[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] sending error alerts: MUST? SHOULD? MAY?

To: Nelson B Bolyard <nelson@xxxxxxxxxxx>
Subject: Re: [TLS] sending error alerts: MUST? SHOULD? MAY?
From: Eric Rescorla <ekr@xxxxxxxxxxxxxxxxxxxx>
Date: Fri, 09 Feb 2007 14:33:42 -0800
Cc: tls@xxxxxxxx
In-reply-to: Your message of "Sun, 31 Dec 2006 15:13:24 PST." <45984414.2090209@xxxxxxxxxxx>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>

Nelson B Bolyard <nelson@xxxxxxxxxxx> wrote:
> Last August, I wrote to this list about the lack of "MUST" in the RFCs and
> drafts concerning the use of error and warning alerts.  That message is
> quoted below.  I only got one reply, from Peter Gutmann.
> 
> I really want to see this situation get fixed in TLS 1.2.  What can I do
> to make that happen?  Do I need to submit a draft with the suggested changes?
> Erik, if I send you a set of suggested changes as edits to the current 1.2
> draft, will you incorporate them?

My concern, as I think I mentioned to you privately, is that we not
mandate behaviors that potentially leak security relevant information.
We've had one such situation before with CBC padding. Ultimately,
we really need a review of the security implications of every kind
of error, but not having that I'm reluctant to require behaviors
that haven't been vetted.

The bottom line, then, is that I'd prefer not to change this language
without explicit security analysis for each change.

-Ekr

_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- RE: [TLS] sending error alerts: MUST? SHOULD? MAY?
  - From: Pasi.Eronen

References:
- Re: [TLS] sending error alerts: MUST? SHOULD? MAY?
  - From: Nelson B Bolyard

Prev by Date: RE: [TLS] extension number conflict
Next by Date: [TLS] OE + TLS support
Previous by thread: RE: [TLS] sending error alerts: MUST? SHOULD? MAY?
Next by thread: RE: [TLS] sending error alerts: MUST? SHOULD? MAY?
Index(es):
- Date
- Thread