Re: [lamps] [EXTERNAL] Call for adoption of draft-becker-guthrie-cert-binding-for-multi-auth-01

Mike Ounsworth <Mike.Ounsworth@entrust.com> Fri, 16 September 2022 21:15 UTC

Return-Path: <Mike.Ounsworth@entrust.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0C0D3C15259E for <spasm@ietfa.amsl.com>; Fri, 16 Sep 2022 14:15:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=entrust.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4_bMUnROKLQE for <spasm@ietfa.amsl.com>; Fri, 16 Sep 2022 14:15:05 -0700 (PDT)
Received: from mx07-0015a003.pphosted.com (mx07-0015a003.pphosted.com [185.132.183.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E4C68C14F73B for <spasm@ietf.org>; Fri, 16 Sep 2022 14:15:04 -0700 (PDT)
Received: from pps.filterd (m0242864.ppops.net [127.0.0.1]) by mx08-0015a003.pphosted.com (8.17.1.5/8.17.1.5) with ESMTP id 28GHP7b9019264; Fri, 16 Sep 2022 16:15:02 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=entrust.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=mail1; bh=ExGdJI+8Mf5TCANnzVPL+38uniXLCA6EGKEstCaBOOk=; b=V0SeRkcDikVOr1HkX7CGdQ3argtbEsKob9vKt82qfHJyDlnohNcAFoyHUTfwvEyd6S5S L/iihFhnrqOho1rJscKvVakwCqzJe/1PKNOd608f4kkzz8VbX1qw2+jbFKEdgnol54bs JmsZq5C6lx/HA1PyhTAXxWREIisHa7TAJA+wnqT9byqbG3HKheQYhL2Qo59zQXeC5uLK lihltuv8fpAlF3OMATqYldxuatUQGE/no5th5RVrkzd56r6G2RCwYHIlX+BomLiclxq6 cCSqHOcgC8BVIRe91GlwDU7ngWeyaEf5RXV2CS1f1RLDDLC5xbCgdpcKantpHtBd83g/ 3w==
Received: from nam10-mw2-obe.outbound.protection.outlook.com (mail-mw2nam10lp2107.outbound.protection.outlook.com [104.47.55.107]) by mx08-0015a003.pphosted.com (PPS) with ESMTPS id 3jm945ctux-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 16 Sep 2022 16:15:02 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=nk9bl7TPIhlE6E0AsIrO9Ldha4HsGk2MzIph/r+R1OiUmoiJokDOCqA42ArUTqrBTodIH92dmDybrovDd44QLYHDDVWq3Joqy/FMZv8IqXOyP4r8w9mqiG4MlDHJQdC7lsNQn8gtvSZBBPOSO3Yk/zutMMpM4shU9+4fDzNK1ELFU46cvq3aKEBV2ZNBpxlhLKW/UmmHQU6enzuGWVwyksPzfVrErlUkH+HcZS9kWlTs886Cd9N1pExPtaZXRqJKcBU5dMWrHe0gdLOM6Iu1YcAW/5jJ3f+s6VJ7KKTIB1vGIzxCJ2wO5nV9+BVmoOKgM3qtwC4Dnn2fIk92XH0q4A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ExGdJI+8Mf5TCANnzVPL+38uniXLCA6EGKEstCaBOOk=; b=Ib7RIyvpBK9FF0zDRjLBMt1hB0k3sXmRiv9ZTPRQCinFmT/kHvLMKqUiZ5rqhPvkfC/CAHqz4HL9izAw4FHauO9xbrX0oew2lddl6iFWXBdUVczmjsW2ZAVBHt1xMR6QTJd8nyoT3OuC2gakfrhY9b5p0GsJDeG1Nh/22m6Pl66Vyczu7nVJgmjIml5HJ0fM/1IpF1mzAlw9Zto129cJ9gWvhrdx4i+U5zVxf4vh1o+1uws++GN5UAkouTSDoWFvZQVlNYlPTPMaZEJsUgDayKC/jmEl+ivkIOqIuDCWWMxU0DIsAfJd98qobXWKKKDjQjPR7ZoPOUewdmZUvFRVSA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=entrust.com; dmarc=pass action=none header.from=entrust.com; dkim=pass header.d=entrust.com; arc=none
Received: from CH0PR11MB5739.namprd11.prod.outlook.com (2603:10b6:610:100::20) by CY8PR11MB7339.namprd11.prod.outlook.com (2603:10b6:930:9f::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5632.16; Fri, 16 Sep 2022 21:14:57 +0000
Received: from CH0PR11MB5739.namprd11.prod.outlook.com ([fe80::9d8e:5cd6:89b8:244c]) by CH0PR11MB5739.namprd11.prod.outlook.com ([fe80::9d8e:5cd6:89b8:244c%2]) with mapi id 15.20.5632.016; Fri, 16 Sep 2022 21:14:57 +0000
From: Mike Ounsworth <Mike.Ounsworth@entrust.com>
To: Russ Housley <housley@vigilsec.com>, LAMPS <spasm@ietf.org>
Thread-Topic: [EXTERNAL] [lamps] Call for adoption of draft-becker-guthrie-cert-binding-for-multi-auth-01
Thread-Index: AQHYyRoWX9l7Mccj+EKpKT6VXB+2063ijx4Q
