IETF Logo Mail Archive

Re: [TLS] Eric Rescorla's Discuss on draft-ietf-tls-ecdhe-psk-aead-04: (with DISCUSS and COMMENT)

Martin Thomson <martin.thomson@gmail.com> Wed, 24 May 2017 21:24 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8FF0B128792; Wed, 24 May 2017 14:24:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1SxQjbTnFvaF; Wed, 24 May 2017 14:24:21 -0700 (PDT)
Received: from mail-lf0-x22c.google.com (mail-lf0-x22c.google.com [IPv6:2a00:1450:4010:c07::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1903412778E; Wed, 24 May 2017 14:24:21 -0700 (PDT)
Received: by mail-lf0-x22c.google.com with SMTP id h4so74452785lfj.3; Wed, 24 May 2017 14:24:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=iMJfI+wIghYuiUcY/I4Ce2l8JXSLHzv6f0r1YFb3Lps=; b=CvWD7iIOqk3QxAxRt8UFCLCWfMU307cC2L2+QmYEyZRYNlgrq5LL2s/joptPNErgAT ZgMava6UlnuBcEy97BB78zXLA1vAW3Yb5HhVul1S0zff/MwBcl6JdKo4Wrg63hPHaUd2 OYANAnBIye5E65Ok0fwpmT1qREFx2NvUQBFCwIKs1m1r7vg2urkEjpyZWlVFtph+nE3Z ge/b40/VBYgofPpmFruSKUS2efykVjZqmTQxae6a1qdMjFqFRqvOkg4KaizxZF3gkg+u srgkYE4us0T/dmpKng4XBA/JJiYvtsPFBaokqgHOVJU6ZL9umeTRpPauGCFZEW+1nOAy InKA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=iMJfI+wIghYuiUcY/I4Ce2l8JXSLHzv6f0r1YFb3Lps=; b=mZtH58nV25P5Hgji27GTZRHS7not8Utczv4vkzZULdncA3+l2nfa5lBJZIjw1wQvwf 30+Ym97HMM15e8e1fiVF4VESfhuczIch69PNcqs5A8l5YldXjtvdwkZDp6gvCMsOwoKu TjaQ7/bEr0maoy6J4SW8cooENSYWabeBp3gwGyOdFM9Ida8YtDeN9QD2viNvFl7wkf0s GkUqfNaD2ijdkmNRI4K8/daDG4ggbi0Hjgc4DNQgJio4V1ZgwQQz2EAw3c2HZ76GYmCm 7GSVsD/CNmtu4sHkRGIZPdqhtOxqlCO3FGMqmnOlxrhrrcrPro0uDTI/oK0udIXBhxgX r/7g==
X-Gm-Message-State: AODbwcCasMJjOEUlsnPQiR2pD67fZIXDfzh7ztjI3+69Y4iFLvuvMFAV OLnTPR1gU1ilXb2aXiK+DxNJCwwC0Q==
X-Received: by 10.25.148.20 with SMTP id w20mr9957011lfd.169.1495661059159; Wed, 24 May 2017 14:24:19 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.46.22.73 with HTTP; Wed, 24 May 2017 14:24:18 -0700 (PDT)
In-Reply-To: <CAOgPGoAwn5kfS8GTHw3a5Hgwerrnd735vO-ReGQQBXJtKsf=dQ@mail.gmail.com>
References: <149550551972.4974.3201248950751611020.idtracker@ietfa.amsl.com> <CADZyTknOk=skkKXFtrvVWuKVU_PLV3tecaeo9kdLe77a9YxkNQ@mail.gmail.com> <CABcZeBM-4_xqBOum3vCd2Sb5327CYpU08kxadqYwW+qh0W3eJw@mail.gmail.com> <CADZyTknmXE6UW5e9SbSwwSUZWU-wHw_+9sTB_xnYUmo8KBOJxg@mail.gmail.com> <CADZyTk=K8dzYaEL3TBjHMzsHnF+X52RvZiUsSBJQmNi0CkH=CA@mail.gmail.com> <CABkgnnVq8N+vEXZ-=yU+EWR9GYTh9K64D8MP0Yu7Pn0enE=iRQ@mail.gmail.com> <CADZyTknBzV6Z_wwBtPw-=9VOw1Z0X8UQPRorwvg_cRQuRNFQLw@mail.gmail.com> <CABkgnnX_U7DW-+Pq+32-Z3eQB-ZR_C8GM6XUBDDeSAxJqkZ8ng@mail.gmail.com> <CAOgPGoAwn5kfS8GTHw3a5Hgwerrnd735vO-ReGQQBXJtKsf=dQ@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Thu, 25 May 2017 07:24:18 +1000
Message-ID: <CABkgnnV1csycfd4QDnwcHwFOEGU1n1YfoWiDQyPZtZryT==GMQ@mail.gmail.com>
To: Joseph Salowey <joe@salowey.net>
Cc: Daniel Migault <daniel.migault@ericsson.com>, Eric Rescorla <ekr@rtfm.com>, tls-chairs <tls-chairs@ietf.org>, The IESG <iesg@ietf.org>, tls <tls@ietf.org>, draft-ietf-tls-ecdhe-psk-aead@ietf.org
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/icP_v_3rmQt2LYwGmzjAmyTy0yE>
Subject: Re: [TLS] Eric Rescorla's Discuss on draft-ietf-tls-ecdhe-psk-aead-04: (with DISCUSS and COMMENT)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 May 2017 21:24:22 -0000

On 25 May 2017 at 07:14, Joseph Salowey <joe@salowey.net> wrote:
> [Joe] It seems that a reasonable interpretation of the text is that the AEAD
> constructs will pair with the cipher suite that share the same name.  Do you
> still think we need to provide an explicit mapping between the two?


Reasonable, sure, even obvious.  I've learned that reasonable doesn't
work always.  Note that the order that the AEADs are listed doesn't
match the order of the cipher suites.

v2.23.0 | Report a Bug | By Email