Re: [TLS] Packet number encryption negotiation

2023-03-28 Thread Benson Muite 
> A first draft can be found here:
> https://www.ietf.org/id/draft-pismenny-tls-dtls-plaintext-sequence-number-00.txt
>  
> 
> 
> and the source is here:
> https://github.com/BorisPis/draft-pismenny-tls-dtls-plaintext-sequence-number 
> 
> 
> All inputs will be appreciated.
> 
Thanks for bringing this up today. Experimental numbers would be helpful
- interested in obtaining these, though not sure what has been obtained
before. Maybe it would be helpful to find other people working on data
center switches as well as doing multinode deployments in the cloud to
see if they would benefit from this.  One might expect to use a
different communication stack for internal communication within the
datacenter where high performance is needed, but this does add more
material that the development team needs to know.

___
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls

Re: [TLS] I-D Action: draft-ietf-tls-ctls-07.txt

2023-01-03 Thread Benson Muite 
Hi,
On 1/3/23 20:16, Ben Schwartz wrote:
> Hi TLS,
> 
> This is the update to cTLS that missed the draft cutoff for our last
> meeting.  There are no major changes since -06 (which was presented at
> IETF 114 [1]), but there are a number of minor corrections, cleanups,
> and clarifications.  (Thanks to Ilari Liusvaara for a very detailed
> review of -06.)
> 
> The next step for cTLS is to start getting implementations going.  If
> you are interested in trying out an implementation, the authors would be
> happy to answer any questions you may have.  In this revision the open
> issues have largely been resolved, so interoperable implementation
> should be possible.
Do any implementations already exist?
> 
> Regards,
> Ben Schwartz

___
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls

[TLS] draft-ietf-tls-batch-signing

2022-11-10 Thread Benson Muite 
The above draft has expired.  However, if there is still interest in it, 
the EdDSA specification will need to be updated based on findings in [1] 
and [2]. An erratum to [3] has been filed [4]. Libsodium seems to offer 
best checks for batch verification. Currently testing other libraries 
that offer support for EdDSA.


1) Chalkias, Garillot, and Nikolaenko "Taming the many EdDSAs" 
https://eprint.iacr.org/2020/1244


2) Brendel, Cremers, Jackson, and Zhao "The Provable Security of 
Ed25519: Theory and Practice" https://eprint.iacr.org/2020/823


3) https://datatracker.ietf.org/doc/html/rfc8032

4) https://www.rfc-editor.org/errata_search.php?rfc=8032_status=0

___
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls