[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Comments on TLS identity protection

To: Peter Williams <home_pw@xxxxxxx>
Subject: Re: [TLS] Comments on TLS identity protection
From: EKR <ekr@xxxxxxxxxxxxxxxxxxxx>
Date: Wed, 27 Dec 2006 17:22:22 -0800
Cc: tls@xxxxxxxx
In-reply-to: <BAY103-W1BEB824CAF7E47E64148B92C00@xxxxxxx> (Peter Williams's message of "Wed, 27 Dec 2006 12:23:04 -0800")
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <BAY103-W1BEB824CAF7E47E64148B92C00@xxxxxxx>
Reply-to: EKR <ekr@xxxxxxxxxxxxxxxxxxxx>
User-agent: Gnus/5.1007 (Gnus v5.10.7) XEmacs/21.4.19 (berkeley-unix)

Peter Williams <home_pw@xxxxxxx> writes:

>  
>> > There's no way in TLS to currently have a NULL MAC algorithm.> > I doubt there is lilkely to be one soon.
>  
> if we look at the text of SSLv3, it discussed null mac functions in the architecture:-
>  
> If the CipherSuite is SSL_NULL_WITH_NULL_NULL, encryption consists of the identity 
> operation (i.e., the data is not encrypted and the MAC size is zero implying that 
> no MAC is used). SSLCiphertext.length is SSLCompressed.length plus 
> CipherSpec.hash_size. 

Yes, but TLS explicitly forbids you to negotiate this algorithm
(i.e., it's only useful for performing the handshake).

   TLS_NULL_WITH_NULL_NULL is specified and is the initial state of a
   TLS connection during the first handshake on that channel, but must
   not be negotiated, as it provides no more protection than an
   unsecured connection.

So, it's basically a different way of expressing "do your first
handshake in the clear".

-Ekr

_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Comments on TLS identity protection
  - From: Martin Rex

References:
- RE: [TLS] Comments on TLS identity protection
  - From: Peter Williams

Prev by Date: RE: [TLS] Comments on TLS identity protection
Next by Date: Re: [TLS] Re: WGLC: draft-ietf-tls-srp-13
Previous by thread: RE: [TLS] Comments on TLS identity protection
Next by thread: Re: [TLS] Comments on TLS identity protection
Index(es):
- Date
- Thread