Re: [TLS] progressing draft-ietf-tls-md5-sha1-deprecate
Daniel Migault <mglt.ietf@gmail.com> Fri, 03 September 2021 12:00 UTC
Return-Path: <mglt.ietf@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 43C163A1B9A for <tls@ietfa.amsl.com>; Fri, 3 Sep 2021 05:00:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t4YH4Et93Ziq for <tls@ietfa.amsl.com>; Fri, 3 Sep 2021 05:00:15 -0700 (PDT)
Received: from mail-qk1-x735.google.com (mail-qk1-x735.google.com [IPv6:2607:f8b0:4864:20::735]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51E053A1B97 for <tls@ietf.org>; Fri, 3 Sep 2021 05:00:15 -0700 (PDT)
Received: by mail-qk1-x735.google.com with SMTP id t190so5452368qke.7 for <tls@ietf.org>; Fri, 03 Sep 2021 05:00:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=vIW+sXxbSUYkC9xhPbSoacMIcFVGtIE4OXBpt8z9uuA=; b=NtSrxk5FLLQBsc2J5QhtxKeoVE9skiy9hGsCC3QVyWF6QolATaMHm4+1TbEee1Jgfm rZylHNkBIl7/nl8OoS9R++E1SYrsGzcUnXNHYCG5Xom7Ri/58XTmybBpbclaHhGbNPq/ mJqJBqlDOaETrrfs0CfCWG7Bf+HhBTLFd9iemEuFUpTfKiNN/DTLI6BdBYamKfQZmGR/ AG4QCxjYs5Qv4nCLvXjCEJenqvfofLpSDUosXAFja//2leth/isht9VhyxyKD+TKZjx/ eQFSFp6cx8szCX+a+hlyqzyBq+1NsZTJsqysXb8fo0C+GQZkK1PEn58tamWtdXtFUnrz 6Axg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=vIW+sXxbSUYkC9xhPbSoacMIcFVGtIE4OXBpt8z9uuA=; b=MokecPO/wIc4AvqFWMpjkNoSmvQk0Gc90lg16/r+drpGUHATmqFUEJKfasWxlYNL1M b4JPpgiek1qQVSzDCfAiqy3EmyVu/KHgBCFWLiYUcefIIf7DJkQB7p0ZiGFfUqdKgwDb asLS2d/YuVtPc5+Tt3cdnos4twn1Bj0o/Y0/Zox/MkbwcGuQxtQo/sVtKk5nI68erxeA XiCyukFQX9X4N8IOdZQowvMe2eyYX055hd4hzggzqq1zU8rgQbW0VCgu9ivfvQJAQZCg eN1Se39G5U+gkAxhBe0DW7TDsTvFE6qZu7tVeCdKD5yCYDZGVMLcU6uKqbqdkKLXmn/Q AVzQ==
X-Gm-Message-State: AOAM5322ozbPZ8ngrPtk5kpzFVxw3XlOeyTc5vFqhctWxyDhhF5dlfNo HG1hZyz5b7k0mVlvFKZRahLKqN01FSHILZMyjNQ=
X-Google-Smtp-Source: ABdhPJxKFDM6sWSFdMIKU3mROfa8FsafLcN8UCNt0zxeZUkDRXsDk3dGDjjXDPzPesNqPDL/VneSkR1tIPzBVWtH9WY=
X-Received: by 2002:a37:314:: with SMTP id 20mr2972798qkd.104.1630670413638; Fri, 03 Sep 2021 05:00:13 -0700 (PDT)
MIME-Version: 1.0
References: <2E45B809-B25D-43F6-88A4-D89AA2231C3B@sn3rd.com> <8FBB5DCD-322B-4CB2-9962-1232BE6B719E@sn3rd.com>
In-Reply-To: <8FBB5DCD-322B-4CB2-9962-1232BE6B719E@sn3rd.com>
From: Daniel Migault <mglt.ietf@gmail.com>
Date: Fri, 03 Sep 2021 08:00:02 -0400
Message-ID: <CADZyTkmj2CiW46NVJZkKECO=HzdqLviskysRixW+5E8H3xv5Dg@mail.gmail.com>
To: Sean Turner <sean@sn3rd.com>
Cc: TLS List <tls@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000c02ef905cb160a16"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/QipykQVkVC3VQO3dertrEmA-0eM>
Subject: Re: [TLS] progressing draft-ietf-tls-md5-sha1-deprecate
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Sep 2021 12:00:21 -0000
Looks good to me however this still represents in my opinion an update to 5246 -- which I think is also what we want. Yours, Daniel On Thu, Sep 2, 2021 at 10:37 PM Sean Turner <sean@sn3rd.com> wrote: > Just a reminder that sometime tomorrow I will ask for these PRs to be > merged and a new version of the I-D be produced so that we can make > progress. > > spt > > > On Aug 27, 2021, at 10:58, Sean Turner <sean@sn3rd.com> wrote: > > > > Hi! While address the IoT Directorate comments from IETF LC, some > addition comments have been received. I would like to address these new > comments and get the I-D in the hands of the iESG. There were three set of > comments: > > > > 1) Based on Daniels and David Benjamin’s reviews, the I-D is not as > clear as it could be. The end result of deprecating MD5 and SHA1 is that > signature_algorithms is always included; we should just say that. Chris has > submitted the following PR to address this: > > https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/pull/19 > > You will notice that the PR removes section 6 of the I-D; it is unclear > how much utility there is in updating the NOTE. > > > > We are looking to merge this PR at the end of next week so please submit > any comments before then. > > > > 2) Hannes suggested that we remove the 7525 updates text now that > 7525bis is underway. I submitted this issue to capture the issue: > > https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/issues/17 > > Peter Saint-Andre (one of the 7525bis authors) has filled the following > issue to incorporate the text from our I-D: > > https://github.com/yaronf/I-D/issues/245 > > Yaron has already merged the PR: > > https://github.com/yaronf/I-D/pull/248 > > Chris has also kindly submitted this PR to remove the 7525bis-related > text from “our" I-D: > > https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/pull/18 > > > > Again, we are looking to merge this PR at the end of next week so please > submit any comments before then. > > > > 3) Hannes also had some editorial suggestions, that I created issues for: > > https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/issues/16 > > https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/issues/15 > > https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/issues/14 > > These are addressed in this PR: > > https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/pull/20 > > > > These ought to all be non-controversial, so we will merge them sometime > next week. > > > > Cheers, > > spt (as Shepherd) > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls > -- Daniel Migault Ericsson
- [TLS] progressing draft-ietf-tls-md5-sha1-depreca… Sean Turner
- Re: [TLS] progressing draft-ietf-tls-md5-sha1-dep… Salz, Rich
- Re: [TLS] progressing draft-ietf-tls-md5-sha1-dep… Sean Turner
- Re: [TLS] progressing draft-ietf-tls-md5-sha1-dep… Daniel Migault
- Re: [TLS] progressing draft-ietf-tls-md5-sha1-dep… Sean Turner