Re: [TLS] Record header size?
Peter Gutmann <pgut001@cs.auckland.ac.nz> Thu, 19 November 2015 05:19 UTC
Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 408CC1A87E9 for <tls@ietfa.amsl.com>; Wed, 18 Nov 2015 21:19:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.785
X-Spam-Level:
X-Spam-Status: No, score=-4.785 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.585] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9u0spZZA8vbZ for <tls@ietfa.amsl.com>; Wed, 18 Nov 2015 21:19:20 -0800 (PST)
Received: from mx4.auckland.ac.nz (mx4.auckland.ac.nz [130.216.125.248]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9976D1A87E7 for <tls@ietf.org>; Wed, 18 Nov 2015 21:19:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=auckland.ac.nz; i=@auckland.ac.nz; q=dns/txt; s=mail; t=1447910359; x=1479446359; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=0VhknvajDmhbzAya9ABxbLeLEZHjKOquIm/R26zf07w=; b=4LrBhkzL9t6dFSClIj2aRHp9i0GXFaRHrn9boqgLolOefckJclQuTxkW d7wCVUZfljxM2cFiYOq+6DRYSheRemErCa7RXePi3O0sp1AyeB0yRj6zu C0Cr1X4F+t6gZsAPczJmp8S5KupAO9kRkImDkhLqELe5uyATiiuaRO4fn CQXzF+K6LiSyUGSMIWEz0V7uLtIH4bRP0SXBKOGd4qjJZxnoTk8P8hEcE eoaB/7ZO/+5Uw8N4vLvnQV4FAkuGtnNlImn2iKk9jWMT/y1pclDL77lAF SEJqGFHd4fHKYLskgm8z+o32uXewZSgvDn6Nng14mN08rnkk4dZQ6lIRd Q==;
X-IronPort-AV: E=Sophos;i="5.20,316,1444647600"; d="scan'208";a="54941075"
X-Ironport-HAT: MAIL-SERVERS - $RELAYED
X-Ironport-Source: 130.216.4.112 - Outgoing - Outgoing
Received: from exchangemx.uoa.auckland.ac.nz (HELO uxchange10-fe1.UoA.auckland.ac.nz) ([130.216.4.112]) by mx4-int.auckland.ac.nz with ESMTP/TLS/AES256-SHA; 19 Nov 2015 18:19:18 +1300
Received: from UXCN10-5.UoA.auckland.ac.nz ([169.254.5.51]) by uxchange10-fe1.UoA.auckland.ac.nz ([130.216.4.112]) with mapi id 14.03.0174.001; Thu, 19 Nov 2015 18:19:18 +1300
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: "Short, Todd" <tshort@akamai.com>, Yoav Nir <ynir.ietf@gmail.com>
Thread-Topic: [TLS] Record header size?
Thread-Index: AQHRIUwqo2PzkmG0m02LaFyKO+3dU56fmOsAgAFmVoT//6V2gIAAPHOAgAHv2dU=
Date: Thu, 19 Nov 2015 05:19:17 +0000
Message-ID: <9A043F3CF02CD34C8E74AC1594475C73F4B693A7@uxcn10-5.UoA.auckland.ac.nz>
References: <C5F506DC-F814-4C0B-AFAA-86CF790817A7@akamai.com> <CABcZeBP5QPQAXKvM_oEAzex0-vrVWMvOW0yZuamvF5hxAHtmtw@mail.gmail.com> <9A043F3CF02CD34C8E74AC1594475C73F4B679E6@uxcn10-5.UoA.auckland.ac.nz>, <B79F7446-0BBF-4006-A448-E81FF5E7ECD4@gmail.com>, <29BB82B3-9E74-46F0-A2C6-9A5D8143DA07@akamai.com>
In-Reply-To: <29BB82B3-9E74-46F0-A2C6-9A5D8143DA07@akamai.com>
Accept-Language: en-NZ, en-GB, en-US
Content-Language: en-NZ
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [130.216.158.4]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/hrMPDOm2S9B7yPY7ibtubw-Hbs8>
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] Record header size?
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Nov 2015 05:19:21 -0000
Short, Todd <tshort@akamai.com> writes: >I think the philosophy some people are going with, if we're going to break >backwards compatibility, let's do it big time, so that we only have to do >it once, and not make everyone play continuous catchup. Exactly. I'm also not convinced by the middlebox argument, anything that does DPI is going to be completely confused by the TLS 1.3 handshake which is nothing like TLS 1.x, x < 3, so if middleboxes need to be upgraded to support the 1.3 handshake they can also support the 1.3 header format. Peter.
- [TLS] Record header size? Short, Todd
- Re: [TLS] Record header size? Peter Gutmann
- Re: [TLS] Record header size? Short, Todd
- Re: [TLS] Record header size? Eric Rescorla
- Re: [TLS] Record header size? Daniel Kahn Gillmor
- Re: [TLS] Record header size? Eric Rescorla
- Re: [TLS] Record header size? Short, Todd
- Re: [TLS] Record header size? Eric Rescorla
- Re: [TLS] Record header size? Short, Todd
- Re: [TLS] Record header size? Viktor Dukhovni
- Re: [TLS] Record header size? Peter Gutmann
- Re: [TLS] Record header size? Peter Gutmann
- Re: [TLS] Record header size? Yoav Nir
- Re: [TLS] Record header size? Short, Todd
- Re: [TLS] Record header size? Viktor Dukhovni
- Re: [TLS] Record header size? Short, Todd
- Re: [TLS] Record header size? Martin Rex
- Re: [TLS] Record header size? Michael Gray
- Re: [TLS] Record header size? Viktor Dukhovni
- Re: [TLS] Record header size? Peter Gutmann
- Re: [TLS] Record header size? Martin Rex
- Re: [TLS] Record header size? Short, Todd