Re: Review of TLS's ECH HTTP-related I-Ds
Sean Turner <sean@sn3rd.com> Wed, 10 April 2024 13:38 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=ietf.org@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 45914C14F698 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 10 Apr 2024 06:38:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.848
X-Spam-Level:
X-Spam-Status: No, score=-2.848 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=w3.org header.b="ATzjXX8Z"; dkim=pass (2048-bit key) header.d=w3.org header.b="DJzq7DZZ"; dkim=pass (1024-bit key) header.d=sn3rd.com header.b="Rl+ciOqi"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id InBGLx1co2hh for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 10 Apr 2024 06:38:09 -0700 (PDT)
Received: from mab.w3.org (mab.w3.org [IPv6:2600:1f18:7d7a:2700:d091:4b25:8566:8113]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2ADC8C14F69E for <httpbisa-archive-bis2Juki@ietf.org>; Wed, 10 Apr 2024 06:38:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=w3.org; s=s1; h=Subject:To:References:Message-Id:Cc:Date:In-Reply-To:From: Mime-Version:Content-Type:Reply-To; bh=dtmXksARy1SAgqRIb25zssPuCnXlUNT2vZWy1FFr7lE=; b=ATzjXX8ZADZcStSm1kGMqCe2hO LzNyEsdCyyqpYKC19QYPZqsxvMp9/4g4gSB7mEEhuS8yDubpvhre8NCWXhqa9Pq0C1gZ/OP7D2ZDX J9cXI+U7iubX//F2wBvrBkKQmSy1IbzP8f2e9HUKeZbzPnmJ62PnQSqfwgoDKswC2nBjGwC1h6z5D DeWymFKHFNQd++E3tzEYYWMwi4vk80Y6Sgod9eBpEyHravq/ldM25OY1QixfheS8OmNN++KWZuw9o kmw9AYax6T67yCgaQNirL0ZIEw1TcO359JnmY+5L+D2wm2kmX8Be9D43IoYISRRCjVtxhkSnkhvTp fAnGi6AQ==;
Received: from lists by mab.w3.org with local (Exim 4.96) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1ruY8K-000RMP-02 for ietf-http-wg-dist@listhub.w3.org; Wed, 10 Apr 2024 13:37:00 +0000
Resent-Date: Wed, 10 Apr 2024 13:37:00 +0000
Resent-Message-Id: <E1ruY8K-000RMP-02@mab.w3.org>
Received: from ip-10-0-0-144.ec2.internal ([10.0.0.144] helo=pan.w3.org) by mab.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from <sean@sn3rd.com>) id 1ruY8I-000RLY-1n for ietf-http-wg@listhub.w3.org; Wed, 10 Apr 2024 13:36:58 +0000
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=w3.org; s=s1; h=To:References:Message-Id:Cc:Date:In-Reply-To:From:Subject: Mime-Version:Content-Type:Reply-To; bh=dtmXksARy1SAgqRIb25zssPuCnXlUNT2vZWy1FFr7lE=; t=1712756218; x=1713620218; b=DJzq7DZZWwrsgSKAdnvp74Yg2a0PvDTy1y9UgnwxRUYY1p1Eg94am/5GOUlGBIkSrBVciNhfyHW D19pHp3n8fQVUovPrkuZelUlZPNeZooEcZGh52LigRfDGVaKw65exQBnhWORV1Z/VShceUFu/s0X4 h6DQUZFRLHLsJHOx5wfL1JH8RH9alu7uE1wecAojcCI2F63IdaNrkwVa9DhYVy685C9V/yxlMvBZ7 0EJfbuSVuJG72lskCT/f5uCrkaaBLd7u9mTAOzPmwk9lFFpZZSSbxV+m/LYV+aniihThFXMojLCqj WtgmkEjvk1YqD1p5jEpNMP0DPwQdktLKMxyw==;
Received-SPF: pass (pan.w3.org: domain of sn3rd.com designates 2607:f8b0:4864:20::82e as permitted sender) client-ip=2607:f8b0:4864:20::82e; envelope-from=sean@sn3rd.com; helo=mail-qt1-x82e.google.com;
Received: from mail-qt1-x82e.google.com ([2607:f8b0:4864:20::82e]) by pan.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.96) (envelope-from <sean@sn3rd.com>) id 1ruY8H-008YvN-1j for ietf-http-wg@w3.org; Wed, 10 Apr 2024 13:36:58 +0000
