IETF Logo Mail Archive

Re: [secdir] [Last-Call] Secdir telechat review of draft-ietf-uta-rfc7525bis-09

"Salz, Rich" <rsalz@akamai.com> Thu, 14 July 2022 13:44 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 593D3C16ECB6; Thu, 14 Jul 2022 06:44:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.685
X-Spam-Level:
X-Spam-Status: No, score=-2.685 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.582, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ggk42LFm6UTY; Thu, 14 Jul 2022 06:44:45 -0700 (PDT)
Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D9C5C147930; Thu, 14 Jul 2022 06:44:44 -0700 (PDT)
Received: from pps.filterd (m0122332.ppops.net [127.0.0.1]) by mx0a-00190b01.pphosted.com (8.17.1.5/8.17.1.5) with ESMTP id 26EC01wu027265; Thu, 14 Jul 2022 14:44:43 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=jan2016.eng; bh=M5XX6FngoSDqLuP7r6EH6zjLlDhFwPFTj1XykhbSe0s=; b=H7L+NbGiQk/pUBk80P7OEfyglbWQ93vZ4d129gfBVlh8JzF5v91UltjU7otBIVNguuKH BDv7tCVYw8o5T0LDmlEC+j1ig4ojHh9AAyRrnaT/DYcTi4abGkoBZETgszTrOA7k3tpK 3N+n3gKkysFTh4JO9GdF1flDo8ril+iUiWd5hhKnV5u1hqFxrW8Tp+p0x/oR+02GJdQD kXSZp3XfJNe3sxeWKSDC7MoOdXDREiSw+nYblRqe5YLfhR9h2m1YImQOeLJSsvpe2kfC svpY4wc18o+3GJdObIU24U/hq5qVGUDk0LcuBrhSryk1IQ44PGNadra9u16vMmfRYI1M sA==
Received: from prod-mail-ppoint7 (a72-247-45-33.deploy.static.akamaitechnologies.com [72.247.45.33] (may be forged)) by mx0a-00190b01.pphosted.com (PPS) with ESMTPS id 3ha7nk1ard-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 14 Jul 2022 14:44:43 +0100
Received: from pps.filterd (prod-mail-ppoint7.akamai.com [127.0.0.1]) by prod-mail-ppoint7.akamai.com (8.17.1.5/8.17.1.5) with ESMTP id 26EC043u004371; Thu, 14 Jul 2022 09:44:42 -0400
Received: from email.msg.corp.akamai.com ([172.27.50.204]) by prod-mail-ppoint7.akamai.com (PPS) with ESMTPS id 3h750yda89-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 14 Jul 2022 09:44:42 -0400
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) by ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.26; Thu, 14 Jul 2022 06:44:41 -0700
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) by ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) with mapi id 15.02.0986.026; Thu, 14 Jul 2022 06:44:41 -0700
From: "Salz, Rich" <rsalz@akamai.com>
To: Rob Sayre <sayrer@gmail.com>, Peter Saint-Andre <stpeter@stpeter.im>
CC: Benjamin Kaduk <kaduk@mit.edu>, "draft-ietf-uta-rfc7525bis.all@ietf.org" <draft-ietf-uta-rfc7525bis.all@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "uta@ietf.org" <uta@ietf.org>
Thread-Topic: [Last-Call] Secdir telechat review of draft-ietf-uta-rfc7525bis-09
Thread-Index: AQHYlu/MHKqKEmfUz0enBfDWrT7bsK18+4uAgAB7EACAAAJSgIAAmzkA
Date: Thu, 14 Jul 2022 13:44:41 +0000
Message-ID: <EFF29D9A-FD0B-4293-B758-49F167A780C7@akamai.com>
References: <165766858084.5251.12485129434316295805@ietfa.amsl.com> <b24e2934-200f-4f80-5261-aa2a977da39b@stpeter.im> <CAChr6Syq+uOTJsvqWuSustq_HdTaXCtDepyCuRWx+jGoEB06Fw@mail.gmail.com> <CAChr6SzkAmbjGK4XOwPkSwssLoG4NW1yG-6b2aFdFr43yF2zwQ@mail.gmail.com> <c516d0e4-f477-a4fb-2638-3615434f48f2@stpeter.im> <CAChr6SwgwknvgAycr6s=6tCRQZoZdiJxRXJpoTejEcW7g+bv=A@mail.gmail.com> <359BC9EA-FB6D-49E8-8CA6-AA395114838B@akamai.com> <cd793161-3535-41f8-a6f3-ed5b160048c6@stpeter.im> <CAChr6Sy=Jm-jTRxcyy8fTY_6qFxufFcmwK_3NoRai-1Qe=h_kw@mail.gmail.com>
In-Reply-To: <CAChr6Sy=Jm-jTRxcyy8fTY_6qFxufFcmwK_3NoRai-1Qe=h_kw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.61.22050700
x-originating-ip: [172.27.164.43]
Content-Type: multipart/alternative; boundary="_000_EFF29D9AFD0B4293B75849F167A780C7akamaicom_"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.883,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-07-14_10,2022-07-14_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 adultscore=0 phishscore=0 bulkscore=0 spamscore=0 mlxlogscore=855 mlxscore=0 malwarescore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2206140000 definitions=main-2207140057
X-Proofpoint-GUID: eqpz9FWt44p7dU2S2ALhoa08dm7mZWAa
X-Proofpoint-ORIG-GUID: eqpz9FWt44p7dU2S2ALhoa08dm7mZWAa
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.883,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-07-14_10,2022-07-14_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 phishscore=0 priorityscore=1501 suspectscore=0 impostorscore=0 lowpriorityscore=0 mlxscore=0 malwarescore=0 bulkscore=0 clxscore=1015 mlxlogscore=808 spamscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2206140000 definitions=main-2207140058
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/ejaV-3fGksj6SdZ1eBZ71BB3V6I>
Subject: Re: [secdir] [Last-Call] Secdir telechat review of draft-ietf-uta-rfc7525bis-09
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Jul 2022 13:44:49 -0000

  *   I think the main problem would be that the handshake is vastly different.

Different, not worse.


  *   I don’t care which document the deprecation happens in, because I am right.

Good to know, thanks.

You cannot list any reasons why 1.2 should be deprecated, you are mistaken about the separation of implementations in the most common deployment stacks, but you’re right.  I guess I know how to handle similar feedback from you.

v2.23.0 | Report a Bug | By Email