Re: [TLS] MTI extensions?
Ilari Liusvaara <ilari.liusvaara@elisanet.fi> Sun, 15 March 2015 18:25 UTC
Return-Path: <ilari.liusvaara@elisanet.fi>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 607751A1B62 for <tls@ietfa.amsl.com>; Sun, 15 Mar 2015 11:25:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pJhJKLmWP2bi for <tls@ietfa.amsl.com>; Sun, 15 Mar 2015 11:25:32 -0700 (PDT)
Received: from emh02.mail.saunalahti.fi (emh02.mail.saunalahti.fi [62.142.5.108]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DBDE11A1B5F for <tls@ietf.org>; Sun, 15 Mar 2015 11:25:31 -0700 (PDT)
Received: from LK-Perkele-VII (a88-112-44-140.elisa-laajakaista.fi [88.112.44.140]) by emh02.mail.saunalahti.fi (Postfix) with ESMTP id A52C3817F6; Sun, 15 Mar 2015 20:25:29 +0200 (EET)
Date: Sun, 15 Mar 2015 20:25:29 +0200
From: Ilari Liusvaara <ilari.liusvaara@elisanet.fi>
To: Martin Thomson <martin.thomson@gmail.com>
Message-ID: <20150315182529.GB16994@LK-Perkele-VII>
References: <201503140212.53255.davemgarrett@gmail.com> <CABkgnnVxV3W5vMgUwCPGVzQYFAsmv4cY18xECQRbHu1QVdW_tQ@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <CABkgnnVxV3W5vMgUwCPGVzQYFAsmv4cY18xECQRbHu1QVdW_tQ@mail.gmail.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
Sender: Ilari Liusvaara <ilari.liusvaara@elisanet.fi>
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/jT316sQZOUE9J5CTtO-PxTez-ek>
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] MTI extensions?
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 15 Mar 2015 18:25:33 -0000
On Sun, Mar 15, 2015 at 11:08:23AM -0700, Martin Thomson wrote: > On 13 March 2015 at 23:12, Dave Garrett <davemgarrett@gmail.com> wrote: > > Idea: Add a small section after MTI cipher suites for MTI extensions. > > I think that's fine. Signature algorithms was made mandatory in 1.2, > here, we are going to make ClientKeyShare mandatory. I think that > there is good justification for SNI too. > > > After enumerating the extensions that are part of the TLS 1.3 spec > itself, I think it would be helpful to list a few other extensions > that are reasonable to expect of all implementations. In particular, > SNI & ALPN should ideally be available everywhere. > > I don't see any point in making ALPN mandatory. If you need it, you > need it; if you don't, that's all there is to say. Also, regarding ALPN... It occurs to me ALPN interacts with early client data (if doing that). E.g. One certainly does not want earlydata for HTTP/2 to be played upon HTTP/1.1 (or vice versa). Also, regarding ALPN, if ALPN is mandated, what API capabilities should it have? The simplest (set proposed/supported list, get selected protocol) or something more complicated? Also, there are extensions one doesn't want to appear in TLS 1.3 (however proposing is possible for backward compat.). Some candidates are: - truncated_hmac (does nothing [block ciphers only]) - srp (if SRP is not supported). - encrypt_then_mac (does nothing [block ciphers only]) - extended_master_secret (can't do anything sane besides no-op) - renegotiation_info (no renegotiation is possible). -Ilari
- Re: [TLS] MTI extensions? Martin Thomson
- [TLS] MTI extensions? Dave Garrett
- Re: [TLS] MTI extensions? Viktor Dukhovni
- Re: [TLS] MTI extensions? Jeffrey Walton
- Re: [TLS] MTI extensions? Eric Rescorla
- Re: [TLS] MTI extensions? Dave Garrett
- Re: [TLS] MTI extensions? Eric Rescorla
- Re: [TLS] MTI extensions? Dave Garrett
- Re: [TLS] MTI extensions? Salz, Rich
- Re: [TLS] MTI extensions? Ilari Liusvaara
- Re: [TLS] MTI extensions? Martin Thomson
- Re: [TLS] MTI extensions? Martin Thomson
- Re: [TLS] MTI extensions? Martin Rex
- Re: [TLS] MTI extensions? Martin Thomson