Re: [ipwave] comments on the TLS certs draft
William Whyte <wwhyte@onboardsecurity.com> Fri, 29 March 2019 12:38 UTC
Return-Path: <wwhyte@onboardsecurity.com>
X-Original-To: its@ietfa.amsl.com
Delivered-To: its@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC9FF12028D for <its@ietfa.amsl.com>; Fri, 29 Mar 2019 05:38:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=onboardsecurity-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id j6mZgXILjGy9 for <its@ietfa.amsl.com>; Fri, 29 Mar 2019 05:38:41 -0700 (PDT)
Received: from mail-pg1-x531.google.com (mail-pg1-x531.google.com [IPv6:2607:f8b0:4864:20::531]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6275012014F for <its@ietf.org>; Fri, 29 Mar 2019 05:38:41 -0700 (PDT)
Received: by mail-pg1-x531.google.com with SMTP id z9so1166364pgu.10 for <its@ietf.org>; Fri, 29 Mar 2019 05:38:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=onboardsecurity-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=jkoXB2fKEzEahp8cKHeCpo3A0Vp2SKaQew4yt+k9kik=; b=HNWFDQLwTZhEXFr/9Tt3boranHEHVTI6ucVJVmfSBXtnIZINtir/bspKwbhZMEfxI7 OFfbDdgHhAPm5ZB5hwg0oXNiBDxpRhyLFxEk7GCyavkoeprWDuw55vBg2EwGWzbjykUK 0hU8zMGVfJSHH5YjKPWO0vDGOxJiVzxlXJIr4TwsVfEMCDdKLLur5eDkQE9ORj5ICU6+ jk8LT8+k2LY84n9Nzgsdgij13Dv7HOgfppYigOGbsvIpSZVSkHiQ9YJrMHbIa9aV/ysm u19AKlspdYy49YZktOhFeL++psqztDNUKnL8Cz20dGRZEN3RNH58TafcUiYr5iilzqLH aHlQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=jkoXB2fKEzEahp8cKHeCpo3A0Vp2SKaQew4yt+k9kik=; b=PH3qkv0uZAyeLxR9eRLs6X3vHr0WR3Sg9sTPQ2B5dXbTVcFG/TgrrvmFffV/dLVFk/ bT4wxM+IWvl3Px0vCaZli8qCZW0AZbBhp31yr4ReXdfumiEz4QBz6+OH9wpNnEXGqCGz dvRY3T+sC5wLWgA23dkq3lT2PrqN9TQ0BlOB7ntqHsJTRqOyMdXRfvi2BZ25k8MKzP+u XgpnlZFunWoQ11SOsRVKXmEQ0e6sglGXsBugwuOXwwsbNiBEgiw9ziIpG4Tbnzio0wFB p0IKqcUN5Za+52S3jvhCbGf7wnp8SURxT9djnLCRWamVLvxgNkfJDGzd1ujrDQtlr6dn sP4A==
X-Gm-Message-State: APjAAAXW5iztuVoLmoGQonyXcHBoe3CTSzFDJvSYV3TAybDFNsrUsg45 BgZIk8xVaG01H8Uq9Uds2VJFHdtsohFBzm4jMFsnYw==
X-Google-Smtp-Source: APXvYqyStjMKiXpdvYrP2SPYfolqovVQSjkZtSZLTwvNECBXF+5mmzWQFseCQVWtJzKWEypvr3znDvM1JKBZ3akTrjc=
X-Received: by 2002:a63:ef0d:: with SMTP id u13mr22890051pgh.450.1553863120388; Fri, 29 Mar 2019 05:38:40 -0700 (PDT)
MIME-Version: 1.0
References: <e4f79bf5-4b61-73f3-3fef-6080a95d2209@gmail.com>
In-Reply-To: <e4f79bf5-4b61-73f3-3fef-6080a95d2209@gmail.com>
From: William Whyte <wwhyte@onboardsecurity.com>
Date: Fri, 29 Mar 2019 08:38:29 -0400
Message-ID: <CAND9ES1n9obVvSi7TrDjPeBYkPLj=K7djQFBhN2+WuoQvNkRZQ@mail.gmail.com>
To: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Cc: "its@ietf.org" <its@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000524bb205853af3de"
Archived-At: <https://mailarchive.ietf.org/arch/msg/its/RXHT79ks7J4dtg8P7qlyBjsmoUk>
Subject: Re: [ipwave] comments on the TLS certs draft
X-BeenThere: its@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IPWAVE - IP Wireless Access in Vehicular Environments WG at IETF <its.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/its>, <mailto:its-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/its/>
List-Post: <mailto:its@ietf.org>
List-Help: <mailto:its-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/its>, <mailto:its-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Mar 2019 12:38:44 -0000
Alex, these certs are going to be widely deployed, and there is good commercial support for them. We have standards organizations and deployment sites asking for this draft. Cheers, William On Fri, Mar 29, 2019 at 8:37 AM Alexandre Petrescu < alexandre.petrescu@gmail.com> wrote: > draft-tls-certieee1609-02 > > draft-msahli-ipwave-ieee1609-00.txt > > > The certificates are highly necessary for securing IP based communications > in vehicle networks. > > But the conditions of their use may prevent deployment. > > - can I use an open source package to generate now a certificate with > features of these drafts? > > - is there a Certificate Authority that I can ask now to sign them? > > - can I do these two things for free now? > > Because in absence of these conditions, I am highly tempted to use openvpn > and its associated free tools to generate my own CA and my own certificates > to put in the cars I deal with. > > I think in practice several people do just that. > > I think it is a situation that needs to be prevented, because it means the > drafts are not used. > > Alex > _______________________________________________ > its mailing list > its@ietf.org > https://www.ietf.org/mailman/listinfo/its > -- --- I may have sent this email out of office hours. I never expect a response outside yours.
- [ipwave] comments on the TLS certs draft Alexandre Petrescu
- Re: [ipwave] comments on the TLS certs draft William Whyte
- Re: [ipwave] comments on the TLS certs draft Alexandre Petrescu
- Re: [ipwave] comments on the TLS certs draft William Whyte