Re: [TLS] Cached Info extension - Draft 01

To: Florian Weimer <fweimer at bfk.de>
Subject: Re: [TLS] Cached Info extension - Draft 01
From: Stefan Santesson <stefan at aaa-sec.com>
Date: Thu, 02 Jul 2009 00:29:33 +0200
Cc: Simon Josefsson <simon at josefsson.org>, tls at ietf.org
Delivered-to: tls at core3.amsl.com
In-reply-to: <82ws6s27ze.fsf at mid.bfk.de>
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Thread-index: Acn6m2gX/N4KwYyFl0Cy6UxOxo6RKw==
Thread-topic: [TLS] Cached Info extension - Draft 01
User-agent: Microsoft-Entourage/12.19.0.090515

Because no one has presented a scenario where any attacker could benefit
from a week hash to launch any realistic attack.

The worst thing an attacker can accomplish by tampering with data exchange,
is to cause the handshake to fail, which then, in the worst scenario, will
force the parties to do a new handshake without caching.

Unless the attacker has a way to convince the parties to accept some fake
data that has never been part of a real successful handshake, then the
attacker has no way to capitalize on the fact that a collision is found.

/Stefan

On 09-07-01 9:11 AM, "Florian Weimer" <fweimer at bfk.de> wrote:

> * Stefan Santesson:
> 
>> One difficulty I have is that I don't see, and never have seen, the reason
>> to provide different levels of hash algorithms for a usage that does not
>> require a strong hash.
> 
> Why do you think this doesn't need a strong hash?

Follow-Ups:
- Re: [TLS] Cached Info extension - Draft 01
  - From: Martin Rex

References:
- Re: [TLS] Cached Info extension - Draft 01
  - From: Florian Weimer

Prev by Date: Re: [TLS] Cached Info extension - Draft 01
Next by Date: Re: [TLS] Cached Info extension - Draft 01
Previous by thread: Re: [TLS] Cached Info extension - Draft 01
Next by thread: Re: [TLS] Cached Info extension - Draft 01
Index(es):
- Date
- Thread

Re: [TLS] Cached Info extension - Draft 01

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.