Re: [IPsec] New Version Notification for draft-pwouters-ikev1-ipsec-graveyard-00.txt
Tommy Pauly <tpauly@apple.com> Tue, 12 March 2019 16:19 UTC
Return-Path: <tpauly@apple.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D2C50124B91 for <ipsec@ietfa.amsl.com>; Tue, 12 Mar 2019 09:19:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QwSfG0TIHOcz for <ipsec@ietfa.amsl.com>; Tue, 12 Mar 2019 09:19:47 -0700 (PDT)
Received: from nwk-aaemail-lapp03.apple.com (nwk-aaemail-lapp03.apple.com [17.151.62.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5F681200B3 for <ipsec@ietf.org>; Tue, 12 Mar 2019 09:19:47 -0700 (PDT)
Received: from pps.filterd (nwk-aaemail-lapp03.apple.com [127.0.0.1]) by nwk-aaemail-lapp03.apple.com (8.16.0.27/8.16.0.27) with SMTP id x2CGCeGb006490; Tue, 12 Mar 2019 09:19:47 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=mime-version : content-transfer-encoding : content-type : sender : subject : from : in-reply-to : date : cc : message-id : references : to; s=20180706; bh=Bq8acdRNz/J2zYH5igBCTGUCDD2jN8oKwNLFmexnR6I=; b=E80ZIAbJN0ZfPv7RwbeHZ0J5I0jPeBUaJC1hFQ9BCalbFjJHU1IYDVd/mccyyT4jwe15 AjWYNHTGoXykvklxQmjL2Humn1u3FOAEJZqU4O97X5KTQfbCYsLa0Oixl65SmLCKOXY8 qR4uFs9UzLJSbHN+1lWKBlt7mfSdPpuLWhxa6BE+rFH641Y8S0gEbk4bFbdqja3qaY0I j2xK7M7M5muEGdY9kAvHQGFbcEidUpbTLe4KMjVhiMxcnWB3uoTLyQqm2UpS5TNNi6Eh FkqlejSXJEaYErtoi6SMYKA9EWbijMipUJCqEdcDmWyaEIJniqAwwQVJHuEKlGTrZGDO ng==
Received: from ma1-mtap-s01.corp.apple.com (ma1-mtap-s01.corp.apple.com [17.40.76.5]) by nwk-aaemail-lapp03.apple.com with ESMTP id 2r4x1305x0-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Tue, 12 Mar 2019 09:19:47 -0700
MIME-version: 1.0
Content-transfer-encoding: 7bit
Content-type: text/plain; CHARSET="US-ASCII"
Received: from nwk-mmpp-sz11.apple.com (nwk-mmpp-sz11.apple.com [17.128.115.155]) by ma1-mtap-s01.corp.apple.com (Oracle Communications Messaging Server 8.0.2.3.20181024 64bit (built Oct 24 2018)) with ESMTPS id <0PO90036BHCOY280@ma1-mtap-s01.corp.apple.com>; Tue, 12 Mar 2019 09:19:37 -0700 (PDT)
Received: from process_milters-daemon.nwk-mmpp-sz11.apple.com by nwk-mmpp-sz11.apple.com (Oracle Communications Messaging Server 8.0.2.3.20181024 64bit (built Oct 24 2018)) id <0PO900000GWQU900@nwk-mmpp-sz11.apple.com>; Tue, 12 Mar 2019 09:19:36 -0700 (PDT)
X-Va-A:
X-Va-T-CD: 0ffb4ba06162e7d0023839378ebed949
X-Va-E-CD: 87c4c69dd8be1fad8a4339bb4cc36b9b
X-Va-R-CD: 67278a92431b5d7d0d9767cbfbd82a92
X-Va-CD: 0
X-Va-ID: 698e3d34-7d28-4549-a98a-e93c7f3ca9b3
X-V-A:
X-V-T-CD: 0ffb4ba06162e7d0023839378ebed949
X-V-E-CD: 87c4c69dd8be1fad8a4339bb4cc36b9b
X-V-R-CD: 67278a92431b5d7d0d9767cbfbd82a92
X-V-CD: 0
X-V-ID: a2c849a6-8092-4d20-b5af-1ccdedc39356
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:,, definitions=2019-03-12_09:,, signatures=0
Received: from tpauly.scv.apple.com (tpauly.scv.apple.com [17.192.171.37]) by nwk-mmpp-sz11.apple.com (Oracle Communications Messaging Server 8.0.2.3.20181024 64bit (built Oct 24 2018)) with ESMTPSA id <0PO900GD3HCNT410@nwk-mmpp-sz11.apple.com>; Tue, 12 Mar 2019 09:19:35 -0700 (PDT)
Sender: tpauly@apple.com
From: Tommy Pauly <tpauly@apple.com>
