IETF Logo Mail Archive

Re: [TLS] Fwd: Last Call: <draft-ietf-kitten-tls-channel-bindings-for-tls13-09.txt> (Channel Bindings for TLS 1.3) to Proposed Standard

"Ross, Michael D (54510) CIV USN NIWC ATLANTIC SC (USA)" <michael.d.ross118.civ@us.navy.mil> Mon, 04 October 2021 04:37 UTC

Return-Path: <michael.d.ross118.civ@us.navy.mil>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 507C43A0EFF for <tls@ietfa.amsl.com>; Sun, 3 Oct 2021 21:37:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AFT0_GMY3Iwe for <tls@ietfa.amsl.com>; Sun, 3 Oct 2021 21:37:19 -0700 (PDT)
Received: from UCOL19PA36.eemsg.mail.mil (UCOL19PA36.eemsg.mail.mil [214.24.24.196]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CD1CB3A0EF9 for <tls@ietf.org>; Sun, 3 Oct 2021 21:37:16 -0700 (PDT)
X-EEMSG-check-017: 286294774|UCOL19PA36_ESA_OUT03.csd.disa.mil
X-EEMSG-Attachment-filename: smime.p7s
X-EEMSG-Attachment-filesize: 5490
X-IronPort-AV: E=Sophos;i="5.85,344,1624320000"; d="p7s'?scan'208";a="286294774"
IronPort-Data: A9a23:LVAQuq2K/96xxQIA8PbD5cRwkn2cJEfYwER7XKvMYbSIpGtil2len TNbADbYJb/RMSHyZpovP9PnsQ9E7KZh/KYgFVsx+Dd1EGkiRaHtVIzBfhv8NnOcd8eYEE475 psVNISYIsxqRC6A+UyjOOa9/HBwifDYSuOmUrCda3ooH1c4Qy162Rhtxb9i0oJhiLBVb+/jV fba+6Uzb3f4h28sWo5t15++lf9PgBjTkGhB5ANibK4b7VLSzicbUckUe/nqdCWnHtgKQ7XiG reSkOjpr2jUwUwgW4iv+lrZnuzmYVJw0Sym0Cc+t5CK20ME/mpuukoCHKJ0hX1/011lpPgsj oUQ3XCMYV1xZPSVwLxGC0Mw/xxWZcWqxpeWeRBTjuTOlyUqQ1O0qxlfJBle0b8wo46bMkkXn RAsEw3hWzjY7w6ALBJXfcE37igrBJGD0IryIRiMxxmBZRotacirr6knebZlMDkMasBmRZ4yZ uI/QBdGSi7uQDR/YQ0QTrQXsNyVvVTWNRtxhGnTg4MJ0i727SgZPLrFaoKIPIzXA54O2BzE+ Aoq/Eygav0eHNmewjqM/3bqiqnVmjjgAdtCUra56NZ3mxuVz3ICThgXUTNXpNHj2hDkCo4Ad BB8Fi0G6PJaGFaQZsL0WjWjqXubvh8AVtYWGOo/gCmX0aPQ8S6QBWEBRz8HY9sj3OctTC0w2 0WhkNbgBDgpu7qQIVqB8qy8rD6uN24SN2BqWMOuZWPp+PHlqYw6iAjBTd9zS/TziNj+GHf2y i6b6i0/g90uYQcw//3T1Tj6b/iE/fAlkiZdCt3rY1+Y
IronPort-HdrOrdr: A9a23:NtucH6jNaz9x2rR+po7ohioq7HBQXuMji2hC6mlwRA09TyX4rb HWoB1/73XJYVkqKRQdcLy7Scu9qDbnhP1ICOoqXItKPjOW3FdARbsKheDfKn/bexEWndQtsp uIHZIObuEYzmIXsS852mSF+hobr+VvOZrHudvj
Received: from naeanrfkax32.nmci.navy.mil (HELO NAEANRFKAX32o.NADSUSEA.NADS.NAVY.MIL) ([205.85.33.246]) by UCOL19PA36.eemsg.mail.mil with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 04 Oct 2021 04:37:12 +0000
X-AuditID: cd5521f5-4f9fa70000001b81-11-615a84f77d1a
Received: from NAWESDNIXH56V.nadsuswe.nads.navy.mil (Unknown_Domain [205.85.33.242]) (using TLS with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (Client did not present a certificate) by NAEANRFKAX32o.NADSUSEA.NADS.NAVY.MIL (Symantec Messaging Gateway) with SMTP id AD.C3.07041.7F48A516; Mon, 4 Oct 2021 00:37:12 -0400 (EDT)
X-CrossPremisesHeadersFilteredBySendConnector: NAWESDNIXH56V.nadsuswe.nads.navy.mil
