Length Hiding Padding for the Transport Layer Security Protocol
draft-pironti-tls-length-hiding-02

Document Type Expired Internet-Draft (individual)
Last updated 2014-03-15 (latest revision 2013-09-11)
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-pironti-tls-length-hiding-02.txt

Abstract

This memo proposes length hiding methods of operation for the TLS protocol. It defines a TLS extension to allow arbitrary amount of padding in any TLS ciphersuite, and it presents guidelines and a reference implementation of record fragmentation and padding so that the length of the exchanged messages is effectively concealed within a given range of lengths. The latter guidelines also apply to the standard TLS padding allowed by the TLS block ciphers.

Authors

Alfredo Pironti (alfredo.pironti@inria.fr)
Nikos Mavrogiannopoulos (nmav@gnutls.org)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)