IETF Logo Mail Archive

[apps-discuss] draft-hoffman-server-has-tls-04

Paul Hoffman <paul.hoffman@vpnc.org> Sat, 12 March 2011 23:08 UTC

Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: apps-discuss@core3.amsl.com
Delivered-To: apps-discuss@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5A5943A6A5B for <apps-discuss@core3.amsl.com>; Sat, 12 Mar 2011 15:08:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.983
X-Spam-Level:
X-Spam-Status: No, score=-101.983 tagged_above=-999 required=5 tests=[AWL=0.616, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P0IwN94w6O1I for <apps-discuss@core3.amsl.com>; Sat, 12 Mar 2011 15:08:04 -0800 (PST)
Received: from hoffman.proper.com (unknown [IPv6:2001:4870:a30c:41::81]) by core3.amsl.com (Postfix) with ESMTP id 1FE783A6A48 for <apps-discuss@ietf.org>; Sat, 12 Mar 2011 15:08:03 -0800 (PST)
Received: from MacBook-08.local (75-101-30-90.dsl.dynamic.sonic.net [75.101.30.90]) (authenticated bits=0) by hoffman.proper.com (8.14.4/8.14.3) with ESMTP id p2CN9ODP096561 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO) for <apps-discuss@ietf.org>; Sat, 12 Mar 2011 16:09:24 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
Message-ID: <4D7BFD23.60707@vpnc.org>
Date: Sat, 12 Mar 2011 15:09:23 -0800
From: Paul Hoffman <paul.hoffman@vpnc.org>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.15) Gecko/20110303 Thunderbird/3.1.9
MIME-Version: 1.0
To: apps-discuss@ietf.org
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: [apps-discuss] draft-hoffman-server-has-tls-04
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 12 Mar 2011 23:08:05 -0000

Greetings again. Although the WG chairs said that it was fine to bring 
this document into the WG, I was hesitant to do so before dealing with 
all the issues that were raised in the earlier discussion. Try as I 
might, I wasn't able to resolve one significant issue, so I have kept 
this as an individual submission, listed below.

The issue is listed in Appendix A of the new draft. If people agree that 
one of the proposed solutions is fine, I can make that change and issue 
a new draft for the WG after the window opens in Prague. I suspect that 
there will be a lot of discussion of which proposal is best; if I'm 
wrong, I apologize for not having seen it early and turning this into a 
WG document before now.

--Paul Hoffman

==========

A New Internet-Draft is available from the on-line Internet-Drafts 
directories.

	Title           : Specifying That a Server Supports TLS
	Author(s)       : P. Hoffman
	Filename        : draft-hoffman-server-has-tls-04.txt
	Pages           : 9
	Date            : 2011-03-12

A server that hosts applications that can be run with or without TLS
may want to communicate with clients whether the server is hosting an
application only using TLS or also hosting the application without
TLS.  Many clients have a policy to try to set up a TLS session but
fall back to insecure if the TLS session cannot be set up.  If the
server can securely communicate whether or not it can fall back to
insecure tells such a client whether or not they should even try to
set up an insecure session with the server.  This document describes
the use cases for this type of communication and a secure method for
communicating that information.

A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-hoffman-server-has-tls-04.txt

v2.23.0 | Report a Bug | By Email