20f0452 | Eric Rescorla | 05 April 2024, 12:59:07 UTC | Merge pull request #1353 from tlswg/seanturner-erratum-6820 Address erratum 6820 | 05 April 2024, 12:59:07 UTC |
301030b | Eric Rescorla | 05 April 2024, 12:58:29 UTC | Merge pull request #1351 from tlswg/seanturner-8422-abstract Add 8422 to abstract | 05 April 2024, 12:58:29 UTC |
35725b7 | Eric Rescorla | 05 April 2024, 12:58:10 UTC | Merge pull request #1349 from tlswg/seanturner-6125bis-ref Update 6125bis ref | 05 April 2024, 12:58:10 UTC |
21e8a0b | Eric Rescorla | 05 April 2024, 12:57:23 UTC | Merge pull request #1348 from tlswg/seanturner-idnit-mn IDnits: s/MUST not/MUST NOT | 05 April 2024, 12:57:23 UTC |
7dad2eb | Eric Rescorla | 05 April 2024, 12:57:08 UTC | Merge pull request #1347 from tlswg/seanturner-erratum-5874 Address erratum 5874 | 05 April 2024, 12:57:08 UTC |
cc1d6ee | Eric Rescorla | 05 April 2024, 12:56:46 UTC | Merge pull request #1345 from tlswg/seanturner-erratum-5717 Address erratum 5717 | 05 April 2024, 12:56:46 UTC |
3d3b9a4 | Eric Rescorla | 05 April 2024, 12:56:22 UTC | Merge pull request #1342 from tlswg/seanturner-counting-4-iana counting for IANA | 05 April 2024, 12:56:22 UTC |
c16759e | Sean Turner | 05 April 2024, 12:52:54 UTC | add HRR and EE Co-authored-by: Martin Thomson <mt@lowentropy.net> | 05 April 2024, 12:52:54 UTC |
0bd0834 | Sean Turner | 04 April 2024, 00:57:33 UTC | Address erratum 6820 Closes #1352. Text is as suggested in [erratum](https://www.rfc-editor.org/errata/eid6820). | 04 April 2024, 00:57:33 UTC |
902552d | Sean Turner | 29 March 2024, 15:58:28 UTC | Add 8422 to abstract Knocking off another IDnit by including 8422 in the abstract; this I-D is updating it so it needs to be listed. | 29 March 2024, 15:58:28 UTC |
5c1fb50 | Sean Turner | 29 March 2024, 15:46:48 UTC | Update 6125bis ref RFC 9525 is now published. | 29 March 2024, 15:46:48 UTC |
30e4788 | Sean Turner | 29 March 2024, 15:44:59 UTC | IDnits: s/MUST not/MUST NOT Fix and IDnit. | 29 March 2024, 15:44:59 UTC |
ab83e0d | Sean Turner | 28 March 2024, 11:23:07 UTC | Address erratum 5874 Closes #1346. Note that I took the suggested text from Ben's message not from the submitted errata. | 28 March 2024, 11:23:07 UTC |
7819693 | Sean Turner | 28 March 2024, 10:36:28 UTC | Address erratum 5717 Closes #1344. | 28 March 2024, 10:36:28 UTC |
56c3c16 | Sean Turner | 19 March 2024, 03:39:38 UTC | counting for IANA Two entries were updated not one; also see https://www.rfc-editor.org/errata/eid5976. | 19 March 2024, 03:39:38 UTC |
3f61f01 | Eric Rescorla | 03 March 2024, 03:07:17 UTC | Merge pull request #1337 from tlswg/seanturner-aead-limits-ref AEAD-LIMITS ref | 03 March 2024, 03:07:17 UTC |
4fbb9ea | Eric Rescorla | 17 February 2024, 14:55:05 UTC | Merge pull request #1333 from emanjon/patch-24 Privacy and PSK identifiers | 17 February 2024, 14:55:05 UTC |
dd841d3 | Eric Rescorla | 17 February 2024, 14:49:37 UTC | Merge pull request #1336 from martinthomson/less-analysis not-same might be greater, this is less | 17 February 2024, 14:49:37 UTC |
a2a2f0a | Sean Turner | 23 January 2024, 19:07:56 UTC | AEAD-LIMITS ref I see a dead link for the ref to the AEAD-LIMITS ref. I believe this is the same paper just without the date on the 1st page. | 23 January 2024, 19:07:56 UTC |
4580594 | Martin Thomson | 17 January 2024, 21:46:58 UTC | yeesh Co-authored-by: Deirdre Connolly <durumcrustulum@gmail.com> | 17 January 2024, 21:46:58 UTC |
