Encrypt-then-MAC for Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS)
draft-ietf-tls-encrypt-then-mac-03
Revision differences
Document history
| Date | Rev. | By | Action |
|---|---|---|---|
|
2014-09-12
|
03 | (System) | RFC Editor state changed to AUTH48-DONE from AUTH48 |
|
2014-09-08
|
03 | (System) | RFC Editor state changed to AUTH48 from RFC-EDITOR |
|
2014-08-28
|
03 | (System) | RFC Editor state changed to RFC-EDITOR from EDIT |
|
2014-08-14
|
03 | (System) | IANA Action state changed to RFC-Ed-Ack from Waiting on RFC Editor |
|
2014-08-13
|
03 | (System) | IANA Action state changed to Waiting on RFC Editor from Waiting on Authors |
|
2014-08-12
|
03 | (System) | IANA Action state changed to Waiting on Authors from In Progress |
|
2014-08-12
|
03 | Cindy Morgan | IESG state changed to RFC Ed Queue from Approved-announcement sent |
|
2014-08-12
|
03 | (System) | RFC Editor state changed to EDIT |
|
2014-08-12
|
03 | (System) | Announcement was received by RFC Editor |
|
2014-08-11
|
03 | (System) | IANA Action state changed to In Progress |
|
2014-08-11
|
03 | Amy Vezza | IESG state changed to Approved-announcement sent from Approved-announcement to be sent |
|
2014-08-11
|
03 | Amy Vezza | IESG has approved the document |
|
2014-08-11
|
03 | Amy Vezza | Closed "Approve" ballot |
|
2014-08-11
|
03 | Amy Vezza | Ballot approval text was generated |
|
2014-08-07
|
03 | Cindy Morgan | IESG state changed to Approved-announcement to be sent from IESG Evaluation |
|
2014-08-07
|
03 | Cindy Morgan | Ballot writeup was changed |
|
2014-08-07
|
03 | Joel Jaeggli | [Ballot Position Update] New position, No Objection, has been recorded for Joel Jaeggli |
|
2014-08-07
|
03 | Ted Lemon | [Ballot Position Update] New position, Yes, has been recorded for Ted Lemon |
|
2014-08-07
|
03 | Spencer Dawkins | [Ballot Position Update] New position, No Objection, has been recorded for Spencer Dawkins |
|
2014-08-06
|
03 | Jari Arkko | [Ballot Position Update] New position, No Objection, has been recorded for Jari Arkko |
|
2014-08-06
|
03 | Pete Resnick | [Ballot Position Update] New position, No Objection, has been recorded for Pete Resnick |
|
2014-08-06
|
03 | Richard Barnes | [Ballot comment] +1 to not bending over backward to accommodate SSLv3 :) Section 3. It would be helpful to note that the "+" symbol is … [Ballot comment] +1 to not bending over backward to accommodate SSLv3 :) Section 3. It would be helpful to note that the "+" symbol is being used to denote concatenation of octet strings, or use "||" as above. |
|
2014-08-06
|
03 | Richard Barnes | [Ballot Position Update] New position, Yes, has been recorded for Richard Barnes |
|
2014-08-06
|
03 | Stephen Farrell | Ballot writeup was changed |
|
2014-08-05
|
03 | Kathleen Moriarty | [Ballot Position Update] New position, No Objection, has been recorded for Kathleen Moriarty |
|
2014-08-05
|
03 | Martin Stiemerling | [Ballot Position Update] New position, No Objection, has been recorded for Martin Stiemerling |
|
2014-08-04
|
03 | Alissa Cooper | [Ballot Position Update] New position, Yes, has been recorded for Alissa Cooper |
|
2014-08-04
|
03 | Barry Leiba | [Ballot comment] Thanks for including Section 2.1. Also, I rather like the informal style (of Section 2.1, and of some other parts of the document). … [Ballot comment] Thanks for including Section 2.1. Also, I rather like the informal style (of Section 2.1, and of some other parts of the document). -- Section 5 -- IANA has added the extension code point 22 (0x16) for the encrypt_then_mac extension to the TLS ExtensionType values registry as specified in TLS [2]. This doesn't say whether there are or aren't any actions for IANA, and it should. I think there actually is an action: to make the early-registration code point permanent. |
|
2014-08-04
|
03 | Barry Leiba | [Ballot Position Update] New position, Yes, has been recorded for Barry Leiba |
|
2014-08-04
|
03 | Adrian Farrel | [Ballot Position Update] New position, No Objection, has been recorded for Adrian Farrel |
|
2014-08-04
|
03 | Brian Haberman | [Ballot Position Update] New position, Yes, has been recorded for Brian Haberman |
|
2014-08-01
|
03 | Elwyn Davies | Request for Telechat review by GENART Completed: Ready. Reviewer: Elwyn Davies. |
|
2014-07-31
|
03 | Jean Mahoney | Request for Telechat review by GENART is assigned to Elwyn Davies |
|
