Re: [TLS] Issue 56: AES as MTI

To: Russ Housley <housley at vigilsec.com>
Subject: Re: [TLS] Issue 56: AES as MTI
From: Nelson B Bolyard <nelson at bolyard.com>
Date: Fri, 14 Sep 2007 18:33:01 -0700
Cc: tls at ietf.org
In-reply-to: <46EAB54E00062316@n024.sc1.he.tucows.com> (added by postmaster@bouncemessage.net)
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <20070912231150.ED1D533C21@delta.rtfm.com> <65C7072814858342AD0524674BCA2CDB0D2E6E3E@rsana-ex-hq2.NA.RSA.NET> <20070912232636.2B5FE33C21@delta.rtfm.com> <5E75C29FF611C298B79DC0E1@[10.1.110.5]> <46EAF8E2.8090202@bolyard.com> <20070914214358.27C8633C21@delta.rtfm.com> <46EAB54E00062316@n024.sc1.he.tucows.com> (added by postmaster@bouncemessage.net)
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9a5pre) Gecko/20070527 SeaMonkey/1.5a

Russ Housley wrote:
> This has always been the case.  It ensures that there is a ciphersuite
> that can be negotiated between all implementations (unless it is
> explicitly turned off by policy controls).

And this is important why?

It is important that all implementations that must work in (say) US DOD
government installations (where AES is mandated exclusively) must all
use AES so that they can interoperate.  That market requires that they
interoperate.

It is important that in the field of eCommerce, where everyone uses RC4,
that implementations use RC4 so that they can interoperate for eCommerce.

An implementation that does RC4 and not AES will work fine in eCommerce
and not in the DOD.  An implementation that does AES only and not RC4
will not work with quite a few eCommerce servers out there.  So what?

Why do we need to impose interoperability requirements that the markets
themselves do not demand?

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Issue 56: AES as MTI
  - From: Nicolas Williams

References:
- [TLS] Issue 56: AES as MTI
  - From: Eric Rescorla
- Re: [TLS] Issue 56: AES as MTI
  - From: Eric Rescorla
- Re: [TLS] Issue 56: AES as MTI
  - From: Chris Newman
- Re: [TLS] Issue 56: AES as MTI
  - From: Nelson B Bolyard
- Re: [TLS] Issue 56: AES as MTI
  - From: Eric Rescorla

Prev by Date: Re: [TLS] Issue 56: AES as MTI
Next by Date: Re: [TLS] Issue 56: AES as MTI
Previous by thread: Re: [TLS] Issue 56: AES as MTI
Next by thread: Re: [TLS] Issue 56: AES as MTI
Index(es):
- Date
- Thread

Re: [TLS] Issue 56: AES as MTI

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.