Re: [TLS] consensus call: deprecate all FFDHE cipher suites

On 02/01/2023 13:55, Hubert Kario wrote: On Saturday, 24 December 2022 02:10:08 CET, Rob Sayre wrote: Maybe it would help if the chairs could clarify the difference between "deprecated" and "prohibited" / "forbidden". I think these words have straightforward definitions, and I find many

Re: [TLS] consensus call: deprecate all FFDHE cipher suites

On 14/12/2022 04:08, Peter Gutmann wrote: Blumenthal, Uri - 0553 - MITLL writes: I do not support deprecation, because there will be deployed devices (IoT, SCADA) that aren’t upgradable – and the new stuff will have to access them. It's actually much worse than just SCADA, there are

Re: [TLS] consensus call: deprecate all FFDHE cipher suites

Hubert Kario writes: >It's also easy and quick to verify that the server *is* behaving correctly >and thus is not exploitable. It's also a somewhat silly issue to raise, if we're worried about a server using deliberately broken FFDHE parameters then why aren't we worried about the server

Re: [TLS] consensus call: deprecate all FFDHE cipher suites

On Tuesday, 3 January 2023 11:33:39 CET, Peter Gutmann wrote: Hubert Kario writes: It's also easy and quick to verify that the server *is* behaving correctly and thus is not exploitable. It's also a somewhat silly issue to raise, if we're worried about a server using deliberately broken

Re: [TLS] consensus call: deprecate all FFDHE cipher suites

Hubert Kario writes: >Because there are software stacks that allow configuration of arbitrary >parameters for FFDH (see GnuTLS, OpenSSL), and there are software stacks that >generate one public key share and reuse it for a long time, or allow >configuration of this kind of behaviour (see old

Re: [TLS] I-D Action: draft-ietf-tls-ctls-07.txt

Hi TLS, This is the update to cTLS that missed the draft cutoff for our last meeting. There are no major changes since -06 (which was presented at IETF 114 [1]), but there are a number of minor corrections, cleanups, and clarifications. (Thanks to Ilari Liusvaara for a very detailed review of

[TLS] I-D Action: draft-ietf-tls-ctls-07.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Transport Layer Security WG of the IETF. Title : Compact TLS 1.3 Authors : Eric Rescorla Richard Barnes

Re: [TLS] I-D Action: draft-ietf-tls-ctls-07.txt

Hi, On 1/3/23 20:16, Ben Schwartz wrote: > Hi TLS, > > This is the update to cTLS that missed the draft cutoff for our last > meeting.  There are no major changes since -06 (which was presented at > IETF 114 [1]), but there are a number of minor corrections, cleanups, > and clarifications.