ad004d1 | seanturner | 27 April 2017, 20:45:17 UTC | adding me:spt | 27 April 2017, 20:45:17 UTC |
ccd2812 | EKR | 27 April 2017, 19:08:20 UTC | Post-landing fixups for RFC updating text | 27 April 2017, 19:08:57 UTC |
f356a0a | jsalowey | 27 April 2017, 16:26:18 UTC | added list of updated and obsoleted RFS to the introduction. | 27 April 2017, 19:08:57 UTC |
f87f086 | ekr | 27 April 2017, 18:55:30 UTC | Merge pull request #989 from tlswg/5869_ref fixing spacing in 5869 reference | 27 April 2017, 18:55:30 UTC |
ddb7d91 | seanturner | 27 April 2017, 18:45:24 UTC | fixing spacing in 5869 reference | 27 April 2017, 18:45:24 UTC |
053bdf9 | ekr | 27 April 2017, 18:36:39 UTC | Merge pull request #988 from tlswg/3447_reference updating reference for obsoleted normative reference | 27 April 2017, 18:36:39 UTC |
7a0b9cf | seanturner | 27 April 2017, 18:26:03 UTC | updating reference for obsoleted normative reference | 27 April 2017, 18:26:03 UTC |
34c20ba | EKR | 27 April 2017, 18:23:36 UTC | Fix build | 27 April 2017, 18:23:36 UTC |
60b0a0d | ekr | 27 April 2017, 18:20:46 UTC | Merge pull request #985 from tlswg/unused_references removing unused references | 27 April 2017, 18:20:46 UTC |
a220320 | seanturner | 27 April 2017, 18:10:41 UTC | removing unused references | 27 April 2017, 18:10:41 UTC |
defd6c7 | ekr | 27 April 2017, 12:43:22 UTC | Merge pull request #978 from ekr/draft20_changelog Change log for -20 | 27 April 2017, 12:43:22 UTC |
e0a1e9b | EKR | 27 April 2017, 12:42:05 UTC | Updated with a few -20 changes | 27 April 2017, 12:42:05 UTC |
7009ee6 | ekr | 27 April 2017, 12:38:47 UTC | Merge pull request #979 from ekr/traffic_analysis Add sections on traffic analysis and side-channels. | 27 April 2017, 12:38:47 UTC |
2adcde1 | EKR | 27 April 2017, 12:38:02 UTC | Update references. Editorial | 27 April 2017, 12:38:02 UTC |
a15cd26 | EKR | 27 April 2017, 12:30:18 UTC | Add ALPN clarification | 27 April 2017, 12:30:18 UTC |
7ae441b | Hannes Tschofenig | 27 April 2017, 09:02:32 UTC | Error description for "no_application_protocol" alert added | 27 April 2017, 09:02:32 UTC |
6f24da7 | Hannes Tschofenig | 27 April 2017, 08:43:59 UTC | Adding missing "no_application_protocol" alert RFC 7301 defines the ALPN extension and defined a new alert "no_application_protocol". TLS 1.3 uses ALPN but currently misses the alert in Section 6. | 27 April 2017, 08:43:59 UTC |
e21aee9 | EKR | 27 April 2017, 03:15:39 UTC | Revised per MT | 27 April 2017, 03:15:39 UTC |
648e395 | Benjamin Kaduk | 21 April 2017, 17:36:06 UTC | Add sections on traffic analysis and side-channels. Original by Ben Kaduk. Substantial rewrites by EKR. | 26 April 2017, 20:56:05 UTC |
74bfcce | EKR | 26 April 2017, 17:03:41 UTC | Change log for -20 | 26 April 2017, 17:03:41 UTC |
939555f | EKR | 26 April 2017, 16:44:43 UTC | Move Decoding Errors section for greater clarity. Fixes #970. | 26 April 2017, 16:44:43 UTC |
57baf44 | EKR | 26 April 2017, 16:28:22 UTC | Revise text about auto-replay of early data. Fixes #971. This just moves the warnings up so it's clear they generally apply. | 26 April 2017, 16:28:22 UTC |
