IETF Logo Mail Archive

Re: [lamps] [EXTERNAL] Re: I-D Action: draft-ietf-lamps-im-keyusage-00.txt

Stephen Farrell <stephen.farrell@cs.tcd.ie> Wed, 17 April 2024 18:22 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5EDDBC14F700 for <spasm@ietfa.amsl.com>; Wed, 17 Apr 2024 11:22:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.999
X-Spam-Level:
X-Spam-Status: No, score=-6.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TpsTtdOKPqiS for <spasm@ietfa.amsl.com>; Wed, 17 Apr 2024 11:22:15 -0700 (PDT)
Received: from EUR02-AM0-obe.outbound.protection.outlook.com (mail-am0eur02on2117.outbound.protection.outlook.com [40.107.247.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 548BCC14F691 for <spasm@ietf.org>; Wed, 17 Apr 2024 11:22:15 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hUJnUDPEIcHBcFr37lePEqsxW/YgCGxD8+hwZZzK9cdWdo2jERUkDUckiJDTS2zojVEeVckUtTbZrW2p+nwbaNfb9ziO6w0zdp4dnApNIWnvuKXUO4luIfX8DWkVrER4Bh86HY5XoHjYxo+Ewbdij5IkY/wWrNqlCfaz2auA3377UPgHbnHClVPXXawD3xJ3KTLn6guJtpoxWD/G48/5E+7Mn0hff+ZWg6GJu3J1iI9BFuy+C+CaLol8WOp7OSc3BWK1Be1B/U4cpfMJYx04UgytebJHYF/6Zuxn7U78vpT8Aa1fb0QLkpex2QK+wveB+HtsRxOv4NQOkHAb5dGkOw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=KPuLVK8nS/6CwfjYiuwdNRzI4PbQrGYaxJyQs0eipEA=; b=bznHc+rgUPbh0Pe/g+z3dq6CnA1jqdW0hKILSuYEra7WFH+2M6WzgJQ4Q8tF+AHw6Vv/D04cZSWsMXqtTHqnTY6ndpqmYm5J6KHZ9FtTHTqnaoRTG080JBzV62DpWFFE6AJR/Au/TbgXHVFtv5ECMZYKV5Y/jBWqv2ihypI39F0ZARPXIVzAkdnFstaLm8mmzC4tFCxxEMDj6odm58uFqmgB9knWlh2kw+j889ZeE62RVdcNlE8hlgm3k9xsZazQsgmpmYKuh2SBMeHN1H5JjPYUZ95hoExI97L2LEFNPfn6J6KYnHEawC1EoFN96QgXUtP/2KPTWi3ZB3SL97LVrg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KPuLVK8nS/6CwfjYiuwdNRzI4PbQrGYaxJyQs0eipEA=; b=sc+UiYlBLseyAyEGM8f8dfnbQaiV7aT2DkI2ZmUwHWgGycdbpBi5imvTYmZ0KtJUAy5SWOjuBrw2hOMIywfJynlPyKhP2nk1t2uhOAire5S9RAKroiMcBjKBoD7ugQzb5cv3joyEPxK0M9bPRDhVuxv0ZG0hlGE1uWjZlWGQWwHA0PRafMJVyS+0TWhLCBQT4iDrZetHWo3Jga6HW3SBs7TTnYYOrb857wISGhY5DprZH8mxxe1o66x13SqkGM9DDAcjyjKaoCioHl8Qe/7U1HXHSyiWd4tSAiGQc1Fg1xOCmM2RQyfp04OtF0IQDHOG79gcS8RifLqjzQIDn1PIqQ==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from AM6PR02MB5112.eurprd02.prod.outlook.com (2603:10a6:20b:90::21) by DB9PR02MB6585.eurprd02.prod.outlook.com (2603:10a6:10:1fb::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7472.39; Wed, 17 Apr 2024 18:22:10 +0000
Received: from AM6PR02MB5112.eurprd02.prod.outlook.com ([fe80::72da:1be4:dee3:34e0]) by AM6PR02MB5112.eurprd02.prod.outlook.com ([fe80::72da:1be4:dee3:34e0%4]) with mapi id 15.20.7452.049; Wed, 17 Apr 2024 18:22:10 +0000
Message-ID: <f8d86a07-6008-4e8a-991a-ac879200b4cc@cs.tcd.ie>
Date: Wed, 17 Apr 2024 19:22:07 +0100
User-Agent: Mozilla Thunderbird
