Re: [TLS] Should CCM_8 CSs be Recommended?

What we did in IPsec in RFC-tp-be 8221 is the following. This (including the IoT marker) is also going to appear in the IANA registry: +-++-++ | Name| Status | AEAD| Comment| +-

Re: [TLS] Should CCM_8 CSs be Recommended?

➢ We’re recommending that these five suites be dropped from the recommended list. Please let us know what you think. Does “recommended” mean for general use, in the public Internet? Or is it “I know it when I see it” kind of thing? Either way, I support un-recommending them ___

Re: [TLS] Should CCM_8 CSs be Recommended?

> On Oct 4, 2017, at 3:30 AM, Yoav Nir wrote: > >(IoT) - This requirement is for interoperability with IoT. Only >128-bit keys are at the given level. If the IoT environment is willing to accept lower integrity protection in order to save a few bits on the wire/ether, I do not see why

Re: [TLS] Should CCM_8 CSs be Recommended?

> On 4 Oct 2017, at 16:29, Russ Housley wrote: > > >> On Oct 4, 2017, at 3:30 AM, Yoav Nir > > wrote: >> >>(IoT) - This requirement is for interoperability with IoT. Only >>128-bit keys are at the given level. > If the IoT environment is willing to accept l

Re: [TLS] Should CCM_8 CSs be Recommended?

> On Oct 4, 2017, at 9:48 AM, Yoav Nir wrote: > > >> On 4 Oct 2017, at 16:29, Russ Housley > > wrote: >> >> >>> On Oct 4, 2017, at 3:30 AM, Yoav Nir >> > wrote: >>> >>>(IoT) - This requirement is for interoperability with IoT. Onl

Re: [TLS] Should CCM_8 CSs be Recommended?

Hi Russ, At the upcoming IEEE 802.15 meeting in Orlando, we (vendors using IEEE 802.15.4) plan a presentation on support for AES-256 in an upcoming version of the 802.15.4 standard. In the Wi-SUN Alliance, we are using TLS-ECDHE-ECDSA-WITH-AES-128-CCM-8 now. It would be great to at least not prev

Re: [TLS] Should CCM_8 CSs be Recommended?

The current editor's copy of the draft has the following text about the recommended column: The instructions in this document add a recommended column to many of the TLS registries to indicate parameters that are generally recommended for implementations to support. Adding a recommended parameter

Re: [TLS] Should CCM_8 CSs be Recommended?

It seems that CCM_8 falls in the “limited applicability” bucket. However, there’s nothing wrong with IoT specs requiring these ciphers in their TLS profiles. Cheers, Andrei From: TLS [mailto:tls-boun...@ietf.org] On Behalf Of Joseph Salowey Sent: Wednesday, October 4, 2017 11:42 AM To: Salz, R

Re: [TLS] Should CCM_8 CSs be Recommended?

* If an item is marked as not recommended it does not necessarily mean that it is flawed, rather, it indicates that either the item has not been through the IETF consensus process or the item has limited applicability to specific cases. Perhaps change the list “to” to “intended for” ? __

[TLS] TLS 1.3 research papers

Could you please suggest few research papers (apart from TLS 1.3 draft) on TLS 1.3 that may be helpful to understand TLS 1.3 implementation and performance. Is there any research available on TLS 1.3 performance benchmarking? Some papers which I am referring right now are: 1. A Cryptograph