Re: [TLS] [OPSEC] Call For Adoption: draft-wang-opsec-tls-proxy-bp

"Arnaud.Taddei.IETF" <Arnaud.Taddei.IETF@protonmail.com> Tue, 28 July 2020 08:35 UTC

Return-Path: <Arnaud.Taddei.IETF@protonmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4F28A3A08C1 for <tls@ietfa.amsl.com>; Tue, 28 Jul 2020 01:35:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.4
X-Spam-Level:
X-Spam-Status: No, score=0.4 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=2.5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CyS7-ZpO4VjW for <tls@ietfa.amsl.com>; Tue, 28 Jul 2020 01:35:51 -0700 (PDT)
Received: from mail2.protonmail.ch (mail2.protonmail.ch [185.70.40.22]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7BB3E3A08C7 for <tls@ietf.org>; Tue, 28 Jul 2020 01:35:51 -0700 (PDT)
Date: Tue, 28 Jul 2020 08:35:44 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=protonmail; t=1595925348; bh=cyBBL9fa34xpAxLSLdKxPAxBK5TjO8OWkfG/aPdvqCI=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References:From; b=yE5l3Bk/ctzhUyX4sBliQDb4S6EcBwZsUWfjbpeyz0SnhBn9FcjIKUr/cg0aGbVwU RMajbKgNRyjCZ4sc6sbmzXAJSmK5yUDRBIOvzxycLJuVe2bMnmTetWXL+mbugyam6u bZi9iDvJx13g7GM7PgdwwyMi0ChQyx5tL98DrRCo=
To: Jen Linkova <furry13@gmail.com>
From: "Arnaud.Taddei.IETF" <Arnaud.Taddei.IETF@protonmail.com>
Cc: OPSEC <opsec@ietf.org>, "tls@ietf.org" <tls@ietf.org>, OpSec Chairs <opsec-chairs@ietf.org>
Reply-To: "Arnaud.Taddei.IETF" <Arnaud.Taddei.IETF@protonmail.com>
Message-ID: <P3VX7yNLRHW2RJySpNXncc3tfSeyPArgUZnuPmIB7ybFPu_WELPek2GHERsJfvoNHvgQXKyCfLs5lFYJgZWeyurOu4UtUZj7E4t4A66CWVk=@protonmail.com>
In-Reply-To: <CAFU7BAS=ymUPTAGB_fOSrHTG0OajV1n5M1-yOBWxvGam-a89AA@mail.gmail.com>
References: <DM6PR05MB634890A51C4AF3CB1A03DA0BAE7A0@DM6PR05MB6348.namprd05.prod.outlook.com> <CAFU7BAS=ymUPTAGB_fOSrHTG0OajV1n5M1-yOBWxvGam-a89AA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/B77sA452t5Di850KecnemhPtghk>
Subject: Re: [TLS] [OPSEC] Call For Adoption: draft-wang-opsec-tls-proxy-bp
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jul 2020 08:35:54 -0000

I strongly support this work as it represents capabilities that are being developed, deployed and used in practice. It has good intentions and provides a good approach in the context of defense in depth approaches. No security cannot be just on both ends of the communication. One can dream about it but that is not how reality is. Removing this possibility is a limit to the overall defense.

I do not understand the reasons behind ignoring reality and the IETF would have, in my naive mind, a strong interest in getting this work under good community adoption so that it is kept in good control with validated best practices. Everyone would win.

I support this draft


Sent with ProtonMail Secure Email.

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Thursday 23 July 2020 03:30, Jen Linkova <furry13@gmail.com> wrote:

> One thing to add here: the chairs would like to hear active and
> explicit support of the adoption. So please speak up if you believe
> the draft is useful and the WG shall work on getting it published.
>
> On Mon, Jul 20, 2020 at 3:35 AM Ron Bonica
> rbonica=40juniper.net@dmarc.ietf.org wrote:
>
> > Folks,
> > This email begins a Call For Adoption on draft-wang-opsec-tls-proxy-bp.
> > Please send comments to opsec@ietf.org by August 3, 2020.
> >
> >                                                                 Ron
> >
> >
> > Juniper Business Use Only
> >
> > OPSEC mailing list
> > OPSEC@ietf.org
> > https://www.ietf.org/mailman/listinfo/opsec
>
> --
>
> SY, Jen Linkova aka Furry
>
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls