[saag] TLS Meeting summary for IETF 102
Joseph Salowey <joe@salowey.net> Thu, 19 July 2018 15:54 UTC
Return-Path: <joe@salowey.net>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 36B3C130E19 for <saag@ietfa.amsl.com>; Thu, 19 Jul 2018 08:54:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=salowey-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dgca2RpiwUTJ for <saag@ietfa.amsl.com>; Thu, 19 Jul 2018 08:54:34 -0700 (PDT)
Received: from mail-qt0-x22b.google.com (mail-qt0-x22b.google.com [IPv6:2607:f8b0:400d:c0d::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 26E27130E17 for <saag@ietf.org>; Thu, 19 Jul 2018 08:54:34 -0700 (PDT)
Received: by mail-qt0-x22b.google.com with SMTP id t5-v6so7623116qtn.3 for <saag@ietf.org>; Thu, 19 Jul 2018 08:54:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=salowey-net.20150623.gappssmtp.com; s=20150623; h=mime-version:from:date:message-id:subject:to; bh=cPIKr3BOCwCKULiZvm5oGQkeLWrfsmt2/l09dw0bSNg=; b=PqiS+TY4hhdfROssGRn2E2Nghxz8S5jY7OloV9dTJDO5K2ystah2EWIH5drn1hXPzL G3S8XPqtNiopWA8HKZpozCw+hKHul8grhltcRgAYKYGQE2j1vXxOyoED5h6Sz7Imn2FH u2FAsnjTx1yW2CUx/qCSIfg5vjgvkkrZgSnFs1DytM2GBVXE8jN2HyQcL31dvCEfsJj4 9b6wG7IMd8GsT/h87hHAPx2BDCWOmUGVDEwC7QMmEdEq7+xWXlxVXfFiDxFyS2AKjNsX xGBeEKWFY3NInU/83cF4uk+aXgblbGQ8k16Pg0yK6i5xNIpOLmVkZkQxAQENJAzzkHyb 7/bw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=cPIKr3BOCwCKULiZvm5oGQkeLWrfsmt2/l09dw0bSNg=; b=Wg3QZTdvQKuIwA6u67n4tji8AQeX4ymLi4yTi3w0kTRpUSiXD0PbYFG60DTrmoPXbK mv+QsfVc30E4/Jxm5uX37DKrkSqP1ZGPAo2NOdjcF44++w/lVeL196XSA7HtzaPCSkZI 4yK9bh6t7wRwgD0hbG62d2SFciCIVjihATHoGI92GfVOZJnuSjpLu56xqqsVP9HAd7xV Oi7+Jp1nqA/vgsIEBYAuquPK+UQ3yrfG2xOshw+5ihxhp0vYrBnrrrRy7nOXPb6r06YA KhDC/MIqURqWf/QnTb0PlDcUh88SBoQtOZy3prGGhH7MzXsVAvWx0BMioR/L1FAI131G erdw==
X-Gm-Message-State: AOUpUlH3VP4vziIY3x0T3k1zPDYQNHXGiSs+5a0mezRfTdWQVm92NUpy UdeXrbQWqbeoMCh+LFQYUGDKHJOtqk/cEZdgChQkOdY/Ko0cxn7xoEw=
X-Google-Smtp-Source: AAOMgpeJOBc0I2lTVdjeWL1WBXLJo4PCPwk3sarlGCzbaZJYbkyxdLDcK+uLs2X5GadkPmw6xWNqhbCA/CCJD5D+PTo=
X-Received: by 2002:a0c:f20b:: with SMTP id h11-v6mr11393843qvk.190.1532015672890; Thu, 19 Jul 2018 08:54:32 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:aed:3aa7:0:0:0:0:0 with HTTP; Thu, 19 Jul 2018 08:54:12 -0700 (PDT)
From: Joseph Salowey <joe@salowey.net>
Date: Thu, 19 Jul 2018 11:54:12 -0400
Message-ID: <CAOgPGoDyt+Az2Hy7o-A5HqqCRK6RiK48-YW0sA6LEU2JcTOaCA@mail.gmail.com>
To: saag@ietf.org
Content-Type: multipart/alternative; boundary="000000000000f92b0b05715c3121"
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/QTPtQb8ZrZ94ejYMpO1GJ-Bsjks>
Subject: [saag] TLS Meeting summary for IETF 102
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Jul 2018 15:54:36 -0000
TLS is meeting in two sessions this IETF on Monday afternoon and Thursday Evening. TLS 1.3 is currently in Auth48.We had some presentations of TLS 1.3 deployment numbers which showed TLS 1.3 is already measurable on the Internet. We had discussion on deprecating TLS 1.0 and TLS 1.1, there is support, but it will take time. Exported authenticators needs a slight revision and will then be ready for WGLC. We are bringing the DNSSEC chain extension draft back into the working group. We had some good discussions at the IETF this week that will hopefully pave the way forward for the document. Other topics discussed were DTLS connection IDs, delegated credentials and layered exported authenticators. On Thursday we will talk about Encrypted SNI, Ticket Requests, certificate authentication with external PSK, and TLS usage with PAKEs.
- [saag] TLS Meeting summary for IETF 102 Joseph Salowey