d429a54 | Martin Thomson | 17 January 2024, 03:42:13 UTC | same might be greater, this is less So say that, alternative to #1335. Closes #1335. | 17 January 2024, 03:42:13 UTC |
7c77138 | John Preuß Mattsson | 18 December 2023, 09:31:12 UTC | Privacy and PSK identifiers | 18 December 2023, 09:31:12 UTC |
55a718b | Deirdre Connolly | 29 November 2023, 17:34:39 UTC | "either send a ServerHello or a HelloRetryRequest depending on the contents of KeyshareClienthello." Co-authored-by: Christopher Wood <caw@heapingbits.net> | 29 November 2023, 17:45:49 UTC |
71cf289 | EKR | 11 November 2023, 07:06:39 UTC | More clarity | 29 November 2023, 17:45:49 UTC |
75b80ee | EKR | 11 November 2023, 07:03:02 UTC | Fix capitalization | 29 November 2023, 17:45:49 UTC |
011e377 | EKR | 11 November 2023, 06:58:27 UTC | Clarify how to negotiate groups to address the issue raised by David Benjamin in https://datatracker.ietf.org/doc/draft-davidben-tls-key-share-prediction/ | 29 November 2023, 17:45:49 UTC |
0bbbfb2 | Eric Rescorla | 05 November 2023, 17:36:09 UTC | Merge pull request #1328 from martinthomson/aasvg Use aasvg for pictures | 05 November 2023, 17:36:09 UTC |
f436206 | Eric Rescorla | 05 November 2023, 17:35:42 UTC | Merge pull request #1329 from tlswg/seanturner-md-fixes md fixes | 05 November 2023, 17:35:42 UTC |
952b27b | Sean Turner | 18 October 2023, 16:41:34 UTC | annother mistake | 18 October 2023, 16:41:34 UTC |
ea6cf04 | Sean Turner | 18 October 2023, 16:39:40 UTC | fixes incorrect deletions | 18 October 2023, 16:39:40 UTC |
6d09cc3 | Sean Turner | 18 October 2023, 16:30:04 UTC | md fixes Closes #1327 as well as some other nits I noted in the md along with ID-nits. All ref to extensions that are not listed in the mandatory to implement extension I made informational. | 18 October 2023, 16:30:04 UTC |
29a31e3 | Martin Thomson | 30 July 2023, 04:41:08 UTC | Use aasvg for pictures | 30 July 2023, 04:41:08 UTC |
da712dc | Christopher Wood | 27 July 2023, 20:52:11 UTC | Merge pull request #1325 from ekr/issue1308_meaningful_external_identities Recommend not using legible identities. Fixes #1308 | 27 July 2023, 20:52:11 UTC |
02cb675 | EKR | 13 July 2023, 16:09:11 UTC | Remove parenthetical | 13 July 2023, 16:12:11 UTC |
f6e3344 | Christopher Wood | 13 July 2023, 15:34:47 UTC | Update draft-ietf-tls-rfc8446bis.md | 13 July 2023, 15:34:47 UTC |
a6dac32 | EKR | 10 July 2023, 14:18:11 UTC | Clarification | 10 July 2023, 14:18:11 UTC |
1f4565e | EKR | 10 July 2023, 14:16:51 UTC | Recommend not using legible identities. Fixes #1308 | 10 July 2023, 14:16:51 UTC |
9cd3649 | EKR | 07 July 2023, 21:02:47 UTC | Fix affiliation | 07 July 2023, 21:02:47 UTC |
3a03304 | Eric Rescorla | 07 July 2023, 20:55:18 UTC | Merge pull request #1321 from ekr/issue1310 MT's proposed change. Fixes #1310. Fixes #1319 | 07 July 2023, 20:55:18 UTC |
1c10608 | Eric Rescorla | 07 July 2023, 20:54:09 UTC | Update draft-ietf-tls-rfc8446bis.md | 07 July 2023, 20:54:09 UTC |
76c269f | Eric Rescorla | 07 July 2023, 20:53:19 UTC | Merge pull request #1322 from ekr/issue1309_obsoletes Remove things that are already obsolete. Fixes #1309. | 07 July 2023, 20:53:19 UTC |
2d5c33f | Eric Rescorla | 07 July 2023, 20:53:11 UTC | Merge pull request #1323 from ekr/issue1311_certificate_request Add changelog entry for CertificateRequest. Fixes #1311 | 07 July 2023, 20:53:11 UTC |
21f66aa | Eric Rescorla | 07 July 2023, 20:53:00 UTC | Merge pull request #1324 from ekr/issue1313_punctuation Fix punctuation changes that didn't get ported from RFC 8446. Fixes #… | 07 July 2023, 20:53:00 UTC |
