Re: [TLS] [Last-Call] Last Call: <draft-ietf-tls-oldversions-deprecate-09.txt> (Deprecating TLSv1.0 and TLSv1.1) to Best Current Practice

Andrew Campling <andrew.campling@419.consulting> Fri, 04 December 2020 16:26 UTC

Return-Path: <andrew.campling@419.consulting>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F10D3A0DEC; Fri, 4 Dec 2020 08:26:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=netorgft5189650.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uYo1j2zUWRsH; Fri, 4 Dec 2020 08:26:50 -0800 (PST)
Received: from GBR01-LO2-obe.outbound.protection.outlook.com (mail-eopbgr100087.outbound.protection.outlook.com [40.107.10.87]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 070433A0DBE; Fri, 4 Dec 2020 08:26:49 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Sg/F++7sfLdwd1lXbAnctCSjm7Vi/zEOCwvWLpzt3KdqGH+W6UzmYSp3USXCGiCfmwKG8w/FJjFeXwDov2f9BBcc0JlvjW8lAQS4zHc0YG5uRd5DNXAbJTZH8/N3lwVG7aS2iIMqng3kNebOVmVfKxPrmmYwF0NATKjRAxyypB/gIhFrNkDnb0PE2nIGkNNG0veysTvcHPfT63+P5tz6YGhce7YVJ/KbdtkcqS2/eD0rz+ZQbOR58bXzEq8bkCq0lgkLZ5RPoAPghtlnP3S3vvoUZRqgs5uwL8PBOpuSQ6+CNkkyH/ZLqi1oAcb10RMFBwh8ha0477VVXfyLtfTf7g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nKzJhI9peFw2bGfmiLGeSYFI1lLariOCceYQG/WiqXk=; b=O3ExKCL77eIzmxJj51sSbmVob7tQGx5LDdDSAXw1mU4LqyI+rqk2XaneA1kRdRNVVwf8oJmAgJh1jhc7B/Se6GYHRURLhwNEmIf1IcDh/Id+Xqdzt3RePgjEe342P60hnfWlNb96Z95HPdYELxiYAaf0V3seG3uneNvZZgUFquRiKn2MznzDJnqDqOTJ2Csv5PIcvLgmNZ2Oshm+wcWulwyTeZLluLB10xfFOv/5VvmLuw0LfJOs0GymJ0Q6PG31/tpN2bs/VO6et3Am03oCPs/Dnsgg2RMRUIiYnR7/NQkYrWF/GzO6qeNiUo+LoFzXZnCaB0SPZVY32pE3qHm4KQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=419.consulting; dmarc=pass action=none header.from=419.consulting; dkim=pass header.d=419.consulting; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=NETORGFT5189650.onmicrosoft.com; s=selector1-NETORGFT5189650-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nKzJhI9peFw2bGfmiLGeSYFI1lLariOCceYQG/WiqXk=; b=o/6MilFn6qP6632+ZjVFa9i5l8PGsL4oHcLIwoIMIqoxL3OK0rQIufaVWuyerve1WVKWRBwY8b3JRDWFYU2zaSjwFBTMHDzw+pMwcSJkUzrz2vEpEXy6XGc8b36EWbnF/Lwvwdx0FXiFRAFSDU/6XM0gSQz2Ee4tYjKvrDe+eXk=
Received: from LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:71::15) by LNXP265MB0779.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:1a::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3611.23; Fri, 4 Dec 2020 16:26:47 +0000
Received: from LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM ([fe80::4074:aae:262:a640]) by LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM ([fe80::4074:aae:262:a640%7]) with mapi id 15.20.3632.021; Fri, 4 Dec 2020 16:26:47 +0000
From: Andrew Campling <andrew.campling@419.consulting>
To: "BRUNGARD, DEBORAH A" <db3546@att.com>, "Ackermann, Michael" <MAckermann@bcbsm.com>, Rob Sayre <sayrer@gmail.com>
CC: Eliot Lear <lear=40cisco.com@dmarc.ietf.org>, Peter Gutmann <pgut001@cs.auckland.ac.nz>, "STARK, BARBARA H" <bs7652@att.com>, Watson Ladd <watsonbladd@gmail.com>, "draft-ietf-tls-oldversions-deprecate@ietf.org" <draft-ietf-tls-oldversions-deprecate@ietf.org>, "tls@ietf.org" <tls@ietf.org>
Thread-Topic: Re: [TLS] [Last-Call] Last Call: <draft-ietf-tls-oldversions-deprecate-09.txt> (Deprecating TLSv1.0 and TLSv1.1) to Best Current Practice
Thread-Index: AdbKWJL4ezNLieyLSMOedJGJPQ3lEA==
Date: Fri, 4 Dec 2020 16:26:47 +0000
Message-ID: <LO2P265MB05736A51640F92E3FCFDA1EBC2F10@LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: att.com; dkim=none (message not signed) header.d=none;att.com; dmarc=none action=none header.from=419.consulting;
x-originating-ip: [81.141.78.193]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: cebdc32f-5b90-4643-e876-08d89871655d
x-ms-traffictypediagnostic: LNXP265MB0779:
