IETF Logo Mail Archive

Re: [Tls-reg-review] Request to register 3 values in TLS ExtensionType Values registry

Yoav Nir <ynir.ietf@gmail.com> Fri, 12 June 2020 19:44 UTC

Return-Path: <ynir.ietf@gmail.com>
X-Original-To: tls-reg-review@ietfa.amsl.com
Delivered-To: tls-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 368873A0C9E for <tls-reg-review@ietfa.amsl.com>; Fri, 12 Jun 2020 12:44:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R2aqC0F8Sot7 for <tls-reg-review@ietfa.amsl.com>; Fri, 12 Jun 2020 12:44:08 -0700 (PDT)
Received: from mail-wr1-x429.google.com (mail-wr1-x429.google.com [IPv6:2a00:1450:4864:20::429]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51FE43A0C9B for <tls-reg-review@ietf.org>; Fri, 12 Jun 2020 12:44:08 -0700 (PDT)
Received: by mail-wr1-x429.google.com with SMTP id x6so10973727wrm.13 for <tls-reg-review@ietf.org>; Fri, 12 Jun 2020 12:44:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=ClUSeEu2dWgr9yvlOW2+uNW655loHmerpjg6Ektn1oY=; b=k/o6cex3JSlYQn0y/v9RLtNaNvsSCNgmP/dVRf1JO8k4oBT5QU1m+MbLWGLMcamGbj s9nNqj2JviI/OQ7uA6S8A/q5BFPN0JusMzj5QL9SdlyoRp3g7MOwt/BAtGrWULpWMEbc iL6fQFcBCHLEV0iQky2qv3EQg3vhKe6P4GCdX7BThDMv4LjDHbdGlgos/qnWlA4hi9ta AL9Sr7NEp45I1XXWmlKY6JAOZzvDnvhgLIRmIJU0N1LQdzwM43qlp/b2R2M0Fvq3zwEw u4iOnVGrPW2aXVQxlNrzIHRxoOqyONSqjmGllmeVJazj/JY6kP9V6/Wxx2FF+hV5aCi3 WsTg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=ClUSeEu2dWgr9yvlOW2+uNW655loHmerpjg6Ektn1oY=; b=PbSY/1NiHSkXCF9RmBtlSHc8yl/ACRNsmmd153DcutDTOKGGJ34TYlCUH6m9nXrjQK bLquRh5J9ECCGLg0Oj4xRr9oLA2dYU6BLk6Yg8unDVl7fmvKQ/TJOSSCrWQa0j2C9Wf8 0P4Ad4RHAssWpRmaRfRdOj/Tl1yeYEz99wWh/pT/GabzB02QAcn5dFYYmhfq8jN3LGzY W8TL5GJQ7nc1CbVVqHCwQkhVFewUa2gTAUrxYjK5R3tx8KHoJVd21Isuu1SzZTHnMJc+ Cyx78esi0V8wo8orrd2/sdmQ8priQttqg3fYwDRijmwgLNA2EFFbuD9tCJfoRv+W0rzu 2iFw==
X-Gm-Message-State: AOAM532AO9gdTXz2CygQ5K5yOaK/FidLvH7hftMjttEwi5l66PBCBQqv BpePzfgDDaXhz4e4WIqn2m49LFsK
X-Google-Smtp-Source: ABdhPJxwfUgx7XGK4mpAowQRwKWAmMv3Xr57kZL0wl7Jow/v99ARhdQ4F7HPcAhxqBDoI5FjvHc3xw==
X-Received: by 2002:a7b:cc94:: with SMTP id p20mr495445wma.148.1591991045690; Fri, 12 Jun 2020 12:44:05 -0700 (PDT)
Received: from [192.168.1.12] ([46.120.57.147]) by smtp.gmail.com with ESMTPSA id y5sm11838664wrs.63.2020.06.12.12.44.04 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 12 Jun 2020 12:44:04 -0700 (PDT)
From: Yoav Nir <ynir.ietf@gmail.com>
Message-Id: <779E7455-6CA8-4EC8-8F59-95EA196DFEE3@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_D27A24D6-A73E-4FB7-968B-398CB6564C00"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\))
Date: Fri, 12 Jun 2020 22:44:02 +0300
In-Reply-To: <6500F262-7F73-4613-9F4E-526B34D4040F@akamai.com>
Cc: "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>
To: Rich Salz <rsalz@akamai.com>
References: <VI1PR0402MB36165CA473E6C84EF71ECDC28E800@VI1PR0402MB3616.eurprd04.prod.outlook.com> <B3092784-D021-4FFC-90F9-7CFC469AF0B4@gmail.com> <6500F262-7F73-4613-9F4E-526B34D4040F@akamai.com>
X-Mailer: Apple Mail (2.3608.80.23.2.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls-reg-review/ySvUFHqfPvhDZE0fPg3UJC4iY9k>
Subject: Re: [Tls-reg-review] Request to register 3 values in TLS ExtensionType Values registry
X-BeenThere: tls-reg-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TLS REVIEW <tls-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls-reg-review/>
List-Post: <mailto:tls-reg-review@ietf.org>
List-Help: <mailto:tls-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Jun 2020 19:44:10 -0000

I tend to agree, although that leads me to question the value of what we’re doing here.

