Current Meeting Report
Jabber Logs

2.6.12 Transport Layer Security (tls)

NOTE: This charter is a snapshot of the 55th IETF Meeting in Altanta, Georgia USA. It may now be out-of-date.

Last Modifield: 04/04/2002

Win Treese <>
Security Area Director(s):
Jeffrey Schiller <>
Steve Bellovin <>
Security Area Advisor:
Steve Bellovin <>
Technical Advisor(s):
A. Mankin <>
Mailing Lists:
General Discussion:
To Subscribe:
Description of Working Group:
The TLS Working Group was established in 1996 to standardize a 'transport layer' security protocol. The working group began with SSL version 3.0, and in 1999, RFC 2246, TLS Protocol Version 1.0 was published as a Proposed Standard. The working group has also published RFC 2712, Addition of Kerberos Cipher Suites to Transport Layer Security (TLS) as a Proposed Standard, and two RFCs on the use of TLS with HTTP.

The primary purpose of the working group is to advance the TLS Protocol to Internet Standard. In addition, the working group will publish documents defining new ciphersuites for use with TLS as needed.

Goals and Milestones:
Done  Agreement on charter and issues in current draft.
Done  Final draft for Secure Transport Layer Protocol ('STLP')
Done  Working group 'Last Call'
Done  Submit to IESG for consideration as a Proposed Standard.
FEB 01  First revised draft of TLS specification
JUN 01  Submit specification to IESG for consideration as Draft Standard
  • - draft-ietf-tls-openpgp-02.txt
  • - draft-ietf-tls-camellia-02.txt
  • - draft-ietf-tls-extensions-05.txt
  • - draft-ietf-tls-openpgp-keys-02.txt
  • - draft-ietf-tls-rfc2246-bis-01.txt
  • Request For Comments:
    RFC2246 PS The TLS Protocol Version 1.0
    RFC2712 PS Addition of Kerberos Cipher Suites to Transport Layer Security (TLS)
    RFC2817 PS Upgrading to TLS Within HTTP/1.1
    RFC2818 I HTTP Over TLS
    RFC3268 PS AES Ciphersuites for TLS

    Current Meeting Report

    Minutes of the TLS working group meeting, 20 November 2002
       The TLS working group met in a one-hour session at the 49th IETF in San 
    Diego, CA. The meeting was chaired by (and minutes written by) Win Treese 
       A log of the simultaneous Jabber session is at 
        1. Introduction and agenda modification (Win Treese)
        2. The TLS Protocol Version 1.1 -- 
    [2]draft-ietf-tls-rfc2246-bis-02.txt (Eric Rescorla)
        3. SRP for TLS -- [3]draft-ietf-tls-srp-03.txt (Tom Wu)
        4. Ciphersuite registration (Win Treese)
        5. Recent developments with the RSA algorithm (Russ Housley)
        6. Using Sigcomp compression in TLS (Carsten Bormann)
       Eric Rescorla described the changes to the TLS version 1.1 draft, 
    particularly in the way initialization vectors are handled for CBC-mode 
    ciphersuites. He expects to have an updated version by early January, 
    which should be ready for submission to the IESG shortly thereafter. 
    Because of the changes to the protocol, it will be submitted for 
    publication as a Proposed Standard.
       Tom Wu gave a short update on the proposed ciphersuite for SRP with TLS, 
    including a version using SRP-6. Tom was asked how much scrutiny SRP-6 has 
    received, and he said it is still new. There was some discussion of the 
    patent status with respect to SRP, and some reluctance to push it 
    forward for publication without some clarity. The question will be taken to 
    the mailing list for further discussion.  [Slides in [4]PostScript or 
       Handling the registration of ciphersuites continues to be a problem.  The 
    TLS 1.1 document will have a new ``IANA Considerations'' section to help 
    solve the problem. Treese proposed the following criteria for spending WG 
    time on ciphersuites:
         * Standards track
              + WG consensus for standards track
              + No intellectual property limitations
              + Sufficient description of algorithsm
              + Sufficient analysis of security properties
         * Informational
              + Reasonable documentation of both ciphers and ciphersuite
              + Credible cipher
              + No ``obvious'' security problems
              + No endorsement from WG about security properties
       The guidelines were generally accepted as reasonable.
       Russ Housley presented some recent work at ANSI X9.44 related to TLS, 
    including some suggestions for future improvements. Details are in his 
    slides: [6]PowerPoint or [7]PDF.
       Carsten Bormann presented some early thoughts on using the SIGCOMP work on 
    compression algorithms with TLS. Details are in his slides: 
    [8]PowerPoint or [9]PDF.
                               Status of other documents
       Other documents in front of the working group include:
         * ECC Cipher Suites For TLS 
    ([10]draft-ietf-tls-ecc-02.txt): Under discussion.
         * Addition of Camellia Ciphersuites to Transport Layer Security (TLS) 
    ([11]draft-ietf-tls-camellia-02.txt): submitted for publication as 
    Informational RFC.
         * Using OpenPGP keys for TLS authentication 
    ([12]draft-ietf-tls-openpgp-keys-02.txt): Under discussion.
         * Transport Layer Security Protocol Compression Methods 
    ([13]draft-ietf-tls-compression-03.txt): Under discussion.
         * Upgrading to TLS Within HTTP/1.1 ([14]RFC 2817): Should it 
    advance to Draft Standard?


    TLS-SRP draft update
    Using SigComp in TLS?
    ANSI X9.44 and IETF TLS