Re: [lamps] Proposed LAMPS Recharter
"Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com> Fri, 04 October 2019 15:00 UTC
Return-Path: <hendrik.brockhaus@siemens.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F325912087B for <spasm@ietfa.amsl.com>; Fri, 4 Oct 2019 08:00:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=siemens.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RXBwZ4a16iXX for <spasm@ietfa.amsl.com>; Fri, 4 Oct 2019 08:00:44 -0700 (PDT)
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-eopbgr150055.outbound.protection.outlook.com [40.107.15.55]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E37D3120861 for <spasm@ietf.org>; Fri, 4 Oct 2019 08:00:43 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=j8zM8NwkQG2/s/YTPNKXNVEJ4Pez/KAk6UutVOCfp0dGdP0Y5kdRZ5pxjfDpdsIZWxfljeebLL7Cs5sj9SVyarCEA+0uIZmigUMAyTN1ty0nxXhUVBvDvwJGUxkHgBztVnx52rVFUtnj5Ia28jPZ3j0fs36/0DEwVTdjCJosu5/UspE6LsJxxeyQaA9aX01UvVmhmsVAhV2kIB14DEZBA+4yhtDbfnbuOMQyGDjZlOCDb6b07VX3WfACqDZRwnYC48iuEd/Iqab/QgADhAEuD0Kh7lyVgNec2x8dB6Q10QdC6izJtJpeimeC/ekHMBitOtvadsBh8wImkqYcpa6Gtw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=5+Zse49K3+Mki6r9Y2qk+MRzzT1f5MeBguigsmHiey4=; b=iLSHHQxGWkz7ic5OpEOZD58+bY94IznEEh2NyffJ8IQjUStYStuu/WIccx54Gc+UEcCeEyEP+sRYIMFPay9sTrsz4NO5pvswzj91a/SdpN7edXsEjc9/2B73M+jxwH6GtiIdzsLxr2bMrlTvBbHW5K1S8CAd/7LhN9kLUULtLO+UVVwFquxI/oLHgnRt1ztQQIMpeIpJoIH7kveL1weZgt253X8Q51c7SWyJ4MBEg9V/oh2FjZIat9VwielMoZiYSXr+5o6m4j/H8lgXTYZavva+dehgfzO5QO8U/vMDg7vEPI8QZYxrVgHFutxmF7THTxAKf9M+dKSqcTnWhEko6w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.onmicrosoft.com; s=selector2-siemens-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=5+Zse49K3+Mki6r9Y2qk+MRzzT1f5MeBguigsmHiey4=; b=dWtA0nGgjSAza40VBBsfabzxRpzwIfmCO8gnGbLLycfFZ7P2MAgrs3utmA111biJftMhlLW8QcwIj0eBQHStUwh5c/LWL5x9UG33Jvntlb4BWib51MtZ1ZPOTXNLwdHF6u94FXrJ+yuyjoruKDRcMR/xAjoYRDN0RM3qtZDQm9I=
Received: from AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM (20.177.110.224) by AM0PR10MB2210.EURPRD10.PROD.OUTLOOK.COM (20.177.43.154) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2327.23; Fri, 4 Oct 2019 15:00:42 +0000
Received: from AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM ([fe80::a83c:43ea:badd:b7ac]) by AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM ([fe80::a83c:43ea:badd:b7ac%7]) with mapi id 15.20.2305.023; Fri, 4 Oct 2019 15:00:42 +0000
From: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>
To: Russ Housley <housley@vigilsec.com>
CC: LAMPS WG <spasm@ietf.org>
Thread-Topic: [lamps] Proposed LAMPS Recharter
Thread-Index: AQHVeisBR8NRscNWhEOYduojoanYOqdJ+f/QgACaWgCAAAArsA==
Date: Fri, 04 Oct 2019 15:00:41 +0000
Message-ID: <AM0PR10MB24022D192414CE2C9BF06D71FE9E0@AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM>
References: <C7168ADF-F6B7-4EA9-9CB8-7F9D4993B1A8@vigilsec.com> <AM0PR10MB24023B3009A232343B8DC361FE9E0@AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM> <13252053-7DD8-4C76-AC74-E5E0A31D4F40@vigilsec.com>
In-Reply-To: <13252053-7DD8-4C76-AC74-E5E0A31D4F40@vigilsec.com>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=hendrik.brockhaus@siemens.com;
x-originating-ip: [195.145.170.153]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 56a6590f-9820-430a-fa15-08d748dba054
x-ms-office365-filtering-ht: Tenant
x-ms-traffictypediagnostic: AM0PR10MB2210:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <AM0PR10MB22102D225EAB20982F4F4983FE9E0@AM0PR10MB2210.EURPRD10.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 018093A9B5
