[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[TLS] Some comments about draft-badra-ecdhe-tls-psk-01

To: <tls@xxxxxxxx>
Subject: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
From: <Pasi.Eronen@xxxxxxxxx>
Date: Tue, 29 Jan 2008 14:51:27 +0200
Cc:
In-reply-to: <87sl15pxnx.fsf@xxxxxxxxxxxxxxxxxxx>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <B356D8F434D20B40A8CEDAEC305A1F240511959C@xxxxxxxxxxxxxxxxxxxxxx> <87sl15pxnx.fsf@xxxxxxxxxxxxxxxxxxx>
Thread-index: AchTlGPLgLv7WCDgRnaG6Aq8org5lwO3zwww
Thread-topic: Some comments about draft-badra-ecdhe-tls-psk-01

<not wearing any hats>

Overall comment: While the technical solution is reasonably defined 
and scoped, do we have any evidence that someone cares about it?
I.e., do we have information suggesting that if this was specified,
it would actually be used in real world? If we don't, let's not 
spend WG time on it...

Some additional comments based on a quick read:

Abstract, "This document updates RFC 4785 and 4279..."; it 
doesn't "update" either of them (in the sense the word "update" 
is usually used when talking about relationships between RFCs);
it just defines additional cipher suites.

Section 2, "First, perform the Elliptic Curve Diffie-Hellman
computation in the same way as for other Diffie-Hellman-based
ciphersuites in [TLS1.0] or [TLS1.1]" Neither document contains
information on how to perform ECDH computations.

Section 2, "Let Z be the value produced by this computation",
Elliptic Curve Diffie-Hellman is somewhat different in this
respect; text should be consistent with RFC 4492 Section 5.10.

Typos/grammar:
"These ciphersuites provides.."
"It specifies as well one.."

>From idnits: Unused Reference: 'RFC2119' is defined on line 160, 
but no explicit reference was found in the text

Best regards,
Pasi 


_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- [TLS] Updated version of draft-badra-ecdhe-tls-psk
  - From: Mohamad Badra
- Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
  - From: Dan Harkins
- Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
  - From: Blumenthal, Uri
- Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
  - From: Mohamad Badra

References:
- [TLS] ECDHE_PSK as WG item?
  - From: Pasi.Eronen
- [TLS] Re: ECDHE_PSK as WG item?
  - From: Simon Josefsson

Prev by Date: Feel more pleasure in love!
Next by Date: Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
Previous by thread: Re: =?utf-8?q?[TLS]=C2=A0Re:=C2=A0ECDHE=5FPSK=C2=A0as=C2=A0WG=C2=A0item=3F?=
Next by thread: Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
Index(es):
- Date
- Thread