To: Rohan Mahy <rohan.mahy@gmail.com>, Tim Hollebeek <tim.hollebeek=40digicert.com@dmarc.ietf.org>
Cc: Michael StJohns <msj@nthpermutation.com>, "spasm@ietf.org" <spasm@ietf.org>
References: <171320513468.22285.6899802433610546466@ietfa.amsl.com> <B508131E-0554-471F-94FD-4AA2A0A95346@vigilsec.com> <CAKoiRuYCSwdzwKwSXdyLCNm5Z3DzzzLZzSyDO7DGWHTSeUj-fA@mail.gmail.com> <2E8965D1-F0D8-4947-8A6B-19B822EEFA4C@vigilsec.com> <CH0PR11MB5739FF2B9A378DF7ADFF24E69F082@CH0PR11MB5739.namprd11.prod.outlook.com> <CAKoiRuY5Caq_61+99RQiaRkeKUAou=fiLj+HadajzhwhLKOdAA@mail.gmail.com> <CH0PR11MB5739A5999D59A046D056812C9F0F2@CH0PR11MB5739.namprd11.prod.outlook.com> <CH0PR11MB5739690323861CECECA630AF9F0F2@CH0PR11MB5739.namprd11.prod.outlook.com> <0f7f609b-9283-4f59-bb32-375827d3e7a6@nthpermutation.com> <SN7PR14MB64927E6AB1914083C485E0EA830F2@SN7PR14MB6492.namprd14.prod.outlook.com> <CAKoiRuZeuDOG+Hm97mE2jwJ7w4gXjyvpTj7o3nOykQuufRDv_Q@mail.gmail.com>
Content-Language: en-US
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Autocrypt: addr=stephen.farrell@cs.tcd.ie; keydata= xjMEY9GzphYJKwYBBAHaRw8BAQdAo6JvjmSbxHdQWPZdvciQYsHhM1NxQBU398Mmimoy4p7N M1N0ZXBoZW4gRmFycmVsbCAoMjU1MTkpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPsKQ BBMWCAA4FiEEMG54R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwMFCwkIBwIGFQoJCAsCBBYC AwECHgECF4AACgkQ5Njp+ZeoM93bogEA25ElRyX0wwg+kGEN1AoL60MoZfvQZ/VtmXY6IC5j +csBAIBpkL5ySuzJK2zLNZn9qQGht8IaUcA7cvDcLvS2uHUEzjgEY9GzphIKKwYBBAGXVQEF AQEHQILCPWOwW36e8D3pY8GmvvtItIT+A5uV80ist+WokVsQAwEIB8J4BBgWCAAgFiEEMG54 R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwwACgkQ5Njp+ZeoM92bcAEA8R+8cpqRUIS+SoAN iO05xE6O/wEx8/e88BqzAYki3SoBAOQdwiPX+MQrAxkWD8xxOsdMOAtxYKpkD1n8aPJUw6QJ
In-Reply-To: <CAKoiRuZeuDOG+Hm97mE2jwJ7w4gXjyvpTj7o3nOykQuufRDv_Q@mail.gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------kC0xw0GXHc5UpTQBKb8FcXFK"
X-ClientProxiedBy: DUZPR01CA0196.eurprd01.prod.exchangelabs.com (2603:10a6:10:4b6::23) To AM6PR02MB5112.eurprd02.prod.outlook.com (2603:10a6:20b:90::21)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: AM6PR02MB5112:EE_|DB9PR02MB6585:EE_
X-MS-Office365-Filtering-Correlation-Id: 1f16e5b6-e66e-489c-f036-08dc5f0b4bb8
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM6PR02MB5112.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(1800799015)(376005)(366007); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: