Re: [TLS] draft-green-tls-static-dh-in-tls13-01

Watson Ladd <watsonbladd@gmail.com> Wed, 19 July 2017 17:48 UTC

Return-Path: <watsonbladd@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C386F129461 for <tls@ietfa.amsl.com>; Wed, 19 Jul 2017 10:48:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7AAi4a0iEBUc for <tls@ietfa.amsl.com>; Wed, 19 Jul 2017 10:48:04 -0700 (PDT)
Received: from mail-pg0-x22d.google.com (mail-pg0-x22d.google.com [IPv6:2607:f8b0:400e:c05::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0248A131AAF for <tls@ietf.org>; Wed, 19 Jul 2017 10:48:02 -0700 (PDT)
Received: by mail-pg0-x22d.google.com with SMTP id s4so3205863pgr.5 for <tls@ietf.org>; Wed, 19 Jul 2017 10:48:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=62dwV8M5ZXX6nAEz2ShjSi3rVpfa7QeqmhzMGYDuWBo=; b=cYSH4NZTnkwxSP3ed+wB30d6+a3cMN5QsKwBVlk4EPEqD2tUvPjs9hB7ysakK2A0Jv KGl19mG7cdVWTPkUxMfE1JO6Dhidf/P4cpAJd9zihkRzxRkpLq5mwEB5hy5jaUKiHSOG VgXO/mJEUnvxSU2P8LXftjyAw5LepTs675by9mmFehkA4/dBZhFEZ+n6MiL+tWXjqd6p 9pfZSDr0kRL3tNxjKTqw8hSYKJ9QFUyfadqa4M0QHY+ccU4pPwgt6CpFtyCJEQ51k0Dz eAs9haaYlvZQuovV7doyB9paVEvZa4hFgRMTDHt38IcR3Smut7dKJyI/qbeEAYqVVQmD zXGw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=62dwV8M5ZXX6nAEz2ShjSi3rVpfa7QeqmhzMGYDuWBo=; b=AXBjbVp7AYFfInfZOLsP8grDvE9WaoF18MgbeMDpTfvKA+mk/9RydvHoHj8FFfaZeC jKD5G8PlLlzk/cojxxG8u8pur4yg+oXn2RJObBuQ8UtvzwYqWYu7Zq5QSSWzmYJfKHPQ 6JT6vThJ9ZLHk1dNWgopJfJq+vfWlA/rmFjMIrrhPqcrbRIqNZs8WUg2sDiqlGDRNr5F iNwmoQYaYacJRElxO4OfCJq6+xUqIYWkS30jbLIvvizMZxNlkolquIv6+PRKWhF9yuyr aFqx4GO9ORaP+F5ZnQsGsidzzCxGAg5uw0Q86YtIQzagRyiRHkzperFMnlhNeIv+qIaJ VfgQ==
X-Gm-Message-State: AIVw113ONe2KtwHcUG2WlgjKlIfrHOrW7EYOXGal0EujA2KwWPB+CTK4 bbuJODn8w8Hhb8ocu1XlWNWc47j0Yb/J
X-Received: by 10.84.210.141 with SMTP id a13mr970865pli.199.1500486481545; Wed, 19 Jul 2017 10:48:01 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.100.187.77 with HTTP; Wed, 19 Jul 2017 10:47:59 -0700 (PDT)
Received: by 10.100.187.77 with HTTP; Wed, 19 Jul 2017 10:47:59 -0700 (PDT)
In-Reply-To: <5E90933D-3D9F-4166-808D-7ECE53D264F4@arbor.net>
References: <CAPCANN-xgf3auqy+pFfL6VO5GpEsCCHYkROAwiB1u=8a4yj+Fg@mail.gmail.com> <CAOjisRxxN9QjCqmDpkBOsEhEc7XCpM9Hk9QSSAO65XDPNegy0w@mail.gmail.com> <CABtrr-XbJMYQ+FTQQiSw2gmDVjnpuhgJb3GTWXvLkNewwuJmUg@mail.gmail.com> <72BACCE6-CCB9-4DE9-84E6-0F942E8C7093@gmail.com> <a0a7b2ed-8017-9a54-fec0-6156c31bbbfa@nomountain.net> <6AF150DF-D3C8-4A4A-9D56-617C56539A6E@arbor.net> <CAN2QdAGRTLyucM1-JPmDU17kQgAv0bPZNASh54v=XoCW+qj48A@mail.gmail.com> <CACsn0cnc0X5++cOvTNsboda8J42qg3VDquZ4Va-X-YDcggnbvA@mail.gmail.com> <7423703D-5277-4F78-A2ED-1B7E152E7B08@arbor.net> <CACsn0cmo0HXBj7MidTTwkgE+Hwed9SrEODSzN8oURzQHJTW1aQ@mail.gmail.com> <E5BF12C2-B79A-444B-B4C2-90D28B40CCAC@arbor.net> <CACsn0c=_OT8R6SSr0P3RvT7Qx+smfz1DAKjH9Gni+jM8Ue4v5A@mail.gmail.com> <CAAF6GDc9e9TGWVaOjdb83AFH=z2kt41Rje+r4Ureoc6KVgEUJg@mail.gmail.com> <B08F0D98-FAE9-494C-AA96-4CE89792B770@ll.mit.edu> <CAAF6GDdSnCggfsrSG68An348ngR+fcb+9nQcKvJJGFtxg8NzJw@mail.gmail.com> <FDC8499C-FA96-4992-B1F2-C90F6154856B@arbor.net> <9A49F3C7-DEC7-4FEA-9017-B48DAC1D1446@ll.mit.edu> <5E90933D-3D9F-4166-808D-7ECE53D264F4@arbor.net>
From: Watson Ladd <watsonbladd@gmail.com>
Date: Wed, 19 Jul 2017 10:47:59 -0700
Message-ID: <CACsn0cm3pzmyN+RRbHv_KznS3ZvGhkEVe51RzUhAMe6n7L=q+g@mail.gmail.com>
To: "Dobbins, Roland" <rdobbins@arbor.net>
Cc: tls@ietf.org, "Blumenthal, Uri - 0558 - MITLL" <uri@ll.mit.edu>
Content-Type: multipart/alternative; boundary="94eb2c18828ab90e5b0554af3b1c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/CVT2ht9MC57--II3TrDM534IRnY>
Subject: Re: [TLS] draft-green-tls-static-dh-in-tls13-01
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Jul 2017 17:48:06 -0000

On Jul 19, 2017 10:43 AM, "Dobbins, Roland" <rdobbins@arbor.net> wrote:



> On Jul 19, 2017, at 19:15, Blumenthal, Uri - 0553 - MITLL <uri@ll.mit.edu>
wrote:
>
> My point is that if you own/control the endpoint, then it doesn’t matter
from the architecture point of view

It absolutely matters from an operational perspective, which both informs
and is informed by the architecture.

And even though your overarching organization owns the endpoint, the 'you'
who is responsible for troubleshooting and/or security analysis often does
not.


Technical solutions to political problems are not the right approach.


-----------------------------------
Roland Dobbins <rdobbins@arbor.net>
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls