[tsvwg] I-D Action: draft-ietf-tsvwg-dtls-over-sctp-bis-08.txt
internet-drafts@ietf.org Fri, 03 May 2024 08:51 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: tsvwg@ietf.org
Delivered-To: tsvwg@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id B2E1FC15106B; Fri, 3 May 2024 01:51:39 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: tsvwg@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.11.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: tsvwg@ietf.org
Message-ID: <171472629971.18169.2852743456609683562@ietfa.amsl.com>
Date: Fri, 03 May 2024 01:51:39 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/bJ3_Th3_Y701FLTvrJ-1s93huTE>
Subject: [tsvwg] I-D Action: draft-ietf-tsvwg-dtls-over-sctp-bis-08.txt
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 May 2024 08:51:40 -0000
Internet-Draft draft-ietf-tsvwg-dtls-over-sctp-bis-08.txt is now available. It is a work item of the Transport and Services Working Group (TSVWG) WG of the IETF. Title: Datagram Transport Layer Security (DTLS) over Stream Control Transmission Protocol (SCTP) Authors: Magnus Westerlund John Preuß Mattsson Claudio Porfiri Name: draft-ietf-tsvwg-dtls-over-sctp-bis-08.txt Pages: 45 Dates: 2024-05-03 Abstract: This document describes the usage of the Datagram Transport Layer Security (DTLS) protocol to protect user messages sent over the Stream Control Transmission Protocol (SCTP). It is an improved alternative to the existing RFC 6083. DTLS over SCTP provides mutual authentication, confidentiality, integrity protection, and partial replay protection for applications that use SCTP as their transport protocol and allows client/server applications to communicate in a way that is designed to give communications privacy and to prevent eavesdropping and detect tampering or message forgery. Applications using DTLS over SCTP can use almost all transport features provided by SCTP and its extensions. This document is an improved alternative to RFC 6083 and removes the 16 kbytes limitation on protected user message size by defining a secure user message fragmentation so that multiple DTLS records can be used to protect a single user message. It further contains a large number of security fixes and improvements. It updates the DTLS versions and SCTP-AUTH HMAC algorithms to use. It mitigates reflection attacks of data and control chunks and replay attacks of data chunks. It simplifies secure implementation by some stricter requirements on the establishment procedures as well as rekeying to align with zero trust principles. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-tsvwg-dtls-over-sctp-bis/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-ietf-tsvwg-dtls-over-sctp-bis-08.html A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-ietf-tsvwg-dtls-over-sctp-bis-08 Internet-Drafts are also available by rsync at: rsync.ietf.org::internet-drafts
- [tsvwg] I-D Action: draft-ietf-tsvwg-dtls-over-sc… internet-drafts
- Re: [tsvwg] I-D Action: draft-ietf-tsvwg-dtls-ove… Magnus Westerlund