[TLS] Re: [TLS]Working Group Last Call for "Hybrid key exchange in TLS 1.3"
Stephen Farrell <stephen.farrell@cs.tcd.ie> Sun, 01 September 2024 14:47 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3372EC14F689 for <tls@ietfa.amsl.com>; Sun, 1 Sep 2024 07:47:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.007
X-Spam-Level:
X-Spam-Status: No, score=-2.007 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uRyt3HZZfU2X for <tls@ietfa.amsl.com>; Sun, 1 Sep 2024 07:47:33 -0700 (PDT)
Received: from EUR03-DBA-obe.outbound.protection.outlook.com (mail-dbaeur03on2105.outbound.protection.outlook.com [40.107.104.105]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 85DF2C14F5F5 for <tls@ietf.org>; Sun, 1 Sep 2024 07:47:32 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=x7qSrAvL9z/Lt2QlTqWeolR8KbMSztuFBb+ve6YSIl+gp8hccaTzyCtTZJmg7uD5G1N0GVNhX8s2W6fNQgcgvxiMSc47oy5iCQTHuUCK0L2XGM07rSaSXC9SxRjtWBr8WLrkU7ep/N7vaeJy84kG02WSRObeauC5p4k3Q9cep4epVf++ZDhR+plTlV0+KD6XKSmhh6CBeYMf8DqBpoqUkzjJBkktrvdmAp3b1p1Uo7VMZ2Zv7B1UIMOj7K5ZtT8MJxeVFTbBiFOKzevPdAGbBSLSbcSOIfd67acZoJtgv0In1cyk82QtJjTUFNIEu2hht666SpFFWGWwdfi/3oVXwQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ESUw2h17WgZbLEqn+f8nzszR/T47QB1LgiX1882o0bs=; b=BIqQTYE8iuVbwNpL4sDp3WkJtxdFMDounf2h5bkzV/ZZ+2ldiUt8HNlyn8ow0W09phKJk9L/9IT5VJ3FAyu10JGOXBO9sWoN1XRh4OhKkr2zNcjcfh2HEddQCEE8DMvK2PSb0oUZs9S/OTuwUN8+7CLX6utYpzcg6yXYotKFXkD6o6pjyyrHGK1GKyBknDOEkxLXQlnLT8VSr/wR6+ljhbdndlGpSLRs7zBvF3a5tvrT9VrGFYd2gVr3FEYUZTeYyOgsMwe1rAYu6th7zzUWp1KD+FcaEZOixkbABKXFg680Xh0X6EXXplMsvYAh7TsGEp0zqCit68w9+KYKlE6CIg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ESUw2h17WgZbLEqn+f8nzszR/T47QB1LgiX1882o0bs=; b=WfqL4BKIFpwlPsDBrGLjDktSV04DADXkSx/gr9tVZ0yKwgZfUqwajAN3R+ivz/0knXH9q/0lbYU1lmNDLIZNZkeJW3iXNT1kjZ+eeOIJEZH5ug7ALvpHhFrvIvQwbNhQ1/MrRMtn6wh+QBqVQhZVu4f2OHc1hFRVgG5ud/LPs5gPtmuTY/ug97SqmZ1ru1ETTxiR+fWFXg3yQuFSLjSNuI+dFcUfExbiGcXkG90E+V9vMoavZtr+oaV2pXY9ezl3HdtjoQle3Za/qOz+A25LA6bDFChSF2evbYJVDUCWyYhykJT9dEgnqJdby2raygTbO8RBhwzhDupMPjcnxLgahQ==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB8PR02MB5946.eurprd02.prod.outlook.com (2603:10a6:10:11c::16) by AS8PR02MB8804.eurprd02.prod.outlook.com (2603:10a6:20b:537::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7918.23; Sun, 1 Sep 2024 14:47:29 +0000
Received: from DB8PR02MB5946.eurprd02.prod.outlook.com ([fe80::e0d3:772e:a68d:d54a]) by DB8PR02MB5946.eurprd02.prod.outlook.com ([fe80::e0d3:772e:a68d:d54a%6]) with mapi id 15.20.7918.020; Sun, 1 Sep 2024 14:47:29 +0000
Message-ID: <ffb33944-00e8-46e2-93d5-e5dd14d457af@cs.tcd.ie>
Date: Sun, 01 Sep 2024 15:47:27 +0100
User-Agent: Mozilla Thunderbird
To: Deirdre Connolly <durumcrustulum@gmail.com>, "TLS@ietf.org" <tls@ietf.org>
References: <CAFR824wCMcyF1szc76P+4i8LKv2-d1ciHWRMFFmZ8hpi=1PHtA@mail.gmail.com>
Content-Language: en-US
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Autocrypt: addr=stephen.farrell@cs.tcd.ie; keydata= xjMEY9GzphYJKwYBBAHaRw8BAQdAo6JvjmSbxHdQWPZdvciQYsHhM1NxQBU398Mmimoy4p7N M1N0ZXBoZW4gRmFycmVsbCAoMjU1MTkpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPsKQ BBMWCAA4FiEEMG54R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwMFCwkIBwIGFQoJCAsCBBYC AwECHgECF4AACgkQ5Njp+ZeoM93bogEA25ElRyX0wwg+kGEN1AoL60MoZfvQZ/VtmXY6IC5j +csBAIBpkL5ySuzJK2zLNZn9qQGht8IaUcA7cvDcLvS2uHUEzjgEY9GzphIKKwYBBAGXVQEF AQEHQILCPWOwW36e8D3pY8GmvvtItIT+A5uV80ist+WokVsQAwEIB8J4BBgWCAAgFiEEMG54 R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwwACgkQ5Njp+ZeoM92bcAEA8R+8cpqRUIS+SoAN iO05xE6O/wEx8/e88BqzAYki3SoBAOQdwiPX+MQrAxkWD8xxOsdMOAtxYKpkD1n8aPJUw6QJ
