IETF Logo Mail Archive

Re: [lamps] Call for adoption of draft-becker-guthrie-cert-binding-for-multi-auth-02

Julien Prat <julien.prat@cryptonext-security.com> Wed, 18 January 2023 09:56 UTC

Return-Path: <julien.prat@cryptonext-security.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 28C94C14CE31 for <spasm@ietfa.amsl.com>; Wed, 18 Jan 2023 01:56:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.097
X-Spam-Level:
X-Spam-Status: No, score=-7.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cryptonext-security.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bVK1qfkdpLPO for <spasm@ietfa.amsl.com>; Wed, 18 Jan 2023 01:56:19 -0800 (PST)
Received: from FRA01-MR2-obe.outbound.protection.outlook.com (mail-mr2fra01on2108.outbound.protection.outlook.com [40.107.9.108]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8BEA6C14CE2F for <spasm@ietf.org>; Wed, 18 Jan 2023 01:56:19 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WAYtLf8SwJGuy0CUygGA/b29sDXnw0/0i00AxERIxqSH6Q+SBt2zfs2hPmFoVX6ikKohUCdiuFhf3nCrrYSqta8mlziOkeItgct2Mgm9c8VFGusSKJ5lrfCGe+3aLw2p13VPFddaIrkj/9EWqQq07jNhpLEeCTuoNhBMVnxtWSuCJY0S/7Yj+kP5/U1wGI20QvrYUeDrr+vru4m6R3yyFJznYgdvQze5eER5icB7yOl7UGu+qV3Ij6ddo5uqbw1vYQAEfEiqdM8qlvPDNVS3CXzDpeT9+QmEIwybfgzzW9FiZN1DYtS4re8emQ+N1y55bLqdLJbnYtxIluH7lTv+4g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=WJIxRxUGV76a4S8xF3G7a2vfe9SD8e9M5fm3fPP1I5k=; b=KyY8LX0RRIj4jO8vcErF2rCN5Dm7zS3SY4btjGQ3MLn80PygEmHafMfOO047S9sRssE9aC+9oCHnzvo6jliPb378aTMH35U5aPDt3hF6sBtebaW7XRZvjKdMbKs8lEOx1YAOrTiTrwhHpwCJw3euGvF51HShZ9uThPkYDbzeShRMG70/Ekav0CxYabI2tndpulX5o/RsRgPtDdaT/Ou4SL+UtgMShvqqxAa/m2GJwC6+kawDFQsvtl11TB+iaY7mpInwbaO7eTSehGvpBNZOvuRHW/HBh2Is/A8XMOq7rzxh2WqhlREn63bYT9CxFayLGwjVf87SS2mdRTKvuWIifw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cryptonext-security.com; dmarc=pass action=none header.from=cryptonext-security.com; dkim=pass header.d=cryptonext-security.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cryptonext-security.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=WJIxRxUGV76a4S8xF3G7a2vfe9SD8e9M5fm3fPP1I5k=; b=JS6Ynm5/p+hlFHPMhz8fsE7ZjaPMeHUrwNk9zEBgWwAvhAUjW5YHw+zme2SwefRT5qLrM9hDUv2oj4mrWKsSR9ahGGPibYxP1MtZgy3UEEat7iK5DW7Gr782i5OYQLcAUhIGDgzvSBRlBy6wzCydl77abkLCUH4Pm8EtTWJPCq6F7Qj7TO8+5/1UXEsfG7yELnkJdzwrMXB4BmGKYGJG1yEhE2eBM/AKSmKpiVDCVo8tto5eUqryDYyeAcvVssPxekl+aCspBwfNwyi0hjjYVQtJfR2o+vA99k/Cf+lB3IdFMmkGOSqKi2wo4S5LfaZVODTMew4ztL35wnam5You+A==
Received: from PR0P264MB2983.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:1d6::19) by MR1P264MB1521.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:15::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6002.24; Wed, 18 Jan 2023 09:56:14 +0000
Received: from PR0P264MB2983.FRAP264.PROD.OUTLOOK.COM ([fe80::5d1:816d:7f9c:a0fa]) by PR0P264MB2983.FRAP264.PROD.OUTLOOK.COM ([fe80::5d1:816d:7f9c:a0fa%8]) with mapi id 15.20.6002.012; Wed, 18 Jan 2023 09:56:14 +0000
From: Julien Prat <julien.prat@cryptonext-security.com>
To: Russ Housley <housley@vigilsec.com>, LAMPS <spasm@ietf.org>
Thread-Topic: [lamps] Call for adoption of draft-becker-guthrie-cert-binding-for-multi-auth-02
Thread-Index: AQHZIVm2Ng64WkBLF0aHyYZEapkbM66kAb5Y
Date: Wed, 18 Jan 2023 09:56:14 +0000
Message-ID: <PR0P264MB2983F1D07BE90B2D223F920AA2C79@PR0P264MB2983.FRAP264.PROD.OUTLOOK.COM>
References: <PH0PR00MB10003EC6A096FE0A363BBFB9F5459@PH0PR00MB1000.namprd00.prod.outlook.com> <PH0PR00MB10002A7A2850A1333B4F6C00F54A9@PH0PR00MB1000.namprd00.prod.outlook.com> <35BEB1D9-7EA5-4CD4-BADA-88CCB0E9E8F9@vigilsec.com> <6FB4E76C-0AFD-4D00-B0FC-63F244510530@vigilsec.com>
In-Reply-To: <6FB4E76C-0AFD-4D00-B0FC-63F244510530@vigilsec.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cryptonext-security.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PR0P264MB2983:EE_|MR1P264MB1521:EE_
x-ms-office365-filtering-correlation-id: d0971114-0226-4b55-be50-08daf93a3c7a
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: k4VR1TcN1msD3LLJCjFqmwI5CURXpOq2oieh6yb41C/sgVRBmx5B4ZrnvoTWookrhJW2Lgfa8i4fw1ymJcN2yOmxZr5chDDtBTWmABEKecfVtyOgGrER+bBL0t/L5aT598jQbnu2nps8Y8BgKhXx+KF9uI8yikB+7eRRpvQkhntZFn+PM8Yg9ENaXgyuv6hFiVF2Fx53A1MMzdBl06IhezoXWTcbINBW7YKaBZli/oIdg/fzx6TNZ3tqfjjE3/O+UQcnevnofVKFfE97fnnJJ0ygfm7Cf4LrRkY3Twbr1iSJtlSc4/uZzVXUpDBZ98m5M41vUiW+jik1Zoq+vnzx2NSAovLyvoEqtDunr6SlHDY6naGi7zv2SDFTFbbRdYxM3UpVU2rwLcqOAck16uS0Umun/ZZyG5IDC8jMDfBvzmM2OqZG83JvA/d3QwG6/rnxnumA/JwEnorNeKbfwk4BvDTfvDMaNyVjft0U9A8Pc+jqooMcXaEPNNsm5zAwFMf4mxhXqFXz1eL3pE3tlqUF1fcNHZ+a3rIyBNYxSuqAplY3qft93rDU4naFP7I8r8gAjNEnr5xywFTjLc6/VEW5MX4/NFNlXHwLrfCSl58/oCw+gJPVIlwXlIWwqAzFx/JUUD9hP+I44mP581YtsFTn+HBgFseDHM06hedSFmwSFa0+7U0bnBMlPMDjBVM7bgAL7hfQqY6Z6xU/Uruz3tdvvdaHOCXmRvHDvqFK3s07PCk=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PR0P264MB2983.FRAP264.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230022)(376002)(346002)(366004)(396003)(136003)(39830400003)(451199015)(83380400001)(8936002)(5660300002)(41300700001)(52536014)(44832011)(8676002)(66446008)(64756008)(66556008)(66476007)(76116006)(66574015)(33656002)(86362001)(166002)(2906002)(66946007)(122000001)(38070700005)(38100700002)(55016003)(966005)(71200400001)(7696005)(6506007)(53546011)(186003)(9686003)(478600001)(19627405001)(110136005)(316002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_PR0P264MB2983F1D07BE90B2D223F920AA2C79PR0P264MB2983FRAP_"
MIME-Version: 1.0
X-OriginatorOrg: cryptonext-security.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PR0P264MB2983.FRAP264.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: d0971114-0226-4b55-be50-08daf93a3c7a
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Jan 2023 09:56:14.4130 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: da4a2df1-4b1b-489d-a7f4-224b58fd4200
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: qLti+uZA4AMG1jxnXCPohJq5Nv66jV/neXAqHdUQwjyIDKEdoQobOuQALDu8E5A42QazSjpnjpCgQ8HP9k2RjDm0IPF8yK6HvB4DrId/4PICzWxXiRzsUKaMjsiaUgYB
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MR1P264MB1521
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/8dhAtlqCKD23zc1Ter2YgRThf9Y>
Subject: Re: [lamps] Call for adoption of draft-becker-guthrie-cert-binding-for-multi-auth-02
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Jan 2023 09:56:24 -0000

