Re: [TLS] Issue 49: Finished.verify length

To: Eric Rescorla <ekr at networkresonance.com>
Subject: Re: [TLS] Issue 49: Finished.verify length
From: Russ Housley <housley at vigilsec.com>
Date: Mon, 17 Sep 2007 09:36:45 -0400
Cc: tls at ietf.org
In-reply-to: <20070916171835.57FF033C21@delta.rtfm.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <20070914090853.GA20702@tau.invalid> <B356D8F434D20B40A8CEDAEC305A1F2404937712@esebe105.NOE.Nokia.com> <20070914120310.GA29073@tau.invalid> <B356D8F434D20B40A8CEDAEC305A1F2404937802@esebe105.NOE.Nokia.com> <20070914141809.2439533C21@delta.rtfm.com> <B356D8F434D20B40A8CEDAEC305A1F2404966D3F@esebe105.NOE.Nokia.com> <20070914183633.6B09F33C21@delta.rtfm.com> <B356D8F434D20B40A8CEDAEC305A1F2404966DF0@esebe105.NOE.Nokia.com> <20070916171835.57FF033C21@delta.rtfm.com>

Eric:

Well, I don't think changing the encoding is needed. The
verify_data is the only thing in the Finished message so it's
already implicitly encoded. If we want to allow this to change
length without doing an Update, then why not change it to:

   struct {
       opaque verify_data[SecurityParameters.finished_length];
   } Finished;

This leaves a hole but doesn't require changing the wire encoding.

That said, I'd sort of like to discourage changing the length without
good reason, so I'd actually like the first cipher suite to do
this to have to Update: TLS 1.2. However, using the technique above,
we could make this cahnge later without having to impact
implemenations that didn't support the new cipher suite.

I like this way forward, but I do not see any reason to wait. A ciphersuite should not need to update the base protocol specification.

Russ


_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

References:
- Re: [TLS] Issue 49: Finished.verify length
  - From: Bodo Moeller
- RE: [TLS] Issue 49: Finished.verify length
  - From: Pasi.Eronen
- Re: [TLS] Issue 49: Finished.verify length
  - From: Bodo Moeller
- RE: [TLS] Issue 49: Finished.verify length
  - From: Pasi.Eronen
- Re: [TLS] Issue 49: Finished.verify length
  - From: Eric Rescorla
- RE: [TLS] Issue 49: Finished.verify length
  - From: Pasi.Eronen
- Re: [TLS] Issue 49: Finished.verify length
  - From: Eric Rescorla
- RE: [TLS] Issue 49: Finished.verify length
  - From: Pasi.Eronen
- Re: [TLS] Issue 49: Finished.verify length
  - From: Eric Rescorla

Prev by Date: RE: [TLS] Issue 49: Finished.verify length
Next by Date: [TLS] New TLS revision
Previous by thread: RE: [TLS] Issue 49: Finished.verify length
Next by thread: Re: [TLS] Issue 49: Finished.verify length
Index(es):
- Date
- Thread

Re: [TLS] Issue 49: Finished.verify length

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.