IETF Logo Mail Archive

Re: [TLS] WGLC for draft-ietf-tls-cross-sni-resumption

Stephen Farrell <stephen.farrell@cs.tcd.ie> Mon, 19 July 2021 21:49 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE1983A0BF3 for <tls@ietfa.amsl.com>; Mon, 19 Jul 2021 14:49:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, MSGID_FROM_MTA_HEADER=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3uhU65VaNZEJ for <tls@ietfa.amsl.com>; Mon, 19 Jul 2021 14:49:42 -0700 (PDT)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80122.outbound.protection.outlook.com [40.107.8.122]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 639FA3A0BF5 for <tls@ietf.org>; Mon, 19 Jul 2021 14:49:42 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ReFhGuuMECwa8CfiWEZjkFaXQAElfPLy9tuTbmbEB6MFSOjq+PzIuyMU1PgbBnWnxO/LAmw2oQBmierF8XP0OocEnxboOAOykkIihI2z7lc6S9AGaIh/y2Ign2qwj4SEBN6NBvFWEpTkzzkYYF8IRr/WI8htaVbCyeu6T6CxRVs6vNaOYlb6JcrB4hhGdIqlV/FgF5pdS53nriVCrSov7ysSPkn4WlEINelcHuJ2oyqCUQc9Ay/MvPGQCeOkRwF5sHamVw89h/UjervHG5C2jbkCC0kJP5hXZ3H5tgV8Zipb5CJjwIMrtKfYYc2dOfq7VvD03F4EoTc27xouV9L60A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SepFJjhLcYWElTxMSCi4KdA4C4+GloOU/fcI6TP0xyk=; b=keUcG9Toy9RkRYG31lpcVeaP1UHj4eEUkufAux2SagKTbH7XVC7gWwGTNUN6y7ho/zWnmfIR3I5BpxCXMxyTIafz/BdBv0LYi1yBlMWPHJJXALQt/Woz2PbAFjONBZQeRWrf4QFqONgZkWviKxSGMiTB7kqQ68H27+vfTbdNVv94Q2prWwksfgE2SYC2aw6Ccto8CZoZje7cemV289s0SW+3y8ef9nVUkyq6KQusIOlmLRTm8GAACDwctChw/g5Xo4rl6c2HqnncyVWe9D2XxCg11J+ugPIYYxhJbLl+uIA1TZ7IEOod9+/bLToA5LdGB0vZC2isbqJaitw6vF2fzQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SepFJjhLcYWElTxMSCi4KdA4C4+GloOU/fcI6TP0xyk=; b=YFpKit8C28BkWNTVyXxFMuwKGxwuWjfBOO1tJF1IuRBPcznNoUw889PvM7MalNxSybWCrX/6polccmsaaaZ1TSrk6PDlyOYz0NbQkJxvOScx+ri8UXEFgZ1AFFrsI7pFvFLTnrJI4viPqpeobRoVqn99wLCsgHekn2rnuvSfCZ44I0PrhEGhHW/vbO1gCywd0ZpFxlT8cXGptpmppgmVdicl0W6IRSpCWVDYNE/pDLrr2Fl6gZ5Vvi2/gwIc/8hNSU0bLnCMcfSROMPDX+np677+6sjXrQNNFbGekPpmurBSbX2usCA6S+BRKfvt2FA66po1aTY2KLpI2Idf/h+3mw==
Authentication-Results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15) by DB6PR0201MB2088.eurprd02.prod.outlook.com (2603:10a6:4:42::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4331.21; Mon, 19 Jul 2021 21:49:33 +0000
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::4198:a9d1:7246:8272]) by DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::4198:a9d1:7246:8272%3]) with mapi id 15.20.4331.033; Mon, 19 Jul 2021 21:49:33 +0000
To: David Benjamin <davidben@chromium.org>
Cc: Ryan Sleevi <ryan-ietftls@sleevi.com>, "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>, "TLS@ietf.org" <tls@ietf.org>
References: <0ad354da-5300-4b48-8925-f7ab18cdf235@www.fastmail.com> <5D834B58-7A0C-4701-96EB-31663BC0C2DE@akamai.com> <2c7c53a8-cf47-f51d-f97b-f6cd5a712024@cs.tcd.ie> <CAErg=HE92wz3-aLDSfNWk_qJA35+V-euUvtW07HKA=B7CVB3iA@mail.gmail.com> <CAF8qwaDKScDihLVHTahVGqwZjU3U1OXwpsygR=SXMt_3rEOZpA@mail.gmail.com> <80e47f63-725f-ad39-5add-161e6e299fba@cs.tcd.ie> <CAF8qwaDzH30--4UE_hA3RHMfcw9V2Z4Hmx-vuQ6AJy3e6BiO3Q@mail.gmail.com> <9bff5f4d-e2ce-c046-5515-882b45079ef9@cs.tcd.ie> <CAF8qwaDudTerAU7AAh1ezvthDGKRZONzGU4fwf=1A4dikkC+Dw@mail.gmail.com> <0f461bf3-3fad-ff65-9f2a-b2be1832fe45@cs.tcd.ie> <CAF8qwaArW2POUkhLXN9HLmTZ19m_oFeW5d5OqCcjsq+zywRKcQ@mail.gmail.com> <177ef2b8-3ae3-2af8-1a37-5757c1656910@cs.tcd.ie> <CAF8qwaCShBG7DBkhogZzEufmTw-JnSALRvE-UKtCve5DhwzFdw@mail.gmail.com>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Message-ID: <77fd750c-eee5-7c48-96a5-9b8629fefd7d@cs.tcd.ie>
