Return-Path: X-Original-To: cfrg@ietfa.amsl.com Delivered-To: cfrg@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB102128BC8 for ; Tue, 11 Jul 2017 03:51:00 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.301 X-Spam-Level: X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HOR_xgEQ9Gxc for ; Tue, 11 Jul 2017 03:50:59 -0700 (PDT) Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10186129B5E for ; Tue, 11 Jul 2017 03:50:59 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id CD182BF4C for ; Tue, 11 Jul 2017 11:50:57 +0100 (IST) Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id af_Iz1TLoJpQ for ; Tue, 11 Jul 2017 11:50:57 +0100 (IST) Received: from [134.226.36.93] (bilbo.dsg.cs.tcd.ie [134.226.36.93]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 868E2BF48 for ; Tue, 11 Jul 2017 11:50:57 +0100 (IST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1499770257; bh=Md4CMHfybURHwRuV7cB3GktH7+YP0VsIByu4MQq4LM0=; h=Subject:To:References:From:Date:In-Reply-To:From; b=mFUm+Kt7GmclwQY92zoKd0v781ANGbf72J7u90RJOSi8B3OIgyLCikKjmAb+XY9Xg SYPVVyphgGOc3CTUjs30Vyr9IqtbaWIRrMa0c3KMLM4krFJqSrsmQ3FNP0Hq6IH/Aw Q26YanoJd5vpT3RA08NUbUXW3kS5tZ2i0kvjInX0= To: "cfrg@irtf.org" References: <1777c26d-4e8c-453d-422e-b1f238105bd5@cs.tcd.ie> From: Stephen Farrell Openpgp: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url= Message-ID: Date: Tue, 11 Jul 2017 11:50:54 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1 MIME-Version: 1.0 In-Reply-To: <1777c26d-4e8c-453d-422e-b1f238105bd5@cs.tcd.ie> Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="lF5AvI0QuElgu80roAiUwL3mGeNGa9xBI" Archived-At: Subject: Re: [Cfrg] [TLS] wiretapping draft - collecting rebuttal arguments X-BeenThere: cfrg@irtf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Crypto Forum Research Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Jul 2017 10:51:01 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --lF5AvI0QuElgu80roAiUwL3mGeNGa9xBI Content-Type: multipart/mixed; boundary="QodADKSwsqT21Uh5cXe63DqE6KNvbAQu3"; protected-headers="v1" From: Stephen Farrell To: "cfrg@irtf.org" Message-ID: Subject: Re: [TLS] wiretapping draft - collecting rebuttal arguments References: <1777c26d-4e8c-453d-422e-b1f238105bd5@cs.tcd.ie> In-Reply-To: <1777c26d-4e8c-453d-422e-b1f238105bd5@cs.tcd.ie> --QodADKSwsqT21Uh5cXe63DqE6KNvbAQu3 Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: quoted-printable FYI. Contributions from folks here would be welcome if you're interested, Cheers, S. PS: This relates to ongoing discussion on the TLS list. On 11/07/17 11:48, Stephen Farrell wrote: >=20 > Hiya, >=20 > I've asked the chairs for a slot in Prague to allow > for rebutting the claims made by the proponents of > the most recent wiretapping draft we're (sadly, still) > discussing. [1] >=20 > So far the chairs seem un-keen, but I'm gonna keep > asking as I think having a rebuttal for this kind > of bad idea is needed. (And again, I'd prefer the > chairs ditch the entire idea of discussing this at > all.) >=20 > In any case, and perhaps with a view to longer-term > documenting the arguments against the various "let's > break TLS" proposals we continually see, I've started > to collect some of those arguments in a github repo [2]. >=20 > I would welcome contributions to [2] however folks > would like to provide 'em (but ideally via PRs) so > we can provide a nice crowd-sourced rebuttal in > Prague, either as a presentation or via a lively > mic-line if need be. >=20 > Cheers, > S. >=20 > PS: I've just started on this, but will go through > the list archive to extract others' arguments and > add acks. Not sure if that'll get done before we > end up in Prague but please do let me know if I've > used an argument you made so I can ack that later. >=20 > [1] https://tools.ietf.org/html/draft-green-tls-static-dh-in-tls13-01 > [2] https://github.com/sftcd/tinfoil >=20 >=20 >=20 > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls >=20 --QodADKSwsqT21Uh5cXe63DqE6KNvbAQu3-- --lF5AvI0QuElgu80roAiUwL3mGeNGa9xBI Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQEcBAEBCAAGBQJZZK2QAAoJEC88hzaAX42igpkIAIBAMOTTa9in20d6Ac2Rcpoo 0iyxQlrRoPHfRByawW6qowtPKbJ5WqdcIIYNXkUAtzspnFP3n+CFhKExPMq+TIA9 JoWqhYwFGpW6ZAfVTXDQkY3Qwb+PXeEMjAYd/Sli9v/Og5M3z90iuvM4m9Iot9Dd thGyzleZJcE6fBtTt8ofqugQR1TdtBdQxS87bgGVMiDbGrSY7XZ/Mz1lKj+MfY0c mXwBCvc9tBaY/UBHXRD50cu0TtH+s7gbwJ4XGAmJdEXEfljvV34hE70LnkLR2VkR MxS5h6h043e9OIHF1CXqdl0IYzEOftqK6rl8OIMe8/Ub+HX8cZg5RDhA2v8Q/Dw= =OxwR -----END PGP SIGNATURE----- --lF5AvI0QuElgu80roAiUwL3mGeNGa9xBI--