Document Action: 'Summarizing Known Attacks on TLS and DTLS' to Informational RFC (draft-ietf-uta-tls-attacks-05.txt)

The IESG <iesg-secretary@ietf.org> Thu, 01 January 2015 23:14 UTC

Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietfa.amsl.com
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 996711A700C; Thu, 1 Jan 2015 15:14:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.9
X-Spam-Level:
X-Spam-Status: No, score=-101.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8OxYSCfPVJ3a; Thu, 1 Jan 2015 15:14:10 -0800 (PST)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 6FDD01A8545; Thu, 1 Jan 2015 15:14:05 -0800 (PST)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Document Action: 'Summarizing Known Attacks on TLS and DTLS' to Informational RFC (draft-ietf-uta-tls-attacks-05.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 5.10.0.p1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20150101231405.27469.25135.idtracker@ietfa.amsl.com>
Date: Thu, 01 Jan 2015 15:14:05 -0800
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf-announce/xF2ijhccsJ4G4RFLhKWr1MvW_8Y
Cc: uta mailing list <uta@ietf.org>, uta chair <uta-chairs@tools.ietf.org>, RFC Editor <rfc-editor@rfc-editor.org>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.15
Reply-To: ietf@ietf.org
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Jan 2015 23:14:11 -0000

The IESG has approved the following document:
- 'Summarizing Known Attacks on TLS and DTLS'
  (draft-ietf-uta-tls-attacks-05.txt) as Informational RFC

This document is the product of the Using TLS in Applications Working
Group.

The IESG contact persons are Pete Resnick and Barry Leiba.

A URL of this Internet Draft is:
http://datatracker.ietf.org/doc/draft-ietf-uta-tls-attacks/




Technical Summary

Over the last few years there have been several serious attacks on
TLS, including attacks on its most commonly used ciphers and modes of
operation.  This document summarizes these attacks, with the goal of
motivating generic and protocol-specific recommendations on the usage
of TLS and DTLS.

Working Group Summary

The document has received extensive review on the uta list by several
reviewers (not just the usual suspects). There have been a few near-miss
consensus, but they were all resolved to the satisfaction of all involved.

Document Quality

Most of the reviewers / active participants have ties to information
security or TLS specifically. Additional review in the secdir group
should probably try to find a person with another perspective. 

Personnel

Leif Johansson is the shepherd. 
Pete Resnick is the responsible AD.