3ad1702 | EKR | 26 April 2017, 16:01:12 UTC | Add a reference to RFC 6960. Fixes #974. There was a fair amount of on-list debate about how much guidance to give about OCSP. This merely cites 6960, which I think matches the area of consensus overlap. | 26 April 2017, 16:02:28 UTC |
6d19eec | ekr | 26 April 2017, 15:55:02 UTC | Merge pull request #977 from ekr/shrink_hkdf_labels Shorter HKDF labels. Fixes #964. | 26 April 2017, 15:55:02 UTC |
028a90d | EKR | 26 April 2017, 15:51:43 UTC | Add changelog and explanatory note | 26 April 2017, 15:51:43 UTC |
e1dfe5e | EKR | 25 April 2017, 23:07:13 UTC | Fix up two missing labels | 25 April 2017, 23:07:13 UTC |
04bcda7 | EKR | 25 April 2017, 21:46:46 UTC | Shorter HKDF labels. Fixes #964. Per mailing list discussion, this allows us to have every HKDF-Expand just have one hash block of info. | 25 April 2017, 21:46:46 UTC |
a48f119 | ekr | 25 April 2017, 18:16:24 UTC | Merge pull request #976 from martinthomson/patch-2 Fix markdown in README | 25 April 2017, 18:16:24 UTC |
2b46688 | EKR | 25 April 2017, 17:40:20 UTC | Fix makefile | 25 April 2017, 17:40:20 UTC |
638abcf | Martin Thomson | 25 April 2017, 01:46:42 UTC | Fix markdown | 25 April 2017, 01:46:42 UTC |
41ed4d0 | EKR | 23 April 2017, 20:43:47 UTC | Revert "Fix make issue" This reverts commit f54385d3065bb9d98873d372bd88e8ef94855f31. | 23 April 2017, 20:43:47 UTC |
f54385d | EKR | 22 April 2017, 17:14:28 UTC | Fix make issue | 22 April 2017, 17:14:28 UTC |
24ac81b | EKR | 22 April 2017, 17:00:14 UTC | Use ekr's version of ID template while waiting for MT to fix recent defect | 22 April 2017, 17:00:14 UTC |
b627e3b | EKR | 22 April 2017, 13:34:35 UTC | Update text again | 22 April 2017, 13:34:35 UTC |
f4d3307 | EKR | 22 April 2017, 13:33:51 UTC | Revert "Update text" This reverts commit 4e2c304ee260cdd5f3571a2751253e3cef13760c. | 22 April 2017, 13:33:51 UTC |
4e2c304 | EKR | 22 April 2017, 13:24:05 UTC | Update text | 22 April 2017, 13:24:05 UTC |
21afe64 | EKR | 21 April 2017, 10:48:21 UTC | Add text about PSK entropy. Fixes #965. As Ilari points out on the list, the PSK mechanism is subject to dictionary attacks based on the PSK binder. Make this clear. Modification of text originally provided by Hannes Tschofenig. | 21 April 2017, 10:48:21 UTC |
fdd067c | EKR | 21 April 2017, 10:43:51 UTC | Editorial work on the Major Changes section | 21 April 2017, 10:43:51 UTC |
ec73799 | EKR | 21 April 2017, 10:40:39 UTC | Merge remote-tracking branch 'hannes/patch-3' | 21 April 2017, 10:40:39 UTC |
3b91230 | EKR | 21 April 2017, 10:39:49 UTC | Add post_handshake_auth to the list of extensions in IANA considerations. | 21 April 2017, 10:39:49 UTC |
86ba858 | ekr | 21 April 2017, 10:24:56 UTC | Merge pull request #962 from ekr/reenable_pha_with_psk Re-enable post-handshake client authentication for PSK handshakes. | 21 April 2017, 10:24:56 UTC |
0acd086 | ekr | 21 April 2017, 10:24:36 UTC | Merge pull request #950 from ekr/post_handshake_random_context Require (2119 SHOULD) that the certificate context for post-handshake | 21 April 2017, 10:24:36 UTC |
7615229 | ekr | 21 April 2017, 10:23:50 UTC | Merge pull request #948 from ekr/tls_10_antidowngrade Tls 10 antidowngrade. Fixes #941 | 21 April 2017, 10:23:50 UTC |
