Re: [TLS] Consensus Call for draft-ietf-tls-renegotiation-00.txt

To: jsalowey at cisco.com
Subject: Re: [TLS] Consensus Call for draft-ietf-tls-renegotiation-00.txt
From: Martin Rex <mrex at sap.com>
Date: Sat, 21 Nov 2009 04:01:37 +0100 (MET)
Cc: tls at ietf.org
Delivered-to: tls at core3.amsl.com
In-reply-to: <200911202231.nAKMVJP6002208 at fs4113.wdf.sap.corp> from "Martin Rex" at Nov 20, 9 11:31:19 pm
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Reply-to: mrex at sap.com

Martin Rex wrote:
> 
> Joseph Salowey wrote:
> > 
> > draft-ietf-tls-renegotiation-00
>  
> I support an entirely different proposal, described here:
> 
> http://www.ietf.org/mail-archive/web/tls/current/msg04572.html
> 
> and over the weekend I will incorporate this into the I-D that
> I'm working.   I will try hard to ship the I-D on Monday 23-Nov-09.

While trying to document the new idea I realized that embedding
the previous finished messages into real handshake messages
leads to a fail UNsafe design just like TLS extenion RI.

So I will stick to what I've been working on through the week
and what Mike has already implemented (manually add verify_data
to the handshake message hash without sending it over the network,
C->S signaling by magic ciphersuite and S->C signaling with
higest bit of ServerHello.server_version.major.

I-D on monday.

-Martin

References:
- Re: [TLS] Consensus Call for draft-ietf-tls-renegotiation-00.txt
  - From: Martin Rex

Prev by Date: Re: [TLS] Another critical problem with RI
Next by Date: Re: [TLS] Consensus Call for draft-ietf-tls-renegotiation-00.txt
Previous by thread: Re: [TLS] Consensus Call for draft-ietf-tls-renegotiation-00.txt
Next by thread: Re: [TLS] Consensus Call for draft-ietf-tls-renegotiation-00.txt
Index(es):
- Date
- Thread

Re: [TLS] Consensus Call for draft-ietf-tls-renegotiation-00.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.