Re: [TLS] Issue 15: Mandate protection against CBC mode timing attack

To: "Eric Rescorla" <ekr at networkresonance.com>
Subject: Re: [TLS] Issue 15: Mandate protection against CBC mode timing attack
From: "Ben Laurie" <benl at google.com>
Date: Sun, 3 Jun 2007 10:23:09 -0700
Cc: tls at ietf.org
Domainkey-signature: a=rsa-sha1; s=beta; d=google.com; c=nofws; q=dns; h=received:message-id:date:from:to:subject:cc:in-reply-to: mime-version:content-type:content-transfer-encoding: content-disposition:references; b=vPpBpJ3guyUP5dkCuafrrkBSuFh+vJaWrNN213gWzXkU2xms65iT3+PUtlK9HACmT bWP0Ed/UEqcJwqktKMQWA==
In-reply-to: <20070603145222.40A7833C4B@delta.rtfm.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <20070603145222.40A7833C4B@delta.rtfm.com>

On 6/3/07, Eric Rescorla <ekr at networkresonance.com> wrote:

http://www3.tools.ietf.org/wg/tls/trac/ticket/15

NIST's comments suggest that the defense suggested in 6.2.3.2
should be  mandatory. My argument is that hardware systems may
operate in fixed time or otherwise be safe and so we shouldn't
mandate any particular defense.


Perhaps we should mandate it for implementations that are vulnerable?


Proposed resolution: leave as-is.


_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls


_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Issue 15: Mandate protection against CBC mode timing attack
  - From: Bodo Moeller

References:
- [TLS] Issue 15: Mandate protection against CBC mode timing attack
  - From: Eric Rescorla

Prev by Date: Re: [TLS] Short Ephermal Diffie-Hellman keys
Next by Date: Re: [TLS] Short Ephermal Diffie-Hellman keys
Previous by thread: [TLS] Issue 15: Mandate protection against CBC mode timing attack
Next by thread: Re: [TLS] Issue 15: Mandate protection against CBC mode timing attack
Index(es):
- Date
- Thread

Re: [TLS] Issue 15: Mandate protection against CBC mode timing attack

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.