Re: [TLS] draft-green-tls-static-dh-in-tls13-01

"Roland Dobbins" <rdobbins@arbor.net> Mon, 17 July 2017 10:49 UTC

Return-Path: <rdobbins@arbor.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 00AAF1319B4 for <tls@ietfa.amsl.com>; Mon, 17 Jul 2017 03:49:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.921
X-Spam-Level:
X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=thescout.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7A2-X9Luefos for <tls@ietfa.amsl.com>; Mon, 17 Jul 2017 03:49:55 -0700 (PDT)
Received: from NAM03-CO1-obe.outbound.protection.outlook.com (mail-co1nam03on0128.outbound.protection.outlook.com [104.47.40.128]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2527E120725 for <tls@ietf.org>; Mon, 17 Jul 2017 03:49:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=thescout.onmicrosoft.com; s=selector1-arbor-net; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=QQ57Hy38bj74FBtk9ryQATaz0oYzeiJEXpOg3RIV20U=; b=iSLcvr7xo0vMBxtRHwNNsaKqDeN+rm6wajg+HK0OXFvcEFohfjFftnw8tuTS0Ksfggh8iyOd4R3CXwbiNTK+Ov9RRcauKgKzpWNcS6+rGbTD8bGtNAlUxqKWa2Z8HjV9H3I98GJaWaFIV0W1ie40t2lrzuHR7/Q0+UzyD0F22ao=
Authentication-Results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=arbor.net;
Received: from [172.16.1.3] (88.208.89.131) by CY1PR0101MB1033.prod.exchangelabs.com (10.160.225.13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1261.13; Mon, 17 Jul 2017 10:49:50 +0000
From: "Roland Dobbins" <rdobbins@arbor.net>
To: "Kathleen Moriarty" <kathleen.moriarty.ietf@gmail.com>
Cc: "Daniel Kahn Gillmor" <dkg@fifthhorseman.net>, "IETF TLS" <tls@ietf.org>
Date: Mon, 17 Jul 2017 12:49:40 +0200
Message-ID: <9CE7FE22-4D72-46EC-88EE-87BCEB467F61@arbor.net>
In-Reply-To: <CAHbuEH6LOp6ywFyEKciVemzYje6xXhbYDVq-YvMWFc3DP+1+pw@mail.gmail.com>
References: <CAPCANN-xgf3auqy+pFfL6VO5GpEsCCHYkROAwiB1u=8a4yj+Fg@mail.gmail.com> <CAL02cgRJeauV9NQ2OrGK1ocQtg-M2tbWm2+5HUc4-Wc8KC3vxQ@mail.gmail.com> <71E07F32-230F-447C-B85B-9B3B4146D386@vigilsec.com> <39bad3e9-2e17-30f6-48a7-a035d449dce7@cs.tcd.ie> <CAJU8_nXBFkpncFDy4QFnd6hFpC7oOZn-F1-EuBC2vk3Y6QKq3A@mail.gmail.com> <f0554055-cdd3-a78c-8ab1-e84f9b624fda@cs.tcd.ie> <A0BEC2E3-8CF5-433D-BA77-E8474A2C922A@vigilsec.com> <87k23arzac.fsf@fifthhorseman.net> <C4968C13-3229-43C2-B29B-EC9C01D76D06@arbor.net> <20170715085544.y3hozzzpqzrfacd7@LK-Perkele-VII> <87379yrlqp.fsf@fifthhorseman.net> <31358CD2-0913-4CA5-88A2-89AB8C4FBF88@arbor.net> <CAHbuEH6LOp6ywFyEKciVemzYje6xXhbYDVq-YvMWFc3DP+1+pw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; format=flowed
X-Mailer: MailMate (1.9.6r5347)
X-Originating-IP: [88.208.89.131]
X-ClientProxiedBy: DB6PR07CA0062.eurprd07.prod.outlook.com (10.175.237.152) To CY1PR0101MB1033.prod.exchangelabs.com (10.160.225.13)
