Re: [TLS] [Last-Call] Last Call: <draft-ietf-tls-oldversions-deprecate-09.txt> (Deprecating TLSv1.0 and TLSv1.1) to Best Current Practice

tom petch <daedulus@btconnect.com> Tue, 15 December 2020 12:51 UTC

Return-Path: <daedulus@btconnect.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C1183A10D6; Tue, 15 Dec 2020 04:51:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.001
X-Spam-Level:
X-Spam-Status: No, score=-0.001 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, MSGID_FROM_MTA_HEADER=0.001, NICE_REPLY_A=-0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1PWp56WSalI5; Tue, 15 Dec 2020 04:51:15 -0800 (PST)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-eopbgr140117.outbound.protection.outlook.com [40.107.14.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1FA9F3A10D4; Tue, 15 Dec 2020 04:51:14 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=e+YmGN+hpYM5lCIy0ZmnPwdUJFTh+plwfHGOzJxkxWy+RckansxLkJyi2SJl1MSjG2+/3G8QpU3rpdkH7xNymlCRXCFPSY/n7BbYSQ7OeSaUBznoldMO8qqMYujewhj2Kuib4TRxJ/eH/iMe50yYzzxLnFomK7qh8YownQ/Yr2Wjl1aPzw0bugAnFfuQItRyur3VM0sVO4MX8PJ4aWFgZ2NQ8LMdfG0/+TKWsznKZxf2enZYK3l46AbUl1O55rvJkQ+lkiRLyTGxeAQ9RiqRL7t1eEjEDo5N4KE5SYXPKoUPfAyVX45+DEJDxVzP7NRIhTFaHsKA/7LGJCy1tMD3pg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=oMGjMbJRA0M71pMxkSSD8FE34pgmvuS/WiwVM9Dy+xM=; b=FlBdk6ftzIEb+MjKFzHsagCA+JPsxfSwnjt3QR/0c/PLZsYvFLxUv8C2Rc7px8b4hIXu9HadCftQAHEoGQX2gfwjbt2C+VZfk3XtFLSnyTLpR8A4vRzgG3BWkxTjofjCbOfX3bdn+bE31OMO+EDoZgscSNX7pZqUqd42JHsKN6unFgGCekj6UUShsUbKKidxGOZRGv4aDAQw7yA/WabVXdNm5cFwGgtAYN7FEHmC9DCIIbS+X5RdXLUs5/zlShCPLPW1emd/YhEEOZJuav1Wfc+cS8K02XnZU4AqiN57yXhp0sGe2jMRgYB9MJHUveLyi9zvtyHGp9ZgOh3uyWmgrg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=oMGjMbJRA0M71pMxkSSD8FE34pgmvuS/WiwVM9Dy+xM=; b=aVFIre1KshX9/OJ8jVyW07zGaecIwbjLDoaSMSYTNKct3E58tDuTj4StfcjMQi/xgi0kkAShWaxWGlgH0Crz5Xn8u2frUcSBq3RgApUPIazJTcbF1HEDFh/wMNhT+UTXY6WSQkyi/aMB7/3TGNdXkr1pakRNhhH8dy0+twh9SEk=
Authentication-Results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=btconnect.com;
Received: from VI1PR07MB6704.eurprd07.prod.outlook.com (2603:10a6:800:18b::8) by VI1PR0701MB2223.eurprd07.prod.outlook.com (2603:10a6:800:31::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3676.10; Tue, 15 Dec 2020 12:51:10 +0000
Received: from VI1PR07MB6704.eurprd07.prod.outlook.com ([fe80::6407:6ea2:f517:eeae]) by VI1PR07MB6704.eurprd07.prod.outlook.com ([fe80::6407:6ea2:f517:eeae%7]) with mapi id 15.20.3676.018; Tue, 15 Dec 2020 12:51:10 +0000
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, last-call@ietf.org
References: <160496076356.8063.5138064792555453422@ietfa.amsl.com> <5FAA69AB.4090802@btconnect.com> <754d1831-e44f-0299-dcd1-24a311e8c442@cs.tcd.ie> <5FAA79E6.4060401@btconnect.com> <57dec4d8-0824-291c-9c13-15627693eb2a@cs.tcd.ie> <0a867fe5-e940-09bd-1764-530479e09e9b@cs.tcd.ie> <5FD79486.5030401@btconnect.com>
Cc: draft-ietf-tls-oldversions-deprecate@ietf.org, tls-chairs@ietf.org, tls@ietf.org
From: tom petch <daedulus@btconnect.com>
Message-ID: <5FD8B135.8070704@btconnect.com>
Date: Tue, 15 Dec 2020 12:51:01 +0000
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:38.0) Gecko/20100101 Thunderbird/38.5.0
In-Reply-To: <5FD79486.5030401@btconnect.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Originating-IP: [86.146.121.140]
X-ClientProxiedBy: LO2P265CA0264.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:8a::36) To VI1PR07MB6704.eurprd07.prod.outlook.com (2603:10a6:800:18b::8)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from [192.168.1.65] (86.146.121.140) by LO2P265CA0264.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:8a::36) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.20.3654.12 via Frontend Transport; Tue, 15 Dec 2020 12:51:08 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 9aa8e21c-5f5a-43dc-58f2-08d8a0f818cf
X-MS-TrafficTypeDiagnostic: VI1PR0701MB2223:
X-Microsoft-Antispam-PRVS: <VI1PR0701MB2223980FAFB12506AE6F4857C6C60@VI1PR0701MB2223.eurprd07.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:10000;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 7+0wWdIjn6g8IXXWC4GG42JbRGt4Rj/bVZYTCdAJ3j7Wt7RwM70zameIQUqdTyesXUPRNNH/FOioEtfp3/0zEm3apJ7uDcsY9+F4AKRQJ6kZQQ+pqq2cyw2PM4vgAyOB7G5tLUJnDuJhtF+r+8u/uFgnf5fxTr3NTzH+nCWEm3bVD5kWK/wRciQ20A3wwoGIgyMFyDESyz45FCe8bjNRhKDTlZhgZkFiExIQ0AJqpG/7/Y9o9T7yVGzfMpx9CBKHu7u8zzwwaKYPhJwPQBfplNIfW+iU22ZaJ0Qd4Qv+zxBGB5fnCPb3dOeCaX6BbZ3/0jbGzOW+szRk/248hGcB+raA+vmSe+WxFh1yO2tOYTIullfJQ3aNQ/rY4WWCA/gGFWZN3iFXX9FaoH+cQyhB51UUBIN7nmrZewXG9Wn4vM04dirgX5gNR2S7Pq90kgp7p0nYtGX0Fbvije6U5Cywvg==
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:VI1PR07MB6704.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(396003)(366004)(346002)(136003)(376002)(39860400002)(6666004)(316002)(4326008)(33656002)(956004)(66946007)(36756003)(52116002)(86362001)(66476007)(966005)(478600001)(2906002)(8936002)(66556008)(83380400001)(8676002)(87266011)(6486002)(186003)(26005)(2616005)(16526019)(5660300002)(53546011)(16576012); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData: 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
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-AuthSource: VI1PR07MB6704.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 15 Dec 2020 12:51:09.5248 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-Network-Message-Id: 9aa8e21c-5f5a-43dc-58f2-08d8a0f818cf
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: yp2ytfLflesLp1QUh1WGXSDQ3rczJp/SPf6W2hAjNp6hTETzlgXXPI+YwS0alGwNVFFTFVjcCF7F648aboyOkA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0701MB2223
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/KMTIowjYY-ZZXUzpx9ZTp_skso8>
Subject: Re: [TLS] [Last-Call] Last Call: <draft-ietf-tls-oldversions-deprecate-09.txt> (Deprecating TLSv1.0 and TLSv1.1) to Best Current Practice
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Dec 2020 12:51:17 -0000

