IETF