The IESG has approved the following document: - 'TLS 1.3 Extension for Using Certificates with an External Pre-Shared Key' (draft-ietf-tls-8773bis-12.txt) as Proposed Standard
This document is the product of the Transport Layer Security Working Group. The IESG contact persons are Paul Wouters and Deb Cooley. A URL of this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-tls-8773bis/ Technical Summary This document specifies a TLS 1.3 extension that allows TLS clients and servers to authenticate with certificates and provide confidentiality based on encryption with a symmetric key from the usual key agreement algorithm and an external pre-shared key (PSK). This Standards Track RFC (once approved) obsoletes RFC 8773, which was an Experimental RFC. Working Group Summary Initially there was concern that the document may impact the security properties of TLS. The working group chairs used the FATT (Formal analysis triage team) to analyze the document which raised some concerns with security claims around post-quantum and authentication properties. The draft was revised to modify the security claims according to the consensus of the group. Document Quality Some of the mechanisms in this document are used in a standards track document in the EMU working group, draft-ietf-emu-bootstrapped-tls-08. There are implementations of this protocol. The document has been reviewed by participants from that WG. The document has had review from the TLS FATT. The summary of this review is here: https://github.com/tlswg/rfc8773bis/blob/main/fatt-review/IETF%20FATT%20Report%20-%208773bis.pdf Personnel The Document Shepherd for this document is Joseph A. Salowey. The Responsible Area Director is Paul Wouters. _______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
