[TLS] Re: Review of draft-santesson-tls-gssapi-00

To: <Pasi.Eronen at nokia.com>
Subject: [TLS] Re: Review of draft-santesson-tls-gssapi-00
From: Simon Josefsson <simon at josefsson.org>
Date: Fri, 09 Mar 2007 14:25:21 +0100
Cc: tls at ietf.org
In-reply-to: <B356D8F434D20B40A8CEDAEC305A1F2403DE97E4@esebe105.NOE.Nokia.com> (Pasi Eronen's message of "Fri\, 9 Mar 2007 12\:49\:11 +0200")
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
Openpgp: id=B565716F; url=http://josefsson.org/key.txt
References: <20070122202751.CCBC45C01E@laser.networkresonance.com> <A15AC0FBACD3464E95961F7C0BCD1FF01EEDF5A8@EA-EXMSG-C307.europe.corp.microsoft.com> <86mz2nr65m.fsf@raman.networkresonance.com> <B356D8F434D20B40A8CEDAEC305A1F2403DE97E4@esebe105.NOE.Nokia.com>
User-agent: Gnus/5.110006 (No Gnus v0.6) Emacs/22.0.94 (gnu/linux)

<Pasi.Eronen at nokia.com> writes:

> Eric Rescorla wrote:
>
>> >> 2) The extended roundtrips is an un-escapable consequence.  If
>> >> necessary I believe we can define an upper boundary of the number
>> >> of roundtrips.
>> 
>> Well, any number >2 is a radical change in the TLS state machine.
>
> I agree; however, there are several ways to do the roundtrips,
> and some of them might be slightly less radical than the one
> current proposed in draft-santesson-tls-gssapi-01.
>
> Here's one sketch of how this could work:
>
>    ClientHello
>    (ciphersuite TLS_RSA_GSSAPI_WITH_AES128_CBC_SHA, 
>    gss_api extension with OID list)

I like this approach better, although I don't understand why you need
special GSSAPI ciphersuites, could you explain?  Wouldn't it be
possible to do this with an extension, to enable the extra roundtrips,
without touching the ciphersuites?

>    gss_wrap(channel binding info)) ----->

Using gss_wrap to wrap additional information, such as channel
bindings, has some similarities with the SASL GS2 mechanism.  Note
that it doesn't seem to work with authentication-only GSS-API
mechanisms that doesn't support GSS_Wrap.

In general, I'm in favor of any protocol that permits GSS-API
negotiation inside TLS but outside of the application data exchange.
The details are less important to me, and I think it should be
possible to come up with a good compromise here.

/Simon

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- [TLS] RE: Review of draft-santesson-tls-gssapi-00
  - From: Pasi.Eronen

References:
- [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Eric Rescorla
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Stefan Santesson
- Re: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Eric Rescorla
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Pasi.Eronen

Prev by Date: RE: [TLS] Review of draft-santesson-tls-gssapi-00
Next by Date: [TLS] RE: Review of draft-santesson-tls-gssapi-00
Previous by thread: RE: [TLS] Review of draft-santesson-tls-gssapi-00
Next by thread: [TLS] RE: Review of draft-santesson-tls-gssapi-00
Index(es):
- Date
- Thread

[TLS] Re: Review of draft-santesson-tls-gssapi-00

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.