Re: [TLS] TLS renegotiation issue

To: marsh at extendedsubset.com (Marsh Ray)
Subject: Re: [TLS] TLS renegotiation issue
From: Martin Rex <mrex at sap.com>
Date: Fri, 6 Nov 2009 00:24:55 +0100 (MET)
Cc: tls at ietf.org
Delivered-to: tls at core3.amsl.com
In-reply-to: <4AF351A9.30409 at extendedsubset.com> from "Marsh Ray" at Nov 5, 9 04:28:57 pm
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Reply-to: mrex at sap.com

Marsh Ray wrote:
> 
> I would add here that if the IETF had compared the way TLS looks on the
> wire with how it is presented by SSL APIs in practice, this defect could
> not have gone unnoticed.

I would like to put this differently.

There are several different APIs and API architectures for SSL/TLS
protocol stacks.  If you really want to verify a spec, there is
no better way than implementing it.  As an implementor, you get
to see both, the TLS protocol engine as well as the API that
you make available to application callers.

And when an implementer describes to its consumers how to use
the implementation and how to architect the applications usage
of TLS, this problem should really have been noticed.

Finding problems when discussing things at an abstract level
is MUCH MUCH harder.  You notice that when people define
protocols with ASN.1 elements.  It's almost exclusively
the implementors who find the problems. 

The (OEM) SSL/TLS library that we ship does not support renegotiation
in the server implementation, so I never thought about the implications
of using renegotiation on the server side.

And when we started shipping SSL, my knowledge about the SSL/TLS protocols
was quite limited.  My expertise was mostly around GSS-API at that time.

-Martin

Follow-Ups:
- Re: [TLS] TLS renegotiation issue
  - From: Nicolas Williams

References:
- Re: [TLS] TLS renegotiation issue
  - From: Marsh Ray

Prev by Date: Re: [TLS] TLS renegotiation issue
Next by Date: Re: [TLS] TLS renegotiation issue
Previous by thread: [TLS] To API or not (Re: TLS renegotiation issue)
Next by thread: Re: [TLS] TLS renegotiation issue
Index(es):
- Date
- Thread

Re: [TLS] TLS renegotiation issue

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.