[TLS] AD review of draft-ietf-tls-sslv3-diediedie-02

Stephen Farrell <stephen.farrell@cs.tcd.ie> Mon, 16 March 2015 23:20 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8D7201ACD29 for <tls@ietfa.amsl.com>; Mon, 16 Mar 2015 16:20:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0OH_zVdcaWGZ for <tls@ietfa.amsl.com>; Mon, 16 Mar 2015 16:20:49 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2B2BE1ACD21 for <tls@ietf.org>; Mon, 16 Mar 2015 16:20:49 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id C8F75BE5D for <tls@ietf.org>; Mon, 16 Mar 2015 23:20:47 +0000 (GMT)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ylUrsbBSz8Db for <tls@ietf.org>; Mon, 16 Mar 2015 23:20:46 +0000 (GMT)
Received: from [10.87.48.73] (unknown [86.46.20.71]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id BF1BBBE53 for <tls@ietf.org>; Mon, 16 Mar 2015 23:20:46 +0000 (GMT)
Message-ID: <5507654E.3040402@cs.tcd.ie>
Date: Mon, 16 Mar 2015 23:20:46 +0000
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.5.0
MIME-Version: 1.0
To: "tls@ietf.org" <tls@ietf.org>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/KgHED49VtURxRM6Lwod0eWsjiSk>
Subject: [TLS] AD review of draft-ietf-tls-sslv3-diediedie-02
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Mar 2015 23:20:52 -0000

Hiya,

I got the publication request for this a couple of weeks
ago. Sorry for being slow. (#include <usualexcuses.h>)

Good to (start to) see the back of this, thanks.

I've started IETF LC as I only had nits to note. The
announcement should pop out soonish.

Those nits are:

- ID nits sez you should say in the abstract that you're
updating 5246 and that prohibiting-rc4 is now RFC 7465.
It also wants you to add the usual 2119 boilerplate.
I noted those in the LC text so presumably we can fix 'em
later if needed.

- abstract: (philosophical nit:-) is "no longer secure"
correct - I guess it was never secure, it's just we've now
discovered exactly how and why.  The same point arises in
the intero, in that ssl2 is "no longer considered secure" -
I think you mean "sufficiently secure" in both cases.

Those can be fixed during/after IETF LC if need be.

Cheers,
S.