In-Reply-To: <CAFR824wCMcyF1szc76P+4i8LKv2-d1ciHWRMFFmZ8hpi=1PHtA@mail.gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------ALllz0Hpyn6Pbx28ynTsU03C"
X-ClientProxiedBy: LO2P265CA0104.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:c::20) To DB8PR02MB5946.eurprd02.prod.outlook.com (2603:10a6:10:11c::16)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: DB8PR02MB5946:EE_|AS8PR02MB8804:EE_
X-MS-Office365-Filtering-Correlation-Id: 2cfaf927-bea4-477d-f261-08dcca9500d2
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;ARA:13230040|366016|1800799024|376014;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DB8PR02MB5946.eurprd02.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(1800799024)(376014);DIR:OUT;SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 2cfaf927-bea4-477d-f261-08dcca9500d2
X-MS-Exchange-CrossTenant-AuthSource: DB8PR02MB5946.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 01 Sep 2024 14:47:29.6948 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: gz8JriznZlMnCwSG49IQjiWMDOpqkyNExR3kg8wj4w5+5hmyAZUBjcUPZslZLpbc
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR02MB8804
Message-ID-Hash: WEVSVYDCJUOWBPCWFVHPATAPCYINCAN4
X-Message-ID-Hash: WEVSVYDCJUOWBPCWFVHPATAPCYINCAN4
X-MailFrom: stephen.farrell@cs.tcd.ie
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [TLS] Re: [TLS]Working Group Last Call for "Hybrid key exchange in TLS 1.3"
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/dUpilmFT3M80aOVynoJ4pPsC-Iw>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
Hiya, On 8/12/24 20:50, Deirdre Connolly wrote: > This email starts the working group last call for the Internet-Draft > "Hybrid key exchange in TLS 1.3", located here: > > https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design/ > > The WG last call will end 26th August 2024 @ 2359 UTC. Apologies for the slightly late review. I have a question: Section 3.2 says there are two allowed ways to handle the same component algs being used in multiple key shares. However, doesn't ECH mean that additional possibilities exist? What should a client do in terms of re-use when using ECH? Thanks, S.
- [TLS]Working Group Last Call for "Hybrid key exch… Deirdre Connolly
- [TLS]Re: Working Group Last Call for "Hybrid key … Thom Wiggers
- [TLS]Re: [EXTERNAL] Re: Working Group Last Call f… Andrei Popov
- [TLS]Re: Working Group Last Call for "Hybrid key … Douglas Stebila
- [TLS]Re: [EXTERNAL] Working Group Last Call for "… Douglas Stebila
- [TLS]Re: [EXTERNAL] Working Group Last Call for "… Kris Kwiatkowski
- [TLS]Re: [EXTERNAL] Re: Working Group Last Call f… Deirdre Connolly
- [TLS]Re: [EXTERNAL] Re: Working Group Last Call f… Salz, Rich
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Stephen Farrell
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Douglas Stebila
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Eric Rescorla
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Stephen Farrell
- [TLS] Re: [TLS]Working Group Last Call for "Hybri… Martin Thomson