[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Handling NULL key exchange for NULL_ ciphersuite

To: Ned Smith <nsmith@xxxxxxxxxxxxxxxxxx>
Subject: Re: Handling NULL key exchange for NULL_ ciphersuite
From: Tom Weinstein <tomw@xxxxxxxxxxxx>
Date: Thu, 30 Jan 1997 13:14:51 -0800
Cc: ietf-tls@xxxxxxxxxxxx
Organization: Netscape Communications, Inc.
References: <>
Sender: tomw@xxxxxxxxxxxx (Tom Weinstein)

Ned Smith wrote:
> 
> What is the correct way to interpret handling of the NULL ciphersuite
> for key exchange?
> 
> The TLS spec (excerpts provided below) appears to be vague in its
> description of how key exchange handling is done if the NULL
> ciphersuite is negotiated. I don't recall seeing any statement
> indicating it is illegal to negotiate a NULL ciphersuite. My
> assumption is the NULL ciphersuite could be negotiated anytime it is
> legal to negotiate any other ciphersuite (its regular).

I assume you mean TLS_NULL_WITH_NULL_NULL.  Although the spec does not
explicitly forbid negotiating to this cipher suite, it should.  If an
implementation allows negotiation to this cipher suite, it is open to
a rollback attack.

-- 
You should only break rules of style if you can    | Tom Weinstein
coherently explain what you gain by so doing.      | tomw@xxxxxxxxxxxx

Follow-Ups:
- Re: Handling NULL key exchange for NULL_ ciphersuite
  - From: Tim Dierks

References:
- Handling NULL key exchange for NULL_ ciphersuite
  - From: Ned Smith

Prev by Date: Handling NULL key exchange for NULL_ ciphersuite
Next by Date: Compatible extension for peer-to-peer authentication in TLS
Previous by thread: Handling NULL key exchange for NULL_ ciphersuite
Next by thread: Re: Handling NULL key exchange for NULL_ ciphersuite
Index(es):
- Date
- Thread