IETF Logo Mail Archive

Re: [Tls-reg-review] Request to register 3 values in TLS ExtensionType Values registry

Yoav Nir <ynir.ietf@gmail.com> Sun, 21 June 2020 21:14 UTC

Return-Path: <ynir.ietf@gmail.com>
X-Original-To: tls-reg-review@ietfa.amsl.com
Delivered-To: tls-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 304B03A003B for <tls-reg-review@ietfa.amsl.com>; Sun, 21 Jun 2020 14:14:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 90ugLV7zvZKn for <tls-reg-review@ietfa.amsl.com>; Sun, 21 Jun 2020 14:14:36 -0700 (PDT)
Received: from mail-wm1-x335.google.com (mail-wm1-x335.google.com [IPv6:2a00:1450:4864:20::335]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE8673A0028 for <tls-reg-review@ietf.org>; Sun, 21 Jun 2020 14:14:35 -0700 (PDT)
Received: by mail-wm1-x335.google.com with SMTP id y20so13892593wmi.2 for <tls-reg-review@ietf.org>; Sun, 21 Jun 2020 14:14:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=eQsQ3Rsm+Ok5qflzc81dmpDqaj8VGQYrBOIMksXmefw=; b=HPdoEwuRQGioT54/m5YvYwffKJ8P8OagphTl5DAZpWSyevK5TFajRMGkjwGjzHmxJJ rIVBDU/yU5J8aSOGksugeVQWj5IvNTymtzzXG3hH/GNQHeGQEKd9Afd5G/gvzEaAtsnP zU1njWAB0M7a/f/HIixj7pSuk8bAaP1jyeKpeMAsjRXYzs/rrkdVTX8TQoUf/OTk5eHm lUZu8nTtr4pxNNVx12LQ4nkqYJuCcqKGY5hR4B3n2GcowzMsibU6TerQwLQRZFO3V5nQ lISry/PiNaIodZ7JsrPau4WjHRm925MnbC0okV/11wbrcURrabdaYLukVTWI0dfat/OH Wg+g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=eQsQ3Rsm+Ok5qflzc81dmpDqaj8VGQYrBOIMksXmefw=; b=VHZ/ymX6Wx9oIq+gmzozbt7gNL04yPC/QzKi9K/GsdDw2uX0IzsS+EiwaeQmKtfZKN O3HcPs8COqlER1/h01P7R8ezOxgvwaFMnP+/AO7xf6JqQah6/tMHByI1E+Rfe9u1cmIt F0JfuTPensUk2cK86HXyZm+bDO9QFBSRC6O8ta04EqNh6c/GI5uE2lNlGQhQ8Dbu9Xc6 7d1W3BUR2WE1elIcN5VpVbQAOAXjn6pUlo6TGqFZNZAgtXEWwgdW9cMmn3eJ/3OM92Xs vt9LvjVO0N8YSE/+PgBZPoBNOzu94yp9fuTNo/5lyEmwFsvQiKGtJ7qIv4YLMzZgLVRO tisA==
X-Gm-Message-State: AOAM530sZB3qgmaZSbs0jJkMK8c1x9+bm2eVg9urCTAW11/+FyuUdeRe IFzZLjx7Xu3LrSylBuMFA+o=
X-Google-Smtp-Source: ABdhPJzwNfpeQLo+C3fGA/lvAGhbaL3FH4PksjnR1kAruzzOzHKKaLBk4FlBfzJxNWhnwBYa9Y77Yg==
X-Received: by 2002:a7b:c041:: with SMTP id u1mr15749157wmc.56.1592774074148; Sun, 21 Jun 2020 14:14:34 -0700 (PDT)
Received: from [192.168.1.12] ([46.120.57.147]) by smtp.gmail.com with ESMTPSA id c11sm13245384wrq.36.2020.06.21.14.14.32 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Sun, 21 Jun 2020 14:14:33 -0700 (PDT)
From: Yoav Nir <ynir.ietf@gmail.com>
Message-Id: <CAB6BCC4-6058-4346-95D6-C0065981F48A@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_E4670427-F9D8-4AEB-9D5B-A400D6DD470E"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\))
Date: Mon, 22 Jun 2020 00:14:30 +0300
In-Reply-To: <A1B1187C-DE33-4C40-A03C-44A2EC85953D@akamai.com>
Cc: "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>
To: Rich Salz <rsalz@akamai.com>
References: <VI1PR0402MB36165CA473E6C84EF71ECDC28E800@VI1PR0402MB3616.eurprd04.prod.outlook.com> <B3092784-D021-4FFC-90F9-7CFC469AF0B4@gmail.com> <6500F262-7F73-4613-9F4E-526B34D4040F@akamai.com> <779E7455-6CA8-4EC8-8F59-95EA196DFEE3@gmail.com> <A1B1187C-DE33-4C40-A03C-44A2EC85953D@akamai.com>
X-Mailer: Apple Mail (2.3608.80.23.2.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls-reg-review/9yu_BwqWQJcimkyLfsrr8UHGjqM>
Subject: Re: [Tls-reg-review] Request to register 3 values in TLS ExtensionType Values registry
X-BeenThere: tls-reg-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TLS REVIEW <tls-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls-reg-review/>
List-Post: <mailto:tls-reg-review@ietf.org>
List-Help: <mailto:tls-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 21 Jun 2020 21:14:38 -0000

I suppose we got a reluctant nod from the community.