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5501; d=microsoft.com; cv=none; b=Py/7mDbWJR3xjBRhUJGSKIiCc4oKeDCldgI6TEaIIjtqNMJa/4i0T46THptxGH0Z6fijRLPp8czFq8p8DDhYo6eqrc6vJDQeP4kq7cj82/EDPn+GIdxeGJXR7nd3WY2alF3Sin0fyyZx0RF6tY1MPtN+GGOGIp4YaagnsAFhoqtG0ldm2iCe76V7jYVhGpJG/TriluS6oO+0bd8ZPZD6pDT80M5RIVyjp9mu6TGGedd+9jvMDYWakrH9DTYCxS4/ujiSbVTwG8dmWH1n7IUGcRr1o1zJXYq0nJoJgDK5fRkg7wnOJOph0dSYx5T8Lncw5HnlAT9DCIYJMe60KO7m4Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5501; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=EoWGMJrBfuy1C9NnvIqDKA+2/tpqdG4P7ce7fhnprsw=; b=G3yKOHBd4VINDuBuwuG2o/xokLksJoPyv1nGmDRKlKsOfQUSyM8IBya7o5gHCDJ36/eCsjKpHzRsHbLcMtSUK3hOVIFArelXaJy4zzIIopgyILQ2hmI2/XkUnG8j9J8G5Dl7s7kpenw7lnqW+Oa9u3YsVVWT+95IZFUJnoc40aF5CsfpBvnrbvutOfWX9ww4Nw+4e2E49QCzCyl0VHP5GInqsCSsml9NjiTw9O3LdHT9FcP65OgykaPy+5GGa7my6xR/g/9oJEAZJ9Qtd0UR+zec57j/iozI9/lYNaoD9v6yxeH6kGn4dU/V97mCgdUSnYv/V3fbXrRJJNuA1S/11Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=us.navy.mil; dmarc=pass action=none header.from=us.navy.mil; dkim=pass header.d=us.navy.mil; arc=none
From: "Ross, Michael D (54510) CIV USN NIWC ATLANTIC SC (USA)" <michael.d.ross118.civ@us.navy.mil>
To: Sam Whited <sam@samwhited.com>, "Salz, Rich" <rsalz@akamai.com>, Rob Sayre <sayrer@gmail.com>
CC: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Fwd: Last Call: <draft-ietf-kitten-tls-channel-bindings-for-tls13-09.txt> (Channel Bindings for TLS 1.3) to Proposed Standard
Thread-Index: Ade41qf9FiWZbq8BQXiQAqJzQmxpeg==
Date: Mon, 04 Oct 2021 04:37:07 +0000
Message-ID: <CY1P111MB082281B128A17482366C2ABBE0AE9@CY1P111MB0822.NAMP111.PROD.OUTLOOK.COM>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
checkininfoid: 637689045854876894
authentication-results: samwhited.com; dkim=none (message not signed) header.d=none;samwhited.com; dmarc=none action=none header.from=us.navy.mil;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f2bccd12-28aa-4ca1-ba22-08d986f09fd2
x-ms-traffictypediagnostic: CY1P111MB0358:
x-microsoft-antispam-prvs: <CY1P111MB0358993BF87A5AFE889DCD2CE0AE9@CY1P111MB0358.NAMP111.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:7219;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CY1P111MB0822.NAMP111.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(4636009)(366004)(66556008)(66476007)(2906002)(6506007)(38070700005)(38100700002)(4744005)(76116006)(64756008)(66446008)(66946007)(8936002)(186003)(53546011)(8676002)(4326008)(7696005)(26005)(52536014)(9686003)(55016002)(5660300002)(83380400001)(122000001)(86362001)(508600001)(33656002)(99936003)(316002)(71200400001)(110136005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: +JnKyBGEJ+5Hdxrm+zmRJQqKEH+Hayxr3w0xBpjrG6Duo5zAvc+c1MAz/IZvp/3d8NRYWWee7SowdbWRS0NT/ViyDXLhg1DY6SdLsLtavnIXXEz5Hjxcq7JS+jH6OoGDPjJnOnl3ilkspFvuY1RQ7iJt22BrvU/vDsei+NbFq+AzitUnvz5SlqhGLNWPZh27omeUzJuFmr4o8poVYvSVsFJu21lSZOTCYHZlwdDyfJKZDzjHzRNvB5ncq/zJhD2i2lw+GAfk0ISTg75UrtRgBfNC+ANEg+8tgjhbiFLuzLdrtGUeuzUwEv4sViKdFcnxPdWoVlFaq66odPa00byCQWCnb4TVQHIDkB1ZAjjYeffhb8JvPoJVyyqNmat1qUEvDxUOx400pCVIu0VfJc+rG2CjMXzVJHgkVXQ1FIQpyIFvBIatb572wmRSJ6VxItHD5E7OhQ4JGVDxNld3c9N7w2j7jhjaCyue42tHX6yw4mnLJ4Iu7YIBW5Sf1JHvRNED5nXziYV7bX4ZDlLhjMj6E4s0BRfmmca4Wo6RmrwlyHRGH2bsOmZl9symLNWgrtmwh61OdcTp+5Lf6QVZWHBNdVfvfSa7ltrkC8c6Ai66t7kc8HUFdxSpdT+lW/Y+K7aTWqHPgLVbRWg3s8JeozmyZdXEWfpmK9Hlnoka1vOZgJ6JzzauDGrN9sJVZdcqs4VrCUgrN/46/GCJqW0ck00ahklCs/Ez+GZHr9bRlYO56ZkSUYgBfR0feHli0cF7CPn6QqtEf56PTEpe1/mWlu3e9CE4Kxc7lIwl9jnZsF1elLpDVyvaLVO2lUlBpwl6ToG50uf2RR4zp04Lgw+KYXJ4QemR49C8dokhAqyfxxNnRK2Zu24QVstWifaaz5z7mF2F5pGxCrM8apCKUFIVCxzzEF3/4umTJjcKPJN/we719+PfO5kHs4nDvs/pLFvh/kphDL3wbhCWxvxSkpm7xVS1ULCxXPpST/4uZh7p2LCAf76WaOqvyUf4jcBS01AcYeiF4AMq6Mrz/KVc5it8rRUM8si7FVdAy3lX6Kyr2ylB6mLQ3OpaDJOHIfWBp1CRwYUWWuDOMiJPXc+AzfpRGYYIKKL81ksTI7gXN5B3xIsh0HhNhx7A6c52cs3NSWNQ0mVgg1hoURNt06GXSgJhBYUuMnbA8uHoNV74EsN5zg2rAEwZjsacvUWzloXdB+AlGUq0Tz5/CGKkoB4WjhLehohcOFRFzfsxHYQ4JF1TY+UM4JE=
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="2.16.840.1.101.3.4.2.1"; boundary="----=_NextPart_000_0096_01D7B8B7.E11E1510"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CY1P111MB0822.NAMP111.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: f2bccd12-28aa-4ca1-ba22-08d986f09fd2
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Oct 2021 04:37:08.0107 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: e3333e00-c877-4b87-b6ad-45e942de1750
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1P111MB0358
X-OrganizationHeadersPreserved: NAWESDNIXH56V.nadsuswe.nads.navy.mil
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrOKsWRmVeSWpSXmKPExsVyNlTxk+6PlqhEg96dXBb/t3SyWDQ1fGO1 6Jw1gcni0/kuRgcWj8lHFjB77Jx1l91jyZKfTB73mt+zBrBEcdmkpOZklqUW6dslcGVs+HKZ qaDTveLMuZ8sDYxznLsYOTgkBEwktuyu7WLk4hASOMck8ezwHrYuRk6geKjEvXuLWUASjALL mCV+dLxngnDWsEic/r2SEcLZyigxu3MpC8goNoEUibmnFEC6RQSSJZY8uMUIYjMLKEq8vzQP bJKwwBRGib2PJoE5IgJTGSXWnlvACtGhJ/F9exOYzSKgInH1whmwbl6BaImz/3aAxRkFxCS+ n1rDBDFVXOLWk/lMELeKSDy8eBrqblGJl4//scJs7mnczQxxKdDmBYu2QTXISlya380IYftK 3N5+GapZS+L+8afsEHaWRMucAywQtprElPWfmCFsOYlVvQ+h4jISD25sh+p9zCqx664GyDIJ gY/MEpvbb0INMpCY9+0IG0TilIDEzb7FbJCgV5H4d6hyAqP2LCQPzQIqYxZYyCixZMIKxlng EBCUODnzCQtEkbbE05tP4exlC18zQ9jWEjN+HWSbBfX1lO6H7BC2qcTrox8ZFzByrGJU9nN0 dfQLcvN2jDA20vNzdAkODXZ1BDOARFiknq+nzyZGSHr7uoNx3on3eocYmTgYDzGqAA16tGH1 BUYplrz8vFQlEV6vo40JQrwpiZVVqUX58UWlOanFhxilOViUxHkZM+YlCAmkJ5akZqemFqQW wWSZODilGpiUHt+1/56ycn8p74UZl9Sfv81sv/lXcYbqJjeRT/KH3+3Um3P7zFN59hdBVw5x 8kzaYLlvnYPFi58rvW+s+yD4w9Hg+ruk57Vz9up42Z2ysXh4z6dU4fs3m2BpLhNhs9pv/con bS667K+3W/N6id3bXkOe67rf2WYvlLWKfNt1MPxG5OoLXDnveXpemzmHqxv+9HxXm38qXLfi U2d0SVTxD+Vv2kW5CXPyNd8rd/HuWxEePzM+VF61nelAmZLStllHbc2ky0ubedI0lh75fD19 QvJasQudj6ck/D+exDtTutX17/GYq24t/+zF9wY9biu2n/Xt2d19dVYnF38tc51n57FutcLC X8+bcz6snRalxFKckWioxVxUnAgAGSD3F+oDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/sVkU_Eu1qEpyCMVgp0F2KLdSElE>
Subject: Re: [TLS] Fwd: Last Call: <draft-ietf-kitten-tls-channel-bindings-for-tls13-09.txt> (Channel Bindings for TLS 1.3) to Proposed Standard
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Oct 2021 04:37:26 -0000