2014-07-31
|
03 | Jean Mahoney | Request for Telechat review by GENART is assigned to Elwyn Davies |
|
2014-07-25
|
03 | Elwyn Davies | Request for Last Call review by GENART Completed: Almost Ready. Reviewer: Elwyn Davies. |
|
2014-07-22
|
03 | (System) | IANA Review state changed to IANA OK - Actions Needed from Version Changed - Review Needed |
|
2014-07-22
|
03 | Stephen Farrell | Placed on agenda for telechat - 2014-08-07 |
|
2014-07-22
|
03 | Stephen Farrell | IESG state changed to IESG Evaluation from Waiting for Writeup::AD Followup |
|
2014-07-22
|
03 | Stephen Farrell | Ballot has been issued |
|
2014-07-22
|
03 | Stephen Farrell | [Ballot Position Update] New position, Yes, has been recorded for Stephen Farrell |
|
2014-07-22
|
03 | Stephen Farrell | Created "Approve" ballot |
|
2014-07-22
|
03 | Stephen Farrell | Ballot writeup was changed |
|
2014-07-22
|
03 | (System) | Sub state has been changed to AD Followup from Revised ID Needed |
|
2014-07-22
|
03 | Peter Gutmann | IANA Review state changed to Version Changed - Review Needed from IANA OK - Actions Needed |
|
2014-07-22
|
03 | Peter Gutmann | New version available: draft-ietf-tls-encrypt-then-mac-03.txt |
|
2014-06-27
|
02 | Stephen Farrell | IESG state changed to Waiting for Writeup::Revised I-D Needed from Waiting for Writeup |
|
2014-06-26
|
02 | Tero Kivinen | Request for Last Call review by SECDIR Completed: Ready. Reviewer: Paul Hoffman. |
|
2014-06-24
|
02 | Gunter Van de Velde | Request for Last Call review by OPSDIR Completed: Ready. Reviewer: Bert Wijnen. |
|
2014-06-20
|
02 | (System) | IESG state changed to Waiting for Writeup from In Last Call |
|
2014-06-12
|
02 | Jean Mahoney | Request for Last Call review by GENART is assigned to Elwyn Davies |
|
2014-06-12
|
02 | Jean Mahoney | Request for Last Call review by GENART is assigned to Elwyn Davies |
|
2014-06-12
|
02 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Paul Hoffman |
|
2014-06-12
|
02 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Paul Hoffman |
|
2014-06-11
|
02 | (System) | IANA Review state changed to IANA OK - Actions Needed from IANA - Review Needed |
|
2014-06-11
|
02 | Amanda Baber | IESG/Authors/WG Chairs: IANA has reviewed draft-ietf-tls-encrypt-then-mac-02. Authors should review the comments and/or questions below. Please report any inaccuracies and respond to any questions as soon … IESG/Authors/WG Chairs: IANA has reviewed draft-ietf-tls-encrypt-then-mac-02. Authors should review the comments and/or questions below. Please report any inaccuracies and respond to any questions as soon as possible. IANA's reviewer has the following comments/questions: IANA understands that upon approval of this document, there is a single action which IANA must complete. In the ExtensionType Values registry in the Transport Layer Security (TLS) Extensions registry located at: http://www.iana.org/assignments/tls-extensiontype-values/ the temporary registration for value 22 (encrypt_then_mac) will be made permanent and its reference changed to [ RFC-to-be ]. IANA understands that this is the only action required upon approval of this document. Note: The actions requested in this document will not be completed until the document has been approved for publication as an RFC. This message is only to confirm what actions will be performed. |
|
2014-06-11
|
02 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Bert Wijnen |
|
2014-06-11
|
02 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Bert Wijnen |
|
2014-06-06
|
02 | Amy Vezza | IANA Review state changed to IANA - Review Needed |
|
2014-06-06
|
02 | Amy Vezza | The following Last Call announcement was sent out: From: The IESG To: IETF-Announce CC: Reply-To: ietf@ietf.org Sender: Subject: Last Call: (Encrypt-then-MAC for TLS and DTLS) … The following Last Call announcement was sent out: From: The IESG To: IETF-Announce CC: Reply-To: ietf@ietf.org Sender: Subject: Last Call: (Encrypt-then-MAC for TLS and DTLS) to Proposed Standard The IESG has received a request from the Transport Layer Security WG (tls) to consider the following document: - 'Encrypt-then-MAC for TLS and DTLS' as Proposed Standard The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the ietf@ietf.org mailing lists by 2014-06-20. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract This document describes a means of negotiating the use of the encrypt-then-MAC security mechanism in place of TLS'/DTLS' existing MAC-then-encrypt one, which has been the subject of a number of security vulnerabilities over a period of many years. The file can be obtained via http://datatracker.ietf.org/doc/draft-ietf-tls-encrypt-then-mac/ IESG discussion can be tracked via http://datatracker.ietf.org/doc/draft-ietf-tls-encrypt-then-mac/ballot/ No IPR declarations have been submitted directly on this I-D. ID nits found an Obsolete normative reference: "RFC 4366 (ref. '3') (Obsoleted by RFC 5246, RFC 6066)" which will be replaced. |
