[TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt
Ted Hardie <ted.ietf@gmail.com> Tue, 02 September 2025 14:41 UTC
Return-Path: <ted.ietf@gmail.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 2FA4A5C21BC0 for <tls@mail2.ietf.org>; Tue, 2 Sep 2025 07:41:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1U2MAxjHxN-Z for <tls@mail2.ietf.org>; Tue, 2 Sep 2025 07:41:16 -0700 (PDT)
Received: from mail-ej1-x635.google.com (mail-ej1-x635.google.com [IPv6:2a00:1450:4864:20::635]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 98D5E5C21BA7 for <tls@ietf.org>; Tue, 2 Sep 2025 07:41:16 -0700 (PDT)
Received: by mail-ej1-x635.google.com with SMTP id a640c23a62f3a-b0449b1b56eso173927666b.1 for <tls@ietf.org>; Tue, 02 Sep 2025 07:41:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1756824075; x=1757428875; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=+xLlx2+U4dgtYmjmprCNVFWXnRejZtj9AaerpUUYPEg=; b=g9JoewKwDzoi301cDUUFRFSE9dan/Gt2U8TvRkXpoVczjgUU7dcIJ8qu+u4DMNaRn2 snlV30Gb6iErFxJvFddWrwRkhsYRiVp43u1Gj19ruacpTU9OxRfcJfC83LblXyMPO15a xRhbSZeHgO3h99xPPb/qqzd9s4LwpanGtFinA0mo/qV0trjsouv9+gjMgSrVXlyJId2X +TSse+6zki46MYRZ/DNW7PqTyqMn2thwVZzzThkDLsWlj/y6hemcSzBF5yEaHbFsNhfB lYSDHrDeZFNOArX1PYXNnhaWzSOR9nFACRSUsvObPD3CZPoLPrIJzN480LT1/gR1Op5a bFjQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1756824075; x=1757428875; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=+xLlx2+U4dgtYmjmprCNVFWXnRejZtj9AaerpUUYPEg=; b=J8NRzzO4rG9tpByVcNb7gaY4F3O/e7A8PNoWVfrhuMiEpcx+rwD27LA+RriiLZh3Yr 4he45n2rNVjJqbMoSYA52ncdKq8DL4Aq6s5Hqv4Pqnm3Gwd2aJavuORblXN9+o/nqWdJ HURejPtuJXqwEg10GePwQbPHJpQqX7kWKkNYMFC0jtRn6Pi7ZpVscy+6S5e1OSUx98EM k1ucKyncXgqyColFJXCNbQfb0DUxdxK6xo73JYdyCQMBAEt9F9sEPJpPPemoIWC0888G /E+dpVxtmWvqaL3KVR2O/S1YsVktyVVANkBzjuMkMrxLSfCh2NReixKhoHYbVuAYgsqJ /VQg==
X-Gm-Message-State: AOJu0Yx5ogJz8xGr9grF2HX/wyEkrN1KRAz/2UmjLGExdV0cA5W2cK03 P5lIvj7STfAZl1Gy6WeeOjTjjud801S79WclDv2xgpcu96yCVHbr+bmRRbT89HSC4MTJHGBexG/ dSb7KJ7r9w1j0wx+FycJ1Bidm+LjCMeMkXxih
X-Gm-Gg: ASbGncuSXeSX2QWAfCMArKGqLsEtsvcFntrSRdlMuMpdFAQiSNiwEvEh9DlM6qkN92J w16P90IUjz1CEv4ghUYaHVXxyoDEpzAb4zB0TnocYYCoaSgjfcE+XlaCCkURQTUV8Em/YUWLPNX MvH/jL2yy6pVNkYX18o+tCnTGiX9RA1WL7EiSrBhRhTGh+a4UBD/1Ryx1Ajuk/DenPLXa2OiqAj JLpP3kjZI9UJU3ASOKP6QDU5ghmwGwyjYMnkHQ=
X-Google-Smtp-Source: AGHT+IGt+NrGVNE2hX0iG/66LqqsZAowZ8EgcmCSQeO3vyebAlsh1h3Av0K0jlf6t/8M3TSCjGW4yEkH2eNMDULHIJM=
X-Received: by 2002:a17:907:724c:b0:afe:764d:6b22 with SMTP id a640c23a62f3a-b01d8a32756mr988205766b.9.1756824075319; Tue, 02 Sep 2025 07:41:15 -0700 (PDT)
MIME-Version: 1.0
References: <175681980809.1724257.5414760990331082108@dt-datatracker-67876766b7-bkzgr> <123de075-e895-4b03-ab7a-75290ae03c8c@cs.tcd.ie>
In-Reply-To: <123de075-e895-4b03-ab7a-75290ae03c8c@cs.tcd.ie>
From: Ted Hardie <ted.ietf@gmail.com>
Date: Tue, 02 Sep 2025 15:40:48 +0100
X-Gm-Features: Ac12FXxw1RSyhJqcyrhqrv3cPAzLkiIo2071k0rTYNDsLsHrVLPiXaEJAUYzVtY
Message-ID: <CA+9kkMBmELQP=crpEsiJkU8qYvYmvxk8V6dXqfP0VhcW3JPHJg@mail.gmail.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: multipart/alternative; boundary="000000000000f1411c063dd27a77"
Message-ID-Hash: X2D2YNOLHQ5DV2PCEGIY5WJSGZVRZFK4
X-Message-ID-Hash: X2D2YNOLHQ5DV2PCEGIY5WJSGZVRZFK4
X-MailFrom: ted.ietf@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: tls@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/68XNg1KuVikEd8rN7DmYeQ47MJY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
