IETF Logo Mail Archive

Re: [auth48] [AD] Re: AUTH48: RFC-to-be 9325 <draft-ietf-uta-rfc7525bis-11> for your review

Thomas Fossati <Thomas.Fossati@arm.com> Tue, 22 November 2022 08:36 UTC

Return-Path: <Thomas.Fossati@arm.com>
X-Original-To: auth48archive@ietfa.amsl.com
Delivered-To: auth48archive@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C83F2C14CE4D; Tue, 22 Nov 2022 00:36:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.898
X-Spam-Level:
X-Spam-Status: No, score=-6.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=ss/bwh7J; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=ss/bwh7J
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DZEATujcxsgf; Tue, 22 Nov 2022 00:36:52 -0800 (PST)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on20614.outbound.protection.outlook.com [IPv6:2a01:111:f400:7d00::614]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 04053C14CE41; Tue, 22 Nov 2022 00:36:51 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=mQRvHKL856EUCcxiyqgO9QN10UQ7MH1lYwtWR9kPcfM=; b=ss/bwh7JYCGBlAcJLtndYmQnXF508WZiDx720TRZ/OOS8/Uz4L6L/JmMq8m/F0MVVo5bBQeLwT7KMGhc3acKb74iVpzB5d1DMRL/4QxbsDJlZOhvsXEuemmblnmD5lNX1E5LPJB33e4WRvl5y15xABozFfsKhQnlvk3M22b5yrU=
Received: from AM6P194CA0103.EURP194.PROD.OUTLOOK.COM (2603:10a6:209:8f::44) by DB9PR08MB9684.eurprd08.prod.outlook.com (2603:10a6:10:460::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5857.17; Tue, 22 Nov 2022 08:36:42 +0000
Received: from AM7EUR03FT054.eop-EUR03.prod.protection.outlook.com (2603:10a6:209:8f:cafe::85) by AM6P194CA0103.outlook.office365.com (2603:10a6:209:8f::44) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5834.15 via Frontend Transport; Tue, 22 Nov 2022 08:36:42 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com; pr=C
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by AM7EUR03FT054.mail.protection.outlook.com (100.127.140.133) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5834.8 via Frontend Transport; Tue, 22 Nov 2022 08:36:41 +0000
Received: ("Tessian outbound 58faf9791229:v130"); Tue, 22 Nov 2022 08:36:40 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: ccff3fa34f364222
X-CR-MTA-TID: 64aa7808
Received: from 5ef580c3bbd5.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id F2B9EDCB-BF8C-431B-98FF-66E0B53F1EB1.1; Tue, 22 Nov 2022 08:36:33 +0000
Received: from EUR03-AM7-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 5ef580c3bbd5.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Tue, 22 Nov 2022 08:36:33 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Wcp+J9E6QKyCvmO99hg2NNjwCMqq/6wOsv6hAE2rKZqdvCVcyu+xBZZeZAZ9D+j2pmUywWBijAL1ex8xi3z0pXYe9bs+ez8KOEo1d7vcwrMpOBHvtaC2Vqq27fp8VeMxtG+ILI+MHqGUisXF7VZlgPc6d1SRGZBBDCFrpqqEnRiDIKGM/twKMxbI1r9A5U/kgtLY7hcDqENFnYGchLpy0zVihxn7tkjyreD2irmj27rY402gPbnB13zEjRqf+g7TiLicLQKFyqdIDV1NpQ6Mmst4kojHlj1ay7fKpfGymEYTO07qiTFTw+y3tLsMJJZjE6UrcvX/KbISAfK6eC0cww==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=mQRvHKL856EUCcxiyqgO9QN10UQ7MH1lYwtWR9kPcfM=; b=SZ7bwb+KvlCeKViHSWbatP61FujXiVeD68ZlW/suEdKnQU3PG/OzQQyyS5eiYSl1ow5CowqYa+8jHaZl9T/yuX6suH3Nf3coVSxWduvNGyQl+lKix7tpYQK6WNdDhlF13q8h7sdHuMMsc0gfMrxjbhGR9YbkMgXf6Y+C+wKxJAmtPg6NBCb5qaa04Qo10mLaAk0t9MmnxySCalVRVYWq7PWVHw6972m/0gFPVmpbXc9j6ygXA1A4YV2gt7yrzx/FScqVw+I+5Q1PStAALNezCbZ15dAOuhn+2mk+RTlBw5R7g7Gj4rdKmdJQ+YpxInv4iETD/wl7XpDDJcT8aFYi8g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=mQRvHKL856EUCcxiyqgO9QN10UQ7MH1lYwtWR9kPcfM=; b=ss/bwh7JYCGBlAcJLtndYmQnXF508WZiDx720TRZ/OOS8/Uz4L6L/JmMq8m/F0MVVo5bBQeLwT7KMGhc3acKb74iVpzB5d1DMRL/4QxbsDJlZOhvsXEuemmblnmD5lNX1E5LPJB33e4WRvl5y15xABozFfsKhQnlvk3M22b5yrU=
