Re: [TLS] CCS and key reset and renegotiation
Viktor Dukhovni <viktor1dane@dukhovni.org> Thu, 05 June 2014 15:24 UTC
Return-Path: <viktor1dane@dukhovni.org>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE8FA1A02B3 for <tls@ietfa.amsl.com>; Thu, 5 Jun 2014 08:24:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.9
X-Spam-Level:
X-Spam-Status: No, score=-101.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UlGlv_T7AIyi for <tls@ietfa.amsl.com>; Thu, 5 Jun 2014 08:23:59 -0700 (PDT)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [38.117.134.19]) (using TLSv1.1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9E0D71A0167 for <tls@ietf.org>; Thu, 5 Jun 2014 08:21:44 -0700 (PDT)
Received: by mournblade.imrryr.org (Postfix, from userid 1034) id 992722AAB4F; Thu, 5 Jun 2014 15:21:37 +0000 (UTC)
Date: Thu, 05 Jun 2014 15:21:37 +0000
From: Viktor Dukhovni <viktor1dane@dukhovni.org>
To: tls@ietf.org
Message-ID: <20140605152137.GC27883@mournblade.imrryr.org>
References: <2A0EFB9C05D0164E98F19BB0AF3708C7130F434981@USMBX1.msg.corp.akamai.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <2A0EFB9C05D0164E98F19BB0AF3708C7130F434981@USMBX1.msg.corp.akamai.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/xjFCZHNr9yq37nCD-W0KNfWcn5w
Subject: Re: [TLS] CCS and key reset and renegotiation
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tls@ietf.org
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Jun 2014 15:24:04 -0000
On Thu, Jun 05, 2014 at 11:09:30AM -0400, Salz, Rich wrote: > Have folks seen this yet? > http://ccsinjection.lepidum.co.jp/blog/2014-06-05/CCS-Injection-en/index.html > > I think it adds weight to my concern about using ChangeCipherSpec > to do key reset. I still prefer the trade-offs of having a "slow > the TLS but keep the TCP layer open" and starting over. Much > simpler to prove it's correct. A STOPTLS feature could also be useful in the Postfix (TCP) connection cache. Because cached TCP connections move between processes through file descriptor passing, but serializing the SSL state of an active SSL connection is difficult, we currently can't cache TLS-protected TCP connections. If we could STOP TLS before moving connections into the cache, and resume with a handshake over cleartext (using a cached TLS session, session ticket, ...) that would make it possible to cache TLS connections (that negotiate TLS 1.3 if STOPTLS is a required or negotiated peer feature in 1.3). -- Viktor.
- Re: [TLS] CCS and key reset and renegotiation Viktor Dukhovni
- [TLS] CCS and key reset and renegotiation Salz, Rich
- Re: [TLS] CCS and key reset and renegotiation Watson Ladd
- Re: [TLS] CCS and key reset and renegotiation Nico Williams
- Re: [TLS] CCS and key reset and renegotiation Salz, Rich
- Re: [TLS] CCS and key reset and renegotiation Martin Thomson
- Re: [TLS] CCS and key reset and renegotiation Peter Gutmann
- Re: [TLS] CCS and key reset and renegotiation Watson Ladd
- Re: [TLS] CCS and key reset and renegotiation Nico Williams
- Re: [TLS] CCS and key reset and renegotiation Viktor Dukhovni
- Re: [TLS] CCS and key reset and renegotiation Yoav Nir
- Re: [TLS] CCS and key reset and renegotiation Viktor Dukhovni
- Re: [TLS] CCS and key reset and renegotiation Yoav Nir
- Re: [TLS] CCS and key reset and renegotiation Jeffrey Walton
- Re: [TLS] CCS and key reset and renegotiation Peter Gutmann
- Re: [TLS] CCS and key reset and renegotiation Watson Ladd
- Re: [TLS] CCS and key reset and renegotiation Salz, Rich
- Re: [TLS] CCS and key reset and renegotiation Watson Ladd
- Re: [TLS] CCS and key reset and renegotiation Salz, Rich
- Re: [TLS] CCS and key reset and renegotiation Paul Lambert
- Re: [TLS] CCS and key reset and renegotiation Salz, Rich
- Re: [TLS] CCS and key reset and renegotiation Peter Gutmann
- Re: [TLS] CCS and key reset and renegotiation Michael StJohns