0d5fdbd | EKR | 07 July 2023, 03:12:22 UTC | Fix punctuation changes that didn't get ported from RFC 8446. Fixes #1313 | 07 July 2023, 03:12:22 UTC |
8137642 | EKR | 07 July 2023, 03:09:11 UTC | Add changelog entry for CertificateRequest. Fixes #1311 | 07 July 2023, 03:09:11 UTC |
f7aaf01 | EKR | 07 July 2023, 03:05:32 UTC | Remove things that are already obsolete | 07 July 2023, 03:05:32 UTC |
332a7c0 | EKR | 07 July 2023, 03:03:48 UTC | Fix lint | 07 July 2023, 03:03:48 UTC |
d6c78e2 | EKR | 07 July 2023, 03:02:04 UTC | MT's proposed change. Fixes #1310. Fixes #1319 | 07 July 2023, 03:02:04 UTC |
5a5818b | Eric Rescorla | 07 July 2023, 02:27:25 UTC | Merge pull request #1320 from davidben/double-brackets Clarify that double brackets are not part of the presentation language | 07 July 2023, 02:27:25 UTC |
abf78ff | David Benjamin | 16 June 2023, 17:29:02 UTC | Clarify that double brackets are not part of the presentation language They denote optional components of the presentation language and are not literal components of the presentation language itself. Fixes #1315 | 16 June 2023, 17:29:44 UTC |
d393ed5 | Eric Rescorla | 16 June 2023, 13:25:40 UTC | Merge pull request #1316 from sayrer/naming Fix a missed name change. | 16 June 2023, 13:25:40 UTC |
85706d6 | Robert Sayre | 15 June 2023, 21:14:55 UTC | Fix a missed name change. | 15 June 2023, 21:14:55 UTC |
18ee21a | Eric Rescorla | 21 May 2023, 22:59:22 UTC | Merge pull request #1314 from emanjon/patch-23 (EC)DHE instead of EC(DHE) | 21 May 2023, 22:59:22 UTC |
b826999 | John Preuß Mattsson | 20 May 2023, 18:00:00 UTC | (EC)DHE instead of EC(DHE) #1312 | 20 May 2023, 18:00:00 UTC |
d7bb422 | Eric Rescorla | 27 March 2023, 04:06:53 UTC | Merge pull request #1307 from tlswg/seanturner-IANA-tweak IANA tweak | 27 March 2023, 04:06:53 UTC |
b7ad1ac | Sean Turner | 27 March 2023, 03:59:19 UTC | IANA tweak I believe we are asking IANA to also update all references to "this RFC". | 27 March 2023, 03:59:19 UTC |
c9bf87b | EKR | 27 March 2023, 02:29:50 UTC | Changelog | 27 March 2023, 02:29:50 UTC |
2afa45f | Eric Rescorla | 27 March 2023, 02:25:50 UTC | Merge pull request #1304 from ekr/iana_considerations_bis Update IANA considerations to clarify what is new | 27 March 2023, 02:25:50 UTC |
c2a9f86 | Eric Rescorla | 27 March 2023, 02:25:27 UTC | Merge pull request #1303 from ekr/changelog_plus Update the changelog | 27 March 2023, 02:25:27 UTC |
dfc4c59 | Eric Rescorla | 27 March 2023, 02:25:22 UTC | Update draft-ietf-tls-rfc8446bis.md Co-authored-by: Christopher Wood <caw@heapingbits.net> | 27 March 2023, 02:25:22 UTC |
56fb7c3 | EKR | 27 March 2023, 02:24:56 UTC | And 8447 | 27 March 2023, 02:24:56 UTC |
3f7145f | EKR | 27 March 2023, 02:11:05 UTC | Update IANA considerations to clarify what is new | 27 March 2023, 02:11:05 UTC |
cedc968 | EKR | 27 March 2023, 02:01:22 UTC | Update the changelog - Change "should" -> "SHOULD" around user_canceled - Replicate the 8773 language to another place where external PSKs is discussed. - Remove an OPEN ISSUE marker | 27 March 2023, 02:01:22 UTC |
b69ee73 | Eric Rescorla | 27 March 2023, 01:32:39 UTC | Merge pull request #1301 from ekr/issue1299_key_limits Fixes #1299. Require key updates | 27 March 2023, 01:32:39 UTC |
d4ab8bf | EKR | 27 March 2023, 01:16:28 UTC | Amendment from MT | 27 March 2023, 01:16:28 UTC |
96439f7 | EKR | 26 March 2023, 22:08:01 UTC | Fixes #1299. Require key updates but tell receiving implementations not to enforce. | 26 March 2023, 22:08:01 UTC |
