Re: [TLS] IANA changes for draft-ietf-tls-exported-authenticator

"Martin Thomson" <mt@lowentropy.net> Thu, 10 October 2019 01:28 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 999D6120044 for <tls@ietfa.amsl.com>; Wed, 9 Oct 2019 18:28:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=Yezm6c0R; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=nsZt0WQ9
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YI-TOBsfLg9Y for <tls@ietfa.amsl.com>; Wed, 9 Oct 2019 18:28:35 -0700 (PDT)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AF12A120020 for <tls@ietf.org>; Wed, 9 Oct 2019 18:28:35 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.west.internal (Postfix) with ESMTP id EF56F644 for <tls@ietf.org>; Wed, 9 Oct 2019 21:28:34 -0400 (EDT)
Received: from imap2 ([10.202.2.52]) by compute1.internal (MEProxy); Wed, 09 Oct 2019 21:28:35 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :subject:content-type; s=fm3; bh=aulSzr/R/KbXNdxcEY7E5jU2bzPwG04 56o7fOMHJOzM=; b=Yezm6c0RUeaMJKbA/EDMWn1WHZ5572Q1rL013dXuanrg5ZL gxay0BNb0SYc0DcrG0LQvXN1WUzG8RSmBL8x8Qim+cLB+Z0SRIhWIDjEmfBnBor9 jK5Av4LVJTKrUWx8SE50G+TRYza5NN7N9gigshAoWifk6VO7hR3IytppDusMxnE5 TN3jnLEXTo2uEJvPE1naJLXowvJu89PpyHqgd5y2PdfyCJVF8X8x22aAatUVQzA+ cQt1FanFBa1APRtn7YUyTz5AjlZ5mz0/K7+zrh+Q/wyoBLRXYQVnA62XS3LrVnfn VVUb6PfUUV1PROWmAjQWpqVWzF61kVymX9SYU2w==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=aulSzr /R/KbXNdxcEY7E5jU2bzPwG0456o7fOMHJOzM=; b=nsZt0WQ9uK3cKxn25a55o9 D8RHbTvokmr5RtlQKzurdk6arpIDQ/FOeq/nvYuidJ96YZy4PHa+Xw3K8L+X043v ijIIcnRdFMDP+AkZSOHAOYYGDugny64owISt22CM8p+XpcBLp/mMEHcfcfbWCoB6 8S9Tqjpny2ZkN9/jKJPcgJZdFF6ovTNo6cChqqLj/sszS4RKD0fVSBwR5Wa6ziqG LsCgsVMbphFIecbok7SkndewJJH80QmBZcQ/oxKgiDR1t7+g2xur7bWmcy7oOZTR EX5cP2eQLkNqN4jWTU10zZUtUDVpGGDJNaL2/khOjW7lgS706WjOmvJVtzZqC3yA ==
X-ME-Sender: <xms:QomeXWwbuxidnGOfvEYrPM6i8l1nhmmZownNVS_6vLXBdLBK7GfvpQ>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedriedvgdegkecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecunecujfgurhepofgfggfkjghffffhvffutgesthdtre dtreertdenucfhrhhomhepfdforghrthhinhcuvfhhohhmshhonhdfuceomhhtsehlohif vghnthhrohhphidrnhgvtheqnecuffhomhgrihhnpehivghtfhdrohhrghenucfrrghrrg hmpehmrghilhhfrhhomhepmhhtsehlohifvghnthhrohhphidrnhgvthenucevlhhushht vghrufhiiigvpedt
X-ME-Proxy: <xmx:QomeXTxRv1SDY_lacwoenYt3sDxIq1MxJzTEPD31WyaYF03t7CnSGw> <xmx:QomeXV9XZwZKqhFXNhRAdmeEFMyJTOldW6SoirxuyahO2WxzX2WCyw> <xmx:QomeXT9A04xisaNgKC8G6W1iOtQA41RhXXhwP1SkrrzRU10MbHMXJg> <xmx:QomeXcBPOFnjX223XFFc8f8loEUd5Lv23Xmft3IZnpfF42NIpsEspg>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 5CF78E00AF; Wed, 9 Oct 2019 21:28:34 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.1.7-360-g7dda896-fmstable-20191004v2
Mime-Version: 1.0
Message-Id: <2ab22d60-60e3-49bf-9bd2-fff97b1748c7@www.fastmail.com>
In-Reply-To: <31e3f9ed-6b24-4526-af75-e2c190a3d707@www.fastmail.com>
References: <31e3f9ed-6b24-4526-af75-e2c190a3d707@www.fastmail.com>
Date: Thu, 10 Oct 2019 12:28:14 +1100
From: "Martin Thomson" <mt@lowentropy.net>
To: tls@ietf.org
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/hOZSaliuZjiNh5DLAoioDzqP0eI>
Subject: Re: [TLS] IANA changes for draft-ietf-tls-exported-authenticator
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Oct 2019 01:28:38 -0000

These are pretty long strings.  That means more hash iterations to get these values.  Are we comfortable with that?

Even excluding the prefix, the first is 39 octets.

On Thu, Oct 3, 2019, at 06:58, Christopher Wood wrote:
> Hi folks,
> 
> draft-ietf-tls-exported-authenticator requires some IANA changes that 
> were not discussed during WGLC. The proposed changes are below. Please 
> let the list know by next week (10/9) if you object to them, and if so, 
> please explain why.
> 
> > Value: EXPORTER-server authenticator handshake context
> > DTLS-OK: Y
> > Recommended: Y
> > Reference: [ RFC-to-be ]
> > Note: 
> > 
> > Value: EXPORTER-client authenticator finished key
> > DTLS-OK: Y
> > Recommended: Y
> > Reference: [ RFC-to-be ]
> > Note: 
> > 
> > Value: EXPORTER-server authenticator finished key
> > DTLS-OK: Y
> > Recommended: Y
> > Reference: [ RFC-to-be ]
> > Note: 
> 
> Thanks!
> Chris
> 
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls
>