Re: [TLS] Interaction between cookies and middlebox compat mode

On Thu, Dec 28, 2017 at 10:02 AM, Matt Caswell wrote: > > > On 28/12/17 17:55, Eric Rescorla wrote: > > > > On Thu, Dec 28, 2017 at 9:51 AM, Matt Caswell > > wrote: > > > > > > > > On 28/12/17 17:42, Eric Rescorla wrote: > > > > > > > > > On Thu, Dec 28,

Re: [TLS] Interaction between cookies and middlebox compat mode

On 28/12/17 17:55, Eric Rescorla wrote: > > On Thu, Dec 28, 2017 at 9:51 AM, Matt Caswell > wrote: > > > > On 28/12/17 17:42, Eric Rescorla wrote: > > > > > > On Thu, Dec 28, 2017 at 8:12 AM, Matt Caswell > >

Re: [TLS] Interaction between cookies and middlebox compat mode

On Thu, Dec 28, 2017 at 9:51 AM, Matt Caswell wrote: > > > On 28/12/17 17:42, Eric Rescorla wrote: > > > > > > On Thu, Dec 28, 2017 at 8:12 AM, Matt Caswell > > wrote: > > > > > > > > On 28/12/17 12:28, Eric Rescorla wrote: > > > I think it would be helpful >

Re: [TLS] Interaction between cookies and middlebox compat mode

On 28/12/17 17:42, Eric Rescorla wrote: > > > On Thu, Dec 28, 2017 at 8:12 AM, Matt Caswell > wrote: > > > > On 28/12/17 12:28, Eric Rescorla wrote: > >     I think it would be helpful > >     to be more explicit in the text if that is the case, i.e. ide

Re: [TLS] Interaction between cookies and middlebox compat mode

On Thu, Dec 28, 2017 at 8:12 AM, Matt Caswell wrote: > > > On 28/12/17 12:28, Eric Rescorla wrote: > > I think it would be helpful > > to be more explicit in the text if that is the case, i.e. identify > the > > first point in the handshake and the last point in the handshake > where

Re: [TLS] Interaction between cookies and middlebox compat mode

On 28/12/17 12:28, Eric Rescorla wrote: > I think it would be helpful > to be more explicit in the text if that is the case, i.e. identify the > first point in the handshake and the last point in the handshake where > CCS is valid. There probably should also be some words about ho

Re: [TLS] Interaction between cookies and middlebox compat mode

On Thu, Dec 28, 2017 at 08:54:45AM +, Matt Caswell wrote: > > So, do you believe that the correct interpretation of "any time during > the handshake" includes the first message? I think it would be helpful > to be more explicit in the text if that is the case, i.e. identify the > first point i

Re: [TLS] Interaction between cookies and middlebox compat mode

On Thu, Dec 28, 2017 at 12:54 AM, Matt Caswell wrote: > > > On 27/12/17 19:33, Eric Rescorla wrote: > > > > > > On Wed, Dec 27, 2017 at 11:17 AM, Matt Caswell > > wrote: > > > > Consider the scenario where a server is operating statelessly (i.e. > > using the coo

Re: [TLS] Interaction between cookies and middlebox compat mode

On 27/12/17 19:33, Eric Rescorla wrote: > > > On Wed, Dec 27, 2017 at 11:17 AM, Matt Caswell > wrote: > > Consider the scenario where a server is operating statelessly (i.e. > using the cookie extension) and a client is operating in middlebox > compat mode

Re: [TLS] Additional TLS 1.3 results from Chrome

> I think we would like to avoid deliberately breaking these devices with TLS > 1.3. (I think TLS 1.3 has been subject to enough friction already.) I'm not sure I can agree with fixing TLS 1.3 so that it can work with potentially backdoored devices. Isn't it the kind of friction we would want? D