IETF Logo Mail Archive

Re: [lamps] WG Action: Rechartered Limited Additional Mechanisms for PKIX and SMIME (lamps)

Russ Housley <housley@vigilsec.com> Fri, 06 December 2019 18:29 UTC

Return-Path: <housley@vigilsec.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 27CC41200A3 for <spasm@ietfa.amsl.com>; Fri, 6 Dec 2019 10:29:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ank7G3cc9Qa0 for <spasm@ietfa.amsl.com>; Fri, 6 Dec 2019 10:29:27 -0800 (PST)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE10F120086 for <spasm@ietf.org>; Fri, 6 Dec 2019 10:29:26 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 18570300AEA for <spasm@ietf.org>; Fri, 6 Dec 2019 13:29:25 -0500 (EST)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id nCVeN0rwhN8t for <spasm@ietf.org>; Fri, 6 Dec 2019 13:29:23 -0500 (EST)
Received: from a860b60074bd.fios-router.home (pool-108-51-198-163.washdc.fios.verizon.net [108.51.198.163]) by mail.smeinc.net (Postfix) with ESMTPSA id 5C887300AE0 for <spasm@ietf.org>; Fri, 6 Dec 2019 13:29:23 -0500 (EST)
From: Russ Housley <housley@vigilsec.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
Date: Fri, 06 Dec 2019 13:29:24 -0500
References: <157565488674.20972.1375233435337911158.idtracker@ietfa.amsl.com>
To: LAMPS WG <spasm@ietf.org>
In-Reply-To: <157565488674.20972.1375233435337911158.idtracker@ietfa.amsl.com>
Message-Id: <70C9F343-CFCE-44E0-9A6B-723C1CF17D76@vigilsec.com>
X-Mailer: Apple Mail (2.3445.104.11)
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/Hc0rsC3ZIxfGP_Zx1SPEmOPJe_c>
Subject: Re: [lamps] WG Action: Rechartered Limited Additional Mechanisms for PKIX and SMIME (lamps)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Dec 2019 18:29:29 -0000

Good news.  Over the next few weeks we will conduct calls for adoption for the documents that are now in scope.

Russ


> On Dec 6, 2019, at 12:54 PM, The IESG <iesg-secretary@ietf.org> wrote:
> 
> The Limited Additional Mechanisms for PKIX and SMIME (lamps) WG in the
> Security Area of the IETF has been rechartered. For additional information,
> please contact the Area Directors or the WG Chairs.
> 
> Limited Additional Mechanisms for PKIX and SMIME (lamps)
> -----------------------------------------------------------------------
> Current status: Active WG
> 
> Chairs:
>  Russ Housley <housley@vigilsec.com>
>  Tim Hollebeek <tim.hollebeek@digicert.com>
> 
> Assigned Area Director:
>  Roman Danyliw <rdd@cert.org>
> 
> Security Area Directors:
>  Benjamin Kaduk <kaduk@mit.edu>
>  Roman Danyliw <rdd@cert.org>
> 
> Mailing list:
>  Address: spasm@ietf.org
>  To subscribe: https://www.ietf.org/mailman/listinfo/spasm
>  Archive: https://mailarchive.ietf.org/arch/browse/spasm/
> 
> Group page: https://datatracker.ietf.org/group/lamps/
> 
> Charter: https://datatracker.ietf.org/doc/charter-ietf-lamps/
> 
> The PKIX and S/MIME Working Groups have been closed for some time. Some
> updates have been proposed to the X.509 certificate documents produced
> by the PKIX Working Group and the electronic mail security documents
> produced by the S/MIME Working Group.
> 
> The LAMPS (Limited Additional Mechanisms for PKIX and SMIME) Working
> Group is chartered to make updates where there is a known constituency
> interested in real deployment and there is at least one sufficiently
> well specified approach to the update so that the working group can
> sensibly evaluate whether to adopt a proposal.
> 
> The LAMPS WG is now tackling these topics:
> 
> 1. Specify the use of short-lived X.509 certificates for which no
> revocation information is made available by the Certification Authority.
> Short-lived certificates have a lifespan that is shorter than the time
> needed to detect, report, and distribute revocation information.  As a
> result, revoking short-lived certificates is unnecessary and pointless.
> 
> 2. Update the specification for the cryptographic protection of email
> headers -- both for signatures and encryption -- to improve the
> implementation situation with respect to privacy, security, usability
> and interoperability in cryptographically-protected electronic mail.
> Most current implementations of cryptographically-protected electronic
> mail protect only the body of the message, which leaves significant
> room for attacks against otherwise-protected messages.
> 
> 3. The Certificate Management Protocol (CMP) is specified in RFC 4210,
> and it offers a vast range of certificate management options.  CMP is
> currently being used in many different industrial environments, but it
> needs to be tailored to the specific needs of such machine-to-machine
> scenarios and communication among PKI management entities.  The LAMPS
> WG will develop a "lightweight" profile of CMP to more efficiently
> support of these environments and better facilitate interoperable
> implementation, while preserving cryptographic algorithm agility.  In
> addition, necessary updates and clarifications to CMP will be
> specified in a separate document.  This work will be coordinated with
> the LWIG WG.
> 
> In addition, the LAMPS WG may investigate other updates to documents
> produced by the PKIX and S/MIME WG. The LAMPS WG may produce
> clarifications where needed, but the LAMPS WG shall not adopt
> anything beyond clarifications without rechartering.
> 
> Milestones:
> 
>  Nov 2019 - Adopt a draft for short-lived certificate conventions
> 
>  Dec 2019 - Adopt a draft for header protection conventions
> 
>  Dec 2019 - Adopt a draft for CMP updates
> 
>  Dec 2019 - Adopt a draft for Lightweight CMP profile
> 
>  Nov 2020 - Short-lived certificate conventions sent to IESG for BCP
>  publication
> 
>  Nov 2020 - CMP updates sent to IESG for  standards track publication
> 
>  Nov 2020 - Lightweight CMP profile sent to IESG for informational
>  publication
> 
>  Mar 2021 - Header protection conventions sent to IESG for standards track
>  publication
> 
>

v2.23.0 | Report a Bug | By Email