IETF Logo Mail Archive

Re: [smime] [lamps] Problems with versions

Peter Gutmann <pgut001@cs.auckland.ac.nz> Mon, 09 May 2022 15:51 UTC

Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: smime@ietfa.amsl.com
Delivered-To: smime@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7257AC15E6EB for <smime@ietfa.amsl.com>; Mon, 9 May 2022 08:51:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PP7MRzPBNDTI for <smime@ietfa.amsl.com>; Mon, 9 May 2022 08:51:08 -0700 (PDT)
Received: from au-smtp-delivery-117.mimecast.com (au-smtp-delivery-117.mimecast.com [103.96.23.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EABEBC1595E5 for <smime@ietf.org>; Mon, 9 May 2022 08:51:07 -0700 (PDT)
Received: from AUS01-SY4-obe.outbound.protection.outlook.com (mail-sy4aus01lp2172.outbound.protection.outlook.com [104.47.71.172]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id au-mta-80-GEV4LGlyMriNNYzQBJglsw-1; Tue, 10 May 2022 01:51:03 +1000
X-MC-Unique: GEV4LGlyMriNNYzQBJglsw-1
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com (2603:10c6:10:10b::10) by MEAPR01MB4920.ausprd01.prod.outlook.com (2603:10c6:220:14::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5227.22; Mon, 9 May 2022 15:51:02 +0000
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::4d78:e58:4ae1:d3ec]) by SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::4d78:e58:4ae1:d3ec%9]) with mapi id 15.20.5227.023; Mon, 9 May 2022 15:51:02 +0000
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: Russ Housley <housley@vigilsec.com>
CC: IETF SMIME <smime@ietf.org>, LAMPS <spasm@ietf.org>
Thread-Topic: [lamps] [smime] Problems with versions
Thread-Index: AQHYXXIMHf7j2iQTy0ie4a2+MgHkeK0LkVWAgASshiGAACZXAIABYdOogAA0LoCABMPrZA==
Date: Mon, 09 May 2022 15:51:02 +0000
Message-ID: <SY4PR01MB62519BD186B46017881CF692EEC69@SY4PR01MB6251.ausprd01.prod.outlook.com>
References: <SY4PR01MB6251E381603FAFE558685D86EEFE9@SY4PR01MB6251.ausprd01.prod.outlook.com> <CA16AFE1-CB97-4134-8FC9-4B8B964ACD6E@vigilsec.com> <SY4PR01MB62512D541C42E6873562A17CEEC29@SY4PR01MB6251.ausprd01.prod.outlook.com> <4447881C-4DEA-48E1-9767-9A6DA2AD07B0@vigilsec.com> <SY4PR01MB6251A8BAFF80ECC2B8BC8862EEC59@SY4PR01MB6251.ausprd01.prod.outlook.com> <BD061240-FAF1-4219-B72B-69B0F9A8459C@vigilsec.com>
In-Reply-To: <BD061240-FAF1-4219-B72B-69B0F9A8459C@vigilsec.com>
Accept-Language: en-NZ, en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: bfc48fb0-8632-40b0-d588-08da31d3b834
x-ms-traffictypediagnostic: MEAPR01MB4920:EE_
x-microsoft-antispam-prvs: <MEAPR01MB4920C7BC55E4B41A358E508FEEC69@MEAPR01MB4920.ausprd01.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SY4PR01MB6251.ausprd01.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(71200400001)(508600001)(966005)(9686003)(26005)(86362001)(186003)(6506007)(5660300002)(2906002)(4744005)(316002)(122000001)(83380400001)(55016003)(6916009)(4326008)(8676002)(64756008)(66476007)(54906003)(66446008)(76116006)(66946007)(786003)(66556008)(38070700005)(38100700002)(8936002)(52536014)(33656002)(7696005); DIR:OUT; SFP:1101
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
MIME-Version: 1.0
X-OriginatorOrg: cs.auckland.ac.nz
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SY4PR01MB6251.ausprd01.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: bfc48fb0-8632-40b0-d588-08da31d3b834
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 May 2022 15:51:02.4364 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Rxzz7RUvqbQbD6qKPSl7YOszs0e2p/+BvmohNFjmiMYq4aA2ZIwMz2DuvE8SBd7srkI3HECBDUQiwbZ1WqZJ/GhF6Klonsbee0Rm7bcRJlk=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MEAPR01MB4920
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: cs.auckland.ac.nz
Content-Language: en-NZ
Content-Type: text/plain; charset="WINDOWS-1252"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/smime/wnwBs_HMHcfftB4KLc9SYbLSP6U>
Subject: Re: [smime] [lamps] Problems with versions
X-BeenThere: smime@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: SMIME Working Group <smime.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/smime>, <mailto:smime-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/smime/>
List-Post: <mailto:smime@ietf.org>
List-Help: <mailto:smime-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/smime>, <mailto:smime-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 May 2022 15:51:11 -0000

Russ Housley <housley@vigilsec.com> writes:

>I think we should hold this discussion for the day that CMS is updated.

The whole point of raising the issue now is to make sure that it's not a
problem when CMS is updated.  TLS has been hit hard by this, OpenPGP is going
through the throes of being hit by it, given that we've seen what happened
there it seems ill-advised to just sit back and wait for CMS to be affected as
well rather than being proactive about it.

(For fans of the UK comedy Hyperdrive, it reminds me of this scene:
https://youtu.be/hhSOy0ADJ5s?t=448: "They've shot the captain, they've shot
the first officer, they're stopping to reload, I wonder what they'll do next".
It's hit TLS, it's hit OpenPGP, I wonder what it'll hit next).

Peter.

v2.23.0 | Report a Bug | By Email