[TLS] Data volume limits

Eric Rescorla <ekr@rtfm.com> Tue, 15 December 2015 21:15 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E2121ACE49 for <tls@ietfa.amsl.com>; Tue, 15 Dec 2015 13:15:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.277
X-Spam-Level:
X-Spam-Status: No, score=-1.277 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g40D50Td6RVH for <tls@ietfa.amsl.com>; Tue, 15 Dec 2015 13:15:10 -0800 (PST)
Received: from mail-qk0-x22f.google.com (mail-qk0-x22f.google.com [IPv6:2607:f8b0:400d:c09::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 851E31ACE69 for <tls@ietf.org>; Tue, 15 Dec 2015 13:15:10 -0800 (PST)
Received: by mail-qk0-x22f.google.com with SMTP id k189so34487272qkc.0 for <tls@ietf.org>; Tue, 15 Dec 2015 13:15:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:from:date:message-id:subject:to:content-type; bh=VUYsUn5XPtisTxSAJuneo4apWxYRRwvgxsUTDU6NM7E=; b=APxqZC6Fc2wbVyw20EiXkdFpoQH37cNCoVjiafsIPhCBvnC4vytbpyaCEHPba+Y8OW 1RhvlqJUwmgBQHweebcXV1eli/zB5rbOVHoaBSE2yu4oqjooFSSWzsXdjksIVBftlyUT j3AXDJjgVjrqABfPh61aGhmlpjKmg5FSA+WbI/qzPvLOTb3ZDuENd3DmvBlxn/xHzbff Za3DhIpusHRml0DZ7QKlC9RihK122gmHjCrCzQAnJcUNtXI1WpQuuHZjWZzRuO/TRCI0 RUmyGHv/ycCVDdY4jqo7mJlwkWVdaIJyEhaBjfOB+BtS1w8Um5c7/hZsNCF9s/9vKXTB KYBw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:from:date:message-id:subject:to :content-type; bh=VUYsUn5XPtisTxSAJuneo4apWxYRRwvgxsUTDU6NM7E=; b=LhWBh3FWuSoY5Bvfolt7kw1vfUUUDOc8SVTFCgyi3PaM9liEJ0m2GJzrE9n6F9XHwH NGdAzir9iGCBSlAUz1M9S8gVYbdHcJhdhs6VmMoMyqSwX+b5Z3g1Mwk+Y0+PNHgtDnus MKGp/KYpZRPaTwj8bn2Qzzj84CywZ7tGOmIzb+17F5GjvBlvj+Mko1ejgoItfAEwA+xM CnrdcgP4eyLmm/MX2gpdM97SUYvELrEyAeY0G0pAY//85k0dI33R1zARZwwOvoPUJ1Nb AC0Y+Cq9y8tXvlGhDfrIhoga6Vx2dbDe1D5L2oKwo3JB/UrFXl28EZn36RdXvBZB+deY T+xA==
X-Gm-Message-State: ALoCoQk006qrwFvEPbCuRcsN0EyP8zA1UCtc/b1qHHgT5r7E5dByxjzZzu/8/Sqm+z1skA3UnD0O95CQELqxrIWahLyIGdD0+A==
X-Received: by 10.129.148.3 with SMTP id l3mr24731953ywg.155.1450214109611; Tue, 15 Dec 2015 13:15:09 -0800 (PST)
MIME-Version: 1.0
Received: by 10.13.249.197 with HTTP; Tue, 15 Dec 2015 13:14:30 -0800 (PST)
From: Eric Rescorla <ekr@rtfm.com>
Date: Tue, 15 Dec 2015 13:14:30 -0800
Message-ID: <CABcZeBNR76DqPo0Mukf5L2G-WBSC+RCZKhVGqBZq=tJYfEHLUg@mail.gmail.com>
To: "tls@ietf.org" <tls@ietf.org>
Content-Type: multipart/alternative; boundary=94eb2c07c8bcda333a0526f648f9
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/vI3tBrx04gWhwUp8J8KFsBE8MlI>
Subject: [TLS] Data volume limits
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Dec 2015 21:15:11 -0000

Watson kindly prepared some text that described the limits on what's safe
for AES-GCM and restricting all algorithms with TLS 1.3 to that lower
limit (2^{36} bytes), even though ChaCha doesn't have the same
restriction.

I wanted to get people's opinions on whether that's actually what we want
or whether we should (as is my instinct) allow people to use ChaCha
for longer periods.

-Ekr