Re: [TLS] Call for adoption of draft-vvv-tls-cross-sni-resumption

Martin Thomson <mt@lowentropy.net> Tue, 10 November 2020 04:50 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 836A53A0C96 for <tls@ietfa.amsl.com>; Mon, 9 Nov 2020 20:50:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=VQZG+OV8; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=pft323KM
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6vlNaC9pFcWv for <tls@ietfa.amsl.com>; Mon, 9 Nov 2020 20:50:51 -0800 (PST)
Received: from out3-smtp.messagingengine.com (out3-smtp.messagingengine.com [66.111.4.27]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 23E373A0C92 for <tls@ietf.org>; Mon, 9 Nov 2020 20:50:51 -0800 (PST)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 67D7A5C0228 for <tls@ietf.org>; Mon, 9 Nov 2020 23:50:50 -0500 (EST)
Received: from imap10 ([10.202.2.60]) by compute1.internal (MEProxy); Mon, 09 Nov 2020 23:50:50 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :subject:content-type; s=fm3; bh=CCwk3rVjaIvETRYkqUty73ye4/3+Mfo Z6iqV51IMHKM=; b=VQZG+OV8Vak4dt10p5uoYpSD+/Xj8TaKgzxPUotVoYcB67y uuy6hPMK+c0ZFlQGOzrzUngLEf8+3gIS+zhqrt3Ai6dTqp9KxtUKe2FG5qSG9FsK U2wYt2hZiFjI9fVI1Hvpji4zS3b39zUckeWqa2Lx1NiAHa0UFYAePzSOlt2Dm3+s 8ql7HHevjTKMB9U7VCUCbeFujDD75Gi/IgoDcyENsT2rvNEiSvJHSRd2ULvq9dmF p+3tn1hvMoR+DWZX7NotaW3hhTNutGugTU+YOqQkOclS1AfgVRUMDkA+QaVIJXx8 ADa/jWV52DR55lU1PsA0A9YWm61R0UzuSxImFHg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=CCwk3r VjaIvETRYkqUty73ye4/3+MfoZ6iqV51IMHKM=; b=pft323KMGRYwqYKtdIKwV1 UOkequfaEkjM/gJojJ3tztunC7yXxIjt7HOQaBiPA6Ysx7ybXowvLbUt4OfKLGqp YGM3QNHszDS70yDXvy+HqZviLxPUnWrRepjXlMvGfzBz4guR+xOjppdT2zE4S8b4 zRfPlapkNkJj9ZAR5wIDNWH6c7WzT6MibR4dwAF7uAOFiZksLq/mw9z9NocMIn0j m+1qBJ7oYyIYM2oZCGn0YU5ygUjiWjdx5bq6vGk0mhjsAJ+S8l2RSQPsHosQNQjo D4mh/HJSndJolzP+d0e+6HNed7+J35wXE5kyEziEoeXqxZfL+mBEY49ftV/OoF0A ==
X-ME-Sender: <xms:KhyqXyDpuWW9evtSuCX4iVju47nn4okWirFmgaW9FGSYiQlYqHCMFQ> <xme:KhyqX8geEUlHY6jE77N5gI8xwIuvSfN8hYUppmk3ZRh37PzHtkHskYnkGbOHvL1ye RCSOpn9qttjn0d15Tw>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedujedrudduiedgjeekucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefofgggkfgjfhffhffvufgtsehttd ertderredtnecuhfhrohhmpedfofgrrhhtihhnucfvhhhomhhsohhnfdcuoehmtheslhho figvnhhtrhhophihrdhnvghtqeenucggtffrrghtthgvrhhnpefhiedttdeviefhjeejgf evfeeuudfggfekveekheeugeegleevkeevkedthfeuieenucffohhmrghinhepihgvthhf rdhorhhgnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomh epmhhtsehlohifvghnthhrohhphidrnhgvth
X-ME-Proxy: <xmx:KhyqX1kjskWqX5wp0sodzQY1bxEuINiMIjH068HTGMx54HWjF3PMFw> <xmx:KhyqXwxvisF-v9nilxWts3Ma9SaPXTckVvLmaXTc6ymAK5sCs5TsYw> <xmx:KhyqX3TUCct-8qXr88Mvpm1J0cmfkPeKlyuPUqViBnH6KnWIeHjEKA> <xmx:KhyqX-dXsrLITuXOsNsI73eRwCSvC8Zb7IoQqMqrtUTK3uZaoNSFBA>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 1496A20373; Mon, 9 Nov 2020 23:50:50 -0500 (EST)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.3.0-570-gba0a262-fm-20201106.001-gba0a2623
Mime-Version: 1.0
Message-Id: <9c0beec7-1f07-4919-a488-b06a39354d0f@www.fastmail.com>
In-Reply-To: <CAOgPGoATi+jFy53x5W4T6ai=xjH4VufhWaoABT5g_w=_72N8HA@mail.gmail.com>
References: <CAOgPGoATi+jFy53x5W4T6ai=xjH4VufhWaoABT5g_w=_72N8HA@mail.gmail.com>
Date: Tue, 10 Nov 2020 15:50:29 +1100
From: "Martin Thomson" <mt@lowentropy.net>
To: tls@ietf.org
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/RfibJ6-mPVM_YaVSF6zmizGZpog>
Subject: Re: [TLS] Call for adoption of draft-vvv-tls-cross-sni-resumption
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Nov 2020 04:50:53 -0000

I've no objection to adopting this, though I will note that it is likely of minimal use in the browser context due to the move to isolated storage (which includes tickets).  The potential value for cross-origin connections on the same page exists, but it would be good to understand whether the advantages seen are significant enough to justify the effort and complication involved.

Thus, the draft needs to include privacy considerations, particularly regarding cross-origin tracking.  I am also of the opinion that it should use flags, but that would depend on changes to the flags draft.

On Tue, Nov 10, 2020, at 14:44, Joseph Salowey wrote:
>  
> Based on interest and support expressed at IETF 108, this email starts 
> the call for adoption of draft-vvv-tls-cross-sni-resumption. The draft 
> can be found here:
> 
> 
> 
>    https://tools.ietf.org/html/draft-vvv-tls-cross-sni-resumption-00
> 
> 
> 
> This adoption call will run until November 30, 2020. Please indicate 
> whether or not you would like to see this draft adopted. Note that this 
> is an adoption call for the draft as a starting point towards solving 
> the problem of resumption across SNI values. The final mechanism may 
> certainly change depending on related efforts, e.g., 
> draft-ietf-tls-tlsflags.
> 
> 
> 
> Thanks,
> 
> 
> 
> Sean, Chris and Joe
> 
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls
>