IETF Logo Mail Archive

Re: [Ace] Protocol Action: 'Datagram Transport Layer Security (DTLS) Profile for Authentication and Authorization for Constrained Environments (ACE)' to Proposed Standard (draft-ietf-ace-dtls-authorize-18.txt)

Carsten Bormann <cabo@tzi.org> Thu, 04 November 2021 15:14 UTC

Return-Path: <cabo@tzi.org>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D6CC3A0D79 for <ace@ietfa.amsl.com>; Thu, 4 Nov 2021 08:14:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.919
X-Spam-Level:
X-Spam-Status: No, score=-1.919 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g0Dyv9k1AiST for <ace@ietfa.amsl.com>; Thu, 4 Nov 2021 08:14:31 -0700 (PDT)
Received: from gabriel-smtp.zfn.uni-bremen.de (gabriel-smtp.zfn.uni-bremen.de [134.102.50.15]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CCA0B3A0D72 for <ace@ietf.org>; Thu, 4 Nov 2021 08:14:30 -0700 (PDT)
Received: from [192.168.217.118] (p5089a10c.dip0.t-ipconnect.de [80.137.161.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by gabriel-smtp.zfn.uni-bremen.de (Postfix) with ESMTPSA id 4HlRxv21Kzz2xJf; Thu, 4 Nov 2021 16:14:27 +0100 (CET)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.7\))
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <HE1PR0701MB305019E7D9893F29E83A16FB898D9@HE1PR0701MB3050.eurprd07.prod.outlook.com>
Date: Thu, 04 Nov 2021 16:14:26 +0100
Cc: "ace@ietf.org" <ace@ietf.org>
X-Mao-Original-Outgoing-Id: 657731666.827311-1adbf2a8c2a48017d3485de0d0a6e13d
Content-Transfer-Encoding: quoted-printable
Message-Id: <48590426-F6D8-4EB8-AE81-B535CC219FEA@tzi.org>
References: <HE1PR0701MB305019E7D9893F29E83A16FB898D9@HE1PR0701MB3050.eurprd07.prod.outlook.com>
To: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org>
X-Mailer: Apple Mail (2.3608.120.23.2.7)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/DI3ZApQw-uMdhKW8dW_Nx5sUe9A>
Subject: Re: [Ace] Protocol Action: 'Datagram Transport Layer Security (DTLS) Profile for Authentication and Authorization for Constrained Environments (ACE)' to Proposed Standard (draft-ietf-ace-dtls-authorize-18.txt)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Nov 2021 15:14:36 -0000

On 2021-11-04, at 15:08, John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org> wrote:
> 
> I think IESG should send any (D)TLS 1.2 only drafts back to the WGs from now on. 

Since you made this comment on an approved document (which the IESG no longer gets to “send back”), I’m not sure I understand what you are trying to say, but I don’t agree with any of the possible interpretations.

> A lot of SDOs and industries are working hard on updating all (D)TLS applications to work also with 1.3. The last thing the world needs is more 1.2 only standards.

I don’t think we need to form a queue behind the completion of DTLS 1.3.
This apparently will take some more time:
https://www.rfc-editor.org/auth48/C321
2021-10-18:  Received email from Eric Rescorla that an open technical issue is ongoing.

However, we should already have been working on a -bis for the DTLS profile that also supports DTLS 1.3; I can certainly agree with that.

Grüße, Carsten

v2.23.0 | Report a Bug | By Email