[TLS] Issue 15: Mandate protection against CBC mode timing attack

To: tls at ietf.org
Subject: [TLS] Issue 15: Mandate protection against CBC mode timing attack
From: Eric Rescorla <ekr at networkresonance.com>
Date: Sun, 03 Jun 2007 07:52:22 -0700
Cc:
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
User-agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)

http://www3.tools.ietf.org/wg/tls/trac/ticket/15

NIST's comments suggest that the defense suggested in 6.2.3.2
should be  mandatory. My argument is that hardware systems may
operate in fixed time or otherwise be safe and so we shouldn't
mandate any particular defense.

Proposed resolution: leave as-is.


_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Issue 15: Mandate protection against CBC mode timing attack
  - From: Ben Laurie

Prev by Date: [TLS] Issue #12: RSA/DSA/DH timing attacks
Next by Date: [TLS] Issue 16: Alert clarifications
Previous by thread: [TLS] Issue #12: RSA/DSA/DH timing attacks
Next by thread: Re: [TLS] Issue 15: Mandate protection against CBC mode timing attack
Index(es):
- Date
- Thread

[TLS] Issue 15: Mandate protection against CBC mode timing attack

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.