IETF Logo Mail Archive

[TLS] Re: 【Reply to the comments after the presentation in Montreal】RE: Re: FW: New Version Notification for draft-wang-tls-service-affinity-00.txt

Aijun Wang <wangaijun@tsinghua.org.cn> Fri, 30 January 2026 13:25 UTC

Return-Path: <wangaijun@tsinghua.org.cn>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 1017BAF72669; Fri, 30 Jan 2026 05:25:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pQG5Zlxjkqua; Fri, 30 Jan 2026 05:25:55 -0800 (PST)
Received: from mail-m49197.qiye.163.com (mail-m49197.qiye.163.com [45.254.49.197]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id A8BA8AF72662; Fri, 30 Jan 2026 05:25:53 -0800 (PST)
Received: from smtpclient.apple (unknown [107.173.37.66]) by smtp.qiye.163.com (Hmail) with ESMTP id 3293c16a5; Fri, 30 Jan 2026 21:25:46 +0800 (GMT+08:00)
Content-Type: multipart/alternative; boundary="Apple-Mail-2D1E96D6-8755-4FD1-8343-283B56C5CC96"
Content-Transfer-Encoding: 7bit
From: Aijun Wang <wangaijun@tsinghua.org.cn>
Mime-Version: 1.0 (1.0)
Message-Id: <82D144C4-DD53-403F-9D20-6CFC1E77D22E@tsinghua.org.cn>
Date: Fri, 30 Jan 2026 21:25:32 +0800
To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>
X-Mailer: iPhone Mail (23C71)
X-HM-Tid: 0a9c0f14c62103a2kunm35d535e612c86f
X-HM-MType: 10
X-HM-Spam-Status: e1kfGhgUHx5ZQUpXWQgPGg8OCBgUHx5ZQUlOS1dZFg8aDwILHllBWSg2Ly tZV1koWUFKTEtLSjdXWS1ZQUlXWQ8JGhUIEh9ZQVkaHUsYVh9MTRhIQ01DGU0eSVYeHw5VEwETFh oSFyQUDg9ZV1kYEgtZQVlKS0xVSkxIVUhMVU1NWVdZFhoPEhUdFFlBWU9LSFVKS0lCQ0NMVUpLS1 VLWQY+
Message-ID-Hash: X233DXOECHKDZYDNYRYHYPFUS7YXTYUQ
X-Message-ID-Hash: X233DXOECHKDZYDNYRYHYPFUS7YXTYUQ
X-MailFrom: wangaijun@tsinghua.org.cn
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Aijun Wang <wangaijun@tsinghua.org.cn>, tls@ietf.org, draft-wang-tls-service-affinity@ietf.org, Mohit Sahni <msahni@paloaltonetworks.com>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: 【Reply to the comments after the presentation in Montreal】RE: Re: FW: New Version Notification for draft-wang-tls-service-affinity-00.txt
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/MCE8r7JdvHUztW85-WzyFOk29Dw>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

Hi, Usama:

We will refine the draft in the coming days which will try to address your comments.

Aijun Wang
China Telecom


Aijun Wang
China Telecom
> On Jan 30, 2026, at 19:09, Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de> wrote:
> 
> On 30.01.26 09:50, Aijun Wang wrote:
>> Thanks for your endorsement to implement it at TLS layer.
> Well, I NEVER endorsed it to be done at TLS layer. As I said clearly, you have to defend that yourself. I shared some preliminary working that -- I hope -- will help you move forward. Until I say explicitly that I have evaluated both options, please don't take anything for granted.
>> 
>> As your suggestion, if TLS 1.3 has no explicit session identifier, we can utilize the implicit one, for example, PSK, as the identification of the corresponding session.
>>  
>> The idea of this draft is actually very straightforward:
>> 1)  Notify the client securely another address
>> 2)  Start one new TLS session which can utilize the PSK of the previous session(then skip the negotiation process for the new session).
>> 3)  Keep the application unnoticed, or application agnostic.
> While the idea may be straightforward for you, the draft is unfortunately not straightforward for me. There is no clear description of problem statement, motivation, threat model and desired security goals. I requested you to add authentic references in the draft but I don't see any change. As far as the protocol diagram is concerned, I have requested you at least 3 times to move the protocol to TLS 1.3 but nothing has changed in the draft.
> Without these requested inputs, I am unable to help you any further. Sorry!
> -Usama

v2.46.0 | Report a Bug | By Email | System Status