Re: [TLS] Version negotiation (was: Thoughts on TLS 1.3 cryptography performance)

Eric Rescorla <ekr@rtfm.com> Thu, 13 March 2014 01:48 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2D6FD1A0844 for <tls@ietfa.amsl.com>; Wed, 12 Mar 2014 18:48:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RcTbSoHhED73 for <tls@ietfa.amsl.com>; Wed, 12 Mar 2014 18:48:56 -0700 (PDT)
Received: from mail-wi0-f180.google.com (mail-wi0-f180.google.com [209.85.212.180]) by ietfa.amsl.com (Postfix) with ESMTP id 430AA1A0837 for <tls@ietf.org>; Wed, 12 Mar 2014 18:48:56 -0700 (PDT)
Received: by mail-wi0-f180.google.com with SMTP id hm4so459434wib.13 for <tls@ietf.org>; Wed, 12 Mar 2014 18:48:49 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=h5GSKout/ouishw7qA0pnw4hYpTSDB6O6InsFAQ3F60=; b=aaXwDZqY4isOo2yxxSjZNDwX+1iKL33xouD2QS6zLPk9BlqV0sXsRWY+g7M5DKOU/C 81kbwmT9875wIVfOb+/IoVdVKPg5wfBnW6h4U+RLcpHUxvzbiVE+EsGCqeqn9rqRqZM0 P0VhEFq356fgsKOQm8syyM7IjSypD/gTSnbM4rouz9uoM42LUjvQ6/tdtcQxXvBk3tqI 8AweawwmmbiPJL9//HGAAOiCw/QJ0hc5OfZzxDOP69jgw1lvpKZO6qWFv7tq2nvDRXn/ h20ysOw+nOl8jCqXWwaOG6FnA7ODgWDsV75JSQ2gVgxy7LubJ+kPR7RN6sr9yBUSnHPH JbrQ==
X-Gm-Message-State: ALoCoQl5kksozqYMr8TExGFCjf7bMKcMJRN8aaT8XFT+SvnY1vt6wUZsLiFKbDSYS2Mo+GRZA120
X-Received: by 10.180.101.40 with SMTP id fd8mr965757wib.1.1394675329508; Wed, 12 Mar 2014 18:48:49 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.216.218.198 with HTTP; Wed, 12 Mar 2014 18:48:09 -0700 (PDT)
X-Originating-IP: [74.95.2.168]
In-Reply-To: <53210CE4.30003@pobox.com>
References: <CACsn0ckbrrt0rBsHM+5A_jNK6UvkaiO9mHx6=Jr+jjqy+bZ6MQ@mail.gmail.com> <53210CE4.30003@pobox.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Wed, 12 Mar 2014 18:48:09 -0700
Message-ID: <CABcZeBM0dbeD4pY=D8sPuCQ25B1dyH5A46dt054shQXmwdrdxQ@mail.gmail.com>
To: Michael D'Errico <mike-list@pobox.com>
Content-Type: multipart/alternative; boundary="f46d041826c697c56c04f47327a1"
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/gDivOb04cTKaOYhy2DX2Wp8vXFU
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] Version negotiation (was: Thoughts on TLS 1.3 cryptography performance)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Mar 2014 01:48:58 -0000

On Wed, Mar 12, 2014 at 6:41 PM, Michael D'Errico <mike-list@pobox.com>wrote:

> Watson Ladd wrote:
>
>> Dear all,
>> Below are some thoughts about the TLS 1.3 cryptography....
>>
>
> Is the plan to send client version { 0x03 0x04 } and continue to be
> subject to downgrade attacks,


Well, we need to address the downgrade attack problem in any case,
and so I was assuming any solution that worked for TLS 1.2 would
work for 1.3.


version intolerance, etc. that plague
> browsers today?  Or is there some other way to signify support for
> version 1.3?
>

It seems to me that using the existing version selection mechanism is
the default choice, but certainly this is something that in principle
the WG could decide to change.

-Ekr

Mike
>
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls
>