NvQVHp6glSR8JElLKKdWFoIYqbNDu9Hfq+ 6C0jRLxetc/OtRV3wseBfFDaQoierFgoVPS2NxiepaH1PfWrXQcCwm7BntPl6sAOU1Nv jiyw==
MIME-Version: 1.0
X-Received: by 10.194.89.168 with SMTP id bp8mr29515800wjb.73.1403541825845; Mon, 23 Jun 2014 09:43:45 -0700 (PDT)
Received: by 10.194.51.134 with HTTP; Mon, 23 Jun 2014 09:43:45 -0700 (PDT)
In-Reply-To: <1403525272.2337.17.camel@dhcp-2-127.brq.redhat.com>
References: <CAFewVt65X1V6=A_HP_pcg=6nXNVFLxQmSsPB2rq1KvmGPRz+og@mail.gmail.com> <20140606223045.3B5AF1AD46@ld9781.wdf.sap.corp> <CACsn0cmcc6kXvOuqkZaDj7+QPdpY9qqQ58bs3s-JBGXdNJSZyw@mail.gmail.com> <CABcZeBPe45BM-uXd7DEBD_BBn=jhk8KkYB=facp+NMb2e4nBiw@mail.gmail.com> <1402299260.2427.2.camel@dhcp-2-127.brq.redhat.com> <CABkgnnX5+fXNDy1o7Pu60rp8vSx7XfKbt337e_q=+3fb8fXHJw@mail.gmail.com> <1402388399.2369.5.camel@dhcp-2-127.brq.redhat.com> <CACsn0cm5OzzjOh5nSXcu-cx+ZYFeJiJ5eGvgwjsWPUeX4ozz2g@mail.gmail.com> <1402476304.2305.8.camel@dhcp-2-127.brq.redhat.com> <CACsn0cmM4KpMgwXo0iTygsQ+En6N3J46jPY-Q3hfwzqG431M1w@mail.gmail.com> <1402648977.6191.36.camel@dhcp-2-127.brq.redhat.com> <CACsn0ck6OxPm8BwuNeAn+wpayaefkAzZtiyjkaQ1sB_4hp0C_Q@mail.gmail.com> <1402990596.2335.18.camel@dhcp-2-127.brq.redhat.com> <53A0AB7E.4050706@fifthhorseman.net> <1403173608.5825.6.camel@dhcp-2-127.brq.redhat.com> <CABkgnnVuTauFLeto3KebbMDFysjpd7rg_dHrTQVZBeS8BktmoA@mail.gmail.com> <1403249527.30440.11.camel@dhcp-2-127.brq.redhat.com> <CABkgnnWwkrb6uF-uUxxf+eKEObiJKNa+KDNpT3svYdFxew5UmA@mail.gmail.com> <1403525272.2337.17.camel@dhcp-2-127.brq.redhat.com>
Date: Mon, 23 Jun 2014 09:43:45 -0700
Message-ID: <CABkgnnUS4hQLGsapUSn2wAGxKHJCnEgbyOqij+hPVbZm8oUfkg@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: Nikos Mavrogiannopoulos <nmav@redhat.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/dNQohC-zAXFL8f9t9HWOie3HgAU
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] Proposed text for removing renegotiation
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Jun 2014 16:54:03 -0000

On 23 June 2014 05:07, Nikos Mavrogiannopoulos <nmav@redhat.com> wrote:
> How would these applications be affected?

Dead air is unacceptable for at least one application I'm aware of for
long-lived connections (and therefore occasional rekeying), and that
is server-to-server XMPP.

> Do you know whether the F5
> implementation interleaves the re-handshake with application data?

No.  Most likely scenarios is that it's not going to do anything other
than impose some extra latency on HTTP requests.  Though I'll point
out that some people do care about that quite a bit.