Re: [TLS] RFC 7919 on Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS)

Bodo Moeller <bmoeller@acm.org> Wed, 17 August 2016 16:50 UTC

MIME-Version: 1.0
In-Reply-To: <9A043F3CF02CD34C8E74AC1594475C73F4CF1AC9@uxcn10-5.UoA.auckland.ac.nz>
References: <9A043F3CF02CD34C8E74AC1594475C73F4CF009C@uxcn10-5.UoA.auckland.ac.nz> <20160816145548.GQ4670@mournblade.imrryr.org> <9A043F3CF02CD34C8E74AC1594475C73F4CF1AC9@uxcn10-5.UoA.auckland.ac.nz>
From: Bodo Moeller <bmoeller@acm.org>
Date: Wed, 17 Aug 2016 09:50:00 -0700
Message-ID: <CADMpkc+vbkWz_TQ2Ch5JfaVRPse4qeXPPitsBV=d2yDtSx4eLA@mail.gmail.com>
To: "tls@ietf.org" <tls@ietf.org>
Content-Type: multipart/alternative; boundary="001a113fc2f6a30a6c053a47418e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/meYDdl30e_0VXTRNvlEo7wymNbw>
Subject: Re: [TLS] RFC 7919 on Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for Transport Layer Security (TLS)
Precedence: list

Peter, so your complaint is about the lack of support for explicitly
specified (non-"named") groups? That's completely intentional, see the
RFC's abstract. (It *shouldn't* be that much of a problem that the server
might be using a ill-chosen group, because if the server does dumb things
we can't save it anyway. However, given all the complexities of the TLS
handshake, there's actually more that can fall apart if the group is bad.)

Bodo

Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… David Benjamin
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Geoffrey Keating
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Watson Ladd
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Ilari Liusvaara
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Peter Gutmann
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Ilari Liusvaara
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Peter Gutmann
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Geoffrey Keating
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Bodo Moeller
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Peter Gutmann
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Watson Ladd
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Benjamin Kaduk
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Viktor Dukhovni
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Peter Gutmann
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Peter Gutmann
[TLS] RFC 7919 on Negotiated Finite Field Diffie-… rfc-editor
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Peter Gutmann
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Ryan Hamilton
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Ilari Liusvaara
Re: [TLS] RFC 7919 on Negotiated Finite Field Dif… Peter Gutmann