214eafd | Hannes Tschofenig | 19 April 2017, 16:28:24 UTC | Enhanced the list of TLS 1.3 features | 19 April 2017, 16:28:24 UTC |
af56278 | ekr | 18 April 2017, 19:06:58 UTC | Merge pull request #956 from ekr/issue942_harmonize_names_and_labels Update variable names. Fixes #942. | 18 April 2017, 19:06:58 UTC |
1f1fe51 | EKR | 18 April 2017, 19:04:34 UTC | One more straggler | 18 April 2017, 19:04:34 UTC |
5ade7c2 | EKR | 18 April 2017, 18:58:30 UTC | Fix some stragglers | 18 April 2017, 18:58:30 UTC |
152b7d2 | EKR | 18 April 2017, 18:54:54 UTC | Fix reference | 18 April 2017, 18:54:54 UTC |
4fb4c47 | EKR | 18 April 2017, 18:54:08 UTC | Fix xref | 18 April 2017, 18:54:08 UTC |
9cabf2a | ekr | 18 April 2017, 16:52:33 UTC | Merge pull request #963 from fxguenther/master Added contribs | 18 April 2017, 16:52:33 UTC |
4db8349 | Felix Günther | 18 April 2017, 16:41:18 UTC | Added contribs on request by ekr | 18 April 2017, 16:41:18 UTC |
ac05450 | EKR | 18 April 2017, 14:26:51 UTC | Remove redundant 'an' | 18 April 2017, 14:26:51 UTC |
b352789 | EKR | 18 April 2017, 13:41:44 UTC | Re-enable post-handshake client authentication for PSK handshakes. When we banned client auth and PSK, we only meant to do it for the main handshake, not the post-handshake phase. This reverts that change, as well as clarifies the prophibition on PSK plus cert-based auth. | 18 April 2017, 13:43:15 UTC |
beb4477 | EKR | 18 April 2017, 13:29:34 UTC | Break sentence | 18 April 2017, 13:33:15 UTC |
e1cb148 | EKR | 16 April 2017, 21:00:11 UTC | Move text about PSK interaction with certificate-based client authentication. Fixes #934. | 18 April 2017, 13:33:06 UTC |
428be2c | EKR | 18 April 2017, 13:19:01 UTC | Update based on comments from Hugo and Ben | 18 April 2017, 13:23:26 UTC |
e9d04df | EKR | 17 April 2017, 00:53:28 UTC | Minor editorial | 18 April 2017, 13:23:23 UTC |
207c0c0 | EKR | 16 April 2017, 23:12:09 UTC | Minor editorial | 18 April 2017, 13:22:09 UTC |
35d0aaf | EKR | 16 April 2017, 22:30:23 UTC | Add additional security considerations text provided by Hugo Krawczcyk | 18 April 2017, 13:22:06 UTC |
b17e98c | ekr | 18 April 2017, 13:15:09 UTC | Merge pull request #954 from ekr/issue936_formal_point_format Formal representation of point format. Fixes #943. | 18 April 2017, 13:15:09 UTC |
a194877 | EKR | 18 April 2017, 13:14:07 UTC | Formatting | 18 April 2017, 13:14:07 UTC |
33d9b16 | ekr | 18 April 2017, 13:10:36 UTC | Merge pull request #961 from fxguenther/master Add references to published analyses | 18 April 2017, 13:10:36 UTC |
1f4b8a8 | Felix Günther | 18 April 2017, 08:41:33 UTC | Add references to published analyses added BBK17 | 18 April 2017, 08:41:33 UTC |
4ac1243 | Felix Günther | 18 April 2017, 07:43:26 UTC | Add references to published analyses Ordering by year | 18 April 2017, 07:43:26 UTC |
c790c8d | Felix Günther | 18 April 2017, 07:32:27 UTC | Add references to published analyses Some additions/modifications to https://github.com/tlswg/tls13-spec/pull/951 changes | 18 April 2017, 07:32:27 UTC |
ecef2a1 | ekr | 17 April 2017, 19:51:55 UTC | Merge pull request #960 from kaduk/diff-12 Bigger caveat for 0-RTT data | 17 April 2017, 19:51:55 UTC |