Received: from DB9PR08MB6524.eurprd08.prod.outlook.com (2603:10a6:10:251::8) by AM9PR08MB5889.eurprd08.prod.outlook.com (2603:10a6:20b:2d5::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5857.17; Tue, 22 Nov 2022 08:36:28 +0000
Received: from DB9PR08MB6524.eurprd08.prod.outlook.com ([fe80::17fc:ec4d:9cd4:c68e]) by DB9PR08MB6524.eurprd08.prod.outlook.com ([fe80::17fc:ec4d:9cd4:c68e%4]) with mapi id 15.20.5857.017; Tue, 22 Nov 2022 08:36:28 +0000
From: Thomas Fossati <Thomas.Fossati@arm.com>
To: Peter Saint-Andre <stpeter@stpeter.im>, Karen Moore <kmoore@amsl.com>, "yaronf.ietf@gmail.com" <yaronf.ietf@gmail.com>, "francesca.palombini@ericsson.com" <francesca.palombini@ericsson.com>
CC: "rfc-editor@rfc-editor.org" <rfc-editor@rfc-editor.org>, "uta-ads@ietf.org" <uta-ads@ietf.org>, "uta-chairs@ietf.org" <uta-chairs@ietf.org>, "leifj@sunet.se" <leifj@sunet.se>, "auth48archive@rfc-editor.org" <auth48archive@rfc-editor.org>
Thread-Topic: [AD] Re: AUTH48: RFC-to-be 9325 <draft-ietf-uta-rfc7525bis-11> for your review
Thread-Index: AQHY+4e3/wj9QGy2w0aOOhRoVlcFSa5FMXT3gATXFQCAAAS0AIAABOGAgACQ8EU=
Date: Tue, 22 Nov 2022 08:35:59 +0000
Message-ID: <DB9PR08MB6524C8D9AAAF2B46643619A99C0D9@DB9PR08MB6524.eurprd08.prod.outlook.com>
References: <20221118195334.3D06C55F7E@rfcpa.amsl.com> <DB9PR08MB65242DE7542344E28F46B2559C099@DB9PR08MB6524.eurprd08.prod.outlook.com> <EA184BE8-D1A0-4582-AF30-68035C112D38@amsl.com> <48787804-e87e-86ba-1f5d-590e47dda65f@stpeter.im> <6fd3196e-e929-b45c-d1e4-9a014c80dcfc@stpeter.im>
In-Reply-To: <6fd3196e-e929-b45c-d1e4-9a014c80dcfc@stpeter.im>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Authentication-Results-Original: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
x-ms-traffictypediagnostic: DB9PR08MB6524:EE_|AM9PR08MB5889:EE_|AM7EUR03FT054:EE_|DB9PR08MB9684:EE_
X-MS-Office365-Filtering-Correlation-Id: 27d034af-c0c1-4828-dac9-08dacc64add8
x-checkrecipientrouted: true
nodisclaimer: true
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: Aanth+LUzqXFa1Q11wFBkZYmOOlQpqxqzH9DRosRDlg0tYRGUvGGNB/r3KgHru0pBx+64/5Z6is1mvVRT5ht+FMm7e0NYAZ4AcMXj3fT8XlMPcyXVySuOeMP8Q5pJySA0mEGllqchdh49NVm6U01NR7Y4GeQBZRn8jrKxv64UL3FasobU/ZQbQjiIs85c4fityw8hqtETdHnNH705kCiRzQSuBU9hbbEEOQwE11X7Agntw3zYaKVnEfq50EmbFm9Bbv/DECBQvbRgGsjRVhE3kqpurldZ1HY4LeMQ3tkzt04h1MGWCvjvvb3u/SWk2jUxeWseGT1u/nllcgecMqB7NPohuDL3eUEBU7iKFNR4cqDTTDx0DdWQw+lgSOGSqv9B5oxLUY1yLrEc2FdjWGPUQkhi0oPP6rbuR76+50VhSBP5hMFG2JnrrkvGWB+JmDBNqmmsZ6Gl5M+wd6hoN23M5QFdOOO5DuthswZr7WuWz2R8HB+/zObUvZWM47Ywz/HLrWbtZQl+g7IsPhHoL/oCCa4Amqiugj2DVWSTKPleiGj4R9glm4a7/83ax07YidY7x/lnAGI7lA+xkHH39tsfyL8ZP5Vyi1mr3VkNffIpg4RPaDhuTuKAmknlR2Ee4Yit6rLfQrYnJDrTj283dXC1H1TJXC/x9+yPAbuppGTf0a0ZWQmRQif6t4fW9eRJVnMv89cTjw/0c+6L4vBtqvIbg==
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB9PR08MB6524.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(376002)(366004)(39860400002)(136003)(396003)(346002)(451199015)(38070700005)(26005)(2906002)(110136005)(6506007)(55016003)(71200400001)(6666004)(86362001)(478600001)(83380400001)(38100700002)(122000001)(53546011)(9686003)(33656002)(7696005)(186003)(8936002)(52536014)(41300700001)(91956017)(76116006)(64756008)(66476007)(66556008)(4326008)(8676002)(66946007)(66446008)(5660300002)(54906003)(316002); DIR:OUT; SFP:1101;
Content-Type: multipart/alternative; boundary="_000_DB9PR08MB6524C8D9AAAF2B46643619A99C0D9DB9PR08MB6524eurp_"
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM9PR08MB5889
Original-Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: AM7EUR03FT054.eop-EUR03.prod.protection.outlook.com
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id-Prvs: 62cb644b-7387-4cb7-8812-08dacc64a64e
