RE: [TLS] TLS state machine

To: <stefans at microsoft.com>, <tls at ietf.org>
Subject: RE: [TLS] TLS state machine
From: <Pasi.Eronen at nokia.com>
Date: Thu, 22 Mar 2007 10:33:01 +0200
Cc:
In-reply-to: <A15AC0FBACD3464E95961F7C0BCD1FF01EF60221@EA-EXMSG-C307.europe.corp.microsoft.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <A15AC0FBACD3464E95961F7C0BCD1FF01EEDF5A8@EA-EXMSG-C307.europe.corp.microsoft.com><200703081752.SAA13445@uw1048.wdf.sap.corp><A15AC0FBACD3464E95961F7C0BCD1FF01EEDF84A@EA-EXMSG-C307.europe.corp.microsoft.com><861wjyfnmp.fsf@delta.rtfm.com><A15AC0FBACD3464E95961F7C0BCD1FF01EEDF88A@EA-EXMSG-C307.europe.corp.microsoft.com><86fy8ee7g5.fsf@delta.rtfm.com><A15AC0FBACD3464E95961F7C0BCD1FF01EEDFC6F@EA-EXMSG-C307.europe.corp.microsoft.com><B356D8F434D20B40A8CEDAEC305A1F2403E92576@esebe105.NOE.Nokia.com><A15AC0FBACD3464E95961F7C0BCD1FF01EF5FEA6@EA-EXMSG-C307.europe.corp.microsoft.com><B356D8F434D20B40A8CEDAEC305A1F2403E92709@esebe105.NOE.Nokia.com><33F43BC3-4F76-48B1-9DC9-3B05C951C7BE@checkpoint.com> <A15AC0FBACD3464E95961F7C0BCD1FF01EF60119@EA-EXMSG-C307.europe.corp.microsoft.com> <B356D8F434D20B40A8CEDAEC305A1F2403ECA9AD@esebe105.NOE.Nokia.com> <A15AC0FBACD3464E95961F7C0BCD1FF01EF60221@EA-EXMSG-C307.europe.corp.microsoft.com>
Thread-index: Acdrmne2RMU/t9AmTX6wMCdScj6wAQAKvL4AAADUQ8AAB4htgAAdZGog
Thread-topic: [TLS] TLS state machine

Stefan Santesson wrote:
> 
> Considering this being the TLS state machine, the TLS 
> extension mechanism clearly allows a change of the TLS state 
> machine as it allows other handshake messages to be inserted 
> in this flow.
> 
> What are the criteria that distinguish a valid change to the 
> TLS state machine from an invalid (unsuitable) one?
> Or is this totally subjective?

I wouldn't use words "valid" or "invalid" here; rather, there 
are changes that I'd consider "nicer" (fits better with existing 
pieces of TLS, easier to understand, simpler, etc.) than others.

When there are multiple alternatives to choose from, all of
which essentially work, I'd consider this "niceness" to be
one important criteria for choosing between them. To some 
degree, it is subjective; but it can also be something people
can agree on (and rough WG consensus can be reached).

Best regards,
Pasi

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

References:
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Stefan Santesson
- Re: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Martin Rex
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Stefan Santesson
- Re: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: EKR
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Stefan Santesson
- Re: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: EKR
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Stefan Santesson
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Pasi.Eronen
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Stefan Santesson
- RE: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Pasi.Eronen
- Re: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Yoav Nir
- [TLS] TLS state machine
  - From: Stefan Santesson
- RE: [TLS] TLS state machine
  - From: Pasi.Eronen
- RE: [TLS] TLS state machine
  - From: Stefan Santesson

Prev by Date: Re: [***SPAM*** Score/Req: 11.0/5.0] Re: [TLS] Review of draft-santesson-tls-gssapi-00
Next by Date: Re: [TLS] Review of draft-santesson-tls-gssapi-00
Previous by thread: RE: [TLS] TLS state machine
Next by thread: Re: [TLS] TLS state machine
Index(es):
- Date
- Thread

RE: [TLS] TLS state machine

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.