Re: [Hotrfc] ECH Deployment Considerations
Liz Flynn <lflynn@amsl.com> Fri, 21 July 2023 21:19 UTC
Return-Path: <lflynn@amsl.com>
X-Original-To: hotrfc@ietfa.amsl.com
Delivered-To: hotrfc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61E56C151073 for <hotrfc@ietfa.amsl.com>; Fri, 21 Jul 2023 14:19:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.898
X-Spam-Level:
X-Spam-Status: No, score=-6.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZT8IN5c3EAMJ for <hotrfc@ietfa.amsl.com>; Fri, 21 Jul 2023 14:19:48 -0700 (PDT)
Received: from c8a.amsl.com (c8a.amsl.com [4.31.198.40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3C4CBC14CE5D for <HotRFC@ietf.org>; Fri, 21 Jul 2023 14:19:48 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by c8a.amsl.com (Postfix) with ESMTP id EEFA8424B435; Fri, 21 Jul 2023 14:19:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from c8a.amsl.com ([127.0.0.1]) by localhost (c8a.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HISAKfRRku4e; Fri, 21 Jul 2023 14:19:47 -0700 (PDT)
Received: from smtpclient.apple (unknown [IPv6:2001:67c:1232:144:54fc:128:b87d:20e7]) by c8a.amsl.com (Postfix) with ESMTPSA id BE9D6424B42D; Fri, 21 Jul 2023 14:19:47 -0700 (PDT)
From: Liz Flynn <lflynn@amsl.com>
Message-Id: <90A63CF1-426D-4284-A264-7CEBC5632536@amsl.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_C3B215DD-EE4D-40EC-9860-5481FCE231A8"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\))
Date: Fri, 21 Jul 2023 14:19:46 -0700
In-Reply-To: <CWXP265MB5153BDF58B995850014E808BC23FA@CWXP265MB5153.GBRP265.PROD.OUTLOOK.COM>
Cc: "hotrfc@ietf.org" <HotRFC@ietf.org>, Arnaud Taddei <arnaud.taddei@broadcom.com>
To: Andrew Campling <andrew.campling@419.consulting>
References: <CWXP265MB5153BDF58B995850014E808BC23FA@CWXP265MB5153.GBRP265.PROD.OUTLOOK.COM>
X-Mailer: Apple Mail (2.3654.120.0.1.13)
Archived-At: <https://mailarchive.ietf.org/arch/msg/hotrfc/DUDXQ3u8J4-NwtcfxKbxMHrZ4ZE>
Subject: Re: [Hotrfc] ECH Deployment Considerations
X-BeenThere: hotrfc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: HotRFC Lightning Talk submission list <hotrfc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hotrfc>, <mailto:hotrfc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/hotrfc/>
List-Post: <mailto:hotrfc@ietf.org>
List-Help: <mailto:hotrfc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hotrfc>, <mailto:hotrfc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Jul 2023 21:19:50 -0000
Hi Andrew, This is to let you know that we received your HotRFC abstract. You'll be on the agenda. If you will be participating remotely, which is fine, please let us know (so we're not looking around the room to try to find you, during the HotRFC slot). Please send us your slides and any abstract updates no later than the first day of the upcoming IETF meeting, Saturday, at 2400 UTC. This will allow us to upload everything to the datatracker without wild panic and confusion. To help others help you - please make sure you're clear on what you want from other participants. You might be looking for people to help you on new proposals, specifications, implementations, or a variety of other things. You can put that in your slides, or just say it out loud, but don't let it be a mystery! And thanks for participating in HotRFC! The HotRFC Team Liz Flynn Project Manager / IETF lflynn@amsl.com > On Jul 21, 2023, at 1:39 PM, Andrew Campling <andrew.campling@419.consulting> wrote: > > Talk title: ECH Deployment Considerations > > Presenter, Affiliation, and whether you'll be presenting in person or remotely: Andrew Campling, 419 Consulting, in person > > Short topic abstract (topics should be IETF- or IRTF-related in some way) > We are working on a document that is intended to inform the community about the impact of the deployment of the proposed Encrypted Client Hello (ECH) standard that encrypts Server Name Indication (SNI) and other data. Data encapsulated by ECH (ie data included in the encrypted ClientHelloInner) is of legitimate interest to on-path security actors including those providing inline malware detection, parental controls, content filtering to prevent access to malware and other risky traffic, mandatory security controls etc. > > The current draft of the document already includes observations on current use cases for SNI data in a variety of contexts. It highlights how the use of that data is important to the operators of both public and private networks and shows how the loss of access to SNI data will cause difficulties in the provision of a range of services to end-users, including the potential weakening of cybersecurity defences. Some mitigations are identified that may be useful for inclusion by those considering the adoption of support for ECH in their software. > > What you're looking for (education, collaborators, implementers, etc.) > We'd welcome input from additional collaborators to augment the contributions that we have already and are continuing to gather, especially from the end-user and opsec communities. > > Coordinates to learn more, contact those involved, participate in existing mailing lists and scheduled meetings, and/or relevant formal or side meetings. > Andrew Campling and Arnaud Taddei will be available in Continental 2-3 on Tuesday from 8-8:30am or can be reached via Andrew.Campling@419.Consulting and Arnaud.Taddei@Broadcom.Com respectively. > > > Any relevant drafts or helpful resources you'd like collaborators to look at - https://datatracker.ietf.org/doc/draft-campling-ech-deployment-considerations/ <https://datatracker.ietf.org/doc/draft-campling-ech-deployment-considerations/> > > To provide slides, submit ppt or pdf to hotrfc@ietf.org <mailto:hotrfc@ietf.org> no later than Saturday, 2023-07-22, 2400 UTC. > > > > -- > Hotrfc mailing list > Hotrfc@ietf.org > https://www.ietf.org/mailman/listinfo/hotrfc
- [Hotrfc] ECH Deployment Considerations Andrew Campling
- Re: [Hotrfc] ECH Deployment Considerations Liz Flynn