Re: [OPSEC] [TLS] Call For Adoption: draft-wang-opsec-tls-proxy-bp

"Arnaud.Taddei.IETF" <Arnaud.Taddei.IETF@protonmail.com> Tue, 28 July 2020 08:35 UTC

Return-Path: <Arnaud.Taddei.IETF@protonmail.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5EE353A08C6 for <opsec@ietfa.amsl.com>; Tue, 28 Jul 2020 01:35:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.381
X-Spam-Level:
X-Spam-Status: No, score=0.381 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=2.5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Mfi63_iljAyF for <opsec@ietfa.amsl.com>; Tue, 28 Jul 2020 01:35:51 -0700 (PDT)
Received: from mail1.protonmail.ch (mail1.protonmail.ch [185.70.40.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5A3533A08C0 for <opsec@ietf.org>; Tue, 28 Jul 2020 01:35:51 -0700 (PDT)
Date: Tue, 28 Jul 2020 08:35:44 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=protonmail; t=1595925348; bh=cyBBL9fa34xpAxLSLdKxPAxBK5TjO8OWkfG/aPdvqCI=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References:From; b=yE5l3Bk/ctzhUyX4sBliQDb4S6EcBwZsUWfjbpeyz0SnhBn9FcjIKUr/cg0aGbVwU RMajbKgNRyjCZ4sc6sbmzXAJSmK5yUDRBIOvzxycLJuVe2bMnmTetWXL+mbugyam6u bZi9iDvJx13g7GM7PgdwwyMi0ChQyx5tL98DrRCo=
To: Jen Linkova <furry13@gmail.com>
From: "Arnaud.Taddei.IETF" <Arnaud.Taddei.IETF@protonmail.com>
Cc: OPSEC <opsec@ietf.org>, "tls@ietf.org" <tls@ietf.org>, OpSec Chairs <opsec-chairs@ietf.org>
Reply-To: "Arnaud.Taddei.IETF" <Arnaud.Taddei.IETF@protonmail.com>
Message-ID: <P3VX7yNLRHW2RJySpNXncc3tfSeyPArgUZnuPmIB7ybFPu_WELPek2GHERsJfvoNHvgQXKyCfLs5lFYJgZWeyurOu4UtUZj7E4t4A66CWVk=@protonmail.com>
In-Reply-To: <CAFU7BAS=ymUPTAGB_fOSrHTG0OajV1n5M1-yOBWxvGam-a89AA@mail.gmail.com>
References: <DM6PR05MB634890A51C4AF3CB1A03DA0BAE7A0@DM6PR05MB6348.namprd05.prod.outlook.com> <CAFU7BAS=ymUPTAGB_fOSrHTG0OajV1n5M1-yOBWxvGam-a89AA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/ODYH2utWTDpPmWLupc-PbLxjV88>
Subject: Re: [OPSEC] [TLS] Call For Adoption: draft-wang-opsec-tls-proxy-bp
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jul 2020 08:35:54 -0000

I strongly support this work as it represents capabilities that are being developed, deployed and used in practice. It has good intentions and provides a good approach in the context of defense in depth approaches. No security cannot be just on both ends of the communication. One can dream about it but that is not how reality is. Removing this possibility is a limit to the overall defense.

I do not understand the reasons behind ignoring reality and the IETF would have, in my naive mind, a strong interest in getting this work under good community adoption so that it is kept in good control with validated best practices. Everyone would win.

I support this draft


Sent with ProtonMail Secure Email.

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Thursday 23 July 2020 03:30, Jen Linkova <furry13@gmail.com> wrote:

> One thing to add here: the chairs would like to hear active and
> explicit support of the adoption. So please speak up if you believe
> the draft is useful and the WG shall work on getting it published.
>
> On Mon, Jul 20, 2020 at 3:35 AM Ron Bonica
> rbonica=40juniper.net@dmarc.ietf.org wrote:
>
> > Folks,
> > This email begins a Call For Adoption on draft-wang-opsec-tls-proxy-bp.
> > Please send comments to opsec@ietf.org by August 3, 2020.
> >
> >                                                                 Ron
> >
> >
> > Juniper Business Use Only
> >
> > OPSEC mailing list
> > OPSEC@ietf.org
> > https://www.ietf.org/mailman/listinfo/opsec
>
> --
>
> SY, Jen Linkova aka Furry
>
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls