[TLS] Encryption of TLS 1.3 content type

"Joseph Salowey (jsalowey)" <jsalowey@cisco.com> Fri, 25 July 2014 17:37 UTC

Return-Path: <jsalowey@cisco.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id AFF851A03AD for <tls@ietfa.amsl.com>; Fri, 25 Jul 2014 10:37:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.502
X-Spam-Status: No, score=-14.502 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id olR8B8V_i0Ef for <tls@ietfa.amsl.com>; Fri, 25 Jul 2014 10:37:30 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com []) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7B5791A037A for <tls@ietf.org>; Fri, 25 Jul 2014 10:37:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=516; q=dns/txt; s=iport; t=1406309850; x=1407519450; h=from:to:subject:date:message-id:content-id: content-transfer-encoding:mime-version; bh=SIWY1RUdz4tJ9i6WEcD4A/lY92oMMQhWeFoY5QKqVLI=; b=bkbc2oroOI0c46pvjAl2z+Kkc1LgSDF3zFM0pxxEaI16hHxf7lThrDEl 2hKVWOTUoh0LqeCmbN1ZqldrCfBz7ynPilsKluYiuynPb5QxdZghFZbcJ SvlSYPpi1bI0Q63oBWUrfuPm57ZTuloWo9MdAEgzOw+ZZ3xx62XLSFuTc I=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Ag4FANuU0lOtJV2U/2dsb2JhbABZgw6BLdJlFneECjpRAT5CJwSIVZhnpkUXkwCBGwWbR5RKg0iCMQ
X-IronPort-AV: E=Sophos;i="5.01,732,1400025600"; d="scan'208";a="342844834"
Received: from rcdn-core-12.cisco.com ([]) by rcdn-iport-2.cisco.com with ESMTP; 25 Jul 2014 17:37:30 +0000
Received: from xhc-aln-x07.cisco.com (xhc-aln-x07.cisco.com []) by rcdn-core-12.cisco.com (8.14.5/8.14.5) with ESMTP id s6PHbTEP018499 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <tls@ietf.org>; Fri, 25 Jul 2014 17:37:29 GMT
Received: from xmb-rcd-x09.cisco.com ([]) by xhc-aln-x07.cisco.com ([]) with mapi id 14.03.0123.003; Fri, 25 Jul 2014 12:37:00 -0500
From: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
To: "<tls@ietf.org>" <tls@ietf.org>
Thread-Topic: Encryption of TLS 1.3 content type
Thread-Index: AQHPqC8baIxMzdBVrU6TDpjh9o/qpg==
Date: Fri, 25 Jul 2014 17:37:29 +0000
Message-ID: <DD255E31-FA87-40CE-AF13-0F43A7DD54CF@cisco.com>
Accept-Language: en-US
Content-Language: en-US
x-originating-ip: []
Content-Type: text/plain; charset="us-ascii"
Content-ID: <939F4B0B5CE96149B4E5759474F5FD6D@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/p7vxvV67vGcYhgla1JIvRSNwsr8
Subject: [TLS] Encryption of TLS 1.3 content type
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Jul 2014 17:37:34 -0000

At the interim meeting on July 20, 2014 there was general consensus to support the encryption of TLS 1.3 content type.  The favored approach was to remove the content type and version from the TLS record layer header and add the content type to the encrypted data.   The proposal is to update the draft to document this approach and try to run some tests to see if this causes much grief with middle boxes.  If you object to this proposal please respond to the list by Friday, August 01, 2014.