> On 13 Jun 2020, at 16:11, Salz, Rich <rsalz@akamai.com> wrote:
> 
> Go for it.
>  
> From: Yoav Nir <ynir.ietf@gmail.com>
> Date: Friday, June 12, 2020 at 3:44 PM
> To: Rich Salz <rsalz@akamai.com>
> Cc: "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>
> Subject: Re: [Tls-reg-review] Request to register 3 values in TLS ExtensionType Values registry
>  
> I tend to agree, although that leads me to question the value of what we’re doing here.
>  
> Anyway, I think this is going to lead to yelling, so we might as well get in front of it. I’d like to post a message to the TLS mailing list before we instruct IANA to assign values.
>  
> Objections?
>  
> Yoav
>  
> 
> 
>> On 11 Jun 2020, at 19:29, Salz, Rich <rsalz@akamai.com <mailto:rsalz@akamai.com>> wrote:
>>  
>> Yes, this is where interceptible TLS went after we discarded it.
>>  
>> I don’t think we get a moral vote, tho.
>>  
>> From: Yoav Nir <ynir.ietf@gmail.com <mailto:ynir.ietf@gmail.com>>
>> Date: Thursday, June 11, 2020 at 12:23 PM
>> To: "tls-reg-review@ietf.org <mailto:tls-reg-review@ietf.org>" <tls-reg-review@ietf.org <mailto:tls-reg-review@ietf.org>>
>> Subject: Re: [Tls-reg-review] Request to register 3 values in TLS ExtensionType Values registry
>>  
>> So a protocol for the endpoints to talk to the middle-box and allow it read, read+delete, or read+delete+write access to the data stream?
>>  
>> I think we’ve yelled at people who brought this kind of thing to the IETF in the past.
>>  
>> Does this count as “mostly harmless” because they just want an extension number, not an RFC number?
>>  
>>  
>> 
>> 
>> 
>>> On 11 Jun 2020, at 10:59, Miguel Angel Reina Ortega <MiguelAngel.ReinaOrtega@etsi.org <mailto:MiguelAngel.ReinaOrtega@etsi.org>> wrote:
>>>  
>>> Dear TLS ExtensionType Values Registry Experts,
>>>  
>>> ETSI TC CYBER has developed a Technical Specification TS 103 523-2 "Transport Layer Middlebox Security Protocol (TLMSP)" specifying a protocol to enable secure transparent communication sessions between network endpoints with one or more middleboxes between these endpoints, using data encryption and integrity protection, as well as authentication of the identity of the endpoints and the identity of any middlebox present. The Middlebox Security Protocol builds on TLS 1.2.
>>>  
>>> ETSI TC CYBER is about to approve the final draft TS 103 523-2 for publication and then requests the registration of 3 TLS ExtensionType Values as defined in the final draft TS 103 523-2 available athttps://docbox.etsi.org/CYBER/CYBER/Open/Latest_Drafts/CYBER-0027-2v020-TLMSP-Transport-Layer-Middlebox-Security-Protocol.pdf <https://urldefense.proofpoint.com/v2/url?u=https-3A__docbox.etsi.org_CYBER_CYBER_Open_Latest-5FDrafts_CYBER-2D0027-2D2v020-2DTLMSP-2DTransport-2DLayer-2DMiddlebox-2DSecurity-2DProtocol.pdf&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=GjSQtH4oNcSoW9gjQc3NeYlpnrqE2zr8mclZf37nr1A&s=qCl0DYOmf9Uc-Y3Rj5hJpWz3Xq4-ge_D1GFn2zOREWY&e=>.
>>> The 3 extensions are defined in the following clauses: 
>>>      * clause 4.3.5 extension named TLSMP 
>>>      * clause C.2.3 extensions named TLMSP_proxying and TLMSP_delegate
>>>      * IANA considerations in annex I
>>>  
>>> Please, note that we will be able to provide the final URL of the published TS only after its publication.
>>>  
>>> Best regards.
>>>  
>>> -----------------------------------------------------------------------------------------------------------------
>>> Miguel Angel Reina Ortega – Testing Expert
>>> Centre for Testing and Interoperability (CTI)
>>> ETSI ● www.etsi.org <https://urldefense.proofpoint.com/v2/url?u=http-3A__www.etsi.org_&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=GjSQtH4oNcSoW9gjQc3NeYlpnrqE2zr8mclZf37nr1A&s=GhLs_FLSmA-osQ0cKbcT5kqmBsljznhTtIDuG7xtD1k&e=> ● miguelangel.reinaortega@etsi.org <mailto:miguelangel.reinaortega@etsi.org>
>>> Phone: +33 (0)4 92 94 43 49 ● Mobile: +33 (0)6 76 73 60 99
>>>  
>>> This email may contain confidential information and is intended for
>>> the use of the addressee only. Any unauthorized use may be unlawful.
>>> If you receive this email by mistake, please advise the sender
>>> immediately by using the reply facility in your email software.
>>> Thank you for your co-operation.
>>>  
>>> _______________________________________________
>>> tls-reg-review mailing list
>>> tls-reg-review@ietf.org <mailto:tls-reg-review@ietf.org>
>>> https://www.ietf.org/mailman/listinfo/tls-reg-review <https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_tls-2Dreg-2Dreview&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=GjSQtH4oNcSoW9gjQc3NeYlpnrqE2zr8mclZf37nr1A&s=LnFG7aJJ4aJxaWIHASh9HIFTPgnsq62YSGZwB9dNIzY&e=>

v2.23.0 | Report a Bug | By Email