Hi Thom,Many thanks for sharing this. This is very valuable input for the WG in maintaining high assurance of TLS.
I agree with the two observations on slide 11 [0].I definitely agree with FATT recommendation on slide 12 [1] that it requires formal analysis.
One additional point -- which I raised in IETF 124 and was not answered to my satisfaction; and I don't yet see that resolved in -10 [2] -- I would like to bring up for discussion is whether it is advisable to have long-term key within the TEE but the application traffic secrets outside the TEE, as mentioned in Section 12.1.1 [2]. I'd appreciate a clarification on whether FATT discussed this in forming its opinion.
Thanks and looking forward to your presentation. Best regards, -Usama[0] https://datatracker.ietf.org/meeting/125/materials/slides-125-tls-sessa-fatt-report-on-eku-00#page=11
[1] https://datatracker.ietf.org/meeting/125/materials/slides-125-tls-sessa-fatt-report-on-eku-00#page=12
[2] https://www.ietf.org/archive/id/draft-ietf-tls-extended-key-update-10.html#section-12.1-1
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
