Re: [TLS] Issue 56: AES as MTI

To: Eric Rescorla <ekr at networkresonance.com>, Nelson B Bolyard <nelson at bolyard.com>
Subject: Re: [TLS] Issue 56: AES as MTI
From: Russ Housley <housley at vigilsec.com>
Date: Fri, 14 Sep 2007 19:34:33 -0400
Cc: Chris Newman <Chris.Newman at Sun.COM>, tls at ietf.org, "Yee, Peter" <pyee at rsasecurity.com>
In-reply-to: <20070914214358.27C8633C21@delta.rtfm.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <20070912231150.ED1D533C21@delta.rtfm.com> <65C7072814858342AD0524674BCA2CDB0D2E6E3E@rsana-ex-hq2.NA.RSA.NET> <20070912232636.2B5FE33C21@delta.rtfm.com> <5E75C29FF611C298B79DC0E1@[10.1.110.5]> <46EAF8E2.8090202@bolyard.com> <20070914214358.27C8633C21@delta.rtfm.com>

This has always been the case. It ensures that there is a ciphersuite that can be negotiated between all implementations (unless it is explicitly turned off by policy controls).

Russ

At 05:43 PM 9/14/2007, Eric Rescorla wrote:

At Fri, 14 Sep 2007 14:10:58 -0700,
Nelson B Bolyard wrote:
>
> Chris Newman wrote:
> > As far as I can tell, the real-world MTI for SSL/TLS as deployed is
> > RC4.  I dislike it when the real world MTI and the specified MTI differ
> > and the specification fails to explain the difference.
>
> I think the RFC does not need a Mandatory Cipher Suite.

I don't believe that that's on the table. As I understand IESG
policy, it's that there must be a Mandatory To Implement cipher
suite. Tim? Sam?

-Ekr


_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

References:
- [TLS] Issue 56: AES as MTI
  - From: Eric Rescorla
- Re: [TLS] Issue 56: AES as MTI
  - From: Eric Rescorla
- Re: [TLS] Issue 56: AES as MTI
  - From: Chris Newman
- Re: [TLS] Issue 56: AES as MTI
  - From: Nelson B Bolyard
- Re: [TLS] Issue 56: AES as MTI
  - From: Eric Rescorla

Prev by Date: Re: [TLS] TLS 1.2 hash agility
Next by Date: Re: [TLS] Issue 56: AES as MTI
Previous by thread: Re: [TLS] Issue 56: AES as MTI
Next by thread: Re: [TLS] Issue 56: AES as MTI
Index(es):
- Date
- Thread

Re: [TLS] Issue 56: AES as MTI

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.