RE: Call For Adoption: HTTP/2 and TLS 1.3 post-handshake authentication
Mike Bishop <mbishop@evequefou.be> Tue, 30 April 2019 20:09 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E2C912035A for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 30 Apr 2019 13:09:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.898
X-Spam-Level:
X-Spam-Status: No, score=-2.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=evequefou.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id om-CB6r_ZpLB for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 30 Apr 2019 13:09:10 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7EF0E120359 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 30 Apr 2019 13:09:10 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1hLZ1O-0002UR-D9 for ietf-http-wg-dist@listhub.w3.org; Tue, 30 Apr 2019 20:06:34 +0000
Resent-Date: Tue, 30 Apr 2019 20:06:34 +0000
Resent-Message-Id: <E1hLZ1O-0002UR-D9@frink.w3.org>
Received: from titan.w3.org ([2603:400a:ffff:804:801e:34:0:4c]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <mbishop@evequefou.be>) id 1hLZ1L-0002Tb-TG for ietf-http-wg@listhub.w3.org; Tue, 30 Apr 2019 20:06:31 +0000
Received: from mail-eopbgr690118.outbound.protection.outlook.com ([40.107.69.118] helo=NAM04-CO1-obe.outbound.protection.outlook.com) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_CBC_SHA1:256) (Exim 4.89) (envelope-from <mbishop@evequefou.be>) id 1hLZ1H-0005e5-CL for ietf-http-wg@w3.org; Tue, 30 Apr 2019 20:06:31 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=evequefou.onmicrosoft.com; s=selector1-evequefou-be; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=mwb5byeHNzgEXn15dmSpcG9Di3T4oqLea7dgIdF/N/Y=; b=k0mL7j1+W2RXtGbY3j36DkcKTtcG1PL7Oy2U0pxIu9CznmhyH+KrlRpo6Ocxp7DlQb2u2vESxTo8zsMgKJxfVxgffghN+Szu9QIpiOQnTHTft6vzZ+4hJQ2kJ573wN3x/Olj7Up1OGQd4cqlIq7XWeR90Vk94sZBmlCfXA0g0Zk=
Received: from CY4PR22MB0983.namprd22.prod.outlook.com (10.171.164.151) by CY4PR22MB0136.namprd22.prod.outlook.com (10.169.186.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1835.14; Tue, 30 Apr 2019 20:06:03 +0000
Received: from CY4PR22MB0983.namprd22.prod.outlook.com ([fe80::5e:10a3:8225:425]) by CY4PR22MB0983.namprd22.prod.outlook.com ([fe80::5e:10a3:8225:425%5]) with mapi id 15.20.1835.010; Tue, 30 Apr 2019 20:06:03 +0000
From: Mike Bishop <mbishop@evequefou.be>
To: Patrick McManus <mcmanus@ducksong.com>, HTTP Working Group <ietf-http-wg@w3.org>
Thread-Topic: Call For Adoption: HTTP/2 and TLS 1.3 post-handshake authentication
Thread-Index: AQHU874n9T2rHIkTpUOI5MLlQwjGuqZVOBug
Date: Tue, 30 Apr 2019 20:06:03 +0000
Message-ID: <CY4PR22MB0983FC67A36BA1513129D0C0DA3A0@CY4PR22MB0983.namprd22.prod.outlook.com>
References: <CAOdDvNofrCcJCOyOC03MLeBA+NQ984eJba89Nx4jeGZiG85suQ@mail.gmail.com>
In-Reply-To: <CAOdDvNofrCcJCOyOC03MLeBA+NQ984eJba89Nx4jeGZiG85suQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=mbishop@evequefou.be;
x-originating-ip: [38.134.241.6]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 231d3093-4c71-46c8-d761-08d6cda745eb
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(7021145)(8989299)(4534185)(7022145)(4603075)(4627221)(201702281549075)(8990200)(7048125)(7024125)(7027125)(7023125)(5600141)(711020)(4605104)(2017052603328)(7193020); SRVR:CY4PR22MB0136;
x-ms-traffictypediagnostic: CY4PR22MB0136:
x-ms-exchange-purlcount: 3
x-microsoft-antispam-prvs: <CY4PR22MB01366BD108AAC2A7D8BD063ADA3A0@CY4PR22MB0136.namprd22.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 00235A1EEF