Date: Fri, 16 Sep 2022 21:14:57 +0000
Message-ID: <CH0PR11MB5739FD0C09BDBD015190D3E69F489@CH0PR11MB5739.namprd11.prod.outlook.com>
References: <PH0PR00MB10003EC6A096FE0A363BBFB9F5459@PH0PR00MB1000.namprd00.prod.outlook.com> <PH0PR00MB10002A7A2850A1333B4F6C00F54A9@PH0PR00MB1000.namprd00.prod.outlook.com> <35BEB1D9-7EA5-4CD4-BADA-88CCB0E9E8F9@vigilsec.com>
In-Reply-To: <35BEB1D9-7EA5-4CD4-BADA-88CCB0E9E8F9@vigilsec.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CH0PR11MB5739:EE_|CY8PR11MB7339:EE_
x-ms-office365-filtering-correlation-id: 39419d4a-6896-4b6c-5852-08da9828820e
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: BqcSx6YQn5jsJA4OZ+byiApZsocj0DLjJ8TB0meRWSAR2eqKZ0P2+Q1dqdMDbzO0nuvszFakaork9HftngR3qqD9bKZP6cxco5ie07txokXIm2ZBxnAmvw807L9YoEcIR4J5GXBA4Sp7BY0KmwB/kd6IxWfWJk7yOaFe8qjB16ZjSIigWpv/ZG7GUlMTMM9qIGM1qZeofwKPsK3kghWb7HesiTqMw+ndbqUPzWR9bhvC/04CxppYRY9aSdF+neBtdjo2QzyTy0mZmUnToNK1jV/GVBA775i34+wLFYiaI9w/Y/oalbMK9GJ9LQRMiC949IYrqhb1QUnmbHZCLHpoizv3cJHflN+MmVOU/TryGrRnHqNoW0CeWPCW9sWciBxS3QHC+oXL6UjqA0hg5xI3bkHFWwI5CQF7/IidNL2nrlW8MJJnqjZ0zX1FOMyRlwm+lF6y4RVKv7tBoqv6OVtNs4QLSp9bf+iNC1Xaza0NYpC1CZ2S9R3bdCCOPaOibf7PxL/Cv/RxHMZYIr9AjCavHmtl9fvuCwrDU/TqKTcNLlTthq+7ANavjFI+z6gAalBMpB2ZpysFVH3U8c2V4NgVjKSWL/MgerI2NVGv0pj4grX3NPRBcNrrJPw/uNHLaqIAKN93xOiIkbvpokfMKXKF9B4fDcOnbDw+kw5TM69cps6h0NsncJaFYRSXLJGMHJg5LhgBl/L32BfRZmJA4bY3MDONIHgu+uaYkW7hAjwsL5e5egled6AReOpoXgscHF4XHo2NP4lS2UGnTJHp3dEKIAfc/pFBuFtF+EyvQTYbvFM=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH0PR11MB5739.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(376002)(346002)(39860400002)(396003)(136003)(366004)(451199015)(55016003)(478600001)(33656002)(38100700002)(52536014)(76116006)(64756008)(66446008)(66476007)(66556008)(8676002)(5660300002)(66946007)(8936002)(38070700005)(110136005)(53546011)(122000001)(966005)(2906002)(186003)(41300700001)(6506007)(7696005)(9686003)(26005)(83380400001)(316002)(86362001)(71200400001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: entrust.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH0PR11MB5739.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 39419d4a-6896-4b6c-5852-08da9828820e
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Sep 2022 21:14:57.4126 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f46cf439-27ef-4acf-a800-15072bb7ddc1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: kRxr2oeLKwDYWGRXt9b2xNnZlcDNAOB4lyVd/FS2ofmrIwPqtcvvzBlXNruVn7940gM8CZwK4ZW/3O/NZwpqOc7ketet/FZ2Xe00wdjofFM=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY8PR11MB7339
X-Proofpoint-ORIG-GUID: -nsQAvzExaiAyUiziSsbv3Nm77remlbU
X-Proofpoint-GUID: -nsQAvzExaiAyUiziSsbv3Nm77remlbU
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.895,Hydra:6.0.528,FMLib:17.11.122.1 definitions=2022-09-16_14,2022-09-16_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 adultscore=0 phishscore=0 lowpriorityscore=0 impostorscore=0 suspectscore=0 bulkscore=0 spamscore=0 mlxscore=0 priorityscore=1501 mlxlogscore=999 malwarescore=0 clxscore=1015 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2209130000 definitions=main-2209160152
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/2r1OjFz4QREEzrRpOL9lC5EWsMg>
Subject: Re: [lamps] [EXTERNAL] Call for adoption of draft-becker-guthrie-cert-binding-for-multi-auth-01
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Sep 2022 21:15:10 -0000

