[TLS] Re: Working Group Last Call for TLS 1.2 is in Feature Freeze
"Salz, Rich" <rsalz@akamai.com> Tue, 10 December 2024 17:18 UTC
Return-Path: <rsalz@akamai.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 907D3C157927; Tue, 10 Dec 2024 09:18:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.25
X-Spam-Level:
X-Spam-Status: No, score=-2.25 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id akq49JjYHzpo; Tue, 10 Dec 2024 09:18:44 -0800 (PST)
Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) by ietfa.amsl.com (Postfix) with ESMTP id D2F14C1CAF34; Tue, 10 Dec 2024 09:18:43 -0800 (PST)
Received: from pps.filterd (m0122332.ppops.net [127.0.0.1]) by mx0a-00190b01.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 4BACjKSd017234; Tue, 10 Dec 2024 17:18:43 GMT
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h= content-type:date:from:in-reply-to:message-id:mime-version :references:subject:to; s=jan2016.eng; bh=DEvxg9ozeLX/bBbIGm/pm2 kLSVculOYN6juFaQvP7tE=; b=odbSsDnZ98tmDz9KnTV4ZmixIaIRYZfiO7hS2P TNSznPVftv5QP7kdYrQutM59dHmc2wEKVKGwyjt7e1wCxR5SNb05Q997+ZAvJlAy Ukr4ftVfYeODG2jrDWFYF2kF71Ob/K6iXrcV05M1lvybt77/NQBD8/VKjHvmoI/s dU0bMwQc8D9KuQcYJ418daDDcVrg8mhsPLnkHU4wgpGSsN9HNKuJEtmDaVu2dhr/ fA3cSt+WUW/qimDEIo3sAdsayqtNwRH834t3/yIEX3UhVaRVr8AK45LIxoRXXKvd V+u/QsAp45JvNd3kul0pAkECvsO135YqcUlPs+iXCirC0leQ==
Received: from prod-mail-ppoint8 (a72-247-45-34.deploy.static.akamaitechnologies.com [72.247.45.34] (may be forged)) by mx0a-00190b01.pphosted.com (PPS) with ESMTPS id 43cf9ruvd1-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 10 Dec 2024 17:18:43 +0000 (GMT)
Received: from pps.filterd (prod-mail-ppoint8.akamai.com [127.0.0.1]) by prod-mail-ppoint8.akamai.com (8.18.1.2/8.18.1.2) with ESMTP id 4BAFAlIr014735; Tue, 10 Dec 2024 12:18:42 -0500
Received: from email.msg.corp.akamai.com ([172.27.50.202]) by prod-mail-ppoint8.akamai.com (PPS) with ESMTPS id 43cjk114ua-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 10 Dec 2024 12:18:42 -0500
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) by ustx2ex-dag4mb3.msg.corp.akamai.com (172.27.50.202) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Tue, 10 Dec 2024 09:18:41 -0800
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) by ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) with mapi id 15.02.1544.011; Tue, 10 Dec 2024 09:18:41 -0800
From: "Salz, Rich" <rsalz@akamai.com>
To: Tim Hollebeek <tim.hollebeek=40digicert.com@dmarc.ietf.org>, 'TLS List' <tls@ietf.org>
Thread-Topic: [TLS] Re: Working Group Last Call for TLS 1.2 is in Feature Freeze
Thread-Index: AQHbRhsyS41tHkhttkKdt8nCY+rfLrLaA0AAgAXL2ICAAGFMAP//vBcAgABaNID//66BAA==
Date: Tue, 10 Dec 2024 17:18:41 +0000
Message-ID: <4ADCA7B5-D9BD-4E3B-AB9C-D49F24033E75@akamai.com>
References: <F98C87B7-B31D-4702-B694-0CB1A8FB38C5@sn3rd.com> <07fa01db461a$b2f05330$18d0f990$@gmail.com> <cc74d2fa-c452-4267-900f-41dee05dd9c6@tu-dresden.de> <88983EED-6BA2-425B-A125-AE32D5A55AE5@akamai.com> <f0968166-de61-440d-b0e6-30e9b5844e84@tu-dresden.de> <79400509-CE55-4539-915F-9F4A66822A38@akamai.com> <SN7PR14MB6492F2060E037E49F2484201833D2@SN7PR14MB6492.namprd14.prod.outlook.com>
In-Reply-To: <SN7PR14MB6492F2060E037E49F2484201833D2@SN7PR14MB6492.namprd14.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.91.24111613
x-originating-ip: [172.27.164.43]
Content-Type: multipart/alternative; boundary="_000_4ADCA7B5D9BD4E3BAB9CD49F24033E75akamaicom_"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1057,Hydra:6.0.680,FMLib:17.12.68.34 definitions=2024-12-10_10,2024-12-10_01,2024-11-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxscore=0 phishscore=0 bulkscore=0 spamscore=0 suspectscore=0 adultscore=0 malwarescore=0 mlxlogscore=711 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2411120000 definitions=main-2412100128
X-Proofpoint-GUID: GImefEDFO9RLXl1OlN0feNhyS4u0Vbo4
X-Proofpoint-ORIG-GUID: GImefEDFO9RLXl1OlN0feNhyS4u0Vbo4
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.60.29 definitions=2024-09-06_09,2024-09-06_01,2024-09-02_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 bulkscore=0 priorityscore=1501 adultscore=0 suspectscore=0 phishscore=0 impostorscore=0 malwarescore=0 lowpriorityscore=0 mlxlogscore=526 mlxscore=0 spamscore=0 clxscore=1011 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2411120000 definitions=main-2412100128
Message-ID-Hash: 4Z7SK3MD57CHCSNYVGBQ6NLVZNLTYIVW
X-Message-ID-Hash: 4Z7SK3MD57CHCSNYVGBQ6NLVZNLTYIVW
X-MailFrom: rsalz@akamai.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: Working Group Last Call for TLS 1.2 is in Feature Freeze
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/LZZgA7EaOI-O6DnOIZHKcAK4V4Q>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
The point of this draft was to go on the record (“it’s an RFC it must be true”) and say explicitly what the IETF will NOT be doing, and enforcing that by directing IANA (and the experts). Will this stop someone from re-using codepoints and backporting to their TLS 1.2 stack? Nope. It even work since TLS 1.3 handshake looks like TLS 1.2 :) We can’t prevent people from coloring outside the lines, but we can make it clear where the lines are. And I don’t see how we can do anything else, since the WG clearly has near-zero interest in saying “use this for TLS 1.2” I believe that not all the reasons for that are strictly technical, but I don’t care.
- [TLS] Re: Working Group Last Call for TLS 1.2 is … John Mattsson
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Valery Smyslov
- [TLS] Working Group Last Call for TLS 1.2 is in F… Sean Turner
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Rob Sayre
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Bas Westerbaan
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … John Mattsson
- [TLS] Re: Working Group Last Call for TLS 1.2 is … John Mattsson
- [TLS] Re: Working Group Last Call for TLS 1.2 is … David Benjamin
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Muhammad Usama Sardar
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Christopher Patton
- [TLS] Re: Working Group Last Call for TLS 1.2 is … John Mattsson
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Eric Rescorla
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Sean Turner
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Alicja Kario
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Yaron Sheffer
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Muhammad Usama Sardar
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Thom Wiggers
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Yaron Sheffer
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Alicja Kario
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Tim Hollebeek
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Yaron Sheffer
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Muhammad Usama Sardar
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Yaron Sheffer
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Sean Turner
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Sean Turner
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Sean Turner
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Sean Turner
- [TLS] Re: Working Group Last Call for TLS 1.2 is … Salz, Rich