[TLS] I-D Action: draft-ietf-tls-extended-key-update-10.txt
internet-drafts@ietf.org Mon, 02 March 2026 12:09 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: tls@ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from [10.244.6.246] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id AACA0C1D2313; Mon, 2 Mar 2026 04:09:07 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.59.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <177245334761.3494122.16417546920214555219@dt-datatracker-6ff7c68975-7k42g>
Date: Mon, 02 Mar 2026 04:09:07 -0800
Message-ID-Hash: 4S7ARL3BRH4QG3KMUHAC7L4N37FQWWFE
X-Message-ID-Hash: 4S7ARL3BRH4QG3KMUHAC7L4N37FQWWFE
X-MailFrom: internet-drafts@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: tls@ietf.org
X-Mailman-Version: 3.3.9rc6
Reply-To: tls@ietf.org
Subject: [TLS] I-D Action: draft-ietf-tls-extended-key-update-10.txt
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/tXfWTE5STL1EUI3K5FuUSPhhAgg>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
Internet-Draft draft-ietf-tls-extended-key-update-10.txt is now available. It
is a work item of the Transport Layer Security (TLS) WG of the IETF.
Title: Extended Key Update for Transport Layer Security (TLS) 1.3
Authors: Hannes Tschofenig
Michael Tüxen
Tirumaleswar Reddy
Steffen Fries
Yaroslav Rosomakho
Name: draft-ietf-tls-extended-key-update-10.txt
Pages: 41
Dates: 2026-03-02
Abstract:
TLS 1.3 ensures forward secrecy by performing an ephemeral Diffie-
Hellman key exchange during the initial handshake, protecting past
communications even if a party's long-term keys (typically a private
key with a corresponding certificate) are later compromised. While
the built-in KeyUpdate mechanism allows application traffic keys to
be refreshed during a session, it does not incorporate fresh entropy
from a new key exchange and therefore does not provide post-
compromise security. This limitation can pose a security risk in
long-lived sessions, such as those found in industrial IoT or
telecommunications environments.
To address this, this specification defines an extended key update
mechanism that performs a fresh Diffie-Hellman exchange within an
active session, thereby ensuring post-compromise security. By
forcing attackers to exfiltrate new key material repeatedly, this
approach mitigates the risks associated with static key compromise.
Regular renewal of session keys helps contain the impact of such
compromises. The extension is applicable to both TLS 1.3 and DTLS
1.3.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-tls-extended-key-update/
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-tls-extended-key-update-10.html
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-tls-extended-key-update-10
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
- [TLS] I-D Action: draft-ietf-tls-extended-key-upd… internet-drafts
- [TLS] Fwd: I-D Action: draft-ietf-tls-extended-ke… tirumal reddy
- [TLS] Re: Fwd: I-D Action: draft-ietf-tls-extende… Muhammad Usama Sardar