IETF Logo Mail Archive

Re: [TLS] Proposal: a minimal TLS 1.3 for HTTP/2

Martin Thomson <martin.thomson@gmail.com> Sat, 08 November 2014 05:08 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DAEFC1A0282 for <tls@ietfa.amsl.com>; Fri, 7 Nov 2014 21:08:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rj6aqRMvZrYb for <tls@ietfa.amsl.com>; Fri, 7 Nov 2014 21:08:48 -0800 (PST)
Received: from mail-lb0-x234.google.com (mail-lb0-x234.google.com [IPv6:2a00:1450:4010:c04::234]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D7FD91A026E for <tls@ietf.org>; Fri, 7 Nov 2014 21:08:47 -0800 (PST)
Received: by mail-lb0-f180.google.com with SMTP id u10so3691862lbd.11 for <tls@ietf.org>; Fri, 07 Nov 2014 21:08:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=TR50WU972U8ZAvUrdZNiLCpnZLMDCXWj5pLwgG4KPIU=; b=ixbbSXe7P/PXLa6HVpk8p6UuWn1f4U56BWiSQev8laNhRmDBUHbpkzYs2UxXx7bijb GbU7NxbEnMsA8A1WjiU0ryXqGuj9UON48Xo3K2YYn2qxMM95KuwmtfdZPgyHD2ikADrT eyphK7Utv0tkTFKflF9W+9LLGRcondAGvoqaPyjJG3HepG2XtP0reI8oPnuswpdB2KOL k+KOQRfN5B8ntDvqindcntdmd4MNnJUAX4ru3dmo4g5g7S0brMSKicF4iUbHo/vp2HF0 MIDzIrZJKgCZCjIl2DQrYbJ+8X9vq+ULrIifWn1zpNOjx09ZzZ9hVbzQo/ZjbI74nafW uMlA==
MIME-Version: 1.0
X-Received: by 10.112.200.34 with SMTP id jp2mr15215822lbc.1.1415423326090; Fri, 07 Nov 2014 21:08:46 -0800 (PST)
Received: by 10.25.215.134 with HTTP; Fri, 7 Nov 2014 21:08:46 -0800 (PST)
In-Reply-To: <201411060250.11408.davemgarrett@gmail.com>
References: <201411031651.09896.davemgarrett@gmail.com> <CC2553CF-3928-42A3-93A2-EE679EE49D9F@gmail.com> <201411060250.11408.davemgarrett@gmail.com>
Date: Fri, 07 Nov 2014 21:08:46 -0800
Message-ID: <CABkgnnU2Pz7V8uFbZjWwXhAM-3Nn8N7aZ+ue6nKAc5J3Y_MuNg@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: Dave Garrett <davemgarrett@gmail.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/P2pJLZ6v07hjs1H7ezVaczm5ATw
Cc: "TLS@ietf.org (tls@ietf.org)" <tls@ietf.org>
Subject: Re: [TLS] Proposal: a minimal TLS 1.3 for HTTP/2
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Nov 2014 05:08:50 -0000

On 5 November 2014 23:50, Dave Garrett <davemgarrett@gmail.com> wrote:
> I should
> note that this is already something Mozilla is implementing with respect to RC4.


We're only doing that because it aligns the incentives correctly.
Sites using RC4 get to continue doing so (for now), but are penalized
for doing so.

Requiring Greg's proposed fallback causes almost all browser users to
be penalized for attempting to use HTTP/2.  Very few sites currently
use a TLS profile that is even potentially HTTP/2 compatible, so those
users are the ones who pay.

I don't like creating externalities like this.

v2.30.2 | Report a Bug | By Email | System Status