Re: [apps-discuss] For consideration as an appsawg document: draft-hoffman-server-has-tls-03.txt

Peter Saint-Andre <stpeter@stpeter.im> Thu, 27 January 2011 18:51 UTC

Return-Path: <stpeter@stpeter.im>
X-Original-To: apps-discuss@core3.amsl.com
Delivered-To: apps-discuss@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 085543A69DA for <apps-discuss@core3.amsl.com>; Thu, 27 Jan 2011 10:51:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.558
X-Spam-Level:
X-Spam-Status: No, score=-102.558 tagged_above=-999 required=5 tests=[AWL=0.041, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9VRd57Uh33t0 for <apps-discuss@core3.amsl.com>; Thu, 27 Jan 2011 10:51:55 -0800 (PST)
Received: from stpeter.im (stpeter.im [207.210.219.233]) by core3.amsl.com (Postfix) with ESMTP id 025333A69D5 for <apps-discuss@ietf.org>; Thu, 27 Jan 2011 10:51:55 -0800 (PST)
Received: from dhcp-64-101-72-234.cisco.com (dhcp-64-101-72-234.cisco.com [64.101.72.234]) (Authenticated sender: stpeter) by stpeter.im (Postfix) with ESMTPSA id 4B53A400F6; Thu, 27 Jan 2011 12:11:19 -0700 (MST)
Message-ID: <4D41BF81.7030502@stpeter.im>
Date: Thu, 27 Jan 2011 11:54:57 -0700
From: Peter Saint-Andre <stpeter@stpeter.im>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; en-US; rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7
MIME-Version: 1.0
To: Barry Leiba <barryleiba@computer.org>
References: <4D33AC5F.3010609@vpnc.org> <AANLkTim5LpgqM5F2Zb_s+O4Jv8vrF+dcrnr3DpCMAJ6C@mail.gmail.com>
In-Reply-To: <AANLkTim5LpgqM5F2Zb_s+O4Jv8vrF+dcrnr3DpCMAJ6C@mail.gmail.com>
X-Enigmail-Version: 1.1.1
OpenPGP: url=http://www.saint-andre.com/me/stpeter.asc
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha1; boundary="------------ms070207050806010504080703"
Cc: Paul Hoffman <paul.hoffman@vpnc.org>, apps-discuss@ietf.org
Subject: Re: [apps-discuss] For consideration as an appsawg document: draft-hoffman-server-has-tls-03.txt
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Jan 2011 18:51:56 -0000

I agree that this document is appropriate for the appsawg.

On 1/24/11 7:35 PM, Barry Leiba wrote:
> Jiankang, Alexey, and I have discussed this, and we think the document
> (see below) is appropriate for the appsawg to adopt, review, and
> discuss.  I would like to hear, as soon as possible and in any case by
> 4 Feb, any objections to adoption of the document by appsawg.  I am
> also asking participants here to please review the document and begin
> discussion on this mailing list.
> 
> Barry, as appsawg chair
> 
> On Sun, Jan 16, 2011 at 9:41 PM, Paul Hoffman <paul.hoffman@vpnc.org> wrote:
>> Greetings again. I would like this WG to consider adopting the following
>> draft as a WG item. It is definitely apps-related, and there is no other
>> appropriate WG in the Applications or Security areas for it. It has been
>> discussed in the websec WG, but that WG is limited to HTTP only (and this
>> document covers TLS for all application protocols).
>>
>> FWIW, some of the topics in this draft are quite open for active discussion.
>> The discussion in websec brought up some interesting issues, but they got
>> discussed in the HTTP context only, and this WG would be a better place to
>> discuss them for all server protocols.
>>
>> --Paul Hoffman
>>
>> A New Internet-Draft is available from the on-line Internet-Drafts
>> directories.
>>
>>        Title           : Specifying That a Server Supports TLS
>>        Author(s)       : P. Hoffman
>>        Filename        : draft-hoffman-server-has-tls-03.txt
>>        Pages           : 8
>>        Date            : 2011-01-16
>>
>> A server that hosts applications that can be run with or without TLS
>> may want to communicate with clients whether the server is hosting an
>> application only using TLS or also hosting the application without
>> TLS.  Many clients have a policy to try to set up a TLS session but
>> fall back to insecure if the TLS session cannot be set up.  If the
>> server can securely communicate whether or not it can fall back to
>> insecure tells such a client whether or not they should even try to
>> set up an insecure session with the server.  This document describes
>> the use cases for this type of communication and a secure method for
>> communicating that information.
>>
>> A URL for this Internet-Draft is:
>> http://www.ietf.org/internet-drafts/draft-hoffman-server-has-tls-03.txt