Re: [saag] AD review of draft-iab-crypto-alg-agility-06

Martin Thomson <martin.thomson@gmail.com> Mon, 24 August 2015 20:47 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D8EDE1ACD1D for <saag@ietfa.amsl.com>; Mon, 24 Aug 2015 13:47:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n9-cAiBpiyT5 for <saag@ietfa.amsl.com>; Mon, 24 Aug 2015 13:47:20 -0700 (PDT)
Received: from mail-qk0-x229.google.com (mail-qk0-x229.google.com [IPv6:2607:f8b0:400d:c09::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A1C031A1A80 for <saag@ietf.org>; Mon, 24 Aug 2015 13:47:20 -0700 (PDT)
Received: by qkfh127 with SMTP id h127so87799491qkf.1 for <saag@ietf.org>; Mon, 24 Aug 2015 13:47:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=x+KPjxs2NSbxosK6+1anUbVcWX0soRS9I7yZKkiDhL4=; b=qdpatlKjFhMyEPfhSHC2f2K2ij4mWzL3cnUVUqeDMQfO83Q0JdoCGxu150sQsa5xfN PkLZvvWaUT5Ovtc8PMJ3QzmXCG5yiausSiXmCyzBsYjEpjm/9sqP3qtrfhDLFzLUjnby dO3wOlMlknopgQ9x81CKZ7/Ef3wdEIJ+7g3jQ+GAoWtcAQ+rRZYMkYHvUSdOqP/uBkeE D4dDUvR4PQoZ7O5NoR1xoHhW//7/2LyQ0tNVVv/+4BBT9z/Aw2aD+gzO7l2ZgZcvb9Ha FNejxXkzu7AOoh4ghivoa9hceWt7mePr33dz/+XFbvsAPqBFb+FHQwsK/EM0ElMJ7Zkv LGpw==
MIME-Version: 1.0
X-Received: by 10.170.199.7 with SMTP id q7mr3099501yke.57.1440449239875; Mon, 24 Aug 2015 13:47:19 -0700 (PDT)
Received: by 10.129.133.130 with HTTP; Mon, 24 Aug 2015 13:47:19 -0700 (PDT)
In-Reply-To: <CAHbuEH7B3_G9vAhw=U2tuz-Uh8mKMUfL6s=H+BOG96FDZaACig@mail.gmail.com>
References: <55A938F1.9090404@cs.tcd.ie> <CD936D80-BEA2-4918-828C-E3A392761EC5@gmail.com> <20150727194020.GD15860@localhost> <55B6D36C.70105@iang.org> <20150728013020.GO4347@mournblade.imrryr.org> <DM2PR0301MB0655CF099FA7C56E9B9D24A9A88D0@DM2PR0301MB0655.namprd03.prod.outlook.com> <20150728053035.GR4347@mournblade.imrryr.org> <CAHbuEH7B3_G9vAhw=U2tuz-Uh8mKMUfL6s=H+BOG96FDZaACig@mail.gmail.com>
Date: Mon, 24 Aug 2015 13:47:19 -0700
Message-ID: <CABkgnnV6Qh2k+mriFRjO+f_Bm_rE6GqKJ=28EO8ZWzvXD9U5rA@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/0Kqtpq6_jMsIVDd5GI1v03x2Vag>
Cc: "saag@ietf.org" <saag@ietf.org>
Subject: Re: [saag] AD review of draft-iab-crypto-alg-agility-06
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Aug 2015 20:47:22 -0000

On 24 August 2015 at 13:31, Kathleen Moriarty
<kathleen.moriarty.ietf@gmail.com>; wrote:
> If others think I'm in the rough, it would be good to know.

I think that you have it right.  New protocol work has different
deployment constraints with respect to security.  New stuff can (and
should) be encrypted always.