[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] draft-ietf-tls-rfc4346-bis-02.txt

To: Mike <mike-list@xxxxxxxxx>
Subject: Re: [TLS] draft-ietf-tls-rfc4346-bis-02.txt
From: Bodo Moeller <bmoeller@xxxxxxx>
Date: Mon, 20 Nov 2006 16:18:34 +0100
Cc: tls@xxxxxxxxxxxxxx
In-reply-to: <4560BA53.1070501@xxxxxxxxx>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <4560BA53.1070501@xxxxxxxxx>
User-agent: Mutt/1.5.9i

On Sun, Nov 19, 2006 at 12:10:59PM -0800, Mike wrote:

> On page 63, it says:
> 
>        [PKCS1B] defines a newer version of PKCS#1 encoding that is more
>        secure against the Bleichenbacher attack. However, for maximal
>        compatibility with TLS 1.0, TLS 1.1 retains the original
>        encoding. No variants of the Bleichenbacher attack are known to
>        exist provided that the above recommendations are followed.
> 
> Does this continue with TLS 1.2?

Yes, so TLS 1.2 should be mentioned here too.  (There's a number of
places where draft-ietf-tls-rfc4346-bis-02.txt fails to use the
updated version number.)

Bodo


_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

References:
- [TLS] draft-ietf-tls-rfc4346-bis-02.txt
  - From: Mike

Prev by Date: Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
Next by Date: Re: [TLS] Serious crypto problem fixed by envelope HMAC method instead of currently used prefix
Previous by thread: [TLS] draft-ietf-tls-rfc4346-bis-02.txt
Next by thread: [TLS] DH_anon
Index(es):
- Date
- Thread