IETF Logo Mail Archive

Re: Last Call: Recognising RFC1984 as a BCP

Eliot Lear <lear@cisco.com> Tue, 11 August 2015 06:22 UTC

Return-Path: <lear@cisco.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 716C01A0369 for <ietf@ietfa.amsl.com>; Mon, 10 Aug 2015 23:22:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.51
X-Spam-Level:
X-Spam-Status: No, score=-14.51 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id daQOhbk5LeDH for <ietf@ietfa.amsl.com>; Mon, 10 Aug 2015 23:22:48 -0700 (PDT)
Received: from aer-iport-1.cisco.com (aer-iport-1.cisco.com [173.38.203.51]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 599BB1A0367 for <ietf@ietf.org>; Mon, 10 Aug 2015 23:22:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=5833; q=dns/txt; s=iport; t=1439274167; x=1440483767; h=subject:to:references:cc:from:message-id:date: mime-version:in-reply-to; bh=qO66hrfJo5mjg73nmcAydbdw2cZykHmNPEov3lmkIXA=; b=cT/jefpTV0HRix04U+Rxj6TJFwRYIawEQMYZd/F4jrVO55hQdZszbivL tdTAqoXSTL5Ti+OI0+Fqixpdai5e4VGll0bItM42wNVd8hOaARqXfsudk RXRcPmaQOWE463hpxjPhIu8mBQ0bNnQQM9ut3coaMbuoKj4te1XGprSoR I=;
X-Files: signature.asc : 481
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AwBQBclMlV/xbLJq1dh3y6J4d+AoFvEgEBAQEBAQGBCoQkAQEEDhVCEwEQCwQUCRYLAgIJAwIBAgFFBgEMCAEBEIgauHOWLgEBAQEBAQEBAQEBAQEBAQEBAQEBAReLUYE9g0wHgmmBQwEElQyCPYFciEyIY5EdJoIcgWQ8gn8BAQE
X-IronPort-AV: E=Sophos;i="5.15,651,1432598400"; d="asc'?scan'208,217";a="624850301"
Received: from aer-iport-nat.cisco.com (HELO aer-core-1.cisco.com) ([173.38.203.22]) by aer-iport-1.cisco.com with ESMTP; 11 Aug 2015 06:22:45 +0000
Received: from [10.61.68.68] (ams3-vpn-dhcp1092.cisco.com [10.61.68.68]) by aer-core-1.cisco.com (8.14.5/8.14.5) with ESMTP id t7B6Mj0Y032741; Tue, 11 Aug 2015 06:22:45 GMT
Subject: Re: Last Call: Recognising RFC1984 as a BCP
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, "Roy T. Fielding" <fielding@gbiv.com>
References: <20150810171306.11047.24159.idtracker@ietfa.amsl.com> <C4962381-2D30-471E-92B1-C282926CB140@vpnc.org> <935C93F4-687E-4A56-A768-704D5910068E@gbiv.com> <55C92069.5020500@gmail.com> <C70EF655-BC22-408F-8375-A26AE08251F5@gbiv.com> <55C97760.4060200@gmail.com>
From: Eliot Lear <lear@cisco.com>
X-Enigmail-Draft-Status: N1110
Message-ID: <55C994B4.7030708@cisco.com>
Date: Tue, 11 Aug 2015 08:22:44 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:38.0) Gecko/20100101 Thunderbird/38.1.0
MIME-Version: 1.0
In-Reply-To: <55C97760.4060200@gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="fAuOcqrCFSqFjlVsE5Mii83jRjqTAj7Ht"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/Ns3ZEr-KsvAp0HJPMf83yC_CrsA>
Cc: IETF <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Aug 2015 06:22:49 -0000

Hi,

On 8/11/15 6:17 AM, Brian E Carpenter wrote:
>
>     It states an opinion of the IAB and IESG
>     at that time regarding two very bad suggestions for key management.  The right
>     opinion, IMO, but still just an opinion of a dozen or so individuals.
>
> That isn't so. Trivially, it was more like two dozen people (IAB+IESG)
> speaking as bodies put in place by the IETF community, not as individuals.
> Non-trivially, we strongly believed at the the time that we were giving
> the rough consensus view of the IETF as a whole. There was a vigorous
> debate in plenary at IETF 32 (Danvers, April 1995) which made the strength
> of opinion in the IETF about the need for strong crypto very clear.
> Unfortunately I can't readily find any trace of minutes of that plenary.
>
> The first draft of what became RFC 1984 was circulated and wordsmithed
> within the IAB and IESG, starting June 1996. An IAB and IESG Statement
> version was released to the media on July 24, 1996 and simultaneously
> sent to the IETF list, with a statement of intent to publish it as
> an RFC. There was a rush due to US Congressional hearings that week.
>
> The only comments we got on the IETF list were supportive, although
> there was no formal last call. The RFC version was posted August 19,
> 1996.
>

While I wasn't in leadership, this matches my recollection at the time. 
Had the IAB or IESG called for comment, I'm sure they would have gotten
enthusiastic support from the community, which at the time was
galvanized against both export restrictions and the use of key escrow
(keep in mind this was probably the peak of key signing parties at the
IETF). 

I think if we reopened 1984 today we'd probably include discussion of
the need for PFS and might even venture to provide references to high
profile examples of some governments' inability to secure THEIR secure
information, much less that of others.  On balance, though, the document
stands the test of time.

Eliot

v2.23.0 | Report a Bug | By Email