Re: [Cfrg] [TLS] wiretapping draft - collecting rebuttal arguments

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 11 July 2017 10:51 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB102128BC8 for <cfrg@ietfa.amsl.com>; Tue, 11 Jul 2017 03:51:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.301
X-Spam-Level:
X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HOR_xgEQ9Gxc for <cfrg@ietfa.amsl.com>; Tue, 11 Jul 2017 03:50:59 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10186129B5E for <Cfrg@irtf.org>; Tue, 11 Jul 2017 03:50:59 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id CD182BF4C for <Cfrg@irtf.org>; Tue, 11 Jul 2017 11:50:57 +0100 (IST)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id af_Iz1TLoJpQ for <Cfrg@irtf.org>; Tue, 11 Jul 2017 11:50:57 +0100 (IST)
Received: from [134.226.36.93] (bilbo.dsg.cs.tcd.ie [134.226.36.93]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 868E2BF48 for <Cfrg@irtf.org>; Tue, 11 Jul 2017 11:50:57 +0100 (IST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1499770257; bh=Md4CMHfybURHwRuV7cB3GktH7+YP0VsIByu4MQq4LM0=; h=Subject:To:References:From:Date:In-Reply-To:From; b=mFUm+Kt7GmclwQY92zoKd0v781ANGbf72J7u90RJOSi8B3OIgyLCikKjmAb+XY9Xg SYPVVyphgGOc3CTUjs30Vyr9IqtbaWIRrMa0c3KMLM4krFJqSrsmQ3FNP0Hq6IH/Aw Q26YanoJd5vpT3RA08NUbUXW3kS5tZ2i0kvjInX0=
To: "cfrg@irtf.org" <Cfrg@irtf.org>
References: <1777c26d-4e8c-453d-422e-b1f238105bd5@cs.tcd.ie>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Message-ID: <cc0ded6b-e768-c7c2-9d90-eba380c56f76@cs.tcd.ie>
Date: Tue, 11 Jul 2017 11:50:54 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <1777c26d-4e8c-453d-422e-b1f238105bd5@cs.tcd.ie>
Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="lF5AvI0QuElgu80roAiUwL3mGeNGa9xBI"
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/PNx-X6t83ng8qbHd7ZnFwQqGiGs>
Subject: Re: [Cfrg] [TLS] wiretapping draft - collecting rebuttal arguments
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Jul 2017 10:51:01 -0000

FYI. Contributions from folks here would be welcome
if you're interested,
Cheers,
S.

PS: This relates to ongoing discussion on the TLS list.

On 11/07/17 11:48, Stephen Farrell wrote:
> 
> Hiya,
> 
> I've asked the chairs for a slot in Prague to allow
> for rebutting the claims made by the proponents of
> the most recent wiretapping draft we're (sadly, still)
> discussing. [1]
> 
> So far the chairs seem un-keen, but I'm gonna keep
> asking as I think having a rebuttal for this kind
> of bad idea is needed. (And again, I'd prefer the
> chairs ditch the entire idea of discussing this at
> all.)
> 
> In any case, and perhaps with a view to longer-term
> documenting the arguments against the various "let's
> break TLS" proposals we continually see, I've started
> to collect some of those arguments in a github repo [2].
> 
> I would welcome contributions to [2] however folks
> would like to provide 'em (but ideally via PRs) so
> we can provide a nice crowd-sourced rebuttal in
> Prague, either as a presentation or via a lively
> mic-line if need be.
> 
> Cheers,
> S.
> 
> PS: I've just started on this, but will go through
> the list archive to extract others' arguments and
> add acks. Not sure if that'll get done before we
> end up in Prague but please do let me know if I've
> used an argument you made so I can ack that later.
> 
> [1] https://tools.ietf.org/html/draft-green-tls-static-dh-in-tls13-01
> [2] https://github.com/sftcd/tinfoil
> 
> 
> 
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls
>