IETF Logo Mail Archive

Re: [TLS] Working Group Last Call for draft-ietf-tls-sslv3-diediedie-00

Stephen Checkoway <s@pahtak.org> Thu, 05 February 2015 03:12 UTC

Return-Path: <s@pahtak.org>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9AB3C1A0367 for <tls@ietfa.amsl.com>; Wed, 4 Feb 2015 19:12:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jzko4rjDVX-O for <tls@ietfa.amsl.com>; Wed, 4 Feb 2015 19:12:51 -0800 (PST)
Received: from mail-qc0-f177.google.com (mail-qc0-f177.google.com [209.85.216.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4F0C81A032D for <tls@ietf.org>; Wed, 4 Feb 2015 19:12:51 -0800 (PST)
Received: by mail-qc0-f177.google.com with SMTP id p6so4655808qcv.8 for <tls@ietf.org>; Wed, 04 Feb 2015 19:12:50 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:content-type:mime-version:subject:from :in-reply-to:date:cc:content-transfer-encoding:message-id:references :to; bh=3jdRuDD4iBF2TDsJt5TQy1OXU6srrzb5BUvsV1KgdwQ=; b=HCUIk1tCo/o5bU5uhCyp0U/o4lh+x8oEGBnU2vGvMX4VVo5AmrziSqLBcgqscqOpcE 8b5bPrlaDQ1CYaC26N/VA3gXG+Hf1eiZxsXQyNuCMR2ycUzyI6QcIJCVdCekuU+A84Nl YeJKBWlWTlNhoIoXwfLg4ZRym2CRXX1urBj+i3QmKPOX0dgvr/LLBd1QWJWYBaGHbcT4 dutDNHChPEFW6t8KB4NEFfG2oEKRefOKv9wHHUaF+M2WRkNDc8+nYgjwQlC4z/6Y/y2T Xo9Wi2AegBp1rfz4fd6LX5CMY+qItKY7rT46FZeiVy+uGWA3XE5vF5BZaDjwuSZgJ9ZU g9xQ==
X-Gm-Message-State: ALoCoQlZMCfRxU5BGvVmMXr0FnQu65tKUvuYXaQOxRWV5fej9lyBFnvbpnASwOJmQy0/MGchP9H+
X-Received: by 10.140.95.114 with SMTP id h105mr3624454qge.64.1423105970455; Wed, 04 Feb 2015 19:12:50 -0800 (PST)
Received: from zbox.pahtak.org (c-73-213-90-80.hsd1.md.comcast.net. [73.213.90.80]) by mx.google.com with ESMTPSA id u5sm3700574qar.12.2015.02.04.19.12.48 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 04 Feb 2015 19:12:49 -0800 (PST)
Received: from [10.0.0.44] (unknown [12.206.98.253]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by zbox.pahtak.org (Postfix) with ESMTPSA id DD1C5AC283F; Wed, 4 Feb 2015 22:12:46 -0500 (EST)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
From: Stephen Checkoway <s@pahtak.org>
In-Reply-To: <CABkgnnU5H7wQ0ks3cR7Vpa43NBNT-RFG19J1C4HUTBj3f51nHQ@mail.gmail.com>
Date: Wed, 04 Feb 2015 22:12:42 -0500
Content-Transfer-Encoding: quoted-printable
Message-Id: <5C010B2A-BDD9-402F-B25C-6A0BF8B9CD25@pahtak.org>
References: <CAOgPGoD806Mf=wa76ixU15nGDCK91tgG4r3Sb0Us2meX4Rqk5A@mail.gmail.com> <CADMpkcJsqDds6QSdf+4YdPK9EyyFQ1CeD3DhEjWsTihekTbDtw@mail.gmail.com> <CABkgnnU5H7wQ0ks3cR7Vpa43NBNT-RFG19J1C4HUTBj3f51nHQ@mail.gmail.com>
To: Martin Thomson <martin.thomson@gmail.com>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/cdSEAS2JIMzPrkNkDh0bdcK4PKE>
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] Working Group Last Call for draft-ietf-tls-sslv3-diediedie-00
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Feb 2015 03:12:53 -0000

Hi Martin,

This is _super_ minor but I think the security considerations section can be slightly sharpened by changing from "This entire document aims to improve security by identifying a protocol that is not secure." to "This entire document aims to improve security by prohibiting the use of a protocol that is not secure."

But regardless, this I-D seems ready to go and has my support.

-- 
Stephen Checkoway

v2.23.0 | Report a Bug | By Email