IETF Logo Mail Archive

[TLS] Updated text in regards to draft-ietf-avtcore-rfc5764-mux-fixes

Magnus Westerlund <magnus.westerlund@ericsson.com> Mon, 16 May 2016 09:51 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CCB6212B077; Mon, 16 May 2016 02:51:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.221
X-Spam-Level:
X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8-wsMaZdhT3H; Mon, 16 May 2016 02:51:32 -0700 (PDT)
Received: from sessmg23.ericsson.net (sessmg23.ericsson.net [193.180.251.45]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AB69C12B015; Mon, 16 May 2016 02:51:30 -0700 (PDT)
X-AuditID: c1b4fb2d-f79936d0000030e4-8a-57399820340f
Received: from ESESSHC007.ericsson.se (Unknown_Domain [153.88.183.39]) by sessmg23.ericsson.net (Symantec Mail Security) with SMTP id F3.30.12516.02899375; Mon, 16 May 2016 11:51:28 +0200 (CEST)
Received: from [127.0.0.1] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.41) with Microsoft SMTP Server id 14.3.248.2; Mon, 16 May 2016 11:51:28 +0200
To: "tls@ietf.org" <tls@ietf.org>
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
Message-ID: <5739981E.501@ericsson.com>
Date: Mon, 16 May 2016 11:51:26 +0200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.7.2
MIME-Version: 1.0
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrILMWRmVeSWpSXmKPExsUyM2K7uq7CDMtwg30rlCxe9qxkt/h0vovR gcljyZKfTAGMUVw2Kak5mWWpRfp2CVwZax80MhYcl6pYc7yygfGASBcjJ4eEgInEwxftrBC2 mMSFe+vZuhi5OIQEjjBKvH/4ngnCWc4ocfr9NEaQKhEBRYkdV7vZQWxmASWJuUtfM4PYbAIW Ejd/NLKB2MICHhLLOtrB6nkF1CWev3kMtoFFQFXixb5nLCC2qECMROODU0wQNYISJ2c+AYpz AM20l3iwtQxivLxE89bZYOOFBLQlGpo6WCcw8s9C0jELoWMWko4FjMyrGEWLU4uLc9ONjPVS izKTi4vz8/TyUks2MQID7uCW37o7GFe/djzEKMDBqMTDu0DTMlyINbGsuDL3EKMEB7OSCK/Y ZKAQb0piZVVqUX58UWlOavEhRmkOFiVxXv+XiuFCAumJJanZqakFqUUwWSYOTqkGxvKNJtFH uazyeWRa96vqKAZekpi16YjiEfa/By6VLexyTw1v2z8h8foiwflJax/MOFdXdGDnK65i5eSX J542ev7mW1Nguam95YPztifX6viWW4ls8ZcR+Vh1snHNH3bBpPLAkw/D1L9/YBKu1nlSl6t+ pFdh5RmjJ7Vb7IrOZd7con4mPvxnhhJLcUaioRZzUXEiAGVRHOA0AgAA
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/k5hBdabZCXSOEUrvDgLXYQoGbe4>
Cc: IETF AVTCore WG <avt@ietf.org>
Subject: [TLS] Updated text in regards to draft-ietf-avtcore-rfc5764-mux-fixes
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 May 2016 09:51:35 -0000

TLS WG,
(Cc AVTCORE WG)

When AVTCORE run a WG last call earlier this year on "Multiplexing 
Scheme Updates for Secure Real-time Transport Protocol (SRTP) Extension 
for Datagram Transport Layer Security (DTLS)":
https://datatracker.ietf.org/doc/draft-ietf-avtcore-rfc5764-mux-fixes/

There was several comments from the TLS WG in regards to the update of 
the TLS content type registry as well as the limited applicability of 
the multiplexing scheme used.

The authors have written an updated text proposal. I would really 
appreciate if you could review these changes and provide any feedback.

A diff between the previously WG version and the current one:
https://www.ietf.org/rfcdiff?url1=draft-ietf-avtcore-rfc5764-mux-fixes-05&url2=draft-ietf-avtcore-rfc5764-mux-fixes-07

The update TLS related text is:

4.  Implicit Allocation of New Codepoints for TLS ContentTypes

    The demultiplexing scheme in [RFC5764] dictates that if the value of
    the first byte is between 20 and 63 (inclusive), then the packet is
    identified to be DTLS.  For DTLS 1.0 [RFC4347] and DTLS 1.2 [RFC6347]
    that first byte corresponds to the TLS ContentType field.
    Considerations must be taken into account when assigning additional
    ContentTypes in the code point ranges 0 to 19 and 64 to 255 so this
    does not prevent demultiplexing when this functionality is desirable.
    Note that [RFC5764] describes a narrow use of DTLS that works as long
    as the specific DTLS version used abides by the restrictions on the
    demultiplexing byte (the ones that this document imposes on the TLS
    ContentType Registry).  Any extension or revision to DTLS that causes
    it to no longer meet these constraints should consider what values
    may occur in the first byte of the DTLS message and what impact it
    would have on the multiplexing that [RFC5764] describes.

    With respect to TLS packet identification, this document explicitly
    adds a warning to the codepoints from 0 to 19 and from 64 to 255
    indicating that allocations in these ranges require coordination, as
    described in this document.  The proposed changes to the TLS
    ContentType Registry are:

    OLD:

    0-19    Unassigned
    20      change_cipher_spec
    21      alert
    22      handshake
    23      application_data
    24      heartbeat
    25-255  Unassigned

    NEW:

    0-19    Unassigned (Requires coordination, see RFCXXXX)
    20      change_cipher_spec
    21      alert
    22      handshake
    23      application_data
    24      heartbeat
    25-63   Unassigned
    64-255  Unassigned (Requires coordination, see RFCXXXX)

As document shepherd I intended to run a new WG last call in a weeks 
time, so please provide feedback quickly so that we know if this update 
is okay, or needs additional revisions.

Cheers

Magnus Westerlund
AVTCORE WG chair


----------------------------------------------------------------------
Services, Media and Network features, Ericsson Research EAB/TXM
----------------------------------------------------------------------
Ericsson AB                 | Phone  +46 10 7148287
Färögatan 6                 | Mobile +46 73 0949079
SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
----------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email