Re: [TLS] TLS 1.3 Application Identifier ?

Watson Ladd <watsonbladd@gmail.com> Thu, 17 July 2014 03:32 UTC

Return-Path: <watsonbladd@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 302971A0537 for <tls@ietfa.amsl.com>; Wed, 16 Jul 2014 20:32:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PxM9x-dSXs5V for <tls@ietfa.amsl.com>; Wed, 16 Jul 2014 20:32:00 -0700 (PDT)
Received: from mail-yh0-x231.google.com (mail-yh0-x231.google.com [IPv6:2607:f8b0:4002:c01::231]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D0841A0389 for <tls@ietf.org>; Wed, 16 Jul 2014 20:32:00 -0700 (PDT)
Received: by mail-yh0-f49.google.com with SMTP id b6so763321yha.8 for <tls@ietf.org>; Wed, 16 Jul 2014 20:32:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=ocj78/2nWlrrmsviDJiWF5VcZSLygvVqBOD2+qx7/aA=; b=BjgcX7VzMWLp9tHpDttg1Mj8nQfAPbjOjZcBA2+FB3AEZG/tXq95MEG5wlxVxFJNIM k5/pwESf9TM9o9u2e4QWNUzUZbOYhU2F7IqwuKRd56lrNSo/pCQerm1uOUZSjGFPWYhf QvBsZccUhD0hdGuOtiwnSWCclPmhJxS+hxAKKkLB6Lcak8+R19R8F4a7/T0Fpv9ugAEO SnCi2rI+BWbvUhWNTDId9xLCP+Z/cIqQGxpguhgJa7zoBgQccgG6xVX7zcM3keD6vH2S eQZnY5sjNrjcHsYo4C1bSIfTYkrZ/rU8upS/q3KIxxhuwd20RSuz0fTdwlBuD/uZqVKu XU/Q==
MIME-Version: 1.0
X-Received: by 10.236.182.68 with SMTP id n44mr32827619yhm.131.1405567919892; Wed, 16 Jul 2014 20:31:59 -0700 (PDT)
Received: by 10.170.202.8 with HTTP; Wed, 16 Jul 2014 20:31:59 -0700 (PDT)
In-Reply-To: <20140717024646.3C3951ADAB@ld9781.wdf.sap.corp>
References: <CAEQGKXSwg+-q09SCfavu_E-Yabh-TGShp1vpjfUwZuFn-woR2Q@mail.gmail.com> <20140717024646.3C3951ADAB@ld9781.wdf.sap.corp>
Date: Wed, 16 Jul 2014 20:31:59 -0700
Message-ID: <CACsn0c==WxkkBnFR6HWNoAXQV2RoiN02N7u75t7wKWRiY==FpQ@mail.gmail.com>
From: Watson Ladd <watsonbladd@gmail.com>
To: "mrex@sap.com" <mrex@sap.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/fJ5GiI4sgGJJtmntc4PUUhFJiKo
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] TLS 1.3 Application Identifier ?
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Jul 2014 03:32:02 -0000

And if there were zero changes beyond those necessary to deal with
Triple Handshake, removal of weak ciphersuites, and 1RTT this would be
different why?

Furthermore, it's clear that the complexity of TLS doesn't solve the
real problem of user (or mutual) authentication that is deployable.
Interoperation with X509 makes authentication hard, which is why it is
rarely done.

Sincerely,
Watson Ladd

On Wed, Jul 16, 2014 at 7:46 PM, Martin Rex <mrex@sap.com> wrote:
> Pascal Urien wrote:
>>
>> I believe that TLS 1.3 should work for the next 20 years, in ecosystems
>> such as IoT or others
>
> Considering the number of tentative changes from TLSv1.2 to TLSv1.3 so far,
> I considert it extremely likely that TLSv1.2 will be with us in 20 years...
>
> -Martin
>
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls



-- 
"Those who would give up Essential Liberty to purchase a little
Temporary Safety deserve neither  Liberty nor Safety."
-- Benjamin Franklin