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(39860400002)(366004)(376002)(346002)(136003)(396003)(199004)(189003)(478600001)(71190400001)(14444005)(71200400001)(256004)(966005)(6306002)(9686003)(55016002)(6436002)(52536014)(486006)(14454004)(561944003)(4326008)(5660300002)(33656002)(316002)(476003)(25786009)(66066001)(26005)(102836004)(66446008)(45080400002)(86362001)(186003)(66574012)(446003)(81156014)(81166006)(8676002)(99286004)(53546011)(6506007)(66476007)(66946007)(76116006)(66556008)(64756008)(7736002)(305945005)(7696005)(2906002)(76176011)(74316002)(6116002)(8936002)(6916009)(11346002)(3846002); DIR:OUT; SFP:1101; SCL:1; SRVR:AM0PR10MB2210; H:AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: siemens.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 0PaNuFk2KxfvBf0OjPRAnI2L606Hu60/RZUOS0ssRFII3bxOWtWg1PzsJOCOY0j/aakrU9o9lmk3PeS+9YSCpvzfMv/SRy2Z0YMcZ/cCKnY1LE2JSYxZROnjWi6neV2CdNiO32BfxXxtEJvC8+GvrgWmCKJqUnIqtK4nVKViXYD/0Zmwvz7zBtCRCspNJtiqPJ75bfIu7aL6x4VxAGCD/SpQkQb0oVmWl4CIm0UZlfLvrjT++gcav0RJMIeb7syHCHTtQxDJWLhWlBD7xN2//QF5e1MkKuNa3d0x20YTTRbGaahPLFtn7kGQixWPDiHL9einLR27WFuBRnLhinxJgEIdUZgVPdLtadaOX4ZRaUF0NKqqA6Oda2L5HVKDEnd3CEZmY9RnG6oqGMVka+QZczYLpJzlcwA1lczu9GCae40=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 56a6590f-9820-430a-fa15-08d748dba054
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Oct 2019 15:00:41.9686 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 9A4dKxfFapcgXuHS3Bm7Ew57Ixd+mBxgYYR2lIa4sbF5KpP3QQUye2DvnGt4gyyxVO9rE/tub+0byi3vXrDe18k+u3d/Y8zH3W7FQTOJjsE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR10MB2210
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/iROVF0W8t8P1RKvClPHK5oud0iE>
Subject: Re: [lamps] Proposed LAMPS Recharter
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Oct 2019 15:00:48 -0000
Thanks, that is even better Hendrik > -----Ursprüngliche Nachricht----- > Von: Russ Housley <housley@vigilsec.com> > Gesendet: Freitag, 4. Oktober 2019 17:00 > An: Brockhaus, Hendrik (CT RDA CST SEA-DE) > <hendrik.brockhaus@siemens.com> > Cc: LAMPS WG <spasm@ietf.org> > Betreff: Re: [lamps] Proposed LAMPS Recharter > > Hendrik: > > You are correct. I somehow dropped a sentence that was discussed on the > list: > > Necessary updates and clarifications to CMP will be specified in a > separate document. > > I suggest we stick with that wording ... > > Russ > > > > On Oct 4, 2019, at 1:49 AM, Brockhaus, Hendrik > <hendrik.brockhaus@siemens.com> wrote: > > > > Should we also mention the CMP Updates in the re-charter. > > > > Proposal: > > 3. The Certificate Management Protocol (CMP) is specified in RFC 4210, and > it offers a vast range of certificate management options. CMP is currently > being used in many different industrial environments, but it needs to be > tailored to the specific needs of some environments. The LAMPS WG will > provide some updates to CMP and develop a "lightweight" profile of CMP to > more efficiently support of these environments and better facilitate > interoperable implementation, while preserving cryptographic algorithm > agility. > > > > Hendrik > > > >> -----Ursprüngliche Nachricht----- > >> Von: Spasm <spasm-bounces@ietf.org> Im Auftrag von Russ Housley > >> Gesendet: Donnerstag, 3. Oktober 2019 22:41 > >> An: LAMPS WG <spasm@ietf.org> > >> Betreff: [lamps] Proposed LAMPS Recharter > >> > >> Many of the work items in the current charter have reached the RFC > >> Editor queue. I believe that we can safely drop those topics. That > >> leaves three, including the CMP profile work that has already been > discussed on the list. > >> > >> We do not have an active document for the short-lived X.509 > >> certificates work item that was directed to us by the SECDISPATCH > process. > >> > >> Please review. Is this ready to be sent to the