On 14/12/2020 16:36, tom petch wrote:
>
> On 14/12/2020 14:53, Stephen Farrell wrote:
>>
>> Hi Tom,
>>
>> On 10/11/2020 11:33, Stephen Farrell wrote:
>>>
>>>
>>> On 10/11/2020 11:30, tom petch wrote:
>>>> Perhaps a second look at the algorithm
>>>> to work out why these got missed to get a fix on how many more there
>>>> may be.
>>>>
>>>
>>> Sure, that's reasonable. (Mightn't be today.)
>>
>> Just did that check by comparing [1] to the RFCs
>> referenced in the draft and best I can see only
>> 5953 and 6353 were missing in the end.
>>
>> I'd argue it's ok to add those without re-doing
>> the IETF LC as they were mentioned in early on,
>> in the LC, but of course that's the AD's call.
>>
>> I'm doing the edits for draft-10 now so it'll
>> pop out shortly.

Stephen, indeed, it had popped while I was replying to your e-mail.

I see RFC5953, RFC6353 have been added.  RFC5953 is obsoleted so should 
it be listed in 1.1 in the list of RFC already obsoleted, the one that 
start with RFC5101?

Tom Petch

> Stephen
>
> Thank you for checking. With those two being SNMP
> and having both DTLS and TLS I was thinking of
> conspiracy theories but no:-)
> I should see the announcement of the updated I-D
> and will check it when I do.
> Like you, I do not see the need for a further LC
> just for the addition of those two RFC,
>
> Tom Petch
>
>>
>> Cheers,
>> S.
>>
>> [1] https://datatracker.ietf.org/doc/rfc4347/referencedby/
>>
>>>
>>> Cheers,
>>> S.
>>>
>>> _______________________________________________
>>> TLS mailing list
>>> TLS@ietf.org
>>> https://www.ietf.org/mailman/listinfo/tls
>>>
>