> On Mar 24, 2021, at 13:03, Francesca Palombini via Datatracker 
> <[email protected]> wrote:
> 
> 6. -----
> 
>   Any TLS cipher suite that is specified for use with DTLS MUST define
>   limits on the use of the associated AEAD function that preserves
>   margins for both confidentiality and integrity.  That is, limits MUST
>   be specified for the number of packets that can be authenticated and
>   for the number of packets that can fail authentication before a key
>   update is required.  Providing a reference to any analysis upon which
>   values are based - and any assumptions used in that analysis - allows
>   limits to be adapted to varying usage conditions.
> 
> FP: This seems important enough that it should be highlighted for the experts
> reviewing the registration. I see that
> https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4
> has a number of notes, maybe that would be enough, or maybe add it (as an
> update?) to RFC 8447?

Please note that an update to RFC 8447 is in the works.

spt
_______________________________________________
TLS mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/tls

Reply via email to