In-reply-to: <alpine.LRH.2.21.1903111437260.19205@bofh.nohats.ca>
Date: Tue, 12 Mar 2019 09:19:35 -0700
Cc: "ipsec@ietf.org WG" <ipsec@ietf.org>
Message-id: <64D1977A-3A60-41DC-8A9D-980F4174F003@apple.com>
References: <alpine.LRH.2.21.1903111437260.19205@bofh.nohats.ca>
To: Paul Wouters <paul@nohats.ca>
X-Mailer: Apple Mail (2.3526.1)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-03-12_09:, , signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/SwhLs09zleH9mKFI2_kQHVJ07XI>
Subject: Re: [IPsec] New Version Notification for draft-pwouters-ikev1-ipsec-graveyard-00.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Mar 2019 16:19:51 -0000
Thanks for writing this up! Glad to get rid of IKEv1 =) I do have a question regarding whether the deprecations for the IKEv2 registry are appropriate for this document. RFC 8247 contains the recommendations for the which algorithms and DH groups are going away (SHOULD NOT, MUST NOT, etc), and it seems like an update to that document or similar would be more appropriate to discuss marking deprecation. Best, Tommy > On Mar 11, 2019, at 11:39 AM, Paul Wouters <paul@nohats.ca> wrote: > > > As we discussed on the list and in Bangkok, we were going to submit a > document to deprecrate IKEv1 and various old skool algorithms using > a [DEPRECATED] column in the IANA registry. > > I wrote a first draft to do this... > > Paul > > ---------- Forwarded message --------- > From: <internet-drafts@ietf.org> > Date: Mon, Mar 11, 2019 at 2:35 PM > Subject: New Version Notification for draft-pwouters-ikev1-ipsec-graveyard-00.txt > To: Paul Wouters <pwouters@redhat.com> > > > > A new version of I-D, draft-pwouters-ikev1-ipsec-graveyard-00.txt > has been successfully submitted by Paul Wouters and posted to the > IETF repository. > > Name: draft-pwouters-ikev1-ipsec-graveyard > Revision: 00 > Title: Deprecation of IKEv1 and obsoleted algorithms > Document date: 2019-03-11 > Group: Individual Submission > Pages: 6 > URL: https://www.ietf.org/internet-drafts/draft-pwouters-ikev1-ipsec-graveyard-00.txt > Status: https://datatracker.ietf.org/doc/draft-pwouters-ikev1-ipsec-graveyard/ > Htmlized: https://tools.ietf.org/html/draft-pwouters-ikev1-ipsec-graveyard-00 > Htmlized: https://datatracker.ietf.org/doc/html/draft-pwouters-ikev1-ipsec-graveyard > > > Abstract: > This document deprecates Internet Key Exchange version 1 (IKEv1) and > additionally deprecates a number of algorithms that are obsolete. > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > > > _______________________________________________ > IPsec mailing list > IPsec@ietf.org > https://www.ietf.org/mailman/listinfo/ipsec
- [IPsec] Fwd: New Version Notification for draft-p… Paul Wouters
- Re: [IPsec] New Version Notification for draft-pw… Tommy Pauly
- Re: [IPsec] New Version Notification for draft-pw… Paul Wouters
- Re: [IPsec] Fwd: New Version Notification for dra… Hu, Jun (Nokia - US/Mountain View)
- Re: [IPsec] Fwd: New Version Notification for dra… Valery Smyslov
- Re: [IPsec] New Version Notification for draft-pw… Sean Turner
- Re: [IPsec] New Version Notification for draft-pw… Sean Turner