> On Mar 24, 2021, at 13:03, Francesca Palombini via Datatracker
> <[email protected]> wrote:
>
> 6. -----
>
> Any TLS cipher suite that is specified for use with DTLS MUST define
> limits on the use of the associated AEAD function that preserves
> margins for both confidentiality and integrity. That is, limits MUST
> be specified for the number of packets that can be authenticated and
> for the number of packets that can fail authentication before a key
> update is required. Providing a reference to any analysis upon which
> values are based - and any assumptions used in that analysis - allows
> limits to be adapted to varying usage conditions.
>
> FP: This seems important enough that it should be highlighted for the experts
> reviewing the registration. I see that
> https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4
> has a number of notes, maybe that would be enough, or maybe add it (as an
> update?) to RFC 8447?
Please note that an update to RFC 8447 is in the works.
spt
_______________________________________________
TLS mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/tls