Re: [TLS] TLSrenego - current summary of semantics and possibilities

To: Marsh Ray <marsh at extendedsubset.com>
Subject: Re: [TLS] TLSrenego - current summary of semantics and possibilities
From: Nicolas Williams <Nicolas.Williams at sun.com>
Date: Tue, 10 Nov 2009 15:21:02 -0600
Cc: tls at ietf.org
Delivered-to: tls at core3.amsl.com
In-reply-to: <4AF9D868.1030206 at extendedsubset.com>
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <200911101928.nAAJSGjI020038 at fs4113.wdf.sap.corp> <C71F1D17.251AC%dispensa at phonefactor.com> <20091110203245.GB1105 at Sun.COM> <4AF9D868.1030206 at extendedsubset.com>
User-agent: Mutt/1.5.7i

On Tue, Nov 10, 2009 at 03:17:28PM -0600, Marsh Ray wrote:
> It's one thing to say, realistically, some client applications may elect
> to put their users at risk for the sake of continuing to work with
> defective servers.
> 
> It's something else entirely to propose that an IETF spec's official
> language and recommended practice for implementors should be weakened in
> consideration for these noncompliant systems.

Indeed.  And I don't propose the latter.  Instead, if we must say the
sky will now be <color other than blue> we should also caveat that it
will likely continue to be blue for a long time.

> Perhaps those responsible for such systems will take this opportunity to
> update them?

One should hope so.

> Yair Elharrar wrote:
> > This could backfire. It would allow hackers to detect unpatched
> > clients, and focus their attacks on them.
> 
> There are plenty of ways for to attackers to fingerprint clients (looked
> at a user-agent string lately?) and it doesn't make sense to make life
> difficult for those who have a legitimate need for the data.

Agreed.  Also, looking vulnerable and being vulnerable are not the same
thing.

References:
- [TLS] TLSrenego - current summary of semantics and possibilities
  - From: Martin Rex
- Re: [TLS] TLSrenego - current summary of semantics and possibilities
  - From: Steve Dispensa
- Re: [TLS] TLSrenego - current summary of semantics and possibilities
  - From: Nicolas Williams
- Re: [TLS] TLSrenego - current summary of semantics and possibilities
  - From: Marsh Ray

Prev by Date: Re: [TLS] TLSrenego - current summary of semantics and possibilities
Next by Date: Re: [TLS] draft-rescorla-tls-renegotiate and MITM resistance
Previous by thread: Re: [TLS] TLSrenego - current summary of semantics and possibilities
Next by thread: Re: [TLS] TLSrenego - current summary of semantics and possibilities
Index(es):
- Date
- Thread

Re: [TLS] TLSrenego - current summary of semantics and possibilities

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.