2560c00 | Eric Rescorla | 26 March 2023, 22:02:30 UTC | Merge pull request #1300 from ekr/issue1291_same_key clarify same certificatE | 26 March 2023, 22:02:30 UTC |
724677a | EKR | 26 March 2023, 01:21:42 UTC | clarify same certificatE | 26 March 2023, 01:21:42 UTC |
476f7d8 | BenSmyth | 29 January 2021, 10:08:07 UTC | Updated contributor list with Ben Smyth. | 14 March 2023, 13:22:45 UTC |
df0ce2b | Eric Rescorla | 13 March 2023, 20:24:55 UTC | Merge pull request #1298 from ekr/changelog Changelog entries | 13 March 2023, 20:24:55 UTC |
4b520c3 | Eric Rescorla | 13 March 2023, 20:20:06 UTC | Merge pull request #1296 from ekr/certs_plus_psk Certs plus psk | 13 March 2023, 20:20:06 UTC |
5bf48d8 | Eric Rescorla | 13 March 2023, 20:19:57 UTC | Merge pull request #1297 from ekr/issue1284_auth_text Issue1284 auth text | 13 March 2023, 20:19:57 UTC |
9e91187 | EKR | 13 March 2023, 19:07:05 UTC | Changelog entries | 13 March 2023, 19:07:05 UTC |
a2e9cfc | EKR | 13 March 2023, 19:00:13 UTC | Add some more text around authentication. Fixes #1284 | 13 March 2023, 19:00:55 UTC |
8da62fd | EKR | 13 March 2023, 18:54:33 UTC | Clarification | 13 March 2023, 19:00:55 UTC |
bbf9d93 | EKR | 13 March 2023, 18:54:33 UTC | Clarification | 13 March 2023, 18:54:33 UTC |
42476c4 | EKR | 13 March 2023, 18:53:25 UTC | Explain about RFC 8773 | 13 March 2023, 18:53:25 UTC |
688b038 | Eric Rescorla | 13 March 2023, 18:50:17 UTC | Merge pull request #1270 from ekr/issue1257_key_updates Update KeyUpdate limits with text from RFC 9147. Fixed #1257 | 13 March 2023, 18:50:17 UTC |
c7e3cdd | EKR | 13 March 2023, 18:47:50 UTC | Revisions based on review comments | 13 March 2023, 18:49:24 UTC |
5cf2c89 | EKR | 21 October 2022, 20:14:46 UTC | Update KeyUpdate limits with text from RFC 9147. Fixed #1257 | 13 March 2023, 18:48:54 UTC |
14cd577 | Eric Rescorla | 13 March 2023, 18:35:06 UTC | Merge pull request #1294 from ekr/reuse_of_external_psk Discuss the implications of external PSK reuse. Fixes #1287 | 13 March 2023, 18:35:06 UTC |
cc12740 | Eric Rescorla | 13 March 2023, 18:34:37 UTC | Merge pull request #1295 from ekr/issue1280_ignore_nst Ignore NST if you don't support resumption. Fixes #1280 | 13 March 2023, 18:34:37 UTC |
1f22ddb | EKR | 13 March 2023, 15:53:32 UTC | Fix whitespace | 13 March 2023, 15:53:32 UTC |
80141b4 | EKR | 11 March 2023, 22:34:03 UTC | Ignore NST if you don't support resumption. Fixes #1280 | 11 March 2023, 22:34:03 UTC |
bcc4927 | EKR | 11 March 2023, 22:31:22 UTC | Editorial | 11 March 2023, 22:31:22 UTC |
39f1fe3 | Eric Rescorla | 11 March 2023, 22:30:21 UTC | Merge pull request #1282 from emanjon/patch-17 #1281 describe effects of creating new long-term keys | 11 March 2023, 22:30:21 UTC |
e83b12b | EKR | 11 March 2023, 22:17:11 UTC | Discuss the implications of external PSK reuse. Fixes #1287 | 11 March 2023, 22:17:11 UTC |
fcc6177 | Eric Rescorla | 11 March 2023, 20:50:54 UTC | Merge pull request #1286 from emanjon/patch-19 Reusing key shares enables client and server tracking | 11 March 2023, 20:50:54 UTC |
37cab99 | Eric Rescorla | 11 March 2023, 20:41:44 UTC | Merge pull request #1293 from emanjon/patch-22 FIPS.186-5 has been published by NIST | 11 March 2023, 20:41:44 UTC |
8d1e46e | Eric Rescorla | 11 March 2023, 20:41:12 UTC | Merge pull request #1275 from ekr/unsolicited_responses Clarify unsolicited | 11 March 2023, 20:41:12 UTC |
