Re: Proposed Statement on "HTTPS everywhere for the IETF"

Jari Arkko <jari.arkko@piuha.net> Tue, 02 June 2015 06:54 UTC

Return-Path: <jari.arkko@piuha.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 676451A886F for <ietf@ietfa.amsl.com>; Mon, 1 Jun 2015 23:54:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id s8LDUAqk2ZHp for <ietf@ietfa.amsl.com>; Mon, 1 Jun 2015 23:54:49 -0700 (PDT)
Received: from p130.piuha.net (p130.piuha.net [193.234.218.130]) by ietfa.amsl.com (Postfix) with ESMTP id 383EB1A882C for <ietf@ietf.org>; Mon, 1 Jun 2015 23:54:48 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by p130.piuha.net (Postfix) with ESMTP id 015432CC5F for <ietf@ietf.org>; Tue, 2 Jun 2015 09:54:46 +0300 (EEST) (envelope-from jari.arkko@piuha.net)
X-Virus-Scanned: amavisd-new at piuha.net
Received: from p130.piuha.net ([127.0.0.1]) by localhost (p130.piuha.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4x5c57AEpfHJ for <ietf@ietf.org>; Tue, 2 Jun 2015 09:54:45 +0300 (EEST)
Received: from [127.0.0.1] (p130.piuha.net [IPv6:2a00:1d50:2::130]) by p130.piuha.net (Postfix) with ESMTP id 7F08B2CC49 for <ietf@ietf.org>; Tue, 2 Jun 2015 09:54:45 +0300 (EEST) (envelope-from jari.arkko@piuha.net)
From: Jari Arkko <jari.arkko@piuha.net>
Content-Type: multipart/signed; boundary="Apple-Mail=_3EF43D91-98B9-4BDE-B598-47740F926975"; protocol="application/pgp-signature"; micalg=pgp-sha512
Message-Id: <1F11D864-2532-4971-9771-F8037989A9BB@piuha.net>
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
Subject: Re: Proposed Statement on "HTTPS everywhere for the IETF"
Date: Tue, 2 Jun 2015 09:54:43 +0300
References: <20150601164359.29999.35343.idtracker@ietfa.amsl.com> <CAL02cgRPFooA5fVFwvdprb3wPD+Y55pD+7RWjkACDv7T_TBW5Q@mail.gmail.com> <1472054.O9DP0qoCQf@gongo> <556CBCF5.3060402@alvestrand.no> <1C4D741C-89EA-4973-8536-D6A02EFD7624@syndicat.com> <556D4C38.6060704@alvestrand.no>
To: IETF <ietf@ietf.org>
In-Reply-To: <556D4C38.6060704@alvestrand.no>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/WHZUfT-3BvKcumnqnt04jJHvOrY>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Jun 2015 06:54:51 -0000

Folks,

We shouldn’t assign a bigger meaning for this change than what it really is.
Of course it is important that we eat our own dogfood, and of course there
are some privacy benefits.

But ultimately, this is a change about the defaults for our own web services.
Today, in a lot of the cases the default is cleat ext and while I can access the
secure content, I have to edit the URL to add ’s’. Tomorrow, this would be
reversed.

In other words, people can still select their method of access when they
need to. There are obviously broader issues in the Internet around
confidentiality, but this particular action is about our own website
and traffic to it.

We will (and have) of course participate the broader discussion and 
contribute technology that can help make the Internet more privacy
friendly. But that is more about the various solutions we produce,
such as improving efficiency of turning on crypto which HTTP/2 and
TLS 1.3 help, or fixing bad algorithms or issues in protocols. Lets
get to continuing that work!

Jari