Re: [Secdispatch] Requesting agenda time for draft-vaughn-tlstm-update
Eric Rescorla <ekr@rtfm.com> Wed, 04 August 2021 17:02 UTC
Return-Path: <ekr@rtfm.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 98A403A0B91
for <secdispatch@ietfa.amsl.com>; Wed, 4 Aug 2021 10:02:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001,
SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key)
header.d=rtfm-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id UZq5SjI_ARfb for <secdispatch@ietfa.amsl.com>;
Wed, 4 Aug 2021 10:02:17 -0700 (PDT)
Received: from mail-ej1-x631.google.com (mail-ej1-x631.google.com
[IPv6:2a00:1450:4864:20::631])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id D78E23A0B8C
for <secdispatch@ietf.org>; Wed, 4 Aug 2021 10:02:16 -0700 (PDT)
Received: by mail-ej1-x631.google.com with SMTP id h9so4760311ejs.4
for <secdispatch@ietf.org>; Wed, 04 Aug 2021 10:02:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=rtfm-com.20150623.gappssmtp.com; s=20150623;
h=mime-version:references:in-reply-to:from:date:message-id:subject:to
:cc; bh=jaumMmx2JPnGHgO1/uY1I3MtKdkMdQkuQsDX7PPaSPQ=;
b=Abn5soifD3WCRLT2HjIyhB/elKlOo3p+I3AkXAyP0PZPMAGHpC4x3ToXvz84Z6Zz5q
xU6W56DBNT/NHHoUHzYAcHRew9JUL7QafPevdtIw6OR8yZSJ0HewoGsjtewIh6QaRezi
tHbvJUabB65DVV+PkwPE51YSB3dLLamdDZREmrjWa3xGX/6z9xaCGqIyj6hRUAlWO5kn
Dgs2DqpA8ud1PYTyD9TV81PONXp4NDNWaPT/Sx4AxpEihDmeyk1MHzpnZb2U/xphVBlr
GDXLG1wwUjxh0ll8lC3KimE1j9+lSVdVAQDZYy2n3eMydU8WOHtZypfL0JO9KbEj9CZZ
QAfw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20161025;
h=x-gm-message-state:mime-version:references:in-reply-to:from:date
:message-id:subject:to:cc;
bh=jaumMmx2JPnGHgO1/uY1I3MtKdkMdQkuQsDX7PPaSPQ=;
b=RBuwu4KorFKNWre+HRryA/XXCaXxl3cWdgFVZhNlaX5xuWDG5EqeMtOdv0PblZKWyk
cNaJQKUyOdbErt7hFeiTabqes64YsJc7APKUU+2hA0uCWc5GIm3E5stme5WXGxKGQ0Ea
LjfhnyCY8PPBzIZffs/A1QYtpQxRBCYn82v3tiSOSgbc1JoVjJuevsY4nC0Y7VH7IE+3
kxlKVZs+qt6qqQixHzcL1ouJ4mxmNz0VCa+7vgvIIzVsJOt14doCb66MHTGmoUdR40Pi
6OHzQT/Ruws0ho4I71USwGiWQts0zbqkWRX//NZQNMQ4ZFQ7sEU+7Y8HE3HZOBM67dkQ
CzAQ==
X-Gm-Message-State: AOAM530mSfsrZj3KcM1mOxlibXYtuL42UqpJnVY5uv+Yobp2TRIY4irv
4024F/cD5/ZFLgA3AYFgu/ZBteRwLjgBNVBqvqVcJFNOlroPINOn
X-Google-Smtp-Source: ABdhPJxLosFn4TuAPJWK4eSVFS2d61Ywb7BZ73jK4F9rVuFotfrbCIq2uCwiZhNmF7cdC50funuCPiBhCvoVP9MBgvU=
X-Received: by 2002:a17:906:c7c2:: with SMTP id
dc2mr202306ejb.472.1628096533580;
Wed, 04 Aug 2021 10:02:13 -0700 (PDT)
MIME-Version: 1.0
References: <E01AA1FF-B905-4635-9174-518294AFF2A2@trevilon.com>
In-Reply-To: <E01AA1FF-B905-4635-9174-518294AFF2A2@trevilon.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Wed, 4 Aug 2021 10:01:36 -0700
Message-ID: <CABcZeBNhD1KwndZhRB7Qvho6ubycu+6EbvOYBM1tp5gEM5crOg@mail.gmail.com>
To: Kenneth Vaughn <kvaughn@trevilon.com>
Cc: IETF SecDispatch <secdispatch@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008b67b905c8bec32c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/yIty68jNILMKDzxQaSBN8xp_Z3w>
Subject: Re: [Secdispatch] Requesting agenda time for
draft-vaughn-tlstm-update
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>,
<mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>,
<mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Aug 2021 17:02:22 -0000
Hi folks,
I'm trying to follow the change in S 2.1 about the TLSTM fingerprint.
In TLS 1.2, one represented signature algorithms as:
struct {
HashAlgorithm hash;
SignatureAlgorithm signature;
} SignatureAndHashAlgorithm;
We found in TLS 1.3 that it was not really possible to mix-and-match
them and so changed this to a two-byte SignatureScheme that represented
the pair of hash and algorithm as well as any other values but without
any other internal structure. E.g.,
rsa_pss_pss_sha256(0x0809),
As I understand it, 6353 used the TLS 1.2 HashAlgorithm identifier to
indicate which hash was used to make a fingerprint, and you're changing
this because TLS 1.3 deprecated this field? If so, I don't think this
is necessary: you're not referring to anything in TLS, you're just
reusing the code point. So, I would probably not make any change
here.
-Ekr
On Sun, Jun 27, 2021 at 7:31 PM Kenneth Vaughn <kvaughn@trevilon.com> wrote:
> I would like to present https://datatracker.ietf.org/doc/draft-vaughn-tlstm-update-01/, a new version of the proposed update of RFC 6353 (TLSTM). Based on feedback from this group, and the recent IETF decision to finalize DTLS, the ITS community decided to keep support for DTLS in the update. The result of that decision was to reverse a number of changes in the text and it made more sense to write the proposed new version 01 as an update to RFC 6353 rather than a replacement of RFC 6353. The result is a shorter document where the changes are more evident.
>
> I would like to request 10-15 minutes at IETF meeting of the Security Dispatch group to discuss the possibility of launching an effort to continue the development of this document as an official IETF document.
>
> Regards,
> Ken Vaughn
>
> Trevilon LLC
> 6606 FM 1488 RD #148-503
> Magnolia, TX 77354
> +1-936-647-1910
> +1-571-331-5670 cell
> kvaughn@trevilon.com
> www.trevilon.com
>
> _______________________________________________
> Secdispatch mailing list
> Secdispatch@ietf.org
> https://www.ietf.org/mailman/listinfo/secdispatch
>
- [Secdispatch] Requesting agenda time for draft-va… Kenneth Vaughn
- Re: [Secdispatch] Requesting agenda time for draf… Eric Rescorla
- Re: [Secdispatch] Requesting agenda time for draf… Kenneth Vaughn
- Re: [Secdispatch] Requesting agenda time for draf… Eric Rescorla