Re: [Emu] Robert Wilton's Discuss on draft-ietf-emu-eap-tls13-13: (with DISCUSS)
Roman Danyliw <rdd@cert.org> Thu, 07 January 2021 14:58 UTC
Return-Path: <rdd@cert.org>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC4E73A11CA; Thu, 7 Jan 2021 06:58:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3d-FC0ByBBin; Thu, 7 Jan 2021 06:58:15 -0800 (PST)
Received: from taper.sei.cmu.edu (taper.sei.cmu.edu [147.72.252.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 730293A103C; Thu, 7 Jan 2021 06:58:14 -0800 (PST)
Received: from delp.sei.cmu.edu (delp.sei.cmu.edu [10.64.21.31]) by taper.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 107EwCLW010465; Thu, 7 Jan 2021 09:58:12 -0500
DKIM-Filter: OpenDKIM Filter v2.11.0 taper.sei.cmu.edu 107EwCLW010465
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=yc2bmwvrj62m; t=1610031492; bh=NNklKRJ6tS+1bmmXYqwT84xC8WrEnhcxA6dsddDIttY=; h=From:To:CC:Subject:Date:References:In-Reply-To:From; b=GScxQOc7H6StBjLSGCZpf1VH2di/mhg1grUFqtj36m8R4N68eqZgGbycrWQHb1Zpc R49TXb6vGvXpss7H9Aw3Gn79kPIrXmOlavs9DkCHHBjorLCeiMp1dSf1j84JhR0YUN SoT9xGMBzg6uisheZk6DWeTEx7/QuhMu4Cgam0fo=
Received: from MORRIS.ad.sei.cmu.edu (morris.ad.sei.cmu.edu [147.72.252.46]) by delp.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 107EwAht035117; Thu, 7 Jan 2021 09:58:10 -0500
Received: from MORRIS.ad.sei.cmu.edu (147.72.252.46) by MORRIS.ad.sei.cmu.edu (147.72.252.46) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2106.2; Thu, 7 Jan 2021 09:58:09 -0500
Received: from MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb]) by MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb%13]) with mapi id 15.01.2106.002; Thu, 7 Jan 2021 09:58:09 -0500
From: Roman Danyliw <rdd@cert.org>
To: Robert Wilton <rwilton@cisco.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-emu-eap-tls13@ietf.org" <draft-ietf-emu-eap-tls13@ietf.org>, "joe@salowey.net" <joe@salowey.net>, "emu-chairs@ietf.org" <emu-chairs@ietf.org>, "emu@ietf.org" <emu@ietf.org>
Thread-Topic: Robert Wilton's Discuss on draft-ietf-emu-eap-tls13-13: (with DISCUSS)
Thread-Index: AQHW414pCH3KOMV/qECucrNW/SSJD6ocP39Q
Date: Thu, 07 Jan 2021 14:58:09 +0000
Message-ID: <d9ca26be8d3745ee9e7bdacc2fc549cd@cert.org>
References: <160984964591.11194.6508066432355908777@ietfa.amsl.com>
In-Reply-To: <160984964591.11194.6508066432355908777@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.64.202.186]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/bzIbHMUPQIgMMsgMjqEAki2YIAA>
Subject: Re: [Emu] Robert Wilton's Discuss on draft-ietf-emu-eap-tls13-13: (with DISCUSS)
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Jan 2021 14:58:17 -0000
Hi Rob! > -----Original Message----- > From: iesg <iesg-bounces@ietf.org> On Behalf Of Robert Wilton via Datatracker > Sent: Tuesday, January 5, 2021 7:27 AM > To: The IESG <iesg@ietf.org> > Cc: draft-ietf-emu-eap-tls13@ietf.org; joe@salowey.net; emu-chairs@ietf.org; > emu@ietf.org > Subject: Robert Wilton's Discuss on draft-ietf-emu-eap-tls13-13: (with DISCUSS) > > Robert Wilton has entered the following ballot position for > draft-ietf-emu-eap-tls13-13: Discuss > > When responding, please keep the subject line intact and reply to all email > addresses included in the To and CC lines. (Feel free to cut this introductory > paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-emu-eap-tls13/ > > > > ---------------------------------------------------------------------- > DISCUSS: > ---------------------------------------------------------------------- > > Thank you for updating EAP to support TLS 1.3. > > This document is outside my area of expertise, and others will be able to give a > better technical review. > > However, I do think that it would be useful to have a brief discussion with the > authors/ADs about the structure of the document. I.e., this document leaves > RFC 5216 as an active updated RFC, although that RFC depends on TLS version > 1.2 (RFC 5246) that is obsoleted by TLS 1.3. > > I also note that this document contains 30 pages of updates to an RFC that is > only 32 pages long. > > Taking both of these into consideration, I think that it would be better (and > longer term probably an easier reference) if this document could stand on its > own, by obsoleting RFC 5216 and including any text from RFC 5216 that is still > relevant when using EAP with TLS 1.3. > > I appreciate that this would be a significant change and hence would welcome > input from the authors and other ADs as to whether this change would be > worth the effort. I can see value in the streamlining and the symmetry it would bring with the approach in TLS. It is not an approach the WG considered. We'd have to weigh this tact against the substantial effort in the refactoring. IMO, since we don't have standardized semantics on "updates" (and their cascading impact), it seems easier and consistent (with at least some definition of "updates") to proceed on the slope of least resistance. Regards, Roman > Regards, > Rob > > > >
- [Emu] Robert Wilton's Discuss on draft-ietf-emu-e… Robert Wilton via Datatracker
- Re: [Emu] Robert Wilton's Discuss on draft-ietf-e… Roman Danyliw