|
2014-06-06
|
02 | Amy Vezza | IESG state changed to In Last Call from Last Call Requested |
|
2014-06-06
|
02 | Stephen Farrell | Last call was requested |
|
2014-06-06
|
02 | Stephen Farrell | Ballot approval text was generated |
|
2014-06-06
|
02 | Stephen Farrell | Ballot writeup was generated |
|
2014-06-06
|
02 | Stephen Farrell | IESG state changed to Last Call Requested from AD Evaluation |
|
2014-06-06
|
02 | Stephen Farrell | Last call announcement was changed |
|
2014-06-06
|
02 | Stephen Farrell | Last call announcement was generated |
|
2014-06-06
|
02 | Peter Gutmann | New version available: draft-ietf-tls-encrypt-then-mac-02.txt |
|
2014-06-04
|
01 | Stephen Farrell | IESG state changed to AD Evaluation from Publication Requested |
|
2014-06-03
|
01 | Sean Turner | (1) Proposed Standard; it's about interop; yes the type of RFC is indicated on the first page as well as in the datatracker. (2) Technical … (1) Proposed Standard; it's about interop; yes the type of RFC is indicated on the first page as well as in the datatracker. (2) Technical Summary This document defines a means to negotiate the use of encrypt-then-MAC instead of the existing MAC-then-encrypt one. WRT the existing mechanism, there are a number of identified vulnerabilities (see the references in the draft). Working Group Summary: This draft has been kicking around for a number of years and was adopted and progressed fairly quickly. There were really just two debates 1) how to do the negotiation (see sec 2.1 of the draft), and 2) whether this applied to both stream and block ciphers (ended up applying to just block). Document Quality There's a test server up and running. There's also a number of known implementations. Personnel Stephen Farrell is the responsible AD. Sean Turner is the shepherd. (3) I read it, I reviewed the mailing list to make sure the issues raised during WGLC were addressed, I ran the ID-nit checker, and I updated the datatracker using the WG chair tools. Oh and I also updated the replaced-by information. (4) None (5) No (6) I'm comfortable with the draft and you should be too. (7) Yes (8) No (9) Solid (10) No (11) ID-nits complains about an outdated normative reference to RFC 4366 which was obsoleted by RFC 6066. I believe this warning can safely be ignored because implementers can find the Truncated HMAC extension for TLS 1.0 and 1.1 in RFC 4366 and can follow the references to RFC 6066 for TLS 1.2. (12) N/A (13) Yes (14) No (15) No (16) No (17) The IANA considerations section is fine. We've asked for an early code point assignment based on the procedures in RFC 7120. (18) N/A (19) N/A |
|
2014-06-03
|
01 | Sean Turner | State Change Notice email list changed to tls-chairs@tools.ietf.org, draft-ietf-tls-encrypt-then-mac@tools.ietf.org |
|
2014-06-03
|
01 | Sean Turner | Responsible AD changed to Stephen Farrell |
|
2014-06-03
|
01 | Sean Turner | IESG state changed to Publication Requested |
|
2014-06-03
|
01 | Sean Turner | IESG process started in state Publication Requested |
|
2014-06-03
|
01 | Sean Turner | IETF WG state changed to Submitted to IESG for Publication from Waiting for WG Chair Go-Ahead |
|
2014-05-21
|
01 | Sean Turner | Changed document writeup |
|
2014-05-21
|
01 | Sean Turner | Document shepherd changed to Sean Turner |
|
2014-05-21
|
01 | Sean Turner | IETF WG state changed to Waiting for WG Chair Go-Ahead from WG Document |
|
2014-05-21
|
01 | Sean Turner | Intended Status changed to Proposed Standard from None |
|
2014-05-21
|
01 | Sean Turner | This document now replaces draft-gutmann-tls-encrypt-then-mac instead of None |
|
2014-05-02
|
01 | Peter Gutmann | New version available: draft-ietf-tls-encrypt-then-mac-01.txt |
|
2014-03-10
|
00 | Peter Gutmann | New version available: draft-ietf-tls-encrypt-then-mac-00.txt |