eGOeKQw/nJCmefuSrvG/iIJVH2Zlv07eErdiBjjPCVwKvsDbqxCvJT0vpaibJizmkv4e3AIJiGOZq87HMP+bg07YYLcUl+Nr6YEoNJ/0hMQZkZhTfKHwZ2LRGJW/2sexs+IcTB1n2G5fS2fUw+UF/nC8FsBYSFu3ahIdKIj/8GdbwAzukvaLKSZmz+sswMW1iJ3MVwHRSZaxXsXhNxuDy4nbNS0l1MlDHE9PAzicq6On2auNv+zs1b7HTw/6mKel0EkjZu1JvEnqcjO+RAzL6oxzliEMLQdTmYtGTvNtUjjnFySL9ftKxKmUgYoGWgjFAmY9uengxy1y290Oxbkwpy9CGKx2PtfUgzBb+RshqGHc/NdzNj6byhRqx8otzn/7YcoRs230I+x4frxMygCqHMChqPiJo9ZxKhFoE/NIfOAdZiCOGftzco58j3FA8GQdAX7yByGCZndVeOiCdD5OUx/moY1HUpdLG1S+jDF8w4AfwJ7xm+Z6LKCAVrBMnqqfYRcXQGlnrw9n1XbmF3vPEXLqhJdYmAvAJ7kzux2jl9lTBmvIL3MKnTSrBRmf32YOW2+lZiDSwHDD4dlZhCybqRfV3M/fzriuE2BDK0pgZiflv4IbH8M4mJtKe9H90ahwQn10Otv/lquzVjtxlJYbMtoHLA0AdQVeFLSOfIbzKuzUD9tP2HAgiifknfUYmJK+yIm/PLzR3tmW8VzBmegpCwWnT2jkfnVnpqfn+T8M42gRTdX6eTnk4UgTuGgV1XIcn+BbQk4c97utJEf9iu9GZAExGlgD9G7dSIDIeyrSr6GSF/e3wx4A5kTdTH3a8j/6ba3bMDgCtUA0rvwIU0MPUBNGdKSJguE5AW92oTQ2QgsbEQ1kSdgx2HJFj1yJ/kHSaIzQflq9m4+HO29VrchmBkN0sBQjBHUHXbcYTR7qgT0a487YIfwCDow0G61xuzrVSQBC1etwYkhpfWBvxQH+f+o6Z+lj5WsKXIaMzZynRuvVN7zSh2p/yBxZipqZ7FBMtiGocerfvSZc0wiYfkYZMfOMkHg7sZ5XizJZl2PsD/KqxPTQE6MTMd4JOWJpEA+rbGMIxmCgk1IQ7OH/FZiQ1XkmfP47dTPhEl8dNtLn2LK+/aJC0OxlNZKuv5m9hb/GfCBuh/8Pbdv9Rq7XsSi/PG5MkKeewEXGRYYWSHZdlBT5AjinXWylMc1viNsHt5Ny+gctK4Qw4/RaycqMb7uSeJs/hPxbZQM+18Ly8g4SwSEgB5/FaJels08azgkosbpDZRZEL05I6tQeK8FcxWtKzCGE9eZ3dF9vjgS5rXNid/En9kLgoTgtENuNmF2fhJJLpifXxJ4Q5f7QYOn/p0IrG2hVIFFQZCNVX0ma6H050vwU+wPHqLXx7G3b0AELjYoThu/ZZ0aooJslAHRYzcDhF3qsg48IYhhYDsIsAPyy9UHdMbpSGd4w6yVJ4F59f97r+VtVrhGU8SKdn1gZfOuzcznuvl8i9BDPnWCWSomPgbd/mkYmrbd9FO4WThkOabkVBCuFwq4yTH9i5GLQ+2wxEGLgu6onspxBQEKYWLFOZ3RyK3H/OYee0MHUGG8wY0BrOAQWGhWCQB1QwDwOxSpSxb/fCkeaCTiYGOpYvQkA4Z6//HhTawfQWcqnWi073L5z
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 1f16e5b6-e66e-489c-f036-08dc5f0b4bb8
X-MS-Exchange-CrossTenant-AuthSource: AM6PR02MB5112.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 17 Apr 2024 18:22:10.3617 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 42UV42no0BHHvB5qlcdULDuWB/588arjjHMgtaYMEkCqvOwrsYY+pSR0B+alcnxW
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR02MB6585
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/g98gXdLLaP340CBIdKzn9Zzdo2w>
Subject: Re: [lamps] [EXTERNAL] Re: I-D Action: draft-ietf-lamps-im-keyusage-00.txt
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: This is the mail list for the LAMPS Working Group <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Apr 2024 18:22:20 -0000

Hiya,

On 17/04/2024 18:37, Rohan Mahy wrote:
> We clearly don't want someone reusing keys for multiple purposes.

In general, we don't.

Some IM servers today can operate web front ends (e.g. matrix
synapse), with the same server identity being seen by both
web browsers and installed clients (that may well just be a
shim on a browser window).

I'm not clear if what you're proposing would end up making
that harder? Would it? If so, what's the justification for
that?

If such setups are unaffected then pardon the intrusion:-)

Ta,
S.

v2.23.0 | Report a Bug | By Email