Re: [TLS] Issue 16: Alert clarifications

To: Eric Rescorla <ekr at networkresonance.com>
Subject: Re: [TLS] Issue 16: Alert clarifications
From: Nelson B Bolyard <nelson at bolyard.com>
Date: Sun, 03 Jun 2007 17:12:15 -0700
Cc: tls at ietf.org
In-reply-to: <20070603145730.4507B33C4B@delta.rtfm.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
Organization: Spam haters R US
References: <20070603145730.4507B33C4B@delta.rtfm.com>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9a4pre) Gecko/20070422 SeaMonkey/1.5a

Eric Rescorla wrote:
> http://www3.tools.ietf.org/wg/tls/trac/ticket/16
> 
> Several people have raised the issue of what alerts must be fatal
> and when they should be sent. NIST suggested that all fatal alerts
> MUST be sent. They also suggested that the following alerts be fatal:
> 
> - bad_certificate, 
> - unsupported_certificate
> - certificate_revoked.
> - certificate_expired
> 
> We discussed this in Prague and looking at the minutes, it looks
> to me like the resolution was as follows:
> 
> - All fatal alerts MUST be sent
> - For the above alerts, if you plan to tear down the connection
>   on that basis you MUST make them fatal and send them
> - Add a warning that some implementations tear down the connection
>   for any alert so warning alerts are dangerous. New implementations
>   SHOULD not tear down the connection for warning alerts.

Why not require that a fatal alert be sent any time that the connection
is going to be torn down due to a protocol error of any kind?
That is, any time an error occurs in the TLS protocol which is severe
enough that the connection will be terminated, send a fatal alert first.
This would greatly improve diagnosis of problems.

-- 
Nelson B

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

References:
- [TLS] Issue 16: Alert clarifications
  - From: Eric Rescorla

Prev by Date: Re: [TLS] Issue 16: Alert clarifications
Next by Date: Re: [TLS] Straw poll on TLS SRP status
Previous by thread: Re: [TLS] Issue 16: Alert clarifications
Next by thread: RE: [TLS] Issue 16: Alert clarifications
Index(es):
- Date
- Thread

Re: [TLS] Issue 16: Alert clarifications

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.