e716bf2 | ekr | 17 April 2017, 19:51:40 UTC | Merge pull request #959 from kaduk/skew Tweak guidance on clock skew window | 17 April 2017, 19:51:40 UTC |
b7ad190 | Benjamin Kaduk | 17 April 2017, 19:48:15 UTC | Bigger caveat for 0-RTT data | 17 April 2017, 19:48:15 UTC |
02fab0d | Benjamin Kaduk | 17 April 2017, 19:44:47 UTC | Tweak guidance on clock skew window Mention the assumptions going into the quoted number. Also fix a typo. | 17 April 2017, 19:44:47 UTC |
7dcfe89 | EKR | 17 April 2017, 13:41:37 UTC | Update variable names. Fixes #942. Make the variable names of various secrets correspond to the labels used for Derive-Secret(). This is not a wire format change, but just a change in the internal variable names. | 17 April 2017, 13:41:37 UTC |
015e650 | ekr | 17 April 2017, 13:27:51 UTC | Merge pull request #949 from ekr/clarify_ticket_age_text Revise the text on ticket age handling on the client and server. Fixe… | 17 April 2017, 13:27:51 UTC |
a84a160 | EKR | 17 April 2017, 13:27:57 UTC | module -> modulo | 17 April 2017, 13:27:57 UTC |
5b37a40 | EKR | 16 April 2017, 21:51:47 UTC | Clean up the Major Differences section | 16 April 2017, 21:51:47 UTC |
ae9b0b5 | Yoav Nir | 16 April 2017, 21:48:26 UTC | Update major differences section to actually be differences from TLS 1.2, not a change log. Fixes #931, Fixes #923 | 16 April 2017, 21:48:26 UTC |
9ec5128 | EKR | 16 April 2017, 21:22:34 UTC | Formal representation of point format. Fixes #943. As suggested by Nikos, provide a formal description of the point format modelled on 4492-bis. | 16 April 2017, 21:23:34 UTC |
3304d5f | EKR | 16 April 2017, 18:35:15 UTC | Require (2119 SHOULD) that the certificate context for post-handshake be unpredictable in order to prevent pre-computation of CertificateVerify. Maybe this should actually be a MUST? | 16 April 2017, 18:35:15 UTC |
6928693 | EKR | 16 April 2017, 17:50:04 UTC | Revise the text on ticket age handling on the client and server. Fixes #919, #940, #944.#944 | 16 April 2017, 18:23:38 UTC |
5f0504f | EKR | 16 April 2017, 17:11:48 UTC | Insert anti-downgrade token when TLS 1.0 or below as well. | 16 April 2017, 17:15:55 UTC |
0c32259 | EKR | 16 April 2017, 16:38:14 UTC | Remove some text I thought was unnecessary | 16 April 2017, 17:14:15 UTC |
15c06c1 | EKR | 16 April 2017, 16:28:57 UTC | Move references to the same line | 16 April 2017, 17:14:15 UTC |
0b0da73 | Benjamin Kaduk | 11 April 2017, 15:12:54 UTC | Note some application considerations about padding We allow sending just padding and no application data; be sure you think about what you want to do with that. Also note that the max_early_data_size limit is something of a lie in terms of clients sending lots of padding. | 16 April 2017, 17:14:15 UTC |
762968d | Benjamin Kaduk | 14 April 2017, 16:59:16 UTC | Annotate extension code points with RFC number Show inline which document defines the meaning of that extension, in addition to listing it in the table of extensions. | 16 April 2017, 17:14:15 UTC |
36fcebc | ekr | 16 April 2017, 16:44:25 UTC | Merge pull request #938 from tlswg/unused_references IDNits reports unused references. | 16 April 2017, 16:44:25 UTC |
