BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Not-quite-so-broken TLS 1.3 mechanised conformance checking - Hann
 es Mehnert
DTSTART:20160210T130000Z
DTEND:20160210T140000Z
UID:TALK64371@talks.cam.ac.uk
CONTACT:Peter Sewell
DESCRIPTION:\n[While I expect participants at TRON to know TLS 1.3\, I'd p
 reface the REMS talk with 5-10 minutes brief intro to TLS 1.3\, followed b
 y the 25 minute TRON talk]\n\n\nabstract:\nTLS 1.3 is currently being stan
 dardised. We'll start with a brief\noutline of the changes between TLS 1.2
  and 1.3\, and their motivation.\nAfterwards we'll describe our contributi
 on\, mechanised TLS 1.3\nconformance checking.\n\nThis is a practice talk 
 for TRON\n(https://www.internetsociety.org/events/ndss-symposium-2016/tron
 -workshop-programme).\n This is joint work with David Kaloper.\n\nWe prese
 nt a set of tools to aid TLS 1.3 implementors\, all derived from\na single
  TLS implementation/model.  These include an automated offline\nTLS protoc
 ol conformance checker\, a test oracle validating recorded\nsessions\, a t
 ool replicating recorded sessions with other\nimplementations\, and an int
 eractive online handshake visualisation.\n\nThe conformance checker repeat
 edly runs a user-provided TLS\nimplementation\, attempting to establish TL
 S sessions with it\; the\nchecker explores the TLS parameter space to dete
 rmine feature coverage\nof the provided implementation. The test oracle ta
 kes a recorded session\nbetween two endpoints and decides whether the sess
 ion was conformant\nwith the specification.  The replication utility re-ru
 ns one side of a\nrecorded session against another TLS implementation\, an
 d observes its\nbehaviour.  The online visualisation accepts connections f
 rom clients\nand presents the TLS session as an interactive sequence diagr
 am.\n\nAll of these tools are based on our clean-slate nqsb-TLS\nimplement
 ation/model.  It already supports TLS 1.0-1.2\, and\ninteroperates with a 
 broad range of other TLS implementations.  We are\ncurrently extending nqs
 b-TLS with TLS 1.3 support\, and tracking the\nprogress of the TLS 1.3 dra
 ft\, adapting our implementation/model\naccordingly.\n\nWe invite the comm
 unity to use our tools while implementing the TLS 1.3\nRFC\, and provide f
 eedback on deviations in the interpretation thereof.\nThis process enables
  the community to converge to a single\, mechanically\ncheckable TLS 1.3 m
 odel\, as implemented by nqsb-TLS.\n	
LOCATION:FW11
END:VEVENT
END:VCALENDAR