Re: [TLS] draft-ietf-tls-rfc8446bis - Security propterites - Protection of endpoint identities
Ben Smyth <research@bensmyth.com> Wed, 10 February 2021 11:10 UTC
Return-Path: <research@bensmyth.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D61133A0CCD for <tls@ietfa.amsl.com>; Wed, 10 Feb 2021 03:10:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=bensmyth.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pipO7NoVVNzP for <tls@ietfa.amsl.com>; Wed, 10 Feb 2021 03:09:59 -0800 (PST)
Received: from 1.smtp.34sp.com (1.smtp.34sp.com [46.183.9.64]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C89D83A0CA2 for <tls@ietf.org>; Wed, 10 Feb 2021 03:09:58 -0800 (PST)
Received: from smtpauth2.mailarray.34sp.com (lvs5.34sp.com [46.183.13.73]) by 1.smtp.34sp.com (Postfix) with ESMTPS id 7C2C21480072 for <TLS@ietf.org>; Wed, 10 Feb 2021 11:09:23 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bensmyth.com; s=dkim; t=1612955363; bh=jFujJKPv/vQKtvfPte9ujt1cYm2fdEi0X/gZL1cugK0=; h=References:In-Reply-To:Reply-To:From:Date:Subject:To:Cc; b=kJ4QsVj7YNfkMV54aD7qHt4oG38VmGqWwCCe4tbMXIsgG4G10oG/GG1cCUbkZjbSq eJw1rHqMscvD+w7lrzGU12M2/MrgaC+G9HNdLNtH6rhV5F3ki62xAF0k9iF/jbzcEX XoLNWG3NY+1x2q9qNZseqG/8+EjHl8QH4BlLkJYM=
Received: from mail-vs1-f50.google.com ([209.85.217.50]:38591) by smtpauth2.mailarray.34sp.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.92) (envelope-from <research@bensmyth.com>) id 1l9nN5-0006oh-D6 for TLS@ietf.org; Wed, 10 Feb 2021 11:09:23 +0000
Received: by mail-vs1-f50.google.com with SMTP id d24so869824vso.6 for <TLS@ietf.org>; Wed, 10 Feb 2021 03:09:23 -0800 (PST)
X-Gm-Message-State: AOAM533Y7BzTLKAqsvbTiz8jyh5BaUjHCI1CO/oYDd4eVdoXsSEJuipz G5X7J5kPyFsfJzP/vNtHowGOEbrI+7kDjV/s0Yc=
X-Google-Smtp-Source: ABdhPJxBazy7ZJ0nrFeCUanFVqr3kX8LEIQlnrdHJt864kGR4D8UOCR8lK54dh/+IMuplNuzdEICFxWr06W/+0zhf0U=
X-Received: by 2002:a67:2283:: with SMTP id i125mr1194755vsi.21.1612955362080; Wed, 10 Feb 2021 03:09:22 -0800 (PST)
MIME-Version: 1.0
References: <2CBD606F-E391-47DD-AEBB-1673D57752D3@ericsson.com>
In-Reply-To: <2CBD606F-E391-47DD-AEBB-1673D57752D3@ericsson.com>
Reply-To: research@bensmyth.com
From: Ben Smyth <research@bensmyth.com>
Date: Wed, 10 Feb 2021 12:09:11 +0100
X-Gmail-Original-Message-ID: <CA+_8xu06Aq=bGuP6iJ9g=wVoA-L2aW-3HLfMJctbKpLBw9Ou_w@mail.gmail.com>
Message-ID: <CA+_8xu06Aq=bGuP6iJ9g=wVoA-L2aW-3HLfMJctbKpLBw9Ou_w@mail.gmail.com>
To: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org>
Cc: TLS@ietf.org
Content-Type: multipart/alternative; boundary="000000000000653b9a05baf96f07"
X-Authenticated-As: f594447444afb5e8e542d6cd3ee989c5ad593da02deb40a8d61181d2a2c508bd
X-OriginalSMTPIP: 209.85.217.50
X-34spcom-MailScanner-Information: Please contact the ISP for more information
X-34spcom-MailScanner-ID: 7C2C21480072.A5925
X-34spcom-MailScanner: Found to be clean
X-34spcom-MailScanner-SpamCheck: not spam, SpamAssassin (score=-11.1, required 6.5, autolearn=disabled, DKIM_SIGNED 0.10, DKIM_VALID -0.10, DKIM_VALID_AU -0.10, HTML_MESSAGE 0.00, SPF_PASS -0.00, X34SP_ALLOW_GMAIL_EVEN_IF_BLACKLISTED -10.00, X34SP_OVERRIDE -1.00)
X-34spcom-MailScanner-From: research@bensmyth.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/m7RsbqHbbg9esG4X7DVxJm_ZOvc>
Subject: Re: [TLS] draft-ietf-tls-rfc8446bis - Security propterites - Protection of endpoint identities
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Feb 2021 11:10:01 -0000
On Wed, 10 Feb 2021, 10:19 John Mattsson, <john.mattsson= 40ericsson.com@dmarc.ietf.org> wrote: > I think RFC8446bis needs to state that this property only holds for cipher > suites with confidentiality. > All cipher suites defined by RFC8446bis (Appendix B.4) provide confidentiality. The property always holds. >
- [TLS] draft-ietf-tls-rfc8446bis - Security propte… John Mattsson
- Re: [TLS] draft-ietf-tls-rfc8446bis - Security pr… Ben Smyth
- Re: [TLS] draft-ietf-tls-rfc8446bis - Security pr… Ben Smyth
- Re: [TLS] draft-ietf-tls-rfc8446bis - Security pr… Salz, Rich
- Re: [TLS] draft-ietf-tls-rfc8446bis - Security pr… Eric Rescorla
- Re: [TLS] draft-ietf-tls-rfc8446bis - Security pr… John Mattsson