IETF Logo Mail Archive

Re: [TLS] Adoption call for Deprecating Obsolete Key Exchange Methods in TLS

Peter Gutmann <pgut001@cs.auckland.ac.nz> Sat, 31 July 2021 12:57 UTC

Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E29003A2540 for <tls@ietfa.amsl.com>; Sat, 31 Jul 2021 05:57:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NOeuDHi0SqWQ for <tls@ietfa.amsl.com>; Sat, 31 Jul 2021 05:57:49 -0700 (PDT)
Received: from au-smtp-delivery-117.mimecast.com (au-smtp-delivery-117.mimecast.com [180.189.28.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B1643A253D for <tls@ietf.org>; Sat, 31 Jul 2021 05:57:48 -0700 (PDT)
Received: from AUS01-ME3-obe.outbound.protection.outlook.com (mail-me3aus01lp2234.outbound.protection.outlook.com [104.47.71.234]) (Using TLS) by relay.mimecast.com with ESMTP id au-mta-15-RJaKDi1APEuZVBDySh9nRw-1; Sat, 31 Jul 2021 22:57:45 +1000
X-MC-Unique: RJaKDi1APEuZVBDySh9nRw-1
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com (2603:10c6:10:10b::10) by SYBPR01MB6029.ausprd01.prod.outlook.com (2603:10c6:10:9b::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4373.20; Sat, 31 Jul 2021 12:57:40 +0000
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::98a4:33de:1d06:e141]) by SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::98a4:33de:1d06:e141%3]) with mapi id 15.20.4373.026; Sat, 31 Jul 2021 12:57:40 +0000
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Adoption call for Deprecating Obsolete Key Exchange Methods in TLS
Thread-Index: AQHXhNw9hZMv7zd4Dke27Husna/eB6ta+ZesgADl/wCAAAlpgIAABHuAgAEfznQ=
Date: Sat, 31 Jul 2021 12:57:39 +0000
Message-ID: <SY4PR01MB6251775C9FD86B52BF71064CEEED9@SY4PR01MB6251.ausprd01.prod.outlook.com>
References: <CAOgPGoARpxr8-FzYJPRcup9XF-DRv875aAnuNZtoLPHM9-6j-w@mail.gmail.com> <4c0aafd3-fc8f-453a-a009-44ecc18dafd7@www.fastmail.com> <YQNLizvBb/xZyxkl@straasha.imrryr.org> <SY4PR01MB6251677071C9EDF4E5149616EEEC9@SY4PR01MB6251.ausprd01.prod.outlook.com> <YQRLcoKm/+lVGwfv@straasha.imrryr.org> <BL3PR11MB5682F0455884BAC742324DD8C1EC9@BL3PR11MB5682.namprd11.prod.outlook.com>, <YQRXGUZ/J7YZpzVv@straasha.imrryr.org>
In-Reply-To: <YQRXGUZ/J7YZpzVv@straasha.imrryr.org>
Accept-Language: en-NZ, en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f4c9a304-a32d-42f0-b00d-08d95422c785
x-ms-traffictypediagnostic: SYBPR01MB6029:
x-microsoft-antispam-prvs: <SYBPR01MB6029785815A575640D698C9BEEED9@SYBPR01MB6029.ausprd01.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:2887
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SY4PR01MB6251.ausprd01.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(26005)(558084003)(186003)(9686003)(52536014)(86362001)(5660300002)(6506007)(2906002)(55016002)(7696005)(66556008)(64756008)(66446008)(66476007)(83380400001)(66946007)(76116006)(71200400001)(8936002)(8676002)(6916009)(786003)(508600001)(122000001)(316002)(38070700005)(38100700002)(33656002); DIR:OUT; SFP:1101
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
MIME-Version: 1.0
X-OriginatorOrg: cs.auckland.ac.nz
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SY4PR01MB6251.ausprd01.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f4c9a304-a32d-42f0-b00d-08d95422c785
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Jul 2021 12:57:39.8940 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: qgcI/185XeR9aDCfHj578Fr71OYzbSboG89ighXl3/EQAEqfIjGrkvkcrh1+zaSEvIiDw5eRu6AQqCgbaU0Xe/xFSXd3RjUG7lQrTzIZKmk=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SYBPR01MB6029
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: cs.auckland.ac.nz
Content-Language: en-NZ
Content-Type: text/plain; charset="WINDOWS-1252"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/bybQ3DQMLmj796slamBIkXM9GcQ>
Subject: Re: [TLS] Adoption call for Deprecating Obsolete Key Exchange Methods in TLS
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 31 Jul 2021 12:57:54 -0000

Viktor Dukhovni <ietf-dane@dukhovni.org> writes:

>I strongly doubt there's a non-negligible server population with weak locally
>generated groups.

Would you care to rephrase that so we can make sure you're saying what we
think you're saying in order to disagree with it?

Peter :-).

v2.23.0 | Report a Bug | By Email