Re: [TLS] Proposal for hybrid solution using most of the ideas

To: "tls at ietf.org" <tls at ietf.org>
Subject: Re: [TLS] Proposal for hybrid solution using most of the ideas
From: Michael D'Errico <mike-list at pobox.com>
Date: Wed, 18 Nov 2009 18:08:10 -0800
Delivered-to: tls at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha1; c=relaxed; d=pobox.com; h=message-id :date:from:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; s=sasl; bh=2CJ/5DeVg2v9 sbu8SlaLkogJjGw=; b=SJHORVkydZf+A0KevsgctrQAZv9szabZV6XkpfenmHnq ZB9UB+MNeLp7g+dH71pJK7HwR24NkHABMY/KuS4sDA6NK5vv3YEf+79UM/AgeYaA +Hbv6hCygD/lnVMCM/VHV8j9DY5oFvaxrsGy8mfKf237j+Z5527i0G07Pl8JaGA=
Domainkey-signature: a=rsa-sha1; c=nofws; d=pobox.com; h=message-id:date :from:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; q=dns; s=sasl; b=DpqAke 4U7pUgEL83fWzIkERa5EySdwg9wEFIos2u7gK7ZoLC3MMjnNimgfXYqgwTdptaR/ vRuQn7vvK+sxyPfdn0XnTGt4NORhOhBCEXP79g1FhWxgUXTHjRoPxX4yu4eCJ6JA H2SkWWPjOiEqT8CW0lFbX5KWm5yj7qL5uHIVM=
In-reply-to: <B197003731D4874CA41DE7B446BBA3E829CCF80E at TK5EX14MBXW653.wingroup.windeploy.ntdev.microsoft.com>
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <B197003731D4874CA41DE7B446BBA3E829CCF34B at TK5EX14MBXW653.wingroup.windeploy.ntdev.microsoft.com> <4B048E3B.2010506 at pobox.com> <B197003731D4874CA41DE7B446BBA3E829CCF80E at TK5EX14MBXW653.wingroup.windeploy.ntdev.microsoft.com>
User-agent: Thunderbird 2.0.0.23 (Macintosh/20090812)

Nasko Oskov wrote:

Session resumption is already secure since it uses existing crypto state as
part of the negotiation. There are no problems in that case.


I don't agree -- session resumption is orthogonal to renegotiation, at
least in my own code.  A MITM could exploit that.  This is one part of
RI that I agree with.

Mike

References:
- [TLS] Proposal for hybrid solution using most of the ideas
  - From: Nasko Oskov
- Re: [TLS] Proposal for hybrid solution using most of the ideas
  - From: Michael D'Errico
- Re: [TLS] Proposal for hybrid solution using most of the ideas
  - From: Nasko Oskov

Prev by Date: Re: [TLS] simplistic renego protection
Next by Date: Re: [TLS] simplistic renego protection
Previous by thread: Re: [TLS] Proposal for hybrid solution using most of the ideas
Next by thread: Re: [TLS] Proposal for hybrid solution using most of the ideas
Index(es):
- Date
- Thread

Re: [TLS] Proposal for hybrid solution using most of the ideas

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.