Re: [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC

To: Pasi.Eronen at nokia.com
Subject: Re: [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC
From: Mohamad Badra <badra at isima.fr>
Date: Wed, 01 Oct 2008 17:01:35 +0200
Cc: tls at ietf.org
Delivered-to: ietfarch-tls-web-archive at core3.amsl.com
Delivered-to: tls at core3.amsl.com
In-reply-to: <1696498986EFEC4D9153717DA325CB7201C31635 at vaebe104.NOE.Nokia.com>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <48E0AD6A.3070705 at isima.fr> <1696498986EFEC4D9153717DA325CB7201C31635 at vaebe104.NOE.Nokia.com>
Sender: tls-bounces at ietf.org
User-agent: Thunderbird 2.0.0.17 (Windows/20080914)

It's a bit surprising that e.g. TLS_ECDHE_PSK_WITH_AES_128_CBC_SHA,
when negotiated in TLS 1.2, would use the TLS PRF with SHA-1 as thehash function. Note that e.g. TLS_DHE_PSK_WITH_AES_128_CBC_SHA (fromRFC 4279) would in this situation use the TLS PRF with SHA-256.
My suggestion would be to say that all these cipher suites can be
negotiated with any TLS version; when used with TLS <1.2, they use
the PRF from that version; when used with TLS >=1.2, they use the
TLS PRF with SHA-256 or SHA-384. (In other words: they'd work the
same way as the cipher suites in RFC 4492/4279/4785.)


OK, I agree with that.
Best regards

_______________________________________________
TLS mailing list
TLS at ietf.org
https://www.ietf.org/mailman/listinfo/tls

References:
- [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC
  - From: Mohamad Badra
- Re: [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC
  - From: Pasi.Eronen

Prev by Date: Re: [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC
Next by Date: Re: [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC
Previous by thread: Re: [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC
Next by thread: Re: [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC
Index(es):
- Date
- Thread

Re: [TLS] New version of draft-ietf-tls-ecdhe-psk after the WGLC

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.