Transport Layer Security (tls) ------------------------------ Charter Last Modified: 2011-05-31 Current Status: Active Working Group Chair(s): Eric Rescorla Joseph Salowey Eric Rescorla Security Area Director(s): Stephen Farrell Sean Turner Security Area Advisor: Sean Turner Technical Advisor(s): Allison Mankin Mailing Lists: General Discussion:tls@ietf.org To Subscribe: https://www.ietf.org/mailman/listinfo/tls Archive: http://www.ietf.org/mail-archive/web/tls/ Description of Working Group: The TLS Working Group was established in 1996 to standardize a 'transport layer' security protocol. The working group began with SSL version 3.0. The TLS Working Group has completed a series of specifications that describe the Transport Layer Security protocol versions 1.0, 1.1, and 1.2, extensions to the protocol, and new ciphersuites to be used with TLS. The primary goals of the WG are to maintain: - The TLS protocol, RFC 5246; - The DTLS protocol, draft-ietf-tls-rfc4347-bis. Significant changes to the protocol, such as a new version 1.3, are not within scope of the working group unless they are explicitly added to the charter. The secondary goals of the WG are to publish: - Guidelines for Specifying the Use of TLS/DTLS; - Recommendations for use of TLS (e.g., server ID); - Extensions to TLS and DTLS; and, - Cipher suites. Goals and Milestones: Done Agreement on charter and issues in current draft. Done Final draft for Secure Transport Layer Protocol ('STLP') Done Working group 'Last Call' Done Submit to IESG for consideration as a Proposed Standard. Done First revised draft of TLS specification Done TSL 1.1 Specification Done First draft of TLS 1.2 specification, including CTR mode cipher suites Done First draft of specification for cipher suites with combined encryption/authentication modes Dec 2011 Heartbeat Extension Sent to IESG Internet-Drafts: Posted Revised I-D Title ------ ------- -------------------------------------------- Jun 2008 Mar 2011 Datagram Transport Layer Security version 1.2 Jun 2010 Jan 2011 Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) Heartbeat Extension Request For Comments: RFC Stat Published Title ------- -- ----------- ------------------------------------ RFC2246 PS Jan 1999 The TLS Protocol Version 1.0 RFC2712 PS Oct 1999 Addition of Kerberos Cipher Suites to Transport Layer Security (TLS) RFC2817 PS May 2000 Upgrading to TLS Within HTTP/1.1 RFC2818 I Jun 2000 HTTP Over TLS RFC3268 PS Jul 2002 AES Ciphersuites for TLS RFC3546 PS Jun 2003 Transport Layer Security (TLS) Extensions RFC3749Standard May 2004 Transport Layer Security Protocol Compression Methods RFC4132Standard Jul 2005 Addition of Camellia Cipher Suites to Transport Layer Security (TLS) RFC4279Standard Dec 2005 Pre-Shared Key Ciphersuites for Transport Layer Security (TLS) RFC4346 PS Apr 2006 The The Transport Layer Security (TLS) Protocol Version 1.1 RFC4366 PS Apr 2006 Transport Layer Security (TLS) Extensions RFC4492 I May 2006 Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS) RFC4785 PS Jan 2007 Pre-Shared Key (PSK) Cipher Suites with NULL Encryption for Transport Layer Security (TLS) RFC5081 E Nov 2007 Using OpenPGP keys for TLS authentication RFC5054 I Nov 2007 Using the Secure Remote Password (SRP) Protocol for TLS Authentication RFC5246 PS Aug 2008 The Transport Layer Security (TLS) Protocol Version 1.2 RFC5288 PS Aug 2008 AES Galois Counter Mode (GCM) Cipher Suites for TLS RFC5289 I Aug 2008 TLS Elliptic Curve Cipher Suites with SHA-256/384 and AES Galois Counter Mode (GCM) RFC5469 I Feb 2009 DES and IDEA Cipher Suites for Transport Layer Security (TLS) RFC5487 PS Mar 2009 Pre-Shared Key Cipher Suites for TLS with SHA-256/384 and AES Galois Counter Mode RFC5489 I Mar 2009 ECDHE_PSK Cipher Suites for Transport Layer Security (TLS) RFC5746 PS Feb 2010 Transport Layer Security (TLS) Renegotiation Indication Extension RFC5705 PS Mar 2010 Keying Material Exporters for Transport Layer Security (TLS) RFC6066 PS Jan 2011 Transport Layer Security (TLS) Extensions: Extension Definitions RFC6176 PS Mar 2011 Prohibiting Secure Sockets Layer (SSL) Version 2.0