Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:

To: simon at josefsson.org (Simon Josefsson)
Subject: Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:
From: Martin Rex <Martin.Rex at sap.com>
Date: Mon, 2 Nov 2009 17:35:10 +0100 (MET)
Cc: mrex at sap.com, channel-binding at ietf.org, sasl at ietf.org, Nicolas.Williams at sun.com, tls at ietf.org
Delivered-to: tls at core3.amsl.com
In-reply-to: <87hbtcc457.fsf at mocca.josefsson.org> from "Simon Josefsson" at Nov 2, 9 04:55:48 pm
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Reply-to: mrex at sap.com

Simon Josefsson wrote:
> 
> Martin Rex <Martin.Rex at sap.com> writes:
> 
> > It might be easier to _NOT_ key on the finished message, but on the
> > master secret instead.
> 
> That was my conclusion as well, hence
> http://tools.ietf.org/html/draft-josefsson-sasl-tls-cb-00
> which uses the TLS PRF interface.
> 
> For -02 I also added hashing the Finished message, to match the
> semantics for connection/session (regardless of its definition) of
> draft-altman-tls-channel-bindings, but I'd prefer to avoid it
> completely.

If you refer to the TLS-extractor interface with TLS PRF, that does
unconditionally include the client.random and server.random in the
computation and therefore the output will differ for different
incarnations (resumes) of the same TLS session.  That is 
comparable to keying to the _most_recent_ finished message -- with
__NO__ special cased for TLS session resume and TLS renogiation.

-Martin

Follow-Ups:
- Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:
  - From: Pasi.Eronen

References:
- Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:
  - From: Simon Josefsson

Prev by Date: Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:
Next by Date: Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:
Previous by thread: Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:
Next by thread: Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:
Index(es):
- Date
- Thread

Re: [TLS] RESOLVED (Re: [sasl] lasgt call comments (st Call:

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.