Re: [Ice] TLS Candidates
Bernard Aboba <bernard.aboba@gmail.com> Fri, 17 February 2017 21:56 UTC
Return-Path: <bernard.aboba@gmail.com>
X-Original-To: ice@ietfa.amsl.com
Delivered-To: ice@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 734CB1299C8 for <ice@ietfa.amsl.com>; Fri, 17 Feb 2017 13:56:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.698
X-Spam-Level:
X-Spam-Status: No, score=-2.698 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ki2GpT9GJhC8 for <ice@ietfa.amsl.com>; Fri, 17 Feb 2017 13:55:58 -0800 (PST)
Received: from mail-vk0-x22e.google.com (mail-vk0-x22e.google.com [IPv6:2607:f8b0:400c:c05::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9019C1296DC for <ice@ietf.org>; Fri, 17 Feb 2017 13:55:58 -0800 (PST)
Received: by mail-vk0-x22e.google.com with SMTP id t8so36810790vke.3 for <ice@ietf.org>; Fri, 17 Feb 2017 13:55:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=NsP8fO22sJyej7XpLXsuhBTTOVHDTYbtFxSvlrwNOZ4=; b=Wy4HwhBsil4u+aARjypSIPlLXfyRWGRBFR7gv3TrdIjC4BsZHW6DOPYDcgNHQ/xCir iT3QQd/lmXgVtxaxfYRr1vFe2PaymP6YRIKYzJLV52U7bzNc126DvYnEqyeFSQYlvLso ze40/UwPTUj/BAhguSX7gKJ45bvwPAbp/lCOId3ayMgtLv1dtyOCXF4D+BiSPNNVQcqE KeMkYK51p+pn2UKMFSJp0Z4rrU6FAH2CGRvgM0w3LRJy0EZkd1mQqAfVyixRnry36vYK mjrQ8BTZ+SF+ogBi6NRRW7Kcm3khZ82cv0PhDiOTli4DjVpiVpO+cKjAe1/PyB5IhfwA UPCw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=NsP8fO22sJyej7XpLXsuhBTTOVHDTYbtFxSvlrwNOZ4=; b=aB2IzZnc+bnmGDYqGS2+5UikEravF0tvymUQMIiuxgcYcp8hVkIDvouktlL9yYUr+v dgqHdF84o689YCf40JeJm714WmcxCUSCpNSVRVcYmTK40u5H8avc0lgAtM159teN84Pe 2Ra4Jb7TozlHr5KAXWIibUov0qcnY1AbG7Xt/pSsfuMODWgmxPn/cIyDXWRoZQgvVABX +q32+vxYexdOvqHCUV3PqQIJALYWMLtsJWu72PfG0il9BfkRwygx+93e6bBMJiRHHykx xCG8+KTb+NHECeNg9XCAbLYc+mCFZA0/lLcmRM/yDErmR12hl2kSdN1U/tZjBhwahTmS r6Sw==
X-Gm-Message-State: AMke39kDYUjKjTZ/uUF1G28RmrKtoMil5C1Y+ZmyyRZ2hTIZ5vj19xO1pg2YbxVRoM7ShPVqg2EtWlCV86yzRQ==
X-Received: by 10.31.125.76 with SMTP id y73mr5078793vkc.5.1487368557602; Fri, 17 Feb 2017 13:55:57 -0800 (PST)
MIME-Version: 1.0
Received: by 10.176.88.90 with HTTP; Fri, 17 Feb 2017 13:55:37 -0800 (PST)
In-Reply-To: <9731EE32-8E08-447A-B028-A9B57ADD1A99@cisco.com>
References: <148491768993.13355.16722423940569276403.idtracker@ietfa.amsl.com> <9731EE32-8E08-447A-B028-A9B57ADD1A99@cisco.com>
From: Bernard Aboba <bernard.aboba@gmail.com>
Date: Fri, 17 Feb 2017 13:55:37 -0800
Message-ID: <CAOW+2dvSrGmwf53M-7qUc_p-gxEVNApNxqOeVBJ+JMwPsXiM=g@mail.gmail.com>
To: "Pal Martinsen (palmarti)" <palmarti@cisco.com>
Content-Type: multipart/alternative; boundary="94eb2c14996286b23b0548c0fae7"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ice/ZTutScA3Mh8IUei-mtoSIVFAJg8>
Cc: "ice@ietf.org" <ice@ietf.org>
Subject: Re: [Ice] TLS Candidates
X-BeenThere: ice@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Interactive Connectivity Establishment \(ICE\)" <ice.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ice>, <mailto:ice-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ice/>
List-Post: <mailto:ice@ietf.org>
List-Help: <mailto:ice-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ice>, <mailto:ice-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Feb 2017 21:56:00 -0000
I have read this draft, and like it. In practice there are enough customers restricting connectivity via UDP or TLS to make it worthwhile to implement TLS candidates. My experience is that customers who only allow TLS to port 443 also tend to impose other restrictions, such as forcing connections through an HTTPS proxy of some kind. So the considerations discussed in Section 6 are quite important. On Mon, Jan 23, 2017 at 11:28 AM, Pal Martinsen (palmarti) < palmarti@cisco.com> wrote: > Hi all, > > There is a need for TLS candidates. We did an implementations, so we > thought is was a good idea to write up a draft. > > Is this something others are interested in as well? > (As there seems to be no ICE meeting next IETF it would be nice to get the > discussion started on the list) > > .-. > Pål-Erik > > Begin forwarded message: > > *From: *<internet-drafts@ietf.org> > *Subject: **New Version Notification for > draft-martinsen-ice-tls-candidates-00.txt* > *Date: *20 January 2017 at 14:08:09 GMT+1 > *To: *Nathan Buckles <nbuckles@cisco.com>, Paal-Erik Martinsen < > palmarti@cisco.com> > > > A new version of I-D, draft-martinsen-ice-tls-candidates-00.txt > has been successfully submitted by Paal-Erik Martinsen and posted to the > IETF repository. > > Name: draft-martinsen-ice-tls-candidates > Revision: 00 > Title: TLS Candidates for ICE > Document date: 2017-01-20 > Group: Individual Submission > Pages: 6 > URL: https://www.ietf.org/internet-drafts/draft- > martinsen-ice-tls-candidates-00.txt > Status: https://datatracker.ietf.org/doc/draft-martinsen- > ice-tls-candidates/ > Htmlized: https://tools.ietf.org/html/draft-martinsen-ice-tls- > candidates-00 > > > Abstract: > This document introduces TLS candidates to ICE. > > > > > Please note that it may take a couple of minutes from the time of > submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > > > > _______________________________________________ > Ice mailing list > Ice@ietf.org > https://www.ietf.org/mailman/listinfo/ice > >
- [Ice] TLS Candidates Pal Martinsen (palmarti)
- Re: [Ice] TLS Candidates Roman Shpount
- Re: [Ice] TLS Candidates Simon Perreault
- Re: [Ice] TLS Candidates Pal Martinsen (palmarti)
- Re: [Ice] TLS Candidates Peter Thatcher
- Re: [Ice] TLS Candidates Roman Shpount
- Re: [Ice] TLS Candidates Bernard Aboba
- Re: [Ice] TLS Candidates Bernard Aboba
- Re: [Ice] TLS Candidates Pal Martinsen (palmarti)
- Re: [Ice] TLS Candidates Ari Keränen