Re: Proposed Statement on "HTTPS everywhere for the IETF"

[Stephen Farrell <stephen.farrell@cs.tcd.ie>]

Hiya,

On 03/06/15 19:31, Cullen Jennings (fluffy) wrote:
> 
> This is too little too late.
> 
> This wishy washy "we believe in security but don't like to actually
> use it ourselves" is not the leadership IETF should be providing to
> the internet. The internet has already been harmed by too many years
> of security that is not turned on.
> 
> Take a hum at next plenary and find out if people want the IETF to
> actually use security or not.

Or we can put this in place and then measure who continues to access
in clear and see what that tells us.

Maybe a hum at a plenary is a bit too large a hammer to bring out for
this fairly modest nail.

S.


> 
> 
> 
>> On Jun 1, 2015, at 10:43 AM, The IESG <iesg@ietf.org> wrote:
>> 
>> Hi All,
>> 
>> The IESG are planning to agree an IESG statement on "HTTPS
>> Everywhere for the IETF," please see [1] for the current text.
>> 
>> We are seeking community feedback on this and welcome assistance 
>> from the community in identifying any cases where a change or 
>> additional guidance is needed to put this into effect.
>> 
>> The IESG plans to finalise this statement just after IETF-93 in
>> Prague.
>> 
>> * Please send general feedback intended for discussion to
>> ietf@ietf.org
>> 
>> * Comments about specific issues arising can be sent to
>> iesg@ietf.org or tools-discuss@ietf.org as appropriate (use
>> iesg@ietf.org if not sure)
>> 
>> Regards, Terry & Stephen (for the IESG)
>> 
>> [1]
>> https://trac.tools.ietf.org/group/iesg/trac/wiki/HttpsEverywhere
>> 
> 
>