[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[TLS] Re: NIST TLS recomendations

To: Ray Perlner <ray.perlner@xxxxxxxx>
Subject: [TLS] Re: NIST TLS recomendations
From: Simon Josefsson <jas@xxxxxxxxxxx>
Date: Wed, 01 Nov 2006 15:54:31 +0100
Cc: tls@xxxxxxxxxxxxxx
In-reply-to: <7.0.1.0.2.20061101091038.0208f420@xxxxxxxx> (Ray Perlner's message of "Wed\, 01 Nov 2006 09\:19\:52 -0500")
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
Openpgp: id=B565716F; url=http://josefsson.org/key.txt
References: <7.0.1.0.2.20061101091038.0208f420@xxxxxxxx>
User-agent: Gnus/5.110006 (No Gnus v0.6) Emacs/22.0.90 (gnu/linux)

Ray Perlner <ray.perlner@xxxxxxxx> writes:

> Page 81 Section A5.
> This section deprecates anonymous DH, which hopefully means that no
> compliant version of TLS 1.2 will support this mode, (or any other
> completely anonymous mode.)

I don't read A5 that way.

Section A5 suggests (but no MUST NOT) that DH_anon for RC4/DES/3DES is
deprecated, which I'd agree to.

However, section A5 appear to permit DH_anon with AES128/AES256.

I believe fully anonymous ciphers are a useful feature of TLS, and
that they should stay.  Client/server authentication can and do happen
via other protocols than TLS, and those protocols can use TLS channel
bindings to protect against man in the middle attacks, if necessary.

/Simon

_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Re: NIST TLS recomendations
  - From: Bodo Moeller
- Re: [TLS] Re: NIST TLS recomendations
  - From: Peter Gutmann

References:
- [TLS] NIST TLS recomendations
  - From: Ray Perlner

Prev by Date: [TLS] NIST TLS recomendations
Next by Date: Re: [TLS] Re: NIST TLS recomendations
Previous by thread: [TLS] NIST TLS recomendations
Next by thread: Re: [TLS] Re: NIST TLS recomendations
Index(es):
- Date
- Thread