Re: [TLS] WGLC for "Deprecating TLSv1.0 and TLSv1.1"

"Martin Thomson" <mt@lowentropy.net> Sun, 28 April 2019 23:27 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2943012010D for <tls@ietfa.amsl.com>; Sun, 28 Apr 2019 16:27:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=pzZGowru; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=7oDUc/e2
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UUE9IHhK680k for <tls@ietfa.amsl.com>; Sun, 28 Apr 2019 16:26:57 -0700 (PDT)
Received: from out5-smtp.messagingengine.com (out5-smtp.messagingengine.com [66.111.4.29]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D4B33120058 for <tls@ietf.org>; Sun, 28 Apr 2019 16:26:57 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 5E416210D8 for <tls@ietf.org>; Sun, 28 Apr 2019 19:26:56 -0400 (EDT)
Received: from imap2 ([10.202.2.52]) by compute1.internal (MEProxy); Sun, 28 Apr 2019 19:26:56 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :subject:content-type; s=fm2; bh=rBOPbmCBuVZWlHXicw4SjL0p62U7ypU iawA+Y7GdGNY=; b=pzZGowruaHbC1Fg4LJMgXCTIXWszKUwTYv7Nu1Le0Q50TPf 5ruuE93Jm8j373/3y20gb2Vl3DGfbaLdRwV4gj3bhMVt8JuLANiIp/uTdYBk04x1 QmLvSYx4d0fp+WksmlA6TT8E9XGAgxPoMt+dk0EokmUtLccX/qkxV8u04Z8WSaX6 rwcpiX0ULz8iw/Gcbqfaqw0X0JX6w7JbZUe/bG/H7PY9+6RV9PdUp17KxqVz09AT 5fy065AFOpzK5BGiscfa1wWEP3P0uaY0TzcujWH/AXFOysmJDShch29SVs7XjPNN wsstr1jbfejtjmozLgviCTRqV2OkA+ykgzZwjHg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=rBOPbm CBuVZWlHXicw4SjL0p62U7ypUiawA+Y7GdGNY=; b=7oDUc/e2fGhMyFu3IRt/SD aROlsBtH7/ht/yMBbloi/Z6L8ns7TT6HRp1aaeOuHwcRLu6g0FnBVkg3/L4gmBOg aK9sUuuC8p2+bCSLcC6c+8qlDuG5Ea3OyHEUg0m3q9fbpk/QU5ZxcetMWi8rUbTQ /5iqtCm2pfhJpXP7AenMiKTIoUCnm5QWDHqpFjJACf7g19R6pDNXn/QOnWI+MEDw FMMb1ewq4ImB95UFXNZi/6/ym+RX/SAyeNUHiq423B7s5CiocVVak3xpfTvwI6d6 ddzC3Zhjh+Elr6xsZKCndzrZDXdaHP0wzWspNZfhLAlQTEUWyg2wWGx0fg1NS4xA ==
X-ME-Sender: <xms:vzbGXAQkOWhzigB_NJCcWexAJOX8xi7_yqP9sVQPgBk_DBVxlNQewA>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduuddriedugddukecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecunecujfgurhepofgfggfkjghffffhvffutgesthdtre dtreertdenucfhrhhomhepfdforghrthhinhcuvfhhohhmshhonhdfuceomhhtsehlohif vghnthhrohhphidrnhgvtheqnecurfgrrhgrmhepmhgrihhlfhhrohhmpehmtheslhhofi gvnhhtrhhophihrdhnvghtnecuvehluhhsthgvrhfuihiivgeptd
X-ME-Proxy: <xmx:vzbGXMQr5kEaOBVlPYjWy9CNJ5immkeT0ityrHHR175q9-aYpx8b-w> <xmx:vzbGXErW_qA4lRNSesV8_TMDfB_Sig1KJWdULqWkfbp0mmMgQMvRYQ> <xmx:vzbGXEAFpgr4t2w6l9x8f9hi8Pn0nCrrB-YL6GxwpCgQGsJPriBZZA> <xmx:wDbGXGpCAL6SmXJcOV9uVCkZ1jmvjR5Rq4zHvIXCk5W-iIz77lrtcw>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 5FBE07C199; Sun, 28 Apr 2019 19:26:55 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.1.6-444-g755619f-fmstable-20190423v1
Mime-Version: 1.0
Message-Id: <7d37f7ca-e253-4c95-9cf7-2d16b0b6a0aa@www.fastmail.com>
In-Reply-To: <D08B793B-3FE2-48A1-8ADD-C55C47300683@dukhovni.org>
References: <28511b10-8f6a-4394-95a9-5188130f7b58@www.fastmail.com> <2EF7433E-DB94-497F-80D7-2A060097261B@dukhovni.org> <CADZyTkkJ63uq-Uukp00XAn+vFs6JtsNXF7stK=wbJpOvNBSs9g@mail.gmail.com> <5C3C015B-88B9-4502-861B-C59120B2F151@akamai.com> <D08B793B-3FE2-48A1-8ADD-C55C47300683@dukhovni.org>
Date: Sun, 28 Apr 2019 19:26:58 -0400
From: "Martin Thomson" <mt@lowentropy.net>
To: tls@ietf.org
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/bjL3erR9l5ooecIyGCRh3lyJaOI>
Subject: Re: [TLS] WGLC for "Deprecating TLSv1.0 and TLSv1.1"
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 28 Apr 2019 23:27:00 -0000

On Sat, Apr 27, 2019, at 07:29, Viktor Dukhovni wrote:
> The sound-bite version is: first raise the ceiling, *then* the floor.

Yep.  We've done the ceiling bit twice now.  Once in 2008 when we published TLS 1.2 and then in 2018 with the publication of TLS 1.3.  I'd say we're overdue for the floor bit.