On Friday, 25 October 2024 14:28:42 CEST, John Mattsson wrote:
Hi Alicja,
The main use case would be to use this on networks where you
know that there are no old restrictive middleboxes. If used over
UDP or SCTP, I don’t know if there are any restrictive DTLS 1.2
middleboxes.
but if it's supposed to be used only on networks fully controlled by
operator,
why "Recommended = Y"?
Could be an option to restrict things to 2^24 byte, but we felt
it was more natural to support sizes up to 2^32.
Cheers,
John
From: Alicja Kario <hka...@redhat.com>
Date: Friday, 25 October 2024 at 13:58
To: Sean Turner <s...@sn3rd.com>
Cc: TLS List <tls@ietf.org>
Subject: [TLS] Re: Adoption call for Large Record Sizes for TLS and DTLS
While I'm sceptical of a need to send nearly 2^32 byte records, or
that it would increase performance, the draft is well thought out
and detailed enough. I wouldn't be opposed to it.
Not being compatible with TLS 1.2 middleboxes is a problem too...
I think that precludes it from being "Recommended = Y".
On Friday, 25 October 2024 04:46:00 CEST, Sean Turner wrote:
At the TLS meeting at IETF 119 we discussed the Large Record
Sizes for TLS and DTLS I-D; see [0] and [1]. There has been some
list discussion; see [2] and [3]. The I-D has been revised a few
times since IETF 119 to incorporate list feedback. This message
is to judge consensus on whether there is support to adopt this
I-D. If you support adoption and are willing to review and
contribute text, please send a message to the list. If you do
not support adoption of this draft, please send a message to the
list and indicate why. This call will close on November 7, 2024.
Thanks,
Deirdre, Joe, and Sean
[0]
https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-mattsson-tls-super-jumbo-record-limit%2F&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7Ce2f3c3f6c6d84ee346f908dcf4ec4caa%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638654542951824135%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=MXXjdaYYqzMNIGCGPnSzLQoZXBTSJnTfwsuA0cgDlYo%3D&reserved=0
[1]
https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fmeeting%2F119%2Fmaterials%2Fslides-119-tls-large-record-sizes-for-tls-and-dtls-00&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7Ce2f3c3f6c6d84ee346f908dcf4ec4caa%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638654542951839815%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=dCTMeKDq6uDHTjY7dT5AOQlIhSNnEf51LyYA2Rsd27c%3D&reserved=0
[2]
https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmailarchive.ietf.org%2Farch%2Fmsg%2Ftls%2FZnGzqIWOkpm_F6zaqAxxtReHpVg%2F&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7Ce2f3c3f6c6d84ee346f908dcf4ec4caa%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638654542951851086%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=Ix23qoTiDz0mfPEQsVGuepl%2BxlhKzySDWrH7VPr%2BnoU%3D&reserved=0
[3]
https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmailarchive.ietf.org%2Farch%2Fmsg%2Ftls%2FcRH9x6nbLeAnkG-fhOS3ASDA3oU%2F&data=05%7C02%7Cjohn.mattsson%40ericsson.com%7Ce2f3c3f6c6d84ee346f908dcf4ec4caa%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C638654542951862447%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=q0VoTveb6WuwgW42v2aCOkn8Jez0RT5rmB2F4pXhS48%3D&reserved=0
--
Regards,
Alicja (nee Hubert) Kario
Principal Quality Engineer, RHEL Crypto team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., Purkyňova 115, 612 00, Brno, Czech Republic
_______________________________________________
TLS mailing list -- tls@ietf.org
To unsubscribe send an email to tls-le...@ietf.org
