[TLS] Fwd: New Version Notification for draft-moriarty-tls-oldversions-diediedie-00.txt
Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Mon, 09 July 2018 16:41 UTC
Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5F8AA131063 for <tls@ietfa.amsl.com>; Mon, 9 Jul 2018 09:41:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gYEF6-xaCshV for <tls@ietfa.amsl.com>; Mon, 9 Jul 2018 09:41:35 -0700 (PDT)
Received: from mail-oi0-x241.google.com (mail-oi0-x241.google.com [IPv6:2607:f8b0:4003:c06::241]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8A43913101E for <tls@ietf.org>; Mon, 9 Jul 2018 09:41:35 -0700 (PDT)
Received: by mail-oi0-x241.google.com with SMTP id k81-v6so37074204oib.4 for <tls@ietf.org>; Mon, 09 Jul 2018 09:41:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=IzjRbFX0CEAtVpjOD4ITGmClGVfLYYMkH4o7Dz6SaFI=; b=KTZXfhOqSZQ4kNZvy/MXAQ0aScZStgbgH3y44wwEdBKUefRilNe/pCd1Bp7BqveWoB 9yJPJAK8VA84rdeAF5EqyjNmTCQey0R4cIlP1bdiV1WrQTAcRu6MKNtkN9HyIbdrfzCQ eyOlRT0qTH8KMyXTX0sXe1ODDuWso/v318SShHQsGFibO3cqjuGYZH8GhRR0pR7hmZ/m QkF7Xkv+FVXowV6ru0KWvNmLH+uDqGo7nPbjZwl6zy220w9+B7/Su+txPmfhiWR9/5/H FYW7ARrsQNC9KqtxLkcn/xJx58ztOPhZEXJIQjBgpZGKQsGY7EAR3ZJOOaI/1DhfyVFF 5y/Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=IzjRbFX0CEAtVpjOD4ITGmClGVfLYYMkH4o7Dz6SaFI=; b=o38sArOHFWHhl27R1h/p3MCv5a3jNxkMf0d+Mi986/MLWZCkPLth8BQwUNRkVv9s+A C6+wXskedmP6LnOtNQwI0Q/E0qlJyHWU/GsIeR84uTdiNL54GEo/5vwIlXBVinDoar7F VO2bYWF7Kp/QjKezv/j5waiv3hTlpY1yEewHx31TDTCwESqgOSidGAkYoq1VF30+g8fc Hr25EhdZUeigJxspIfvoBF119GdZ3/iehBBrPZDxGiu138vcPEBCgHhc89stjQBQDVBP WWlYqk1jdNFrfLtysgNiWHrtOEsw5O2KsKjL5rdWiRBBBZq2CMdeDYen950QjYuK9gtz Oqng==
X-Gm-Message-State: APt69E3+kKTBZiWIiEVNO8f7WFqP143O33WJVJjVuSmPr7JYwXJdYFFa tx5SeiLRZiDuKwvZmy3PB7LuGt+0jvx6ZnkufVMCuw==
X-Google-Smtp-Source: AAOMgpeafofofKlsNqRtauGTRNTbsD29YsXbcfKoKPzIUwjrMustxyyA4bbQWR/XYLhK/6cMWBfSq3tIk3Pd/OGEFRg=
X-Received: by 2002:aca:e082:: with SMTP id x124-v6mr21698383oig.220.1531154494593; Mon, 09 Jul 2018 09:41:34 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:ac9:7ad0:0:0:0:0:0 with HTTP; Mon, 9 Jul 2018 09:40:54 -0700 (PDT)
In-Reply-To: <152934875755.3094.4484881874912460528.idtracker@ietfa.amsl.com>
References: <152934875755.3094.4484881874912460528.idtracker@ietfa.amsl.com>
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Date: Mon, 09 Jul 2018 12:40:54 -0400
Message-ID: <CAHbuEH5J-F2cKag02Vx416jsy1N6XZOju28H99WAt71Pc5optg@mail.gmail.com>
To: "<tls@ietf.org>" <tls@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/8q7GdSNu-kYsaITBpzNRXGIAuKw>
Subject: [TLS] Fwd: New Version Notification for draft-moriarty-tls-oldversions-diediedie-00.txt
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Jul 2018 16:41:44 -0000
Hello, Stephen and I posted the draft below to see if the TLS working group is ready to take steps to deprecate TLSv1.0 and TLSv1.1. There has been a recent drop off in usage for web applications due to the PCI Council recommendation to move off TLSv1.0, with a recommendation to go to TLSv1.2 by June 30th. NIST has also been recommending TLSv1.2 as a baseline. Applications other than those using HTTP may not have had the same reduction in usage. If you are responsible for services where you have a reasonable vantage point to gather and share statistics to assess usage further, that could be helpful for the discussion. We've received some feedback that has been incorporated into the working draft and feelers in general have been positive. It would be good to know if there are any show stoppers that have not been considered. https://github.com/sftcd/tls-oldversions-diediedie Thanks in advance, Kathleen ---------- Forwarded message ---------- From: <internet-drafts@ietf.org> Date: Mon, Jun 18, 2018 at 3:05 PM Subject: New Version Notification for draft-moriarty-tls-oldversions-diediedie-00.txt To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com> A new version of I-D, draft-moriarty-tls-oldversions-diediedie-00.txt has been successfully submitted by Stephen Farrell and posted to the IETF repository. Name: draft-moriarty-tls-oldversions-diediedie Revision: 00 Title: Deprecating TLSv1.0 and TLSv1.1 Document date: 2018-06-18 Group: Individual Submission Pages: 10 URL: https://www.ietf.org/internet-drafts/draft-moriarty-tls-oldversions-diediedie-00.txt Status: https://datatracker.ietf.org/doc/draft-moriarty-tls-oldversions-diediedie/ Htmlized: https://tools.ietf.org/html/draft-moriarty-tls-oldversions-diediedie-00 