Re: [TLS] Status of IDEA and single-DES (ticket #64)

To: tls at ietf.org
Subject: Re: [TLS] Status of IDEA and single-DES (ticket #64)
From: Yoav Nir <ynir at checkpoint.com>
Date: Tue, 22 Jan 2008 10:56:20 +0200
Cc:
In-reply-to: <B356D8F434D20B40A8CEDAEC305A1F240525CB23@esebe105.NOE.Nokia.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <B356D8F434D20B40A8CEDAEC305A1F240525CB23@esebe105.NOE.Nokia.com>

(1)

I think a few mandatory-to-implement ciphersuites are a good idea in the base spec. However, that spec should not replace IANA in becoming the repository for ciphersuites. Better to skip any mention of them than to add cryptographical discussion there.

On Jan 22, 2008, at 10:41 AM, <Pasi.Eronen at nokia.com> <Pasi.Eronen at nokia.com > wrote:

<snip>

I'd therefore like to propose two concrete alternatives for the
WG to comment:

(1) Remove all mentions of IDEA and single-DES from the TLS 1.2
main specification. Create a separate (1-page) document which lists
the cipher suite numbers, along with some kind of "not really that
good idea usually" advice.

The exact wording of this advice needs to be discussed, but it
could include e.g. SHOULD NOT use, SHOULD NOT implement, SHOULD
remove from existing implementations, and/or SHOULD NOT be enabled
by default. This document would not be on Standards Track (in
other words, either Informational or Historic).

(2) Keep IDEA and single-DES in the TLS 1.2 main specification,
but include a short advice along the lines described above.

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Status of IDEA and single-DES (ticket #64)
  - From: Paul Hoffman

References:
- [TLS] Status of IDEA and single-DES (ticket #64)
  - From: Pasi.Eronen

Prev by Date: [TLS] Status of IDEA and single-DES (ticket #64)
Next by Date: Re: [TLS] Status of IDEA and single-DES (ticket #64)
Previous by thread: [TLS] Status of IDEA and single-DES (ticket #64)
Next by thread: Re: [TLS] Status of IDEA and single-DES (ticket #64)
Index(es):
- Date
- Thread

Re: [TLS] Status of IDEA and single-DES (ticket #64)

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.