At first glance, hasn’t sufficient analysis been done in:

[VERIFIED-BINDINGS]
               Bhargavan, K., Delignat-Lavaud, A., and A. Pironti,
               "Verified Contributive Channel Bindings for Compound
               Authentication", Network and Distributed System Security
               Symposium (NDSS), 2015.

?

Just a thought?

Michael Ross
NIWC Atlantic
US Navy

From: TLS <tls-bounces@ietf.org> On Behalf Of Sam Whited
Sent: Sunday, October 3, 2021 9:37 AM
To: Salz, Rich <rsalz@akamai.com>; Rob Sayre <sayrer@gmail.com>
Cc: tls@ietf.org
Subject: [Non-DoD Source] Re: [TLS] Fwd: Last Call: <draft-ietf-kitten-tls-channel-bindings-for-tls13-09.txt> (Channel Bindings for TLS 1.3) to Proposed Standard

I'd be okay with that provided we can release an update if such an analysis is ever done?

Although this is such a low-stakes issue that I worry that the prejudicial value of such a statement far outweighs the security value. I don't feel strongly about it though.

—Sam
On October 3, 2021 1:06:40 PM UTC, "Salz, Rich" <rsalz@akamai.com> wrote:
Perhaps adding text that says no security analysis has been done.

v2.23.0 | Report a Bug | By Email