Re: [TLS] Consensus call for keys used in handshake and data messages

2016-06-15 Thread Daniel Kahn Gillmor
On Wed 2016-06-15 12:23:38 -0400, Ilari Liusvaara wrote: > On Wed, Jun 15, 2016 at 09:44:18AM -0400, Daniel Kahn Gillmor wrote: >> On Wed 2016-06-15 04:44:59 -0400, Yoav Nir wrote: >> >> To be clear, we're being asked to trade these things off against each >> other here, but there are other

Re: [TLS] Closing on keys used for handshake and data messages

2016-06-15 Thread Douglas Stebila
On Jun 3, 2016, at 17:54, Joseph Salowey wrote: > > Unfortunately, the TLS record framing is not easily compatible with having > multiple keys used simultaneously: because we encrypt the content type, it is > not possible to use it to determine which key to use to decrypt. We

Re: [TLS] Consensus call for keys used in handshake and data messages

2016-06-15 Thread Nick Sullivan
I prefer (1) On Wed, Jun 15, 2016 at 5:51 PM Dan Harkins wrote: > > Hello, > > On Mon, June 13, 2016 12:00 pm, Joseph Salowey wrote: > > For background please see [1]. > > > > Please respond to this message indicating which of the following options > > you prefer by

Re: [TLS] Consensus call for keys used in handshake and data messages

2016-06-15 Thread Dan Harkins
Hello, On Mon, June 13, 2016 12:00 pm, Joseph Salowey wrote: > For background please see [1]. > > Please respond to this message indicating which of the following options > you prefer by Monday June, 20, 2016 > > 1. Use the same key for handshake and application traffic (as in the > current

Re: [TLS] Consensus call for keys used in handshake and data messages

2016-06-15 Thread Ilari Liusvaara
On Wed, Jun 15, 2016 at 09:44:18AM -0400, Daniel Kahn Gillmor wrote: > On Wed 2016-06-15 04:44:59 -0400, Yoav Nir wrote: > > To be clear, we're being asked to trade these things off against each > other here, but there are other options which were ruled out in the > prior framing of the question

Re: [TLS] [Technical Errata Reported] RFC5288 (4694)

2016-06-15 Thread Aaron Zauner
> On 14 Jun 2016, at 19:25, Joseph Lorenzo Hall wrote: > > s/it's/its/ in one place in your errata text, Aaron. Thank you. I suggest the RFC Errata editors change text and further additions/recommendations by others along the way when publishing (if that's the right way to

Re: [TLS] Consensus call for keys used in handshake and data messages

2016-06-15 Thread Yoav Nir
Hi, Nikos > On 15 Jun 2016, at 11:00 AM, Nikos Mavrogiannopoulos wrote: > > On Mon, 2016-06-13 at 12:00 -0700, Joseph Salowey wrote: >> For background please see [1]. >> >> Please respond to this message indicating which of the following >> options you prefer by Monday June,