IETF Logo Mail Archive

Re: [lamps] [smime] Problems with versions

Peter Gutmann <pgut001@cs.auckland.ac.nz> Mon, 09 May 2022 15:51 UTC

Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0A3A9C15E3EB for <spasm@ietfa.amsl.com>; Mon, 9 May 2022 08:51:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Bc2zqZHW1WTP for <spasm@ietfa.amsl.com>; Mon, 9 May 2022 08:51:08 -0700 (PDT)
Received: from au-smtp-delivery-117.mimecast.com (au-smtp-delivery-117.mimecast.com [103.96.23.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CCF28C159492 for <spasm@ietf.org>; Mon, 9 May 2022 08:51:07 -0700 (PDT)
Received: from AUS01-SY4-obe.outbound.protection.outlook.com (mail-sy4aus01lp2172.outbound.protection.outlook.com [104.47.71.172]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id au-mta-80-GEV4LGlyMriNNYzQBJglsw-1; Tue, 10 May 2022 01:51:03 +1000
X-MC-Unique: GEV4LGlyMriNNYzQBJglsw-1
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com (2603:10c6:10:10b::10) by MEAPR01MB4920.ausprd01.prod.outlook.com (2603:10c6:220:14::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5227.22; Mon, 9 May 2022 15:51:02 +0000
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::4d78:e58:4ae1:d3ec]) by SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::4d78:e58:4ae1:d3ec%9]) with mapi id 15.20.5227.023; Mon, 9 May 2022 15:51:02 +0000
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: Russ Housley <housley@vigilsec.com>
CC: IETF SMIME <smime@ietf.org>, LAMPS <spasm@ietf.org>
Thread-Topic: [lamps] [smime] Problems with versions
Thread-Index: AQHYXXIMHf7j2iQTy0ie4a2+MgHkeK0LkVWAgASshiGAACZXAIABYdOogAA0LoCABMPrZA==
Date: Mon, 09 May 2022 15:51:02 +0000
Message-ID: <SY4PR01MB62519BD186B46017881CF692EEC69@SY4PR01MB6251.ausprd01.prod.outlook.com>
References: <SY4PR01MB6251E381603FAFE558685D86EEFE9@SY4PR01MB6251.ausprd01.prod.outlook.com> <CA16AFE1-CB97-4134-8FC9-4B8B964ACD6E@vigilsec.com> <SY4PR01MB62512D541C42E6873562A17CEEC29@SY4PR01MB6251.ausprd01.prod.outlook.com> <4447881C-4DEA-48E1-9767-9A6DA2AD07B0@vigilsec.com> <SY4PR01MB6251A8BAFF80ECC2B8BC8862EEC59@SY4PR01MB6251.ausprd01.prod.outlook.com> <BD061240-FAF1-4219-B72B-69B0F9A8459C@vigilsec.com>
In-Reply-To: <BD061240-FAF1-4219-B72B-69B0F9A8459C@vigilsec.com>
Accept-Language: en-NZ, en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: bfc48fb0-8632-40b0-d588-08da31d3b834
x-ms-traffictypediagnostic: MEAPR01MB4920:EE_
x-microsoft-antispam-prvs: <MEAPR01MB4920C7BC55E4B41A358E508FEEC69@MEAPR01MB4920.ausprd01.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SY4PR01MB6251.ausprd01.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(71200400001)(508600001)(966005)(9686003)(26005)(86362001)(186003)(6506007)(5660300002)(2906002)(4744005)(316002)(122000001)(83380400001)(55016003)(6916009)(4326008)(8676002)(64756008)(66476007)(54906003)(66446008)(76116006)(66946007)(786003)(66556008)(38070700005)(38100700002)(8936002)(52536014)(33656002)(7696005); DIR:OUT; SFP:1101
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
MIME-Version: 1.0
X-OriginatorOrg: cs.auckland.ac.nz
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SY4PR01MB6251.ausprd01.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: bfc48fb0-8632-40b0-d588-08da31d3b834
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 May 2022 15:51:02.4364 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Rxzz7RUvqbQbD6qKPSl7YOszs0e2p/+BvmohNFjmiMYq4aA2ZIwMz2DuvE8SBd7srkI3HECBDUQiwbZ1WqZJ/GhF6Klonsbee0Rm7bcRJlk=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MEAPR01MB4920
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: cs.auckland.ac.nz
Content-Language: en-NZ
Content-Type: text/plain; charset="WINDOWS-1252"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/C8xqAz7BaSGkMawIIiZyGpldIDw>
Subject: Re: [lamps] [smime] Problems with versions
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 May 2022 15:51:10 -0000

Russ Housley <housley@vigilsec.com> writes:

>I think we should hold this discussion for the day that CMS is updated.

The whole point of raising the issue now is to make sure that it's not a
problem when CMS is updated.  TLS has been hit hard by this, OpenPGP is going
through the throes of being hit by it, given that we've seen what happened
there it seems ill-advised to just sit back and wait for CMS to be affected as
well rather than being proactive about it.

(For fans of the UK comedy Hyperdrive, it reminds me of this scene:
https://youtu.be/hhSOy0ADJ5s?t=448: "They've shot the captain, they've shot
the first officer, they're stopping to reload, I wonder what they'll do next".
It's hit TLS, it's hit OpenPGP, I wonder what it'll hit next).

Peter.

v2.23.0 | Report a Bug | By Email