Hi Stephen, I have what I hope is a small question about the IANA registration. In the protocol description, the draft says: The JSON file at the well-known URI MUST contain an object with two keys: "regeninterval", whose value is a number, and "endpoints" whose value is an array of objects. All other keys MUST be ignored. In the IANA considerations for the new JSON Service Binding registry, you specify Standards Action is required to update the registry. It seems to me that you actually need something a bit narrower, a Standards Action that updates or obsoletes this RFC, since other actions wouldn't eliminate the "MUST be ignored." requirement. My IANAbis chair hat isn't on for this question, but it does cause me to think about what folks mean by Standards Action in a case like this; do the authors assume Standards Action is sufficient, because that process would check to make sure that the new standard didn't need to make an update to this RFC? Thanks, Ted Hardie On Tue, Sep 2, 2025 at 2:40 PM Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote: > > Hiya, > > We made a bunch of editorial changes after the comments > received at IETF-123 with which the commenters seem ok, > so the authors would like to ask if the chairs think this > is ready for WGLC. (We understand the plan is to park it > after that awaiting more implementation experience which > is fine.) > > There are no outstanding issues or PRs on the git repo. [1] > > Cheers, > S. > > [1] https://github.com/sftcd/wkesni > > On 02/09/2025 14:30, internet-drafts@ietf.org wrote: > > Internet-Draft draft-ietf-tls-wkech-09.txt is now available. It is a > work item > > of the Transport Layer Security (TLS) WG of the IETF. > > > > Title: A well-known URI for publishing service parameters > > Authors: Stephen Farrell > > Rich Salz > > Benjamin Schwartz > > Name: draft-ietf-tls-wkech-09.txt > > Pages: 18 > > Dates: 2025-09-02 > > > > Abstract: > > > > We define a well-known URI at which an HTTP origin can inform an > > authoritative DNS server, or other interested parties, about its > > Service Bindings. Service binding data can include Encrypted > > ClientHello (ECH) configurations, that may change frequently. This > > allows the origin, in collaboration with DNS infrastructure elements, > > to publish and rotate its own ECH keys. Other service bindng data > > such as information about TLS supported groups is unlikely to change > > quickly, but the origin is much more likely to have accurate > > information when changes do occur. Service data published via this > > mechanism is typically available via an HTTPS or SVCB resource > > record. > > > > The IETF datatracker status page for this Internet-Draft is: > > https://datatracker.ietf.org/doc/draft-ietf-tls-wkech/ > > > > There is also an HTMLized version available at: > > https://datatracker.ietf.org/doc/html/draft-ietf-tls-wkech-09 > > > > A diff from the previous version is available at: > > https://author-tools.ietf.org/iddiff?url2=draft-ietf-tls-wkech-09 > > > > Internet-Drafts are also available by rsync at: > > rsync.ietf.org::internet-drafts > > > > > > _______________________________________________ > > TLS mailing list -- tls@ietf.org > > To unsubscribe send an email to tls-leave@ietf.org > > _______________________________________________ > TLS mailing list -- tls@ietf.org > To unsubscribe send an email to tls-leave@ietf.org >
- [TLS] I-D Action: draft-ietf-tls-wkech-09.txt internet-drafts
- [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt Stephen Farrell
- [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt Watson Ladd
- [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt Stephen Farrell
- [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt Ted Hardie
- [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt Stephen Farrell
- [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt Ted Hardie
- [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt Yaakov Stein
- [TLS] Re: I-D Action: draft-ietf-tls-wkech-09.txt Stephen Farrell