Re: [TLS] Comments/Questions on draft-gutmann-tls-encrypt-then-mac-00.txt

Bodo Moeller <bmoeller@acm.org> Thu, 26 September 2013 09:59 UTC

Return-Path: <SRS0=fyqm=TG=acm.org=bmoeller@srs.kundenserver.de>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9654011E8181 for <tls@ietfa.amsl.com>; Thu, 26 Sep 2013 02:59:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.518
X-Spam-Level:
X-Spam-Status: No, score=-1.518 tagged_above=-999 required=5 tests=[AWL=0.108, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HELO_EQ_DE=0.35, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Sbhwifu8nlwD for <tls@ietfa.amsl.com>; Thu, 26 Sep 2013 02:58:45 -0700 (PDT)
Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.17.10]) by ietfa.amsl.com (Postfix) with ESMTP id 2903A21F99DD for <tls@ietf.org>; Thu, 26 Sep 2013 02:58:19 -0700 (PDT)
Received: from mail-ob0-f182.google.com (mail-ob0-f182.google.com [209.85.214.182]) by mrelayeu.kundenserver.de (node=mrbap3) with ESMTP (Nemesis) id 0LaD6c-1W8xXG1Q9W-00m0ps; Thu, 26 Sep 2013 11:58:12 +0200
Received: by mail-ob0-f182.google.com with SMTP id wo20so1573848obc.27 for <tls@ietf.org>; Thu, 26 Sep 2013 02:58:10 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=/GZDfKIyYiUM5PwB8q+8v36F1hcmhNashXZoS+ZKP5s=; b=YERUWr/eWEBnxZbSNZL8MlMlsVQhCrZ0CjV/DaFqCp+DeQHW+AFQafbMZs7vKUnhZ4 AG/yvi6k1F/88V9AfUFHzvZXeMSMeGd/3lQA/Z4zd7HjzR0yLi78wannJBCljthXzAWf HZLC13AwxF8e8ZxQHiV/9/2SFp71AIDUpXNKEIZ7GeZVYnxttVy6gJ5ssnZG/s6t0w8n t+1OlbT42hyT67iaAEtyuzWJ8eQrLw58+fZUJf1XuGlzYdY9k47NzESwIqVtPS/6T4bI EO752ce3SMMl+X5Gig17tTwQIaaf7dL0UmFQvhI2i5vYojYEM4vWTfHPQugrNDPNfUum ajXA==
MIME-Version: 1.0
X-Received: by 10.60.62.4 with SMTP id u4mr7364oer.35.1380189490976; Thu, 26 Sep 2013 02:58:10 -0700 (PDT)
Received: by 10.60.115.72 with HTTP; Thu, 26 Sep 2013 02:58:10 -0700 (PDT)
In-Reply-To: <20130925205424.8DCFA1A9A7@ld9781.wdf.sap.corp>
References: <CADMpkc+3ifDbnSxp9jiiPAKDPxaCWpkKHXTfgygpN3kOXMUFFQ@mail.gmail.com> <20130925205424.8DCFA1A9A7@ld9781.wdf.sap.corp>
Date: Thu, 26 Sep 2013 11:58:10 +0200
Message-ID: <CADMpkc+Q1Ci7MKwR5woNU37opwtppABOC6GcAuFXwq1vP9-gBA@mail.gmail.com>
From: Bodo Moeller <bmoeller@acm.org>
To: Martin Rex <mrex@sap.com>
Content-Type: multipart/alternative; boundary=089e012953ba5524b604e7466874
X-Provags-ID: V02:K0:B7t+Y2twH8BRkt5Zabvb+lD+aKuYmRWt5O4c+URzvAd t5FQVEhmaFt++TVAnG26KU5EJpqbw3OKIt5gtdglKtqMdRHcPy 4EI2SMzjAQIVS9eX2Y4tXIwUu8b6KEdlubTNv7NIu82sB3UPqZ mnALLGN00rtc1p97bIBuyW+THGPkoGgWJFk7kBfvtgFMQ9Resc jlaAuotdirf0Lmwr5MNxcqV2Y/uNapbip6rGiv3YlCLxtQ75aG iXdQLbJcjbWVB6G+HrUfLk/Hx32TfYY6g0OfWGg4fShGqsEGM2 48N/OsRmK9M9r/ZOA02mN0sHAWAUtUynMZIMS/kL8M5SC4xEDK TJsqeLFwRE3gWTW7tW11gcmcuaaKlh+1iHjjYKD0Doa6WbSDSj XF94L8t+G3QskA9DOTPCERo541KVVxVxS0qUTUJDzqoiHVAccJ HVU3X
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] Comments/Questions on draft-gutmann-tls-encrypt-then-mac-00.txt
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Sep 2013 10:00:10 -0000

> >
> http://www.ietf.org/internet-drafts/draft-bmoeller-tls-downgrade-scsv-00.txt
>
>
Any kind of specification for TLS, that suggests to the server
> to apply heuristics and make (often flawed or unjustified) assumptions
> about what the client may want or may not want and have the _server_
> abort the handshake rather than the client, are a REALLY BAD IDEA and
> squarely against the IETF spirit to promote interop.
>

(For my response, see thread "New Version Notification for
draft-bmoeller-tls-downgrade-scsv-00.txt"; I want to avoid hijacking this
one.)