IETF Logo Mail Archive

[TLS] Closing out tls1.3 "Limits on key usage" PRs (#765/#769)

Sean Turner <sean@sn3rd.com> Fri, 10 February 2017 05:07 UTC

Return-Path: <sean@sn3rd.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E18D6129EEA for <tls@ietfa.amsl.com>; Thu, 9 Feb 2017 21:07:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sn3rd.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rsbt3iIdm1Vm for <tls@ietfa.amsl.com>; Thu, 9 Feb 2017 21:07:40 -0800 (PST)
Received: from mail-qt0-x233.google.com (mail-qt0-x233.google.com [IPv6:2607:f8b0:400d:c0d::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 09BF9129EF0 for <tls@ietf.org>; Thu, 9 Feb 2017 21:07:39 -0800 (PST)
Received: by mail-qt0-x233.google.com with SMTP id v23so25073261qtb.0 for <tls@ietf.org>; Thu, 09 Feb 2017 21:07:38 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; h=from:content-transfer-encoding:subject:date:message-id:cc:to :mime-version; bh=sF3S+goNt9Bc/mv7lBJdR9RN0+hom/uJoQlvQeZaObU=; b=Yu944ksgP4BNAUzg5nZz4QG0MKpvHkSfZzhaIPdr5piLeK6sVTEHFPBTUDTBB4CVP8 B4qHoXskiWVR7t7qyZ1gchheCRdOVkPakteuWO1ekDoiJoZG2gyi5IqAZU7/Wb6gDfah bEODu0HySXN0xubhCKTjw5egw6uJcjcq+q+C8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:content-transfer-encoding:subject:date :message-id:cc:to:mime-version; bh=sF3S+goNt9Bc/mv7lBJdR9RN0+hom/uJoQlvQeZaObU=; b=GEekLiMC/h9MraZFkhJaMy9kxr1yRunmIJnWU4AG6F3d4UT/98eHy0n/nBNRkpLImC 2waUJgR3ZEBZeYDa75aHG9faDZjXQZy2GEUaSpmr+OuCW5ewjxspdWHlpurDKxVcZjMw hUjAmHcXBgD0ZZ8nESulNOHYwZo3192q7vD+IVhmEP6aI5QqA71XQPrSoSJPaOdlvFrE bLrTJTpkKMHvrPfke5peEm6SV4YUGfJlaC3Jcmw08tbqSi83IqvS7TGQtQeA3UJqWIsu F4bEChRk5W71E4s4HFUQI7hzQjpdWK2g0zYWRad74ShzIPwaPEjQoa2BSkgBEiPD+qsz 7yPA==
X-Gm-Message-State: AMke39klwg5iKzPeHWDgho/QqEOVKs3WgxLQ7Ou5li9y1o6Xkh+JT2LkfPKhjfexf3sgZw==
X-Received: by 10.200.47.46 with SMTP id j43mr6313569qta.178.1486703257918; Thu, 09 Feb 2017 21:07:37 -0800 (PST)
Received: from [172.16.0.92] (pool-173-73-120-80.washdc.east.verizon.net. [173.73.120.80]) by smtp.gmail.com with ESMTPSA id m143sm550421qke.18.2017.02.09.21.07.36 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Thu, 09 Feb 2017 21:07:36 -0800 (PST)
From: Sean Turner <sean@sn3rd.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Date: Fri, 10 Feb 2017 00:07:35 -0500
Message-Id: <352D31A3-5A8B-4790-9473-195C256DEEC8@sn3rd.com>
To: "<tls@ietf.org>" <tls@ietf.org>
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/sKdCDeBI2NgLiPaYujvsE0QDhOY>
Cc: IRTF CFRG <cfrg@irtf.org>
Subject: [TLS] Closing out tls1.3 "Limits on key usage" PRs (#765/#769)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Feb 2017 05:07:41 -0000

All,

We’ve got two outstanding PRs that propose changes to draft-ietf-tls-tls13 Section 5.5 “Limits on Key Usage”.  As it relates to rekeying, these limits have been discussed a couple of times and we need to resolve once and for all whether the TLS WG wants to:

a) Close these two PRs and go with the existing text [0]
b) Adopt PR#765 [1]
c) Adopt PR#769 [2]

Please indicate you preference to the TLS mailing list before Feb 17.  Note that unless there’s clear consensus to change the text will remain as is (i.e., option a).

J&S

[0] https://tlswg.github.io/tls13-spec/#rfc.section.5.5
[1] https://github.com/tlswg/tls13-spec/pull/765
[2] https://github.com/tlswg/tls13-spec/pull/769

v2.23.0 | Report a Bug | By Email