e8b732a | Eric Rescorla | 11 March 2023, 20:40:50 UTC | Merge pull request #1283 from emanjon/patch-18 Adding John Preuß Mattsson as contributor | 11 March 2023, 20:40:50 UTC |
03af783 | Eric Rescorla | 11 March 2023, 20:40:04 UTC | Merge pull request #1290 from davidben/close-notify-level Specify the alert level of close_notify. | 11 March 2023, 20:40:04 UTC |
bac25fb | John Preuß Mattsson | 03 February 2023, 14:38:41 UTC | FIPS.186-5 has been published by NIST - FIPS 186-4 is obsolete - Curve definitions have moved to the new NIST SP 800-186 - ANSI X9.62 is behind a paywall and should be avoided if possible. References behind paywall can not be accessed by most readers. This makes it harder to implement and to evaluate the security of the protocol. FIPS 186-5 removed the dependency on ANSI X9.62 and defines ECDSA itself. Point validation is defined in the new NIST SP 800-186. | 03 February 2023, 14:38:41 UTC |
128387d | David Benjamin | 13 January 2023, 00:53:54 UTC | Specify the alert level of close_notify. close_notify has always used a warning alert level, but this is not actually written down anywhere. It seems to have gotten lost as early as RFC 4346 (TLS 1.1!). In RFC 2246, there is some text that mentions the correct level is warning as an aside in describing something else. close_notify This message notifies the recipient that the sender will not send any more messages on this connection. The session becomes unresumable if any connection is terminated without proper close_notify messages with level equal to warning. I wasn't able to find any other text that discussed this. Then, RFC 4346 dropped the session termination behavior: close_notify This message notifies the recipient that the sender will not send any more messages on this connection. Note that as of TLS 1.1, failure to properly close a connection no longer requires that a session not be resumed. This is a change from TLS 1.0 to conform with widespread implementation practice. But in doing so, it dropped any mention of which alert level to use. That text has carried over to RFC 8446 as: close_notify: This alert notifies the recipient that the sender will not send any more messages on this connection. Any data received after a closure alert has been received MUST be ignored. In RFC 8446, we said alert levels no longer matter and can be "safely ignored", but this still leaves unspecified what the sender should do. Skimming implementations, both BoringSSL and NSS will treat "fatal" close_notify as an error, so using "warning" is also necessary for interop. | 13 January 2023, 00:58:54 UTC |
0d48f9e | John Preuß Mattsson | 12 January 2023, 16:15:26 UTC | Update draft-ietf-tls-rfc8446bis.md | 12 January 2023, 16:15:26 UTC |
51ee405 | John Preuß Mattsson | 10 January 2023, 06:41:16 UTC | Update draft-ietf-tls-rfc8446bis.md key shares -> private keys related to key shares resumption_Secret -> resumption_secret | 10 January 2023, 06:41:16 UTC |
d27f557 | John Preuß Mattsson | 10 January 2023, 06:28:24 UTC | remove comma slice as suggested by Martin | 10 January 2023, 06:28:24 UTC |
dfce89f | John Preuß Mattsson | 10 January 2023, 06:27:29 UTC | Update draft-ietf-tls-rfc8446bis.md Co-authored-by: kaduk <kaduk-github@mit.edu> | 10 January 2023, 06:27:29 UTC |
bc0c90b | John Preuß Mattsson | 10 January 2023, 06:27:22 UTC | Update draft-ietf-tls-rfc8446bis.md Co-authored-by: kaduk <kaduk-github@mit.edu> | 10 January 2023, 06:27:22 UTC |
d2191f3 | John Preuß Mattsson | 06 January 2023, 12:12:59 UTC | Reusing key shares enables tracking #1285 | 06 January 2023, 12:12:59 UTC |