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: ce3b9025-dfb6-422b-2cd2-08d4cd018d96
X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(300000503095)(300135400095)(201703131423075)(201703031133081)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:CY1PR0101MB1033;
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0101MB1033; 3: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
X-MS-TrafficTypeDiagnostic: CY1PR0101MB1033:
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0101MB1033; 25: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
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0101MB1033; 31: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
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0101MB1033; 20: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
X-Exchange-Antispam-Report-Test: UriScan:(236129657087228)(247924648384137);
X-Microsoft-Antispam-PRVS: <CY1PR0101MB10334605BEA64ED0F6A4963BCAA00@CY1PR0101MB1033.prod.exchangelabs.com>
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(2401047)(5005006)(8121501046)(2017060910075)(93006095)(93001095)(10201501046)(3002001)(100000703101)(100105400095)(6041248)(20161123558100)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123560025)(20161123562025)(20161123555025)(20161123564025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:CY1PR0101MB1033; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:CY1PR0101MB1033;
X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; CY1PR0101MB1033; 4:d6JhOe4gvvpmwU1QztAT3bert5CL0vGmfqa5yVSy?= =?us-ascii?Q?Y0uLQvk1FkRfzdGjcpiiyytTVbkGbZPX/aPleU0RRwwkhMX2+UZS4vMJ2rTu?= =?us-ascii?Q?bVJMRXLvAiFKVpvufGL/CjktqRo7VOae39VVnEaIBR5p5Z9Amr/5QM3Ctg2k?= =?us-ascii?Q?TNoNczgMUZuvOl8G2/HgwFnQfMxpKpfWYfVMSiu6J+ygAtAaMNW7JNrHx/wf?= =?us-ascii?Q?Q5I5aY8fHlRlCBuv4ykDr/rXFxYlhSXuoTOEZJ7umAlPwT8dten6YQci1Amy?= =?us-ascii?Q?X6z/IfT6PsTAT9Mn2RScMMz3GRowbw3K5+OvtPFVz1wltxcKUgQZjB8+vWB2?= =?us-ascii?Q?pk4yJLRISrHFXD2l16fv3BUZLcTsWtQYsC3fp7zmimmoWxBTRjN52lnFZ6uV?= =?us-ascii?Q?oOt3QOoB0bfWmHpfn02uyR+Ddg5q2xxwCJM5IENzNfnFZ/yRojdfA854ZkRp?= =?us-ascii?Q?dh4okdqftEKmCvJIAoD+UCSPffJi03hUKSnqtli3PtG379wBbst6Ekmv6Bh1?= =?us-ascii?Q?Yz9cZJFniXocer5USAFAO7coBYxOBbckKe1f/dy4Vx2IUoNOSiea7R/7dP/E?= =?us-ascii?Q?+3JPEOk+dQsRT8+WgUX0+3D/j3jhO66J7GyDh90ThP5tngY+NQ5mFK3lOoPh?= =?us-ascii?Q?uz1sfinfxc0r3/mlBo1OwLTJf4Y+ICmAwTSK4paPE/dGOGQ2XYnkPMv+EBTT?= =?us-ascii?Q?+mYnQ83xzT3tMSw+LXym906CIOihC7aqPTW7TuAWC0RRoscRuLcm0RvsHAyY?= =?us-ascii?Q?9YZgS9W4TdbUyXvIwv74kESRsuQJa4Opy0BHUN24M1K01tVo02wg3tQCEgp/?= =?us-ascii?Q?bYAdii6v76j9h4vWtGXdQq1F3uBnWenZmn7I8HADUIPcNMbtKxLSsSCp8T39?= =?us-ascii?Q?WPfRzAY0g11rz7IHhNllHFY2CR8PLK/JbUZQazsucQUfqNGj9GurhLDGWUoS?= =?us-ascii?Q?rZQGgZ3eLyejkGtJEk+/KReR7sEN2OP8sX9aqYdFqMsR9MYwmZtoDuHSzis2?= =?us-ascii?Q?uQ44AnRg/qJTtk3HfR46DZlC9dDvno2xawdhefU84O+j3qNyu6MoBJvm0bhJ?= =?us-ascii?Q?IVXMImKpEOI/o6dKVlpPBISjyM3ooaS2SnjmYB1YLlzIpbGj4/Bzket/sc2t?= =?us-ascii?Q?bJHtKC1sg0AGq1cEscXCcizOOcWfLIqxLl/8GGHzVU/cXcPWxruL6VXQG0ML?= =?us-ascii?Q?Vmur0aOjHFL4B2A+8F4Rq+KK9JgrnjpDMeDWomNlhO9L6Qk/BTwtYvDUmg8G?= =?us-ascii?Q?vfGCnNOfRLm38vohfYY=3D?=