Hi all,

I think there are some interesting use cases for this draft, especially for the potential future transition towards a pure PQ solution so I support the adoption of this draft.

Regards,

Julien Prat

________________________________
De : Spasm <spasm-bounces@ietf.org> de la part de Russ Housley <housley@vigilsec.com>
Envoyé : vendredi 6 janvier 2023 00:01
À : LAMPS <spasm@ietf.org>
Objet : [lamps] Call for adoption of draft-becker-guthrie-cert-binding-for-multi-auth-02

Do the changes that were made in -02 of the Internet-Draft resolve the concerns that were previously raised?

On behalf of the LAMPS WG Chairs,
Russ


> On Sep 15, 2022, at 11:44 AM, Russ Housley <housley@vigilsec.com> wrote:
>
> There has been some discussion of https://datatracker.ietf.org/doc/draft-becker-guthrie-cert-binding-for-multi-auth/.  During the discussion at IETF 114, we agree to have a call for adoption of this document.
>
> Should the LAMPS WG adopt “Related Certificates for Use in Multiple Authentications within a Protocol” indraft-becker-guthrie-cert-binding-for-multi-auth-01?
>
> Please reply to this message by Friday, 30 September 2022 to voice your support or opposition to adoption.
>
> On behalf of the LAMPS WG Chairs,
> Russ
>

_______________________________________________
Spasm mailing list
Spasm@ietf.org
https://www.ietf.org/mailman/listinfo/spasm

v2.23.0 | Report a Bug | By Email