a6d173f | EKR | 11 April 2017, 21:52:00 UTC | Revert "client_certificate_type is CR and CT". Pilot error. This reverts commit 56759ec8243cc6e5c5647ec7238e5177486c9bcb. | 11 April 2017, 21:52:00 UTC |
56759ec | EKR | 11 April 2017, 21:50:09 UTC | client_certificate_type is CR and CT | 11 April 2017, 21:50:09 UTC |
763c4ca | EKR | 11 April 2017, 20:49:03 UTC | Address Nikos's straightforward comments | 11 April 2017, 20:49:03 UTC |
c8063fd | EKR | 11 April 2017, 17:31:15 UTC | Ben Kaduk's on-list comments | 11 April 2017, 17:31:15 UTC |
2d7640c | EKR | 11 April 2017, 16:48:11 UTC | Post-landing cleanup for PR#936 | 11 April 2017, 16:59:14 UTC |
51871e0 | Benjamin Kaduk | 11 April 2017, 15:22:51 UTC | Apply feedback from @davegarrett | 11 April 2017, 16:48:39 UTC |
dc8af2a | Benjamin Kaduk | 10 April 2017, 23:18:53 UTC | Opportunistic encryption is a thing | 11 April 2017, 16:48:39 UTC |
bbb5721 | Benjamin Kaduk | 10 April 2017, 23:13:52 UTC | Content-type 0 is just invalid, not RESERVED That is, we say _RESERVED means "was used in previous version of TLS", but we are allocating it so as to avoid ambiguity when stripping padding. | 11 April 2017, 16:48:39 UTC |
7511e2a | Benjamin Kaduk | 07 April 2017, 21:21:42 UTC | Revert "Always send EndOfEarlyData" This reverts commit 7501876e544d7688246309390b8938b3491ee04b. Whoops, we can't do this, since it goes into the transcript now. | 11 April 2017, 16:48:39 UTC |
888d2e1 | Benjamin Kaduk | 07 April 2017, 20:53:53 UTC | Always send EndOfEarlyData Not just if the server accepts it. This way if the server can decrypt the messages it doesn't have to do trial decryption to find the end. | 11 April 2017, 16:48:39 UTC |
2bd4e68 | Benjamin Kaduk | 07 April 2017, 20:46:29 UTC | No alerts in 0-RTT data? (Mostly I just wanted to take out 'respectively', as there is no previous list to be parallel with. | 11 April 2017, 16:48:39 UTC |
8f4c4e3 | Benjamin Kaduk | 07 April 2017, 20:41:12 UTC | Swap the order of some text about PSKs/early data It's rather jarring to go straight from EarlyDataIndication to PSKs provisioned via NewSessionTicket. There may be a better place for some of this text, but I didn't see one in a less-than-cursory skim. | 11 April 2017, 16:48:39 UTC |
12c9a10 | Benjamin Kaduk | 07 April 2017, 20:36:55 UTC | Fix NewSessionTicket links With this short anchor we were ending up in the appendix, not the body section that actually talks about the contents. | 11 April 2017, 16:48:39 UTC |
81b39a6 | Benjamin Kaduk | 07 April 2017, 18:08:01 UTC | Add signature_algorithms to the full handshake diagram You need it if you're going to get certificate auth from the server. | 11 April 2017, 16:48:38 UTC |
5c09f1e | Benjamin Kaduk | 07 April 2017, 01:17:35 UTC | Sync extension enum with table of extensions Give the values for the extensions we mention as usable. Also some extension-related editorial changes, since apparently I was sloppy about my 'git add -p's. | 11 April 2017, 16:48:38 UTC |
c00e44e | Benjamin Kaduk | 06 April 2017, 22:47:39 UTC | Server sends early_data in EE | 11 April 2017, 16:48:38 UTC |
f829c81 | Benjamin Kaduk | 06 April 2017, 22:46:12 UTC | Editorial | 11 April 2017, 16:48:38 UTC |