x-microsoft-antispam-prvs: <LNXP265MB0779E64CA6C66BBF04DE16E8C2F10@LNXP265MB0779.GBRP265.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: m0K8ibKm3V3frfVq4+Zyci/7G1VoJl3yObYwqNT9US0m8cgl13OpG5XkzBN19ylIs5Gfg859xOuBDmm+KXLacOIepJgKRT0yTJ5CsroLbKLCp3yb08N/08WDgh7Jjs5J9r67KsJpH03jgOMV7y4OyRooe0BTKecmf1gj+mNbHSCEDSsmYIxzVvxdZbtJNwcpImdY/69yhaN7DJ8SOH4F/xzKwM/mDJr08lhDVx5/riwzlmfBOi+w9MQCTT/klT7UF4y9ySNJaJLscBJptuJK9qfYPwL20JzCV+HJzBVRISnivS3k9zVj0SxAbRMuKvOu7olwgOmZKIJHPT5xWfTtd3M07FJwWk7Cyg58tXFN3Srk+8usv2L/G5WomakqRETB
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(366004)(396003)(376002)(39830400003)(346002)(136003)(7696005)(5660300002)(64756008)(8936002)(6506007)(8676002)(66946007)(2906002)(66476007)(86362001)(76116006)(33656002)(30864003)(83380400001)(110136005)(66556008)(186003)(966005)(26005)(55016002)(52536014)(71200400001)(316002)(54906003)(4326008)(66446008)(478600001)(9686003)(44832011)(46492008); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?us-ascii?Q?zcRULUxuTD/nPzQlZ6uJsTdXbGiu20PEEKxvimrDWEE2JSUYP6aXWM9ohZrz?= =?us-ascii?Q?bGzkLMX7KTI1VY7ilYnZKtyv0kGx0xGJpUTvlyO9/Xm39DE8vXtAYXuiY9XX?= =?us-ascii?Q?aRKqFAS2eZGkU3KWpz0NRMxA6sAIUYSi8py7Q+Kud87cDgZBCD3SD1e6gTvf?= =?us-ascii?Q?BboKg0RuNfr2rFO5swq2Vjejyl5utvT+aj/ll16X18SFJZVPtZxMQu4ppzk1?= =?us-ascii?Q?uNmcrzAsu5dXdd7ZH6b02anY3FiZaPmP+CjAJO08sLbhC+fllHiaK4ppA2dw?= =?us-ascii?Q?zsfiHcB9XVjaIntSuWnj9ZsZ7s3fgM5p2LqrQ9U/qZ1+25n33fldz399A+eO?= =?us-ascii?Q?cJlnhNaR2PNkqf4EiO/8Eypus0HYNZFPcmI7IHT66/B9uBwEfFiGc8I2ATom?= =?us-ascii?Q?LViSC8Clf5ZZpy3qlGBz7AkAillB8Ph42u1Ps6PXgJ6UmVH19uyb58VUTw/P?= =?us-ascii?Q?+DQwhYIz0/T9L7UDKtit8Sf0A6DFZB93EHw/4u76jcAbwtmjgq2cIm0DpUKz?= =?us-ascii?Q?Tr6409krcrOdJAdpwTC58pYrNw5N3qLY0ETazz1AnRM/kDHRQuUGuwyc20eD?= =?us-ascii?Q?YHviJ5ps/TGToeSuTfE9H0qTTcytM0/rr1Jlbk3qhbyY6rVVMio7DRJsy1c1?= =?us-ascii?Q?kQVyqzQBH2j5oi8FDnD3sb9kBWcvAOCnlU3l5c/ud8j9d1wfjLYHwdd+vp1u?= =?us-ascii?Q?+dZSQimngk8wnulDH1GsBRWiPWV8WLmvwh16jypWQHhZAy48Gi36Fh8B5mWn?= =?us-ascii?Q?DWJFqb8gj6I8gJLTVQalFRj5sUmrSYXz+yrpYy6CGr2Fw+ec12AwnEwKDy9l?= =?us-ascii?Q?e8T+ghA3Wda6vCwub/HWt7uxCfcz4cuOszvyOjFeGOowEB74zwTEds83ypMd?= =?us-ascii?Q?qiQHblvVKR3mi2aafpoir86t6eh90I+N2Y12k21+PY2fAPXt4yv+/vMolTK9?= =?us-ascii?Q?ItRVRyySjNWY62N7vBE4M0Ru/u7lwdhDgG5IFMSclQs=3D?=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_LO2P265MB05736A51640F92E3FCFDA1EBC2F10LO2P265MB0573GBRP_"
MIME-Version: 1.0
X-OriginatorOrg: 419.consulting
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: LO2P265MB0573.GBRP265.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: cebdc32f-5b90-4643-e876-08d89871655d
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Dec 2020 16:26:47.1365 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9c2ced3e-7522-4755-87dc-f983abc66ec3
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: SBeNRzrDhnSyfaqrHs2/n2cHOcetV0WSb6z7yak8r6oxz9AvIsGY/NO2vHg4gvhT/fvV0eIJFV4pnj9XciA01au7bRFnAGmvFYH5L1g7kAg=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LNXP265MB0779
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/9_PB2Hf5dllXXDVDwti3zps-qNg>
Subject: Re: [TLS] [Last-Call] Last Call: <draft-ietf-tls-oldversions-deprecate-09.txt> (Deprecating TLSv1.0 and TLSv1.1) to Best Current Practice
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Dec 2020 16:26:52 -0000

On Fri, 4 Dec 2020 14:20 BRUNGARD, DEBORAH A <db3546@att.com<mailto:db3546@att.com>> wrote:

> As Stephen said, couldn?t resist, first cup of coffee-
>
> That?s always the question of the day- what is an operator, vendor, researcher?
>
> I know ?academia? on this list that have more operational experience than some in operator communities. We know in big companies there are so many people - but not necessary interested in ietf. And people switch - few are ?lifetime? at a company. To me, no hats, just want more input.
>
> My point (I think Mike also) is simply to get more involved, earlier if possible in our rinse cycle to RFC.
>
> Deborah


That does seem to be entirely consistent with the sentiments expressed in RFC 8890.

Andrew