Date: Mon, 19 Jul 2021 22:49:32 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.11.0
In-Reply-To: <CAF8qwaCShBG7DBkhogZzEufmTw-JnSALRvE-UKtCve5DhwzFdw@mail.gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="gexGv6M6WsQhZyFYxIndE5CDswDCz8ZRP"
X-ClientProxiedBy: DB6PR07CA0066.eurprd07.prod.outlook.com (2603:10a6:6:2a::28) To DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from [10.244.2.119] (95.45.153.252) by DB6PR07CA0066.eurprd07.prod.outlook.com (2603:10a6:6:2a::28) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4352.10 via Frontend Transport; Mon, 19 Jul 2021 21:49:33 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 4ab95318-c8f3-407c-0fdc-08d94aff1859
X-MS-TrafficTypeDiagnostic: DB6PR0201MB2088:
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-Microsoft-Antispam-PRVS: <DB6PR0201MB2088C932400D559F8236D02FA8E19@DB6PR0201MB2088.eurprd02.prod.outlook.com>
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Oob-TLC-OOBClassifiers: OLM:3044;
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR02MB5113.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(346002)(39850400004)(376002)(136003)(366004)(396003)(33964004)(186003)(8676002)(6486002)(4326008)(786003)(54906003)(16576012)(316002)(31686004)(31696002)(38100700002)(36756003)(2906002)(21480400003)(26005)(8936002)(44832011)(5660300002)(86362001)(2616005)(956004)(66556008)(66476007)(478600001)(83380400001)(53546011)(66946007)(6916009)(235185007)(66616009)(43740500002)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 4ab95318-c8f3-407c-0fdc-08d94aff1859
X-MS-Exchange-CrossTenant-AuthSource: DB7PR02MB5113.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 19 Jul 2021 21:49:33.7130 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: gWxIKHw12czKHqOLpOzw82QgdBFFF94JlpjYFNYQflmHZOl5REJfGakhNHKtU50z
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0201MB2088
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/TiO5DWz2tCn5pi0V8Bis-VUBjIg>
Subject: Re: [TLS] WGLC for draft-ietf-tls-cross-sni-resumption
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Jul 2021 21:49:47 -0000

Hiya,

On 19/07/2021 22:43, David Benjamin wrote:
> No. I'm saying there is a need for text around resumption and privacy,
> whether or not we publish this draft. There is a copy of the text to
> address it in both documents. The text applies equally well to both, thus I
> am satisfied with how this draft addresses the concerns.

Ack.

> 
> It sounds like you disagree with this reasoning because you are unhappy
> with that text. 

I've not considered the text in 8446bis.

I'm against this draft entirely, as it adds to our problems
(IMO, but not yours).

> Thus: what do you think are the privacy rules for TLS
> resumption? An alternate suggestion of "don't publish the draft" does not
> work, because having resumption in form means we need to consider this.

Of course that suggestion "works." It'd mean that this new
potential tracking vector doesn't turn into an actual one.

(We may still likely need more text in 8446bis about
resumption but that's different - were it precisely same
there'd be no need for this draft at all.)

Cheers,
S.

v2.23.0 | Report a Bug | By Email