IETF Logo Mail Archive

Re: [secdir] [Last-Call] Secdir telechat review of draft-ietf-uta-rfc7525bis-09

Benjamin Kaduk <kaduk@mit.edu> Thu, 14 July 2022 00:59 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 418D3C16ECC1; Wed, 13 Jul 2022 17:59:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mit.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PzigUZPHVpiA; Wed, 13 Jul 2022 17:59:03 -0700 (PDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A39AAC134859; Wed, 13 Jul 2022 17:59:02 -0700 (PDT)
Received: from kduck.mit.edu (c-73-169-244-254.hsd1.wa.comcast.net [73.169.244.254]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id 26E0woig026686 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 13 Jul 2022 20:58:56 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mit.edu; s=outgoing; t=1657760339; bh=bhF1n8U6DjKnI73JYtnnXvjflniRiClvBDjPCjaWOOE=; h=Date:From:To:Cc:Subject:References:In-Reply-To; b=QvLGPPhpUGWN6UZJduaPdHCuiZfX4fvv5JnQHsyi6RaLhrcbe5DLoShNPHFL8LeJC +uIU7kJfMPC7RHBuYXf4O9uHmf9lzGiYpdqNsS+bI7nksp0xjlyYEy4EwdPnqvRCAx GyB1j+j9u8qfHYlLCiExkmH68U+6VNw3ECaxmTBD022+w/U+9zaRgufB+bSPIQ2rI3 2ETd0IRNcGyMcaIaIx9RBmmbhLosLE+wO8U+xAjKCGKUdkhOl1t+yIsdvkn2Nvrr2+ p/clvcoJxUjFrYCf6ARbsUKbr0nX1/gqxjzvjSYCTClAMKBSJ6azNvlUu8lKhcFugM aB/FTxk5NVjiQ==
Date: Wed, 13 Jul 2022 17:58:50 -0700
From: Benjamin Kaduk <kaduk@mit.edu>
To: Martin Thomson <mt@lowentropy.net>
Cc: Peter Saint-Andre <stpeter@stpeter.im>, "Salz, Rich" <rsalz@akamai.com>, Rob Sayre <sayrer@gmail.com>, "secdir@ietf.org" <secdir@ietf.org>, "draft-ietf-uta-rfc7525bis.all@ietf.org" <draft-ietf-uta-rfc7525bis.all@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>, "uta@ietf.org" <uta@ietf.org>
Message-ID: <20220714005849.GS26442@kduck.mit.edu>
References: <165766858084.5251.12485129434316295805@ietfa.amsl.com> <b24e2934-200f-4f80-5261-aa2a977da39b@stpeter.im> <CAChr6Syq+uOTJsvqWuSustq_HdTaXCtDepyCuRWx+jGoEB06Fw@mail.gmail.com> <CAChr6SzkAmbjGK4XOwPkSwssLoG4NW1yG-6b2aFdFr43yF2zwQ@mail.gmail.com> <c516d0e4-f477-a4fb-2638-3615434f48f2@stpeter.im> <CAChr6SwgwknvgAycr6s=6tCRQZoZdiJxRXJpoTejEcW7g+bv=A@mail.gmail.com> <359BC9EA-FB6D-49E8-8CA6-AA395114838B@akamai.com> <cd793161-3535-41f8-a6f3-ed5b160048c6@stpeter.im> <37eba8c7-57b6-4fcc-8bf1-5521ab82aeea@beta.fastmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <37eba8c7-57b6-4fcc-8bf1-5521ab82aeea@beta.fastmail.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/TNdO3vi3OFwD3VF9ZrwCFe8aK80>
Subject: Re: [secdir] [Last-Call] Secdir telechat review of draft-ietf-uta-rfc7525bis-09
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Jul 2022 00:59:08 -0000

On Thu, Jul 14, 2022 at 10:52:53AM +1000, Martin Thomson wrote:
> 
> 
> On Thu, Jul 14, 2022, at 10:20, Peter Saint-Andre wrote:
> > On 7/13/22 3:00 PM, Salz, Rich wrote:
> >>   * It is definitely the "BCP" already--there are good reasons not to
> >>     support TLS 1.2 on a server, and good reasons for clients not to
> >>     connect to a server that negotiates it.
> >> 
> >> What are they?
> >
> > Good question.
> 
> I think we want to distinguish between "can" and "should".  There are servers that can reasonably not support TLS 1.2 now.  Most clients that are up to date will have TLS 1.3.  Those servers can disable TLS 1.2 and enjoy the benefit of using a more robust protocol.
> 
> However, I don't see the IETF being in a position yet where it can tell people not to use TLS 1.2.  There's a good protocol hidden in there still if you are careful.  More importantly, we still have people who have not been able to make a move. Note the careful distinction here between not able and not willing; the latter will start to be an excuse soon.

I agree.  I think it's pretty clear that 1.3 is better than 1.2, but the
operative question seems to be whether 1.2 is so bad that we should be
disrecommending it (to whatever degree).  And, as you say, there is still a
good protocol in there if you are careful/follow the advice we're giving,
so I think the answer to that question is "no" (i.e., we should still say
that 1.2 is fine to use).

-Ben

v2.23.0 | Report a Bug | By Email