Received: by mail-qt1-x82e.google.com with SMTP id d75a77b69052e-4347dadc2cfso24791921cf.3 for <ietf-http-wg@w3.org>; Wed, 10 Apr 2024 06:36:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; t=1712756213; x=1713361013; darn=w3.org; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=dtmXksARy1SAgqRIb25zssPuCnXlUNT2vZWy1FFr7lE=; b=Rl+ciOqiq3ny813TsXKTCbMsxGlhAQZtOoYoAs+DFVh5t8WC5G0yOqM9OZXZlB+yVt jC+HtCm9HjrLB0C3xAOWrQgxhDqP+j68MJQ3xrkEiLynf9KOxh3g5W8ADueDlA8Oh9Bo Y8CItDeWE5Rgwp1NdAbdhqURSIgrGSwSW+juc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712756213; x=1713361013; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=dtmXksARy1SAgqRIb25zssPuCnXlUNT2vZWy1FFr7lE=; b=BJSdQvDPY/JG15eXR6m6v0fyIHtiPfKhQoWQlttZ8TM6VWALjAD2cY9/8GE/N0qMTv xCUKr72OMBlaYEksKMVwWFNj4594fWJHIgfoZ64Q7t9+7zMK3tdzEJ9WdpdG9/hiEL7A 8JuMHAujYnqGczCQrnkIO5nhj8pyPpaDXP6foZDonUgLCmsTyTmFm/yg4F5lqngwe91J eRfiJccMUjao0uGf6/ZGZTBL50Zam2eMvOfkXyJJ778teUWWJZlM/YXU1jW6/Fm80piH 05T0Of2HvdvnC3Efc1JwNbIaIhsnzZd6pf8gL/yxDdMvwQI2C75o1JHuN0+vGuWh42wf KEsg==
X-Gm-Message-State: AOJu0Yx20PkgWd1TWmtyjtoSfWp/fxyWH32Eu/BpQmYU2QfqlmPesNfc cQmEeOZArGTtQJZTih5UduA/CcKOvGN9+CWxxYKPADjkwkeUF/mvcXMjdiyApI1+oQ+1co+wLqe q
X-Google-Smtp-Source: AGHT+IG+RqUFiC9wAt07SHvn5edJWjsSxMjHPIzABUYr51/XIHV/pBIJZMRAepIldnHGZmMAi+KfRw==
X-Received: by 2002:ac8:574a:0:b0:434:f917:ccf7 with SMTP id 10-20020ac8574a000000b00434f917ccf7mr3024889qtx.62.1712756213566; Wed, 10 Apr 2024 06:36:53 -0700 (PDT)
Received: from smtpclient.apple ([2a00:79e1:abd:dd02:683a:cbcc:9569:59f9]) by smtp.gmail.com with ESMTPSA id c3-20020ac85183000000b004349a69764fsm3264126qtn.74.2024.04.10.06.36.52 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 10 Apr 2024 06:36:53 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.15\))
From: Sean Turner <sean@sn3rd.com>
In-Reply-To: <1D98A453-4782-47C0-8C3F-F0C2DB1970DD@sn3rd.com>
Date: Wed, 10 Apr 2024 09:36:50 -0400
Cc: draft-ietf-tls-wkech@ietf.org, draft-ietf-tls-svcb-ech@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <7B55969B-2956-43C8-97AE-AC2CB6944CF3@sn3rd.com>
References: <1D98A453-4782-47C0-8C3F-F0C2DB1970DD@sn3rd.com>
To: HTTP Working Group <ietf-http-wg@w3.org>
X-Mailer: Apple Mail (2.3654.120.0.1.15)
X-W3C-Hub-DKIM-Status: validation passed: (address=sean@sn3rd.com domain=sn3rd.com), signature is good
X-W3C-Hub-Spam-Status: No, score=-9.1
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, DMARC_MISSING=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, W3C_AA=-1, W3C_DB=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: pan.w3.org 1ruY8H-008YvN-1j 5bbc43bfb29196c297145558d5730ff9
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Review of TLS's ECH HTTP-related I-Ds
Archived-At: <https://www.w3.org/mid/7B55969B-2956-43C8-97AE-AC2CB6944CF3@sn3rd.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/51920
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/email/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Hi! Just sending another request for review. Thanks, spt > On Apr 1, 2024, at 13:01, Sean Turner <sean@sn3rd.com> wrote: > > Hi! > > We are in the process of closing out the WGLC on TLS Encrypted Client Hello [0] over in the TLS WG. There are two other ECH-related documents that are HTTP-related that I would like to get wider review of: > > - Bootstrapping TLS Encrypted ClientHello with DNS Service Bindings [1] > - A well-known URI for publishing ECHConfigList values [2] > > Cheers, > spt > > [0] https://datatracker.ietf.org/doc/draft-ietf-tls-esni/ > [1] https://datatracker.ietf.org/doc/draft-ietf-tls-svcb-ech/ > [2] https://datatracker.ietf.org/doc/draft-ietf-tls-wkech/ >
- Review of TLS's ECH HTTP-related I-Ds Sean Turner
- Re: Review of TLS's ECH HTTP-related I-Ds Sean Turner