X-Forefront-PRVS: 0371762FE7
X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10019020)(7370300001)(4630300001)(6009001)(6049001)(39400400002)(39840400002)(39450400003)(39850400002)(39410400002)(24454002)(50466002)(8676002)(5660300001)(86362001)(2950100002)(2906002)(83716003)(53936002)(6666003)(6916009)(478600001)(81166006)(77096006)(66066001)(82746002)(6486002)(229853002)(4326008)(50226002)(47776003)(5003940100001)(90366009)(76176999)(189998001)(50986999)(53546010)(25786009)(7350300001)(7736002)(42186005)(33656002)(6116002)(36756003)(54906002)(6246003)(93886004)(3846002)(305945005)(110136004)(38730400002)(230783001); DIR:OUT; SFP:1102; SCL:1; SRVR:CY1PR0101MB1033; H:[172.16.1.3]; FPR:; SPF:None; MLV:sfv; LANG:en;
X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; CY1PR0101MB1033; 23:d0TKikJzhksU7NaRT2ZBp82iW6y2Dw3ygKQNS1T?= =?us-ascii?Q?D4Ah27zFDkfPejIHPmgGLw/9lYtIvQYn+kS+wSVDVHg09ZhsQo1AhguX0Rx1?= =?us-ascii?Q?sOjJqwpXZ8I5+Bn8XHHYnVb9Vi0YN71M5f/doguJ38c8avifVA6gkHPHwV9E?= =?us-ascii?Q?/LyNDpVg5cDLqzAXFKxGECaSNqu9jh4UTpWUzDz8Ax8hurePu2Cz4LV8Fs9B?= =?us-ascii?Q?Czylbnrv+ZAVs3U9IQlmARFfuB4F6gaKMa+M7amL5q/VWA6Tf3vNV/PPG+d7?= =?us-ascii?Q?XgXsD+xGdvhnoNUV8ZNicjQ7hMD+XA3YRAZU0uxVj6U0eLREAMS5SrXE01aU?= =?us-ascii?Q?4bP0TsTNU2Y2AYnelBg5OH2akVKAxedVNvM8Q3aVgjymdEKucYOh3/B5inta?= =?us-ascii?Q?bORif2fsssaGmQIDZL65meWvEamZ90fEMSmDkWqQ0xFzVIt1O02VN5cWOQg7?= =?us-ascii?Q?gF4EnX/0k0rpSTV/Laqvv5gtYTzNwMaXxzz0RLucGEHw8qrv7LhdLwNglFyy?= =?us-ascii?Q?KF8BpaH+twJLz6XWMzULynX2BejIDsJcfRaZCqyIkFBPMlqiaFhc4tFmxUDQ?= =?us-ascii?Q?Rw4vp1ohFDN5oYGEOSkvSifmEVjzYFb8MZ1taaDxo4neKukZPLvJynNqlBdt?= =?us-ascii?Q?VSvKlQOXcPiP186apV1VIdngH13RxnCMioM4ggOvqCxpMMxCNJNJmf9kLUzK?= =?us-ascii?Q?ZedIT6e0zJ27k7wC0RNdplDA7GMbueCJZsdsORCmjDBBVuY0faORqcKSptQY?= =?us-ascii?Q?/hreVs89wB2MvZ60AMP00Cc+H3bBz7a7fnzTn69K+iW0vfgfCCz6BIT5Ckgg?= =?us-ascii?Q?4256b2SjMWG9crlJKdX5/Azs0qiI9vBeFMT5l4sq3k9EPNCDrQR/o+aUVIH4?= =?us-ascii?Q?gNiCqC9dAS6AZ7v0ZLxmpG9PrQEBRbgF2tneVIcI00QoIaCt0YzU1P4gUreQ?= =?us-ascii?Q?qO5YI9sTp8/aLXcFyiFmWR4GbZRMD7bZJtv7bJSFRXBz52eHvmJ84XFH0zUz?= =?us-ascii?Q?T7zUPsNiuvwD/g08kIbR5RBzVLwrujsQzLSPx2p5ifk9Ip4NMhb4dzQFSHLA?= =?us-ascii?Q?AlrRqNPEt/+fam5LRdJWK/Q0RaadbsknchMbHmSUMUl7mJ2WtvG8uxUdQGrL?= =?us-ascii?Q?4s4aSf8QPSxcZwYWmhqRBGY0fxnrxrjXbQ74EAXi0Ih++puRFpi+P/SK0nSJ?= =?us-ascii?Q?ZrUS2yTa2GxTSZ184SPxo0RSPuVax+jCTg/LnPYAuftu9fUOdi2kMP5er3gJ?= =?us-ascii?Q?aTGmNakay7zXgWgGVGATN+sPEfODf3eBF6JDtb4TS?=
