IETF Logo Mail Archive

Re: [TLS] Last Call: <draft-ietf-tls-downgrade-scsv-03.txt> (TLS Fallback Signaling Cipher Suite Value (SCSV) for Preventing Protocol Downgrade Attacks) to Proposed Standard

Colm MacCárthaigh <colm@allcosts.net> Sun, 18 January 2015 20:32 UTC

Return-Path: <colm@allcosts.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 97F111ACE10 for <ietf@ietfa.amsl.com>; Sun, 18 Jan 2015 12:32:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.678
X-Spam-Level:
X-Spam-Status: No, score=-1.678 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-0.7] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id klhuLMbuf_DT for <ietf@ietfa.amsl.com>; Sun, 18 Jan 2015 12:32:53 -0800 (PST)
Received: from mail-ob0-f176.google.com (mail-ob0-f176.google.com [209.85.214.176]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 020AC1ACE16 for <ietf@ietf.org>; Sun, 18 Jan 2015 12:32:53 -0800 (PST)
Received: by mail-ob0-f176.google.com with SMTP id va2so2079994obc.7 for <ietf@ietf.org>; Sun, 18 Jan 2015 12:32:52 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=/qDXqQV480N85UppqKbkErudLi9P9Yoev62pcaEh/Fc=; b=UfRBAF/XPWpBddOY+iQC9KIO1RCaDoVVt0E1JjqZNaMai38ADVJGAIEeWc+6bsITcS KqIYIAZwJZL0M/R5xLIGjPooIhQ17TIx3TcoA9oO/MW8bP2+a4JGl/Ndcsp91OjnBBnO tgxFWzMtdYF48g1pxagn7wPywDdppKWm++/9qX9bgR4Sc2PXjyUGgZL7oiQA+FUssn7H gsA1VDwfP6uI85GR1vKg/NpCgcUbdWcch+TU0DKFIriIiUlyUv56EFzBpaH9DtIDaDuq r5LyUpka8o2tsjmsdbOKvHi1G1v83U1jYQd4yPWIYb6RgH0/olW86P/cNvFwaZub7o9h HhFA==
X-Gm-Message-State: ALoCoQmbzSt5kn9Z8xMoUO6TLmnNMMv3AylLio+TkMu2f3aFQ4p9985OJNbGRL2e5/xSQBZm2RxW
MIME-Version: 1.0
X-Received: by 10.202.228.9 with SMTP id b9mr6813953oih.40.1421613172272; Sun, 18 Jan 2015 12:32:52 -0800 (PST)
Received: by 10.76.129.235 with HTTP; Sun, 18 Jan 2015 12:32:52 -0800 (PST)
In-Reply-To: <20150109180539.22231.7270.idtracker@ietfa.amsl.com>
References: <20150109180539.22231.7270.idtracker@ietfa.amsl.com>
Date: Sun, 18 Jan 2015 12:32:52 -0800
Message-ID: <CAAF6GDd=U6a6bV6dRmcJVj72Z9jk9kTY0q8zmeM4pqd7Zupu=Q@mail.gmail.com>
Subject: Re: [TLS] Last Call: <draft-ietf-tls-downgrade-scsv-03.txt> (TLS Fallback Signaling Cipher Suite Value (SCSV) for Preventing Protocol Downgrade Attacks) to Proposed Standard
From: Colm MacCárthaigh <colm@allcosts.net>
To: ietf@ietf.org
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/NgDC4OKKzZ_UT9jwNTWPUUUtNuU>
X-Mailman-Approved-At: Tue, 20 Jan 2015 07:54:02 -0800
Cc: "tls@ietf.org" <tls@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 18 Jan 2015 20:32:54 -0000

On Fri, Jan 9, 2015 at 10:05 AM, The IESG <iesg-secretary@ietf.org> wrote:
>
> The IESG has received a request from the Transport Layer Security WG
> (tls) to consider the following document:
> - 'TLS Fallback Signaling Cipher Suite Value (SCSV) for Preventing
>    Protocol Downgrade Attacks'
>   <draft-ietf-tls-downgrade-scsv-03.txt> as Proposed Standard
>
> The IESG plans to make a decision in the next few weeks, and solicits
> final comments on this action. Please send substantive comments to the
> ietf@ietf.org mailing lists by 2015-01-23. Exceptionally, comments may be
> sent to iesg@ietf.org instead. In either case, please retain the
> beginning of the Subject line to allow automated sorting.

+1 on making this document a standard.

The mechanism seems sensible and pragmatic.  I have implemented the
mechanism on the server side and the document was clear and helpful;
it took only a few minutes.

I'm not clear on how the IANA process works, but if the document
progresses to RFC (in any status); it'd be great if the existing
extension number and alert values were to remain the same.

-- 
Colm

v2.23.0 | Report a Bug | By Email