Re: [TLS] AD review of draft-ietf-tls-rfc4492bis-12.txt

2017-03-01 Thread Yoav Nir
> On 17 Feb 2017, at 18:58, Stephen Farrell wrote: > > > Hiya, > > I've had a read of this and asked for IETF LC to start. > > My comments below can be handled with any other IETF LC > comments. > > Thanks, > S. > > - Bits of this are fairly complex reading,

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Martin Thomson
On 2 March 2017 at 05:44, Dang, Quynh (Fed) wrote: > OK. What is the percentage ? Even all records were small, providing a > correct number would be a good thing. If someone wants to rekey a lot often, > I am not suggesting against that. It will vary greatly depending on

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Dang, Quynh (Fed)
From: Watson Ladd > Date: Wednesday, March 1, 2017 at 1:36 PM To: 'Quynh' > Cc: "tls@ietf.org" >, "c...@irtf.org"

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Watson Ladd
That is not how HTTP works. Lots of records are small because they result from small writes. On Mar 1, 2017 6:48 AM, "Dang, Quynh (Fed)" wrote: > > > From: "Paterson, Kenny" > Date: Wednesday, March 1, 2017 at 9:38 AM > To: 'Quynh'

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Dang, Quynh (Fed)
From: Aaron Zauner > Date: Wednesday, March 1, 2017 at 9:24 AM To: 'Quynh' > Cc: Sean Turner >, ">" >,

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Dang, Quynh (Fed)
From: "Paterson, Kenny" > Date: Wednesday, March 1, 2017 at 9:38 AM To: 'Quynh' >, Aaron Zauner > Cc: IRTF CFRG >,

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Paterson, Kenny
Hi, On 01/03/2017 14:31, "TLS on behalf of Dang, Quynh (Fed)" wrote: >From: Aaron Zauner >Date: Wednesday, March 1, 2017 at 9:24 AM >To: 'Quynh' >Cc: Sean Turner , ""

Re: [TLS] Last call comments and WG Chair review of draft-ietf-tls-ecdhe-psk-aead

2017-03-01 Thread Yoav Nir
> On 1 Mar 2017, at 15:06, Aaron Zauner wrote: > > >> On 24 Feb 2017, at 14:07, Salz, Rich wrote: >> >>> Assuming 256-bit AES-CCM suites are needed, I think the better place to put >>> them is in the TLS 1.3 document. >> >> That's a really big assumption. ;)

Re: [TLS] Last call comments and WG Chair review of draft-ietf-tls-ecdhe-psk-aead

2017-03-01 Thread Aaron Zauner
> On 01 Mar 2017, at 14:29, Yoav Nir wrote: > > >> On 1 Mar 2017, at 15:06, Aaron Zauner wrote: >> >> >>> On 24 Feb 2017, at 14:07, Salz, Rich wrote: >>> Assuming 256-bit AES-CCM suites are needed, I think the better place to put

Re: [TLS] Last call comments and WG Chair review of draft-ietf-tls-ecdhe-psk-aead

2017-03-01 Thread Yoav Nir
And they all cost 10 cents a piece, never get updated, and control the floodgates that hold back the biblical flood. > On 1 Mar 2017, at 16:28, Salz, Rich wrote: > > You know what amazes about IoT? No matter what someone tries to do there is > a chip/SoC out there that

Re: [TLS] Last call comments and WG Chair review of draft-ietf-tls-ecdhe-psk-aead

2017-03-01 Thread Salz, Rich
You know what amazes about IoT? No matter what someone tries to do there is a chip/SoC out there that can't do it. Shrug. ___ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Aaron Zauner
> On 01 Mar 2017, at 13:18, Dang, Quynh (Fed) wrote: > > > > From: Aaron Zauner > Date: Wednesday, March 1, 2017 at 8:11 AM > To: 'Quynh' > Cc: Sean Turner , "" , IRTF CFRG >

Re: [TLS] Last call comments and WG Chair review of draft-ietf-tls-ecdhe-psk-aead

2017-03-01 Thread Thomas Pornin
On Wed, Mar 01, 2017 at 01:06:27PM +, Aaron Zauner wrote: > I don't see why the IoT/embedded-world can't make use of ChaCha/Poly > in future implementations? IF the embedded platform is "generic" (say, it's an ARM Cortex M0+), then ChaCha20 is faster than anything using AES. Poly1305 is less

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Dang, Quynh (Fed)
From: Aaron Zauner > Date: Wednesday, March 1, 2017 at 8:11 AM To: 'Quynh' > Cc: Sean Turner >, ">" >,

Re: [TLS] [Cfrg] Closing out tls1.3 "Limits on key usage" PRs (#765/#769).

2017-03-01 Thread Aaron Zauner
> On 25 Feb 2017, at 14:28, Dang, Quynh (Fed) wrote: > > Hi Sean, Joe, Eric and all, > > I would like to address my thoughts/suggestions on 2 issues in option a. > > 1) The data limit should be addressed in term of blocks, not records. When > the record size is not the

Re: [TLS] Last call comments and WG Chair review of draft-ietf-tls-ecdhe-psk-aead

2017-03-01 Thread Aaron Zauner
> On 24 Feb 2017, at 14:07, Salz, Rich wrote: > >> Assuming 256-bit AES-CCM suites are needed, I think the better place to put >> them is in the TLS 1.3 document. > > That's a really big assumption. ;) > > I think the burden is on folks to *prove* (yeah, I know) that