X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; CY1PR0101MB1033; 6:36+RbMv0KgKYDiP/JPTmL9Wnf+YS99Nq1Za4n1Kd?= =?us-ascii?Q?N2iRKptdHjgfHw3rOcGcsQdf3osbDs0GBmnxou1HurQSO0V6FRmdMlEn1TzF?= =?us-ascii?Q?U4+W20jcsy6vS9xPm+nzhBQkyHMbwApRAJi0mMRVMeGSi9gtQ8WfgNrI8Tl2?= =?us-ascii?Q?eJd13khCh2/VU3Cc91URbEwkkvsgoV6c0cJKhNQhh9ALvhILiw/15bNMgoGm?= =?us-ascii?Q?0g3O22xgUIGhcm0lyXE7NZ77Wr2vLT9OghDu+P8DWYO2O7yf9F7wEFWjVZ7i?= =?us-ascii?Q?iTiX5KugPaJ7cAIHLadMIH67NzW2tF1CDeTnhVR5JegQDiRRILCSBQ6rqQK/?= =?us-ascii?Q?4cDjqzKYumEMoedtG2kbavYeYm4mkwY9Axkj9BP1ebjuyUfNSFC75FTB6VPw?= =?us-ascii?Q?cIEVy2j+uiA7NrEKr6ODGhgwZ4OWq+LREspKXrx1DXeizP7cFvdTcbxzG+b4?= =?us-ascii?Q?YTVuJm0WAjMRZO8YGjYhpSz/qrcc4ol7eR5Z5ZkrjIFRoh+B7toTNj0SuGbk?= =?us-ascii?Q?LsyMuMmn0TKhkR7YcbgPex2CT1EM2DQSiDDPZlmve7tqVMyFhJIn0kN3ArRg?= =?us-ascii?Q?9sxyHbkBEiC4deyY3zYTp/2HszO71Dsl/S4PTI507UWHyc2VZ9CpbhkDzdxZ?= =?us-ascii?Q?X93ITZjjNBEHhDRL4oNX/cc2SMY5BBm9z9I0L1EIhqtmcsCfiNIxUHITtjs0?= =?us-ascii?Q?fU1MNb+dC+tnjOgCtkM3n/uveWLFSqb/w92qms3gxZUyjIUjJYbdQIlXY0zr?= =?us-ascii?Q?7xgx/oN8l+MIRWA6YSQWFUP/2AKZfaGPh97i2AeRXxA/GPJUWQ4wqYo84g00?= =?us-ascii?Q?WbVfy34ot042WvXoV1aPnZOJAXLlhHz9q7dLD2pYzD2Gdd7W+rCgIK/D9TEa?= =?us-ascii?Q?YY1tTjeqDhn3lXT8DC/AMsPr5D8XAl7GqRqz6pfUkCpfyaDZBtwR5swsTAoW?= =?us-ascii?Q?sUx43nJIxLCWIIOo41xK/KeO7BjMbLeJ0zUApiyCI3RhSqm8DWHjZWjwnsOo?= =?us-ascii?Q?C1A=3D?=
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0101MB1033; 5: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; 24:9n947zEJXaM+lAelrI2J4sktdLY6wxdMdqWeyD3l8z+LV7bkExrGJpIPJ4QI7rVbjUhXNW+zp9WeXz8ltVaqGj9CFy/c8HJ/Z1JTSxoBT4c=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0101MB1033; 7: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
X-OriginatorOrg: arbor.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 17 Jul 2017 10:49:50.9081 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR0101MB1033
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/M1nFKrYD25CGPhUMyYgaTR04MBA>
Subject: Re: [TLS] draft-green-tls-static-dh-in-tls13-01
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Jul 2017 10:49:57 -0000

On 15 Jul 2017, at 18:18, Kathleen Moriarty wrote:

> When I have done this in the past in environments I've managed, I
> always used a one way cable (receive only), set up the interface for
> receive only, and then use the same protection mechanism offered by
> the switch.

Yes!  Back in the old days, when hubs were a thing, I used those for 
this purpose, with the appropriate connections diked out.

I still carry around a small GigE switch with SPAN capabilities, just in 
case.

;>

-----------------------------------
Roland Dobbins <rdobbins@arbor.net>;