I have no objection to the technical content of this cert binding extension, but I'll ask whether this meets "rough consensus and running code" ? Are there live deployments of this?

---
Mike Ounsworth

-----Original Message-----
From: Spasm <spasm-bounces@ietf.org> On Behalf Of Russ Housley
Sent: September 15, 2022 10:45 AM
To: LAMPS <spasm@ietf.org>
Subject: [EXTERNAL] [lamps] Call for adoption of draft-becker-guthrie-cert-binding-for-multi-auth-01

WARNING: This email originated outside of Entrust.
DO NOT CLICK links or attachments unless you trust the sender and know the content is safe.

______________________________________________________________________
There has been some discussion of https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-becker-guthrie-cert-binding-for-multi-auth/__;!!FJ-Y8qCqXTj2!ZXDQscT58wd3A6WqFSiZsZyKG7MLQ8dmu9DiaWkrnbtY4du_M1Gi2f6wGLa5mvWq_PtIdei_61RHIFXSwU-zLSdWHCjD$  .  During the discussion at IETF 114, we agree to have a call for adoption of this document.

Should the LAMPS WG adopt “Related Certificates for Use in Multiple Authentications within a Protocol” indraft-becker-guthrie-cert-binding-for-multi-auth-01?

Please reply to this message by Friday, 30 September 2022 to voice your support or opposition to adoption.

On behalf of the LAMPS WG Chairs,
Russ

_______________________________________________
Spasm mailing list
Spasm@ietf.org
https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/spasm__;!!FJ-Y8qCqXTj2!ZXDQscT58wd3A6WqFSiZsZyKG7MLQ8dmu9DiaWkrnbtY4du_M1Gi2f6wGLa5mvWq_PtIdei_61RHIFXSwU-zLXwO1pY6$
Any email and files/attachments transmitted with it are confidential and are intended solely for the use of the individual or entity to whom they are addressed. If this message has been sent to you in error, you must not copy, distribute or disclose of the information it contains. Please notify Entrust immediately and delete the message from your system.