IETF Logo Mail Archive

Re: [TLS] Call for adoption of draft-thomson-tls-keylogfile

Andrei Popov <Andrei.Popov@microsoft.com> Mon, 28 November 2022 19:02 UTC

Return-Path: <Andrei.Popov@microsoft.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3FEEEC1526E7 for <tls@ietfa.amsl.com>; Mon, 28 Nov 2022 11:02:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.899
X-Spam-Level:
X-Spam-Status: No, score=-6.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R5ZunfZrXNeN for <tls@ietfa.amsl.com>; Mon, 28 Nov 2022 11:02:27 -0800 (PST)
Received: from NAM06-BL2-obe.outbound.protection.outlook.com (mail-bl2nam06on2113.outbound.protection.outlook.com [40.107.65.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5DE2C14EB1E for <tls@ietf.org>; Mon, 28 Nov 2022 11:02:23 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BJXRg2RjcvWlp7nKJqhH+8WK/EcInjHSlrjEt3Qdrd0tY7uNJKQg7pETNpqi4/gMl8nxiMGvU4iP4ZA/uMzP+Y9OuAx0ZFCMvfMRD0sJ8qa1wzZFGU9C7OI83bC3yXw5NXCQnVu5Tq4hG7JkqQQ178UDkDxwt2tRwmxALZI/OJFqlHq4rfcsdQHYKt3LU8FOJe4ix5H9d8bwaJHX5TOytrNXeNqCCVsREgYeCQNwm61RmUcoBb+ukbPW7twxzUpMEzowGKRDad49/6fmJTeUM3/Wkwungx7Xpazi/r+P2UGNuRXhQ9zf+NsJkP5zoXEVHTAayymQcgSknkPKMUKHVA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=h2zU8W5UoBP6+O1crDiDDQPUCQ9aGePTlCltrfB64q8=; b=ItENwWgCbPl6o0iZ+tAChZcsiOpBDKFuCQpJNXvOKSjuK8pJRUcgHlZaKsRt7pMOZ8u4i1jBra67ruOVUo+knQyK5gxG+RelkE1KENxPaSXkaay0OFSIhvSPmakRBpoPDX7sZGMPHrBcGZOcamezdCNImjRDfVUPrZAk1L/QAxhaEl8zxYTQm72+Wmic1F79qBAFNPXS/RyUORRPUNmBeVVBnJCqTL0PWs38jQU2p38995MuJ7zqtZrA7RoBJ3pYmiPG9ooaQIc3W5+h1JotJWA0mtur4iygY3Wrly/KOpZJrmXuxaciLihp1UmAoETeIyM5fNSgGMu5hNm7rMZabg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
Received: from BY5PR00MB0675.namprd00.prod.outlook.com (2603:10b6:a03:208::8) by DS1PEPF0000B07B.namprd00.prod.outlook.com (2603:10b6:2c:400::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5875.0; Mon, 28 Nov 2022 19:02:20 +0000
Received: from BY5PR00MB0675.namprd00.prod.outlook.com ([fe80::b1e3:80e7:3451:8397]) by BY5PR00MB0675.namprd00.prod.outlook.com ([fe80::b1e3:80e7:3451:8397%3]) with mapi id 15.20.5914.000; Mon, 28 Nov 2022 19:02:20 +0000
From: Andrei Popov <Andrei.Popov@microsoft.com>
To: "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>, Sean Turner <sean@sn3rd.com>, TLS List <tls@ietf.org>
Thread-Topic: [TLS] Call for adoption of draft-thomson-tls-keylogfile
Thread-Index: AQHZA1rk9+dges3mAkmdeRt1VmHLq65UsKZwgAAAaSA=
Date: Mon, 28 Nov 2022 19:02:20 +0000
Message-ID: <BY5PR00MB06758713E06DFE8167B2FF5F8C139@BY5PR00MB0675.namprd00.prod.outlook.com>
References: <15D5BB25-508F-42E3-B843-BCB81B668355@sn3rd.com> <9FB98E17-8580-4B23-AA1D-D29739E924AD@akamai.com> <BY5PR00MB067585D07C38C2A3739F848B8C139@BY5PR00MB0675.namprd00.prod.outlook.com>
In-Reply-To: <BY5PR00MB067585D07C38C2A3739F848B8C139@BY5PR00MB0675.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=ef547621-cd3a-4592-a946-c04b42f5bcbe; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2022-11-28T19:00:27Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BY5PR00MB0675:EE_|DS1PEPF0000B07B:EE_
x-ms-office365-filtering-correlation-id: f2bd81f6-58d0-41f9-daf1-08dad17313a8
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR00MB0675.namprd00.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(39860400002)(346002)(366004)(396003)(136003)(376002)(451199015)(33656002)(82950400001)(122000001)(38100700002)(86362001)(53546011)(38070700005)(82960400001)(66946007)(52536014)(76116006)(7696005)(478600001)(6506007)(64756008)(71200400001)(316002)(8936002)(10290500003)(966005)(8990500004)(66556008)(8676002)(41300700001)(2906002)(55016003)(66446008)(83380400001)(5660300002)(66476007)(186003)(110136005)(9686003)(2940100002)(26005); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR00MB0675.namprd00.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f2bd81f6-58d0-41f9-daf1-08dad17313a8
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Nov 2022 19:02:20.7219 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tbW2qJoAluFtmi6OadPgWluJH2H8HLqjwgjIxUeIOWEnNEo3zHk0vYeO+LqwdgIMoPkudj2dEZANE2tBHmmr2A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DS1PEPF0000B07B
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/UPnK5m8fM3XwAuRpeJ2ck8e21wM>
Subject: Re: [TLS] Call for adoption of draft-thomson-tls-keylogfile
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Nov 2022 19:02:32 -0000

Corrected typo inline.

-----Original Message-----
From: Andrei Popov 
Sent: Monday, November 28, 2022 11:02 AM
To: 'Salz, Rich' <rsalz=40akamai.com@dmarc.ietf.org>; Sean Turner <sean@sn3rd.com>; TLS List <tls@ietf.org>
Subject: RE: [TLS] Call for adoption of draft-thomson-tls-keylogfile

I oppose adoption of draft-thomson-tls-keylogfile. The stated goal was to find a permanent, discoverable location for this document, other than NSS project's repository. Perhaps it's fine to create an RFC for this purpose, but then I'd argue that it should be an Informational RFC.

Standards-track RFC that promotes the export of TLS secrets in clear-text sends the wrong message, can (and will) be used to push TLS stack vendors to implement this.

Cheers,

Andrei

-----Original Message-----
From: TLS <tls-bounces@ietf.org> On Behalf Of Salz, Rich
Sent: Monday, November 28, 2022 10:54 AM
To: Sean Turner <sean@sn3rd.com>; TLS List <tls@ietf.org>
Subject: [EXTERNAL] Re: [TLS] Call for adoption of draft-thomson-tls-keylogfile

I support adoption.

I assume the wireshark folk(s), etc., will review ...

_______________________________________________
TLS mailing list
TLS@ietf.org
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Ftls&data=05%7C01%7CAndrei.Popov%40microsoft.com%7Ce5d4a41309dd44fe5e2108dad172043a%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C638052584901610518%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000%7C%7C%7C&sdata=ffuQE0lqf5IzkYWzizCPKXA4lEHU6e9Nh5kJ4gwd998%3D&reserved=0

v2.23.0 | Report a Bug | By Email