[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Last ditch proposal for crypto suites

To: EKR <ekr@rtfm.com>
Subject: Re: Last ditch proposal for crypto suites
From: "Steven M. Bellovin" <smb@research.att.com>
Date: Fri, 30 Aug 2002 19:41:42 -0400
Cc: "The Purple Streak, Hilarie Orman" <ho@alum.mit.edu>, ipsec@lists.tislabs.com
Sender: owner-ipsec@lists.tislabs.com

In message <kjwuq8ntmj.fsf@romeo.rtfm.com>, Eric Rescorla writes:
>"The Purple Streak, Hilarie Orman" <ho@alum.mit.edu> writes:
>
>> I think the original argument against suites came from observing how
>> many SSL had.
>
>Indeed. I've got nothing against cipher suites but I'd like
>to see something in the document describing the procedure
>for registering new cipher suites. Not having such a procedure
>has been a substantial point of contention with TLS.
>

In fact, given that suites require IANA-administered code points, some 
statement in the document is mandatory -- see RFC 2434 for a 
description of how to write an "IANA Considerations" section.  
In particular, see the example policies at the end of Section 3.

		--Steve Bellovin, http://www.research.att.com/~smb (me)
		http://www.wilyhacker.com ("Firewalls" book)

Prev by Date: Re: suites - phase 1 vs 2
Next by Date: RE: Last ditch proposal for crypto suites
Prev by thread: RE: Last ditch proposal for crypto suites
Next by thread: OPODIS DEADLINE EXTENSION to sept 15th
Index(es):
- Date
- Thread