Re: [TLS] Removing support for custom unnamed DIffie-Hellman groups

Russ Housley <housley@vigilsec.com> Mon, 21 July 2014 14:51 UTC

Return-Path: <housley@vigilsec.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB4561A0126 for <tls@ietfa.amsl.com>; Mon, 21 Jul 2014 07:51:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.9
X-Spam-Level:
X-Spam-Status: No, score=-101.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BW4W_ukdYsDd for <tls@ietfa.amsl.com>; Mon, 21 Jul 2014 07:51:24 -0700 (PDT)
Received: from services-1.meeting.ietf.org (services-1.meeting.ietf.org [IPv6:2001:67c:370:229::6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 124B61A0114 for <tls@ietf.org>; Mon, 21 Jul 2014 07:51:23 -0700 (PDT)
Received: from hotel-wireless-v6.meeting.ietf.org (unknown [IPv6:2001:67c:370:144:6233:4bff:fe20:eb18]) by services-1.meeting.ietf.org (Postfix) with ESMTP id 2600B4E7A3; Mon, 21 Jul 2014 14:51:22 +0000 (UTC)
Mime-Version: 1.0 (Apple Message framework v1085)
Content-Type: text/plain; charset=us-ascii
From: Russ Housley <housley@vigilsec.com>
In-Reply-To: <3BA3F4D9-84FF-45ED-A1D3-F00C649019DC@cisco.com>
Date: Mon, 21 Jul 2014 10:51:21 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <FDFD304C-2646-4016-8435-798E096F8C2C@vigilsec.com>
References: <3BA3F4D9-84FF-45ED-A1D3-F00C649019DC@cisco.com>
To: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
X-Mailer: Apple Mail (2.1085)
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/pRR-Zw64zVQwHCNYxst71Crb3I4
Cc: "<tls@ietf.org>" <tls@ietf.org>
Subject: Re: [TLS] Removing support for custom unnamed DIffie-Hellman groups
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Jul 2014 14:51:25 -0000

I think this means that only well-known groups will be used.  I am assuming that an IANA registry will be used to provide identifiers for these well-known groups.  If that is correct, then I fully support this direction.

Russ

On Jul 21, 2014, at 10:45 AM, Joseph Salowey (jsalowey) wrote:

> At the interim there was support for removing support for custom unnamed Diffie-Hellman groups from TLS 1.3.  If you have an objection please respond on the list by July 25, 2014.
> 
> Thanks,
> 
> Joe 
> [For the chairs]