IESG for approval? > >> > >> Russ > >> > >> = = = = = = = = = > >> > >> The PKIX and S/MIME Working Groups have been closed for some time. > >> Some updates have been proposed to the X.509 certificate documents > >> produced by the PKIX Working Group and the electronic mail security > >> documents produced by the S/MIME Working Group. > >> > >> The LAMPS (Limited Additional Mechanisms for PKIX and SMIME) Working > >> Group is chartered to make updates where there is a known > >> constituency interested in real deployment and there is at least one > >> sufficiently well specified approach to the update so that the > >> working group can sensibly evaluate whether to adopt a proposal. > >> > >> The LAMPS WG is now tackling these topics: > >> > >> 1. Specify the use of short-lived X.509 certificates for which no > >> revocation information is made available by the Certification Authority. > >> Short-lived certificates have a lifespan that is shorter than the > >> time needed to detect, report, and distribute revocation information. > >> As a result, revoking short-lived certificates is unnecessary and pointless. > >> > >> 2. Update the specification for the cryptographic protection of email > >> headers > >> -- both for signatures and encryption -- to improve the > >> implementation situation with respect to privacy, security, usability > >> and interoperability in cryptographically-protected electronic mail. > >> Most current implementations of cryptographically-protected > >> electronic mail protect only the body of the message, which leaves > >> significant room for attacks against otherwise-protected messages. > >> > >> 3. The Certificate Management Protocol (CMP) is specified in RFC > >> 4210, and it offers a vast range of certificate management options. > >> CMP is currently being used in many different industrial > >> environments, but it needs to be tailored to the specific needs of > >> some environments. The LAMPS WG will develop a "lightweight" profile > >> of CMP to more efficiently support of these environments and better > >> facilitate interoperable implementation, while preserving cryptographic > algorithm agility. > >> > >> In addition, the LAMPS WG may investigate other updates to documents > >> produced by the PKIX and S/MIME WG. The LAMPS WG may produce > >> clarifications where needed, but the LAMPS WG shall not adopt > >> anything beyond clarifications without rechartering. > >> > >> > >> _______________________________________________ > >> Spasm mailing list > >> Spasm@ietf.org > >> > https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww > >> > .ietf.org%2Fmailman%2Flistinfo%2Fspasm&data=02%7C01%7Chendrik. > >> > brockhaus%40siemens.com%7C0b63866951bd40e98d8d08d7484222e1%7C38 > >> > ae3bcd95794fd4addab42e1495d55a%7C1%7C0%7C637057321200934913&am > >> > p;sdata=AHNsCOeT60Jrqo1TshfcFaS8a5l55SwdJp91pHAybno%3D&reser > >> ved=0 > > > > _______________________________________________ > > Spasm mailing list > > Spasm@ietf.org > > > https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww > . > > > ietf.org%2Fmailman%2Flistinfo%2Fspasm&data=02%7C01%7Chendrik.b > rock > > > haus%40siemens.com%7C8cbacca54cea4dc214fb08d748db7df0%7C38ae3bcd > 95794f > > > d4addab42e1495d55a%7C1%7C0%7C637057979858599585&sdata=OVidY > Oe0j6%2 > > B9dDv3qGy7fIs85YFX6gdDaYFU3cbly2A%3D&reserved=0
- [lamps] Proposed LAMPS Recharter Russ Housley
- Re: [lamps] Proposed LAMPS Recharter Salz, Rich
- Re: [lamps] Proposed LAMPS Recharter Brockhaus, Hendrik
- Re: [lamps] Proposed LAMPS Recharter Russ Housley
- Re: [lamps] Proposed LAMPS Recharter Brockhaus, Hendrik
- [lamps] Proposed LAMPS Recharter Russ Housley