[TLS] Robert Wilton's No Objection on draft-ietf-tls-external-psk-guidance-04: (with COMMENT)
Robert Wilton via Datatracker <noreply@ietf.org> Wed, 15 December 2021 14:15 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: tls@ietf.org
Delivered-To: tls@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 641E73A07A6; Wed, 15 Dec 2021 06:15:08 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Robert Wilton via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-tls-external-psk-guidance@ietf.org, tls-chairs@ietf.org, tls@ietf.org, sean@sn3rd.com, sean@sn3rd.com
X-Test-IDTracker: no
X-IETF-IDTracker: 7.41.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Robert Wilton <rwilton@cisco.com>
Message-ID: <163957770839.18002.4766104797106835819@ietfa.amsl.com>
Date: Wed, 15 Dec 2021 06:15:08 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/MTOsPlRDJmNIaCJHKg8t7uCrao0>
Subject: [TLS] Robert Wilton's No Objection on draft-ietf-tls-external-psk-guidance-04: (with COMMENT)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Dec 2021 14:15:09 -0000
Robert Wilton has entered the following ballot position for draft-ietf-tls-external-psk-guidance-04: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/blog/handling-iesg-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-tls-external-psk-guidance/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Thanks for this document. I find it always useful, and enlightening, when this sort of guidance is published. One minor nit/question on 7. Privacy Considerations TLS does little to keep PSK identity information private. For example, an adversary learns information about the external PSK or its identifier by virtue of it appearing in cleartext in a ClientHello. I wasn't sure what "it" in the last sentence refers to. I would potentially read that as being the external PSK, and hence the external PSK appears in cleartext in a ClientHello. I don't know TLS, but this seemed surprising. Hence you may want to consider whether this sentence should be tweaked to make it clearer. Thanks, Rob
- [TLS] Robert Wilton's No Objection on draft-ietf-… Robert Wilton via Datatracker