draft-ietf-tls-des-idea-00.txt   draft-ietf-tls-des-idea-01.txt 
TLS Working Group P. Eronen, Ed. TLS Working Group P. Eronen, Ed.
Internet-Draft Nokia Internet-Draft Nokia
Intended status: Informational February 14, 2008 Intended status: Informational March 10, 2008
Expires: August 17, 2008 Expires: September 11, 2008
DES and IDEA Cipher Suites for Transport Layer Security (TLS) DES and IDEA Cipher Suites for Transport Layer Security (TLS)
draft-ietf-tls-des-idea-00.txt draft-ietf-tls-des-idea-01.txt
Status of this Memo Status of this Memo
By submitting this Internet-Draft, each author represents that any By submitting this Internet-Draft, each author represents that any
applicable patent or other IPR claims of which he or she is aware applicable patent or other IPR claims of which he or she is aware
have been or will be disclosed, and any of which he or she becomes have been or will be disclosed, and any of which he or she becomes
aware will be disclosed, in accordance with Section 6 of BCP 79. aware will be disclosed, in accordance with Section 6 of BCP 79.
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF), its areas, and its working groups. Note that Task Force (IETF), its areas, and its working groups. Note that
skipping to change at page 1, line 34 skipping to change at page 1, line 34
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
The list of current Internet-Drafts can be accessed at The list of current Internet-Drafts can be accessed at
http://www.ietf.org/ietf/1id-abstracts.txt. http://www.ietf.org/ietf/1id-abstracts.txt.
The list of Internet-Draft Shadow Directories can be accessed at The list of Internet-Draft Shadow Directories can be accessed at
http://www.ietf.org/shadow.html. http://www.ietf.org/shadow.html.
This Internet-Draft will expire on August 17, 2008. This Internet-Draft will expire on September 11, 2008.
Copyright Notice Copyright Notice
Copyright (C) The IETF Trust (2008). Copyright (C) The IETF Trust (2008).
Abstract Abstract
TLS specification versions 1.0 (RFC 2246) and 1.1 (RFC 4346) included TLS specification versions 1.0 (RFC 2246) and 1.1 (RFC 4346) included
cipher suites based on DES (Data Encryption Standard) and IDEA cipher suites based on DES (Data Encryption Standard) and IDEA
(International Data Encryption Algorithm) algorithms. DES (when used (International Data Encryption Algorithm) algorithms. DES (when used
skipping to change at page 3, line 43 skipping to change at page 3, line 43
search. However, IDEA cipher suites for TLS have not seen widespread search. However, IDEA cipher suites for TLS have not seen widespread
use: most implementations either do not support them, do not enable use: most implementations either do not support them, do not enable
them by default, or do not negotiate them when other algorithms (such them by default, or do not negotiate them when other algorithms (such
as AES, 3DES, or RC4) are available. as AES, 3DES, or RC4) are available.
Experience has shown that rarely used code is a source of security Experience has shown that rarely used code is a source of security
and interoperability problems; given this, the IDEA cipher suites and interoperability problems; given this, the IDEA cipher suites
SHOULD NOT be implemented by TLS libraries, and SHOULD be removed SHOULD NOT be implemented by TLS libraries, and SHOULD be removed
from existing implementations. from existing implementations.
Several reasons have been suggested to explain why the IDEA cipher
suites have been rarely used. These include the existence of IPR
disclosures (which can be obtained from the IETF on-line IPR
repository at http://www.ietf.org/ipr); poor performance in software
on common CPU architectures; a 64-bit block size which is considered
short by modern standards; the existence of weak keys; lack of
government approval in many countries; and the availability of other
algorithms which addressed at least some of these reasons.
5. IANA Considerations 5. IANA Considerations
IANA has already allocated values for the cipher suites described in IANA has already allocated values for the cipher suites described in
this document in the TLS Cipher Suite Registry, defined in [TLS11]. this document in the TLS Cipher Suite Registry, defined in [TLS11].
IANA is requested to update (has updated) the references of these IANA is requested to update (has updated) the references of these
cipher suites to point to this document: cipher suites to point to this document:
Value Description Reference Value Description Reference
----------- -------------------------------------- --------- ----------- -------------------------------------- ---------
0x00,0x07 TLS_RSA_WITH_IDEA_CBC_SHA [RFCnnnn] 0x00,0x07 TLS_RSA_WITH_IDEA_CBC_SHA [RFCnnnn]
 End of changes. 4 change blocks. 
13 lines changed or deleted 4 lines changed or added

This html diff was produced by rfcdiff 1.34. The latest version is available from http://tools.ietf.org/tools/rfcdiff/