<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Hi,<br>
<br>
Ivan Ristić agrees that we should remove !SRP.<br>
Peter Gutmann also suggests to use TLS-SRP (or TLS-PSK) instead of
any other ciphersuites for password-authentication in his upcoming
book "Engineering Security" in several places. (From my point of
view, TLS-SRP seems a bit more safe than TLS-PSK for
password-authentication, I would use TLS-PSK for embedded and other
special applications)<br>
<br>
Can we remove !SRP from the ciphersuites?<br>
<br>
Best regards,<br>
Philipp Gühring <br>
<div class="moz-forward-container"><br>
<br>
-------- Original-Nachricht --------
<table class="moz-email-headers-table" border="0" cellpadding="0"
cellspacing="0">
<tbody>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">Betreff:
</th>
<td>Re: !SRP</td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">Datum: </th>
<td>Mon, 02 Dec 2013 10:04:29 +0000</td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">Von: </th>
<td>Ivan Ristić <a class="moz-txt-link-rfc2396E" href="mailto:ivanr@webkreator.com"><ivanr@webkreator.com></a></td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">An: </th>
<td>Philipp Gühring <a class="moz-txt-link-rfc2396E" href="mailto:pg@futureware.at"><pg@futureware.at></a></td>
</tr>
</tbody>
</table>
<br>
<br>
<pre>I agree. I'll see how best to do it.
Thanks.
On 29/11/2013 14:01, Philipp Gühring wrote:
> Hi Ivan,
>
>> Neither. But it's not supported by most (all) major browsers and
>> virtually no body uses it. Thus, I disable it purely to disable
>> clutter,
>> allowing you to have a better idea of what you're using.
>
> Ok, I understand. Good. Thanks a lot for your fast feedback!
>
> Unfortunately, people are taking your suggestion as security
> recommendation, and implement it that way on their systems.
> It´s a bit difficult for most browsers to implement SRP, since it is a bit
> against their current architecture, so it takes quite some changes which
> take some time, but I hope that they will succeed in implementing it soon.
> It would be disappointing if by the time the browsers have implemented
> SRP, everyone else believes that we should do !SRP in the configs, and it
> will be hard to revert that afterwards.
> Actually, I think that most servers should not advertise SRP ciphersuites
> in the handshake, unless they are configured with all necessary parameters
> for SRP. So I would expect that you would not get SRP clutter in the
> handshake if you removed !SRP from the config.
>
> Therefore I would ask you to remove !SRP.
>
> But feel free to add !SRP when it really causes any problems, or when you
> hear about any security problems. I just hope that we can use SRP for
> things like POP3/IMAP, where I think that it can provide a really good
> man-in-the-middle prevention in the future.
>
> Best regards,
> Philipp Gühring
>
--
Ivan
</pre>
<br>
</div>
<br>
</body>
</html>