Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PFS and integrity-only ciphersuites #54

Merged
merged 2 commits into from
Sep 23, 2024
Merged

PFS and integrity-only ciphersuites #54

merged 2 commits into from
Sep 23, 2024

Conversation

thomas-fossati
Copy link
Owner

Fix #43

@thomas-fossati
PFS and integrity-only ciphersuites
3fbeb8f 
Fix #43

Signed-off-by: Thomas Fossati <[email protected]>
hannestschofenig
hannestschofenig reviewed Sep 3, 2024
View reviewed changes
draft-ietf-uta-tls13-iot-profile.md Outdated

TLS 1.3 allows the use of PFS with all ciphersuites since the support for it is
negotiated independently.
RFC8446 has removed Static RSA and Diffie-Hellman cipher suites, therefore all public-key-based key exchange mechanisms available in TLS 1.3 provide forward secrecy.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
RFC8446 has removed Static RSA and Diffie-Hellman cipher suites, therefore all public-key-based key exchange mechanisms available in TLS 1.3 provide forward secrecy.
RFC 8446 removed cipher suites that did not provide forward secrecy.

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I framed the section as:

  1. Public-key-based ciphersuite, vs
  2. PSK-based ciphersuite

and their FS properties.

I believe the suggestion drops some of the semantics.

hannestschofenig
hannestschofenig reviewed Sep 3, 2024
View reviewed changes
draft-ietf-uta-tls13-iot-profile.md

# Authentication and Integrity-only Cipher Suites

For a few, very specific Industrial IoT use cases {{?RFC9150}} defines two cipher suites that provide data authenticity, but not data confidentiality.
Copy link
Collaborator

@hannestschofenig hannestschofenig Sep 3, 2024
edited by thomas-fossati
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
For a few, very specific Industrial IoT use cases {{?RFC9150}} defines two cipher suites that provide data authenticity, but not data confidentiality.
To address use cases from Industrial IoT, such as railway control and power system automation, {{?RFC9150}} defines two cipher suites that provide data authenticity, but not data confidentiality.

@hannestschofenig hannestschofenig merged commit 4867d64 into master Sep 23, 2024
2 of 3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hannestschofenig hannestschofenig hannestschofenig left review comments

@mcr mcr Awaiting requested review from mcr

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

RFC 9150 - Integrity Only Ciphersuites for TLS
2 participants
@thomas-fossati @hannestschofenig