[TLS] 'ECC Cipher Suites for TLS' (changes from ver 12)
Vipul Gupta <Vipul.Gupta@sun.com> Wed, 29 March 2006 19:48 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1FOgf0-0005gZ-6x; Wed, 29 Mar 2006 14:48:54 -0500
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FOgey-0005gU-LF for tls@ietf.org; Wed, 29 Mar 2006 14:48:52 -0500
Received: from dyn50.sunlabs.com ([204.153.12.50] helo=mail-mta.sunlabs.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FOgey-0005eL-Aj for tls@ietf.org; Wed, 29 Mar 2006 14:48:52 -0500
Received: from mail.sunlabs.com ([152.70.2.186]) by dps.sfvic.sunlabs.com (Sun Java System Messaging Server 6.1 HotFix 0.02 (built Aug 25 2004)) with ESMTP id <0IWW00FW5N1FS700@dps.sfvic.sunlabs.com> for tls@ietf.org; Wed, 29 Mar 2006 11:48:51 -0800 (PST)
Received: from [129.146.73.44] by mail.sunlabs.com (Sun Java System Messaging Server 6.1 HotFix 0.02 (built Aug 25 2004)) with ESMTPSA id <0IWW00J8SN1EP970@mail.sunlabs.com> for tls@ietf.org; Wed, 29 Mar 2006 11:48:51 -0800 (PST)
Date: Wed, 29 Mar 2006 11:49:12 -0800
From: Vipul Gupta <Vipul.Gupta@sun.com>
In-reply-to: <B7A0241E-886A-4AAB-9D88-209BC564E5E8@sun.com>
To: tls mailing list <tls@ietf.org>
Message-id: <51762558-E89B-430C-8A3F-8D021EAB7F2B@sun.com>
MIME-version: 1.0
X-Mailer: Apple Mail (2.746.2)
Content-type: text/plain; charset="US-ASCII"; delsp="yes"; format="flowed"
Content-transfer-encoding: 7bit
References: <E1F18ve-0000zS-P6@newodin.ietf.org> <B7A0241E-886A-4AAB-9D88-209BC564E5E8@sun.com>
X-Spam-Score: 0.0 (/)
X-Scan-Signature: b280b4db656c3ca28dd62e5e0b03daa8
Cc: Chris Hawk <chris@corriente.net>, Bodo Moeller <bmoeller@acm.org>, Vipul Gupta <Vipul.Gupta@sun.com>, Simon Blake-Wilson <simon@blake-wilson.com>
Subject: [TLS] 'ECC Cipher Suites for TLS' (changes from ver 12)
X-BeenThere: tls@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/tls>
List-Post: <mailto:tls@lists.ietf.org>
List-Help: <mailto:tls-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
Errors-To: tls-bounces@lists.ietf.org
This note is a follow up to a prior message http://www1.ietf.org/mail-archive/web/tls/current/msg00489.html describing some of the changes (from draft-ietf-tls-ecc-12.txt) that will appear in the RFC. Recently, we discovered another inconsistency in the latest draft and have received permission from Eric and Russ to fix it during AUTH48. The change is as follows (further details included below): struct { - NamedCurve elliptic_curve_list<1..2^8-1> + NamedCurve elliptic_curve_list<1..2^16-1> } EllipticCurveList; vipul -------------------------------------------- [Eric's message] > From: Eric Rescorla <ekr@networkresonance.com> > Date: March 27, 2006 10:15:41 AM PST > Subject: Re: 'ECC Cipher Suites for TLS' to Informational RFC > > This works for me. > > -Ekr [Message from Russ (includes our original request and justification)] > From: Russ Housley <housley@vigilsec.com> > Date: March 29, 2006 6:36:04 AM PST > Subject: Re: 'ECC Cipher Suites for TLS' to Informational RFC > > I see no problem making this correction. However, please post a > message to the TLS WG mail list to notify everyone that this will > happen. > > Russ > > At 06:23 PM 3/24/2006, Vipul Gupta wrote: >> Hi Eric, Pasi, Sam and Russ, >> >> We (the authors and implementers on the cc list) >> have recently become aware of an inconsistency >> in the latest version of the specification and seek >> your permission to fix it during the AUTH48 period. >> >> When going from draft-ietf-tls-ecc-10.txt to >> draft-ietf-tls-ecc-11.txt, the encoding of named >> curves was changed from 1 byte to 2 bytes in response >> to WG feedback. However, the corresponding change >> in the encoding of the EllipticCurveList length >> from 1 to 2 bytes was reflected in the examples >> but not in the EllipticCurveList definition. This >> made the examples in Section 5.1.1 inconsistent >> with the adjacent text. We propose fixing the text >> as follows: >> >> struct { >> - NamedCurve elliptic_curve_list<1..2^8-1> >> + NamedCurve elliptic_curve_list<1..2^16-1> >> } EllipticCurveList; >> >> This change is consistent with the implementation >> plans for Microsoft, Redhat, Sun and OpenSSL. >> >> We'd appreciate a quick response so we can bring >> this resolution to the attention of other folks who >> might be implementing this specification. Thank you >> for your time. >> >> vipul >> _______________________________________________ TLS mailing list TLS@lists.ietf.org https://www1.ietf.org/mailman/listinfo/tls