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: AkAnqj2zSVQIe5fckgUd/TxHPJLZrnqVHjtlVNv1hFj8P0nYxLi3utjNt/E+EyIElau5YM4s6tQ9xrUPgCkkLllNEPLOKX0vfByhWCibNt8yI//M9XNGjBm29K3bIk4RefH6W68Xw+a4JhYJdYuemp3z7uSHiXX4pi9u1KMW6LkndQYUFunDl9MzUEapn72bhv88Pc7u8P5uGehsrzcpqCLlzYffT6NPuokJS+WcSZaofofpVZfPGXQkI0Pi0z96vVL+0H7F/n5hSHgItbRoiZ7Wrc0giMt7UpXNOFsQoftoCmTYk6wvuIQeLCRFYZLiLSF/arYZQLCo8zlk6skI0k54qA87y0b+iMDkdfP5HvGgXMlDaICaFsQNyApwcwq8AhfdgEQGZYFWGGfmXF9vhpbGEVAD+e2Jiem6jJfGranme6limXHInrMF2o3qfu8Jwium5u/G7X2+F13I+Mkv26Oz46N7giHVaI/QlxA23ui0oQ3pOKH4fL8HUf9EK1N+gSfnnAbPQNaxSPETKdf3xWa/lSGT0FUkO9GpHIcC065mHvrSdgmYfWhA0QH00a4W5I+vTFJsMgLzEzvVoXdd8fUAJ7+0TLMnRzi61VFF3nw6Rd7AvVARBFaHMPaR+IN3PJwPR8oYq+66+fOOoSYaVXgCMEDdt0b78wvilybYSwmxcFrTEQOQiRnv4FMcu2Lw/JNYFIPxIEEOGeGhJXbTGg==
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(13230022)(4636009)(396003)(376002)(39860400002)(136003)(346002)(451199015)(46966006)(40470700004)(36840700001)(9686003)(6666004)(6506007)(53546011)(47076005)(7696005)(26005)(186003)(110136005)(2906002)(478600001)(336012)(40460700003)(40480700001)(55016003)(33656002)(83380400001)(82740400003)(86362001)(356005)(81166007)(36860700001)(82310400005)(8936002)(41300700001)(70206006)(52536014)(70586007)(8676002)(450100002)(4326008)(5660300002)(54906003)(316002); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 22 Nov 2022 08:36:41.0718 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 27d034af-c0c1-4828-dac9-08dacc64add8
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: AM7EUR03FT054.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR08MB9684
Archived-At: <https://mailarchive.ietf.org/arch/msg/auth48archive/8eFdHNwUy3Mb5_857T_66WbfMXQ>
Subject: Re: [auth48] [AD] Re: AUTH48: RFC-to-be 9325 <draft-ietf-uta-rfc7525bis-11> for your review
X-BeenThere: auth48archive@rfc-editor.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Archiving AUTH48 exchanges between the RFC Production Center, the authors, and other related parties" <auth48archive.rfc-editor.org>
List-Unsubscribe: <https://mailman.rfc-editor.org/mailman/options/auth48archive>, <mailto:auth48archive-request@rfc-editor.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/auth48archive/>
List-Post: <mailto:auth48archive@rfc-editor.org>
List-Help: <mailto:auth48archive-request@rfc-editor.org?subject=help>
List-Subscribe: <https://mailman.rfc-editor.org/mailman/listinfo/auth48archive>, <mailto:auth48archive-request@rfc-editor.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Nov 2022 08:36:54 -0000

Hi all,

+1 for the changes below and on moving the reference tags to RFC numbers where possible.

Modulo that, I approve publication.

Thanks a lot for the great work!

On 21/11/2022, 23:55, "Peter Saint-Andre" <stpeter@stpeter.im> wrote:

On 11/21/22 4:37 PM, Peter Saint-Andre wrote:

> I'll double-check the files now.

I see only three small fixes...

3.3.  Compression

OLD

    compression-related attacks.  (Note: this recommendation applies to
    TLS 1.2 only, because compression has been removed from TLS 1.3.)

NEW

    compression-related attacks.  (This recommendation applies to TLS 1.2
    only, because compression has been removed from TLS 1.3.)

Acknowledgements

OLD

    The authors gratefully acknowledge the contribution of Ralph Holz,
    who was a coauthor of RFC 7525, the previous version of this
    document.

NEW

    The authors gratefully acknowledge the contributions of Ralph Holz,
    who was a coauthor of RFC 7525, the previous version of the TLS
    recommendations.

OLD

    See RFC 7525 for additional acknowledgments for the previous version
    of this document.

NEW

    See RFC 7525 for additional acknowledgments specific to the previous
    version of the TLS recommendations.

Peter

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email