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(396003)(366004)(136003)(346002)(39830400003)(189003)(199004)(76176011)(6506007)(6306002)(54896002)(9686003)(7696005)(508600001)(790700001)(6116002)(66066001)(97736004)(3846002)(186003)(53936002)(6246003)(102836004)(53546011)(316002)(110136005)(55016002)(25786009)(99286004)(236005)(229853002)(26005)(6436002)(2906002)(14454004)(966005)(256004)(8936002)(81156014)(73956011)(66476007)(8676002)(33656002)(71190400001)(606006)(81166006)(14444005)(74316002)(486006)(52536014)(74482002)(71200400001)(476003)(11346002)(446003)(5660300002)(86362001)(7736002)(76116006)(66946007)(64756008)(66556008)(66446008)(68736007); DIR:OUT; SFP:1102; SCL:1; SRVR:CY4PR22MB0136; H:CY4PR22MB0983.namprd22.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: evequefou.be does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: pede7sSuuPTIBd1FZHm8c3ppA2jPbEHioNtb5Rp4epp8COPoz6X7TOViUA1TxPBuqIjW6hcpIYu33P+Txdioofio+tlGOgupZ2j66baHge+gylsEJOmRHW9Zmsi+CXOAZpcpy+764QshuJnvfqybyxWpbTF+kTjSpbPWOtGjstnokWQXFjVdN+SsQVj7bU7G/m1Qv/LvWyWd2WQxagWh3wnwqIwRrbsVBBQxBW6O1MEEbOW4xsI44m5nErLMoihzJWUdf5jFoSgOLDTl4Kk9PL8dWVWJBgqg0ITgxYDFXUKTPhyUFt8PwB2tDH1UWkekz7AQtyGV7fe6hX+g/5StC7HBqJxgF0DcBrnljep1lCLVlGwDuCAnzkA1xImPmfhUU/I11mBnLa9/QXz1sxyw3xKrhIYcFDhpPcCcnMh0fUc=
Content-Type: multipart/alternative; boundary="_000_CY4PR22MB0983FC67A36BA1513129D0C0DA3A0CY4PR22MB0983namp_"
MIME-Version: 1.0
X-OriginatorOrg: evequefou.be
X-MS-Exchange-CrossTenant-Network-Message-Id: 231d3093-4c71-46c8-d761-08d6cda745eb
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Apr 2019 20:06:03.4939 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 41eaf50b-882d-47eb-8c4c-0b5b76a9da8f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY4PR22MB0136
Received-SPF: pass client-ip=40.107.69.118; envelope-from=mbishop@evequefou.be; helo=NAM04-CO1-obe.outbound.protection.outlook.com
X-W3C-Hub-Spam-Status: No, score=-3.7
X-W3C-Hub-Spam-Report: AWL=0.190, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1hLZ1H-0005e5-CL 53b588eb0a7c25e650a6e89a82737ff9
X-Original-To: ietf-http-wg@w3.org
Subject: RE: Call For Adoption: HTTP/2 and TLS 1.3 post-handshake authentication
Archived-At: <https://www.w3.org/mid/CY4PR22MB0983FC67A36BA1513129D0C0DA3A0@CY4PR22MB0983.namprd22.prod.outlook.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/36568
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Late to the party, but yes. David wrote this draft because I didn’t think it was appropriate for Secondary Certs (as an extension) to mandate HTTP/2 behavior outside of implementors of Secondary Certs and wouldn’t take his PR in that document. I fully support the text itself. Here it is, and we should adopt and publish it. From: Patrick McManus <mcmanus@ducksong.com> Sent: Monday, April 15, 2019 12:02 PM To: HTTP Working Group <ietf-http-wg@w3.org> Subject: Call For Adoption: HTTP/2 and TLS 1.3 post-handshake authentication Friendly Folk of HTTPbis, A fortnight ago David Benjamin published https://tools.ietf.org/html/draft-davidben-http2-tls13 as an individual draft. It 'clarifies the use of TLS 1.3 post-handshake authentication and key update with HTTP/2'. Feedback both on the list and informally has been along the lines of "that's what we all mean - it should be written down just like that". To take advantage of David's kindness in writing it down, we're going to issue a call for adoption for using this individual draft as the starting point for a working group document with David as the author. This email starts a call for adoption. Please reply to this email with your thoughts, and state whether or not you believe the group should adopt this document. Feedback is requested by Monday, April 29. Thanks! -Patrick
- Call For Adoption: HTTP/2 and TLS 1.3 post-handsh… Patrick McManus
- Re: Call For Adoption: HTTP/2 and TLS 1.3 post-ha… Christopher Wood
- Re: Call For Adoption: HTTP/2 and TLS 1.3 post-ha… David Schinazi
- Re: Call For Adoption: HTTP/2 and TLS 1.3 post-ha… Martin Thomson
- RE: Call For Adoption: HTTP/2 and TLS 1.3 post-ha… Mike Bishop
- Re: Call For Adoption: HTTP/2 and TLS 1.3 post-ha… Patrick McManus