Re: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt

To: <housley at vigilsec.com>
Subject: Re: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt
From: <Pasi.Eronen at nokia.com>
Date: Tue, 27 Oct 2009 13:44:14 +0100
Accept-language: en-US
Acceptlanguage: en-US
Cc: tls at ietf.org
Delivered-to: tls at core3.amsl.com
In-reply-to: <20091026184210.546069A472C at odin.smetech.net>
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <p0624087dc6efe84bcc54 at [10.20.30.163]> <87bpkkd4tv.fsf at mocca.josefsson.org> <808FD6E27AD4884E94820BC333B2DB774E7F2F0022 at NOK-EUMSG-01.mgdnok.nokia.com> <20091026184210.546069A472C at odin.smetech.net>
Thread-index: AcpWa/ux+73eWKOuQUqSCFzmJcxOXQAlef3A
Thread-topic: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt

Russ Housley wrote:

> >I'd like to re-iterate my earlier concern about the original
> >draft-rescorla-tls-opaque-prf-input draft: this defines a basically
> >general-purpose extension mechanism to TLS.
> >
> >We already have a well-defined extension mechanism for TLS (TLS
> >extensions), which would allow people to do exactly the sorts of
> >things envisioned in Section 1.1. Its only "drawback" is that it
> >requires going through the IETF process to obtain the IANA allocation,
> >and thus publicly documenting what you're doing.
> 
> I do not think this is a fair characterization.  TLS extensions
> cannot provide additional PRF inputs.  To my eyes, that is the
> fundamental difference here.

Well, this very document (a proposal for a TLS extension) is a 
proof that TLS extensions can indeed change what goes into the PRF!

So there's no a priori reason why other TLS extensions cannot
do that, too. New TLS cipher suites routinely change what goes into 
the PRF by defining suitable pre_master_secret formats (e.g. RFC 4279).  
And we've had a proposal for a TLS extension that changed the TLS PRF 
to some other PRF. 

Best regards,
Pasi
(not wearing any hats)

References:
- [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt
  - From: Paul Hoffman
- Re: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt
  - From: Simon Josefsson
- Re: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt
  - From: Pasi.Eronen
- Re: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt
  - From: Russ Housley

Prev by Date: Re: [TLS] IETF-76 TLS draft agenda
Next by Date: [TLS] Questions about TLS Server Name Indication extension
Previous by thread: Re: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt
Next by thread: Re: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt
Index(es):
- Date
- Thread

Re: [TLS] New draft: draft-solinas-tls-additional-prf-input-00.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.