Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt

To: Dr Stephen Henson <lists at drh-consultancy.demon.co.uk>
Subject: Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt
From: Eric Rescorla <ekr at networkresonance.com>
Date: Thu, 12 Nov 2009 08:09:06 +0200
Cc: tls at ietf.org
Delivered-to: tls at core3.amsl.com
In-reply-to: <4AFB0995.8060504 at drh-consultancy.demon.co.uk>
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <1b587cab0911080935m64eabca8t6f7f6dfb9a666d06 at mail.gmail.com> <p06240806c71ce60888e1 at [133.93.128.35]> <4AF73817.4080802 at extendedsubset.com> <20091108231234.4A72569E39E at kilo.networkresonance.com> <4AF83FB9.9060302 at drh-consultancy.demon.co.uk> <20091109175954.8DF8F69E5CB at kilo.networkresonance.com> <808FD6E27AD4884E94820BC333B2DB774F30DD16F6 at NOK-EUMSG-01.mgdnok.nokia.com> <4AFB0995.8060504 at drh-consultancy.demon.co.uk>
User-agent: Wanderlust/2.15.5 (Almost Unreal) Emacs/22.3 Mule/5.0 (SAKAKI)

At Wed, 11 Nov 2009 18:59:33 +0000,
Dr Stephen Henson wrote:
> 
> Pasi.Eronen at nokia.com wrote:
> > Eric Rescorla wrote:
> > 
> >> I don't think the problem here is really the code point assignment.
> >>
> >> I would imagine the IESG and IANA to be pretty good about doing
> >> advance assignments once the WG has converged on the exact contents
> >> of the extension. I know we had pretty good consensus within a
> >> smaller group, but if when we run it by some cryptographers they say
> >> it's insecure we'll need to change it, at which point it won't
> >> really help to have deployed code with the "early" code point.
> > 
> > <wearing area director hat>
> > 
> > I think this is one of those cases where an exception to the usual
> > procedures might be in order, but the "once the WG has converged on
> > the exact contents" is an important point here. It's relatively rare
> > that the -00 version of some internet draft and the final RFC are
> > actually interoperable.
> > 
> > Using the same extension number for multiple incompatible versions of
> > the draft is probably not a good idea (and probably not very secure,
> > either -- if the handshake fails, you don't know if it's due to an
> > attack or just interoperability problem, and the latter might be much
> > more likely), and I'd like to avoid allocating multiple extension
> > numbers for different versions of the draft, too.
> > 
> 
> Would including a version number in the extension help? Then if the format does
> change implementations can indicate that it is a version they don't support or
> decide they are willing to support an older version.
> 
> This would also cover the case where some cryptographic attack is found against
> the current form later. We keep the extension number but bump up the version.

I considered that, but I'm not sure it really helps. Once the initial version
is widely supported you need to send the old version as well as the new
version for a smooth transition. Might as well have two extension code
points.

-Ekr

References:
- [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt
  - From: Ben Laurie
- Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegot iate.txt
  - From: Paul Hoffman
- Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegot iate.txt
  - From: Marsh Ray
- Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegot iate.txt
  - From: Eric Rescorla
- Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegot iate.txt
  - From: Dr Stephen Henson
- Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegot iate.txt
  - From: Eric Rescorla
- Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt
  - From: Pasi.Eronen
- Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt
  - From: Dr Stephen Henson

Prev by Date: Re: [TLS] assert TLSext in renego-ServerHello instead of disable renego
Next by Date: Re: [TLS] renegotiation draft needs clarification !!
Previous by thread: Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt
Next by thread: Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegot iate.txt
Index(es):
- Date
- Thread

Re: [TLS] Implementing https://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.