Re: [TLS] [OPSEC] OpSec WGLC for draft-ietf-opsec-ns-impact

"Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com> Tue, 28 July 2020 16:11 UTC

Return-Path: <ncamwing@cisco.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F3BFE3A0E6C; Tue, 28 Jul 2020 09:11:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.62
X-Spam-Level:
X-Spam-Status: No, score=-9.62 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=iuchxUSN; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=E8cEDvFN
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5chq3J9x8oqW; Tue, 28 Jul 2020 09:11:33 -0700 (PDT)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 36FB43A0E67; Tue, 28 Jul 2020 09:11:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2908; q=dns/txt; s=iport; t=1595952692; x=1597162292; h=from:to:cc:subject:date:message-id:content-id: content-transfer-encoding:mime-version; bh=eiebskW+r1ArYdG76OFwhTu+sdGYLRW5DSi7N19SQfI=; b=iuchxUSN4P9ZaSI0zeNpJY9bAOHIBuKrIPKGjNZgprtoDTDz0h1xhHgt gZhkuLY945lLsEkuGFwqh3AN1bAaTREKR4RabDjXbauGfweMRezyDSlQY UdlrUONdToiquACL7PzYSWY35pDDLk9/W0LjZoDv3lYMHWEN4Dbg31qe2 E=;
IronPort-PHdr: 9a23:OS9SHRGwDSlnzpgQwf4Q1J1GYnJ96bzpIg4Y7IYmgLtSc6Oluo7vJ1Hb+e401gWbV5nQ7PRChuHK9avnXD9I7ZWAtSUEd5pBH18AhN4NlgMtSMiCFQXgLfHsYiB7eaYKVFJs83yhd0QAHsH4ag7Yvna16zgfEQm5Pg1wdaz5H4fIhJGx0Oa/s5TYfwRPgm+7ZrV/ZBW7pAncrI8Ym4xnf60w0RDO5HBPfrdb
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0A9BwDlTSBf/4ENJK1gHAEBAQEBAQcBARIBAQQEAQFAgUqBUiMuB29YLywKhCqDRgONMiWKAo0BgV6BQoERA1ULAQEBDAEBGAsKAgQBAYRMGYIJAiQ4EwIDAQELAQEFAQEBAgEGBG2FXAyFcQEBAQQBARALBhEMAQEsCwERAQgVAQQCERUCBB8GCxUSBAENBSKDBAGCSwMuAQ6kMQKBOYhhdoEygwEBAQWBR0FCgmkNC4IOAwaBDiqCbYNZgjOEBBqCAIERJwwQgk0+ghpCAQEDAYEUEgESASE/glczgi2SZpItkBZOCoJfiFiMI4R1Ax6Ce4lJkH6CJ5EVgQKKLoJhkgsCBAIEBQIOAQEFgWojZ3BwFTsqAYI+UBcCDY4eg3GFFIVCdDcCBgEHAQEDCXyOawGBEAEB
X-IronPort-AV: E=Sophos;i="5.75,406,1589241600"; d="scan'208";a="795192877"
Received: from alln-core-9.cisco.com ([173.36.13.129]) by rcdn-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 28 Jul 2020 16:11:12 +0000
Received: from XCH-RCD-003.cisco.com (xch-rcd-003.cisco.com [173.37.102.13]) by alln-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id 06SGBCn1015362 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 28 Jul 2020 16:11:12 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-RCD-003.cisco.com (173.37.102.13) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 28 Jul 2020 11:11:11 -0500
Received: from xhs-rcd-001.cisco.com (173.37.227.246) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 28 Jul 2020 11:11:11 -0500
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-001.cisco.com (173.37.227.246) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Tue, 28 Jul 2020 11:11:11 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dHwSuXiBcMM3th+JbNU7SVVmcDFNeqi5buN3pCxQi+VuuqtIfo1r6sfp14/YsGWVy1XVHdqV7BqX2eaCzxmHUS1XKwiFlfkfOrdr6qNnMCf8bjnzK+k2wPoMGpFHQgq7bi1NH2LVNfdIb3Cmtwf0AKTCzs9JKbb7DpKR7zuI0KVHGUhmKBEfwpb2KwYNXZufOdhHCcw0rdF8CNliGIoewJ7KYVgyaa8zRwi5PBy9WkyOMLMIgmNYRH0vVQ575AUG7N5/qnabncpWvLy2jx1U5INwlYBQUAuczRzkOMNLxvsWSTJI92qahioJ29OZ6vN5aNT4ZI2mzYHOj3rt0eBQoA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eiebskW+r1ArYdG76OFwhTu+sdGYLRW5DSi7N19SQfI=; b=kmQy7iJd2K3Ct8C1Qz9ZrFE3GvLnCmoQ4vFusyPyuBYor7AGvaS+jh8z290xzqN72Sio5YnFqHV6r9bNtVHtX7TQbTdyHBdOXnz45b1sv1aBuBy2kEJ5NWgZ6youWOUWzCH9gPalahxDPwEwZD46yuwgCGtJGd2lEfvdYMJ337TAU0GN4X/AjpptpWC5kA0RoJBITQ8XYZOJ/0yRJHkKvP3ZakSCIxLuSrR8lhfAoCUp1dDynw9v88NblkyROILpTPu+vwZ6PuiHa8NW+6BNMZkd51SGjYXP834Kofw9c4S3+6WHgVmEOcvxwzFZLdruVfxNa6GjteeFOwRD5AUlJw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eiebskW+r1ArYdG76OFwhTu+sdGYLRW5DSi7N19SQfI=; b=E8cEDvFNTIKN517MKNCA77dpJzhzSmBZ/vNS3rkbdEoL/6TyY66RVkX+xgS2s07XmTNppkLfIqszlItGrWP9DzRLkv2MlpM7PMBWQ4gowGIxOjPg6Wkh6Z5yNpmtuXrTObcEaDwljW/poJ99oKClr6Cx/CfCavqLjJv9JQ8M8KQ=