Anyway, I think this is going to lead to yelling, so we might as well get in front of it. I’d like to post a message to the TLS mailing list before we instruct IANA to assign values.

Objections?

Yoav


> On 11 Jun 2020, at 19:29, Salz, Rich <rsalz@akamai.com> wrote:
> 
> Yes, this is where interceptible TLS went after we discarded it.
>  
> I don’t think we get a moral vote, tho.
>  
> From: Yoav Nir <ynir.ietf@gmail.com>
> Date: Thursday, June 11, 2020 at 12:23 PM
> To: "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>
> Subject: Re: [Tls-reg-review] Request to register 3 values in TLS ExtensionType Values registry
>  
> So a protocol for the endpoints to talk to the middle-box and allow it read, read+delete, or read+delete+write access to the data stream?
>  
> I think we’ve yelled at people who brought this kind of thing to the IETF in the past.
>  
> Does this count as “mostly harmless” because they just want an extension number, not an RFC number?
>  
>  
> 
> 
>> On 11 Jun 2020, at 10:59, Miguel Angel Reina Ortega <MiguelAngel.ReinaOrtega@etsi.org <mailto:MiguelAngel.ReinaOrtega@etsi.org>> wrote:
>>  
>> Dear TLS ExtensionType Values Registry Experts,
>>  
>> ETSI TC CYBER has developed a Technical Specification TS 103 523-2 "Transport Layer Middlebox Security Protocol (TLMSP)" specifying a protocol to enable secure transparent communication sessions between network endpoints with one or more middleboxes between these endpoints, using data encryption and integrity protection, as well as authentication of the identity of the endpoints and the identity of any middlebox present. The Middlebox Security Protocol builds on TLS 1.2.
>>  
>> ETSI TC CYBER is about to approve the final draft TS 103 523-2 for publication and then requests the registration of 3 TLS ExtensionType Values as defined in the final draft TS 103 523-2 available athttps://docbox.etsi.org/CYBER/CYBER/Open/Latest_Drafts/CYBER-0027-2v020-TLMSP-Transport-Layer-Middlebox-Security-Protocol.pdf <https://urldefense.proofpoint.com/v2/url?u=https-3A__docbox.etsi.org_CYBER_CYBER_Open_Latest-5FDrafts_CYBER-2D0027-2D2v020-2DTLMSP-2DTransport-2DLayer-2DMiddlebox-2DSecurity-2DProtocol.pdf&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=GjSQtH4oNcSoW9gjQc3NeYlpnrqE2zr8mclZf37nr1A&s=qCl0DYOmf9Uc-Y3Rj5hJpWz3Xq4-ge_D1GFn2zOREWY&e=>.
>> The 3 extensions are defined in the following clauses: 
>>      * clause 4.3.5 extension named TLSMP 
>>      * clause C.2.3 extensions named TLMSP_proxying and TLMSP_delegate
>>      * IANA considerations in annex I
>>  
>> Please, note that we will be able to provide the final URL of the published TS only after its publication.
>>  
>> Best regards.
>>  
>> -----------------------------------------------------------------------------------------------------------------
>> Miguel Angel Reina Ortega – Testing Expert
>> Centre for Testing and Interoperability (CTI)
>> ETSI ● www.etsi.org <https://urldefense.proofpoint.com/v2/url?u=http-3A__www.etsi.org_&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=GjSQtH4oNcSoW9gjQc3NeYlpnrqE2zr8mclZf37nr1A&s=GhLs_FLSmA-osQ0cKbcT5kqmBsljznhTtIDuG7xtD1k&e=> ● miguelangel.reinaortega@etsi.org <mailto:miguelangel.reinaortega@etsi.org>
>> Phone: +33 (0)4 92 94 43 49 ● Mobile: +33 (0)6 76 73 60 99
>>  
>> This email may contain confidential information and is intended for
>> the use of the addressee only. Any unauthorized use may be unlawful.
>> If you receive this email by mistake, please advise the sender
>> immediately by using the reply facility in your email software.
>> Thank you for your co-operation.
>>  
>> _______________________________________________
>> tls-reg-review mailing list
>> tls-reg-review@ietf.org <mailto:tls-reg-review@ietf.org>
>> https://www.ietf.org/mailman/listinfo/tls-reg-review <https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_tls-2Dreg-2Dreview&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=4LM0GbR0h9Fvx86FtsKI-w&m=GjSQtH4oNcSoW9gjQc3NeYlpnrqE2zr8mclZf37nr1A&s=LnFG7aJJ4aJxaWIHASh9HIFTPgnsq62YSGZwB9dNIzY&e=>

v2.23.0 | Report a Bug | By Email