Htmlized: https://datatracker.ietf.org/doc/html/draft-moriarty-tls-oldversions-diediedie Abstract: This document [if approved] formally deprecates Transport Layer Security (TLS) versions 1.0 [RFC2246] and 1.1 [RFC4346] and moves these documents to the historic state. These versions lack support for current and recommended cipher suites, and various government and industry profiiles of applications using TLS now mandate avoiding these old TLS versions. TLSv1.2 has been the recommended version for IETF protocols since 2008, providing sufficient time to transition away from older versions. Products having to support older versions increase the attack surface unnecessarily and increase opportunities for misconfigurations. Supporting these older versions also requires additional effort for library and product maintenance. This document updates the backward compatibility sections of TLS RFCs [[list TBD]] to prohibit fallback to TLSv1.0 and TLSv1.1. This document also updates RFC 7525. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat -- Best regards, Kathleen
- Re: [TLS] Fwd: New Version Notification for draft… Stephen Farrell
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Hubert Kario
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Peter Gutmann
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Eric Rescorla
- Re: [TLS] Fwd: New Version Notification for draft… Peter Gutmann
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Eric Rescorla
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Hubert Kario
- [TLS] raising ceiling vs. floor (was: New Version… Viktor Dukhovni
- Re: [TLS] Fwd: New Version Notification for draft… nalini elkins
- Re: [TLS] Fwd: New Version Notification for draft… Martin Thomson
- Re: [TLS] Fwd: New Version Notification for draft… Martin Rex
- Re: [TLS] Fwd: New Version Notification for draft… Eric Rescorla
- Re: [TLS] Fwd: New Version Notification for draft… Eric Rescorla
- [TLS] Fwd: New Version Notification for draft-mor… Kathleen Moriarty
- Re: [TLS] Fwd: New Version Notification for draft… Loganaden Velvindron
- Re: [TLS] Fwd: New Version Notification for draft… Salz, Rich
- Re: [TLS] Fwd: New Version Notification for draft… Salz, Rich
- Re: [TLS] Fwd: New Version Notification for draft… Alessandro Ghedini
- Re: [TLS] Fwd: New Version Notification for draft… Andrei Popov
- Re: [TLS] Fwd: New Version Notification for draft… Eric Mill
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Peter Gutmann
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Viktor Dukhovni
- Re: [TLS] raising ceiling vs. floor (was: New Ver… David Benjamin
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Peter Gutmann
- Re: [TLS] Fwd: New Version Notification for draft… Viktor Dukhovni
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Hubert Kario
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Phil Pennock
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Hubert Kario
- Re: [TLS] Fwd: New Version Notification for draft… Stephen Farrell
- Re: [TLS] [CAUTION] Re: Fwd: New Version Notifica… Martin Rex
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Peter Gutmann
- Re: [TLS] Fwd: New Version Notification for draft… nalini elkins
- Re: [TLS] Fwd: New Version Notification for draft… Stephen Farrell
- Re: [TLS] raising ceiling vs. floor (was: New Ver… Hubert Kario
- Re: [TLS] Fwd: New Version Notification for draft… Eric Rescorla
- Re: [TLS] Fwd: New Version Notification for draft… Salz, Rich
- Re: [TLS] [CAUTION] Re: Fwd: New Version Notifica… Kathleen Moriarty
- Re: [TLS] Fwd: New Version Notification for draft… Kathleen Moriarty
- Re: [TLS] Fwd: New Version Notification for draft… Kathleen Moriarty
- Re: [TLS] Fwd: New Version Notification for draft… David Benjamin
- Re: [TLS] Fwd: New Version Notification for draft… nalini elkins
- Re: [TLS] Fwd: New Version Notification for draft… Eric Rescorla
- Re: [TLS] Fwd: New Version Notification for draft… Stephen Farrell
- Re: [TLS] Fwd: New Version Notification for draft… Christopher Wood
- Re: [TLS] Fwd: New Version Notification for draft… Yaron Sheffer
- Re: [TLS] Fwd: New Version Notification for draft… Hubert Kario
- Re: [TLS] Fwd: New Version Notification for draft… Jeremy Harris
- Re: [TLS] Fwd: New Version Notification for draft… Artyom Gavrichenkov
- Re: [TLS] Fwd: New Version Notification for draft… Stephen Farrell
- Re: [TLS] Fwd: New Version Notification for draft… Artyom Gavrichenkov