IETF Logo Mail Archive

[TLS] Re: 2nd Working Group Last Call for The SSLKEYLOGFILE Formatfor TLS

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 25 February 2025 12:01 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 3B972F2033 for <tls@mail2.ietf.org>; Tue, 25 Feb 2025 04:01:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: mail2.ietfa.org (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietfa.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r7UeQEa3YoTT for <tls@mail2.ietf.org>; Tue, 25 Feb 2025 04:01:12 -0800 (PST)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2134.outbound.protection.outlook.com [40.107.20.134]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id E7063F2021 for <tls@ietf.org>; Tue, 25 Feb 2025 04:01:11 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=l7BEj0MCZsvhQAQp072WwVhO/M+R1r2e3EHhG+QJwwC1wGwcGzb5O52kZHjNsBMO434ZfQTCRz7+/43V0vsjFZ8TeE4sC4Le7xJ32116Xkrw1lQZjGOBl4V9FzywulX0/pBQtX7reQezFLjCfqfMLlfDP4DJnhaT2CqFiLtqzYU7R1lTpcyw2igD6TePy/0gEq1AESRlR/QMkk5RdvTXbqFLnsI0VFwdFwIoA6txyOEu5Xpu87AUigzUYfkNXAvWru8goPEbGsBtYAaQ7qqHo9SXtx1z9POhT/CKO4BmUajRd8R/BcrYsaR580CRpVICCOw4cX+6Rq3fOCd0n8h72A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Bn8ogVC+pDBV7vwzu6jIoDge/K6mSDv3qYXY8PuuGeg=; b=wDnpTRpCACGp9MgTBaCQlWmhrpJX18sAhzatLZZ5upSXBNJxvXtp6Gq9W6BXbFTZvbp/q83y0a0hl9AGhfKiz2lCoxUa9dc9k30+gn2L2qXRs519ENximxpWsIEYpP+5D3SaZM/HLV+Ao0IPluYuSl65V4LpnlghqWLWyXyYuIdmVHCWUPAo9Rkp3Vjv6pKTmg79NTjS0H77OwbKpViXCYJGPD4VqamPs8ysXkMHIe4nwKHCGQzY5KgCG4HBzUcejQWgBzB8gVfqk5ZlDUJL7F85Z2doOThqbdKje2o6D8jHKbXvQUlS9QPlB3yKn/mUWrp+yB/XY0QkJDofjsKmvg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Bn8ogVC+pDBV7vwzu6jIoDge/K6mSDv3qYXY8PuuGeg=; b=VfRifAXByc9hlEb25Ih1Z0ldyWFeoD7hYFPO/sANZCz2SSth29Tmbile9vXVcjlkihoJ0pPrj5Mnxh61d2QOyqPW+GtuuQkUoGXZykXk7xJ12D7q3l/aXOVl5gshIdKUiaeDqzJXWD1IhLB5r6Poj7wB/JQU3mnfAIOwLg0CVOfnlLczgA0FO+Lbf9wDTtj6GUwL2/j50jfxj1lv8X8Uo4ODrk/yRRMdkzA0Zy7ToS7VRpHQwvz7lXnpJQe1AZdxdTiCH3jb/3M3gaUxGQQwcDH1UdRkrVCvXpYJ+r8xDaViYW7bzg1tG357XWn2NRLu6Jy3qiKjWa+m/DcRWP65Ig==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from AM7PR02MB5944.eurprd02.prod.outlook.com (2603:10a6:20b:10e::23) by DBBPR02MB10844.eurprd02.prod.outlook.com (2603:10a6:10:530::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8466.19; Tue, 25 Feb 2025 12:01:09 +0000
Received: from AM7PR02MB5944.eurprd02.prod.outlook.com ([fe80::567f:ad68:82d2:fd7c]) by AM7PR02MB5944.eurprd02.prod.outlook.com ([fe80::567f:ad68:82d2:fd7c%4]) with mapi id 15.20.8466.020; Tue, 25 Feb 2025 12:01:07 +0000
Message-ID: <955e3b1a-0baf-4483-b741-eb17ecce18ba@cs.tcd.ie>
Date: Tue, 25 Feb 2025 12:01:00 +0000
User-Agent: Mozilla Thunderbird
To: Martin Thomson <mt@lowentropy.net>, Aaron Zauner <azet=40azet.org@dmarc.ietf.org>, Hubert Kario <hkario@redhat.com>
References: <6a27cae41645539b3fa90b5f83a8973c73cdd6a0.camel@aisec.fraunhofer.de> <CA+_8xu1nDDHuqRbh2OvRVkvxPyLcJS==rumo3sxPC56NsWLCMw@mail.gmail.com> <93eb1e78c7348459fc92ff874c7e691baf4a0bf0.camel@aisec.fraunhofer.de> <ee908b7b-da13-4840-b70a-84dd66d4bc1f@redhat.com> <2e57a347-cbfc-487c-8b3e-7ee240913ed2@tu-dresden.de> <8fb60e2e-5103-4511-9c97-6b59bae1c5dc@redhat.com> <CAN8NK9HvfsoePrW9ft_krVtiAV7aYrf4suD52=pQUmG543W-0Q@mail.gmail.com> <e2b73144-8ccb-4ff8-a32c-2c7aefefc7d1@betaapp.fastmail.com>
Content-Language: en-US
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Autocrypt: addr=stephen.farrell@cs.tcd.ie; keydata= xjMEY9GzphYJKwYBBAHaRw8BAQdAo6JvjmSbxHdQWPZdvciQYsHhM1NxQBU398Mmimoy4p7N M1N0ZXBoZW4gRmFycmVsbCAoMjU1MTkpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPsKQ BBMWCAA4FiEEMG54R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwMFCwkIBwIGFQoJCAsCBBYC AwECHgECF4AACgkQ5Njp+ZeoM93bogEA25ElRyX0wwg+kGEN1AoL60MoZfvQZ/VtmXY6IC5j +csBAIBpkL5ySuzJK2zLNZn9qQGht8IaUcA7cvDcLvS2uHUEzjgEY9GzphIKKwYBBAGXVQEF AQEHQILCPWOwW36e8D3pY8GmvvtItIT+A5uV80ist+WokVsQAwEIB8J4BBgWCAAgFiEEMG54 R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwwACgkQ5Njp+ZeoM92bcAEA8R+8cpqRUIS+SoAN iO05xE6O/wEx8/e88BqzAYki3SoBAOQdwiPX+MQrAxkWD8xxOsdMOAtxYKpkD1n8aPJUw6QJ
In-Reply-To: <e2b73144-8ccb-4ff8-a32c-2c7aefefc7d1@betaapp.fastmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------Y3MEmHKJlutjFvhh9HxuxFPM"
X-ClientProxiedBy: DB8PR06CA0042.eurprd06.prod.outlook.com (2603:10a6:10:120::16) To AM7PR02MB5944.eurprd02.prod.outlook.com (2603:10a6:20b:10e::23)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: AM7PR02MB5944:EE_|DBBPR02MB10844:EE_
X-MS-Office365-Filtering-Correlation-Id: cd105e34-af05-4eb2-d41d-08dd55941303
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;ARA:13230040|366016|10070799003|1800799024|376014;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:AM7PR02MB5944.eurprd02.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(366016)(10070799003)(1800799024)(376014);DIR:OUT;SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: cd105e34-af05-4eb2-d41d-08dd55941303
X-MS-Exchange-CrossTenant-AuthSource: AM7PR02MB5944.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 25 Feb 2025 12:01:07.0441 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 7pUkfUdx8+D4KIYrFWD1FOOZTPPNfQTK5qdQ5rbhVIDSWp3mdFRgTv4Kpdirw4y8
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DBBPR02MB10844
Message-ID-Hash: LVB6VZTZO5XC34ZSX3JVOGAO7U2U523H
X-Message-ID-Hash: LVB6VZTZO5XC34ZSX3JVOGAO7U2U523H
X-MailFrom: stephen.farrell@cs.tcd.ie
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Bellebaum, Thomas" <thomas.bellebaum@aisec.fraunhofer.de>, tls@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: 2nd Working Group Last Call for The SSLKEYLOGFILE Formatfor TLS
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/5kCEuUPBn_RKrg-JCyXEvdi4SHc>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

Hiya,

On 24/02/2025 21:54, Martin Thomson wrote:
> but
> this is a case where that interoperation already exists.
I think the above was true of your initial draft Martin,
but is significantly less true of the current draft that
includes an IANA registry setup with the specification
required procedure - that, in addition to the addition of
ECH exfiltration, means that publishing this implies that
the TLS WG approve of whatever methods of exfiltration a
DE approves of, and that we approve of every new thing we
add to TLS (ECH in the current case) having an exfiltration
method defined for it, without WG oversight.

That's quite a change from the status quo ante IMO.

Cheers,
S.

PS: It occurs to me that I never objected to this on the
basis that there's been no formal analysis:-) While that's
partly a joke, it does seem odd that we insist on the FATT
thing for minor changes, but ignore it when busting a
major hole in the entire ediface. Seems odd.

v2.46.0 | Report a Bug | By Email | System Status