Received: from BY5PR11MB4070.namprd11.prod.outlook.com (2603:10b6:a03:181::16) by BY5PR11MB4088.namprd11.prod.outlook.com (2603:10b6:a03:185::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3216.25; Tue, 28 Jul 2020 16:11:10 +0000
Received: from BY5PR11MB4070.namprd11.prod.outlook.com ([fe80::e42f:216e:af3e:8ce5]) by BY5PR11MB4070.namprd11.prod.outlook.com ([fe80::e42f:216e:af3e:8ce5%7]) with mapi id 15.20.3216.033; Tue, 28 Jul 2020 16:11:10 +0000
From: "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com>
To: tom petch <ietfa@btconnect.com>, Jen Linkova <furry13@gmail.com>, opsec WG <opsec@ietf.org>
CC: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] [OPSEC] OpSec WGLC for draft-ietf-opsec-ns-impact
Thread-Index: AQHWZPm176lOtIepR0yla6OAMhA9wQ==
Date: Tue, 28 Jul 2020 16:11:10 +0000
Message-ID: <02491BC9-1909-4043-BB9A-1C23B8A8EB98@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.18.200713
authentication-results: btconnect.com; dkim=none (message not signed) header.d=none;btconnect.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [73.162.233.180]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: aae7eff3-a7a3-4a81-b92e-08d83310d7d8
x-ms-traffictypediagnostic: BY5PR11MB4088:
x-microsoft-antispam-prvs: <BY5PR11MB4088A1B3E0C39BF9985491FAD6730@BY5PR11MB4088.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:7691;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: ENQWjYu98F8Y+DcnKiZIjQujz+cr9MVGcPziaQ1Rk9Ulh7gkQTUFDQIAzddW3KZ6lT4PJzDL4Q0HEZZJoc3//NtowpQ1r64BczuWvNgHM/YJ3MDJXujAggCD/k2IaqCBq7kjKIMNglyUGgpXiwvVla7B+aPg+nLMC//rPXU8YelQgnXvXjKQdmMk/PcOkDCkfc+AAZ++tM2QK/N4i+uiPZND3u1z2pr6ljHrNQERNoolYWl+2d4KiYaL/YrqceqInOM3vpi4/5UHr7qSG6OVj2DXvQplNfGx1ZEsb75JGI9uRQsuR9ruqDER94KkTdP4MoI0ElvFaUzbnFn10OdJC+TK+oGkozA3fcXdP5/kAxZ6yoDMJK879obSO1pLBaZ2eQxIXiv9DOEFq/jG/K9c8Q==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4070.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(6029001)(4636009)(136003)(366004)(396003)(346002)(39860400002)(376002)(8676002)(8936002)(4326008)(6486002)(86362001)(6512007)(83380400001)(71200400001)(66476007)(66446008)(5660300002)(64756008)(76116006)(186003)(26005)(316002)(966005)(478600001)(33656002)(36756003)(2906002)(6506007)(296002)(110136005)(66946007)(66556008)(2616005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <5BE318F140FCD94A9E0A0B05153AEE24@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4070.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: aae7eff3-a7a3-4a81-b92e-08d83310d7d8
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Jul 2020 16:11:10.5104 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: urDUOcVgZmvaRlYtm4Y/I8U0V5CUWifLngAd5IisZIqKQfz5ZESzBJ3LMTbA5d4scGThK+YtUeOQ3J+ZnyAO6g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR11MB4088
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.13, xch-rcd-003.cisco.com
X-Outbound-Node: alln-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/KoIeiHInN48BxMDZJhyqq5hQUv8>
Subject: Re: [TLS] [OPSEC] OpSec WGLC for draft-ietf-opsec-ns-impact
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jul 2020 16:11:36 -0000

Hi Tom,
Yes apologies as the latest version included comment responses from Kathleen and Jason, but I omitted yours....which is coming soon.
Apologies for that omission, look for -02 coming soon....

    Nancy

On 7/28/20, 9:08 AM, "TLS on behalf of tom petch" <tls-bounces@ietf.org on behalf of ietfa@btconnect.com> wrote:

    From: OPSEC <opsec-bounces@ietf.org> on behalf of Jen Linkova <furry13@gmail.com>
    Sent: 28 July 2020 14:05
    
    This email starts the WG Last Call for draft-ietf-opsec-ns-impact ,
    
    Impact of TLS 1.3 to Operational Network Security Practices,
    
    https://datatracker.ietf.org/doc/draft-ietf-opsec-ns-impact/.
    
    Taking into account  IETF108, the WGLC is extended to 3 weeks and ends
    on Aug 18th, 23:59:59 UTC.
    
    Please review the document and express your support or concerns/comments.
    
    <tp>
    OPPOSE (yes, I am shouting)
    
    This is nowhere near ready and putting it forward so soon is ... well ludicrous comes to mind.
    
    After WG adoption, comments were made to which there was no acknowledgement, no response,  I was about to oppose the adoption of the other I-D from these authors on the grounds that until they respond to comments nothing else should happen because when they do there are more comments waiting to be aired.  I am still of that view.
    
    I do see that a revised I-D has just appeared in among the thousand or so I-D that appear around the time of an IETF meeting, a timing that I sometimes think is designed to let it slip through unnoticed.  Given all those other I-D - silly authors - it may be more than three weeks before I get my thoughts together.
    
    Tom Petch
    
    Thanks!
    
    --
    SY, Jen Linkova aka Furry on behalf of the OpSec Chairs.
    
    _______________________________________________
    OPSEC mailing list
    OPSEC@ietf.org
    https://www.ietf.org/mailman/listinfo/opsec
    
    _______________________________________________
    TLS mailing list
    TLS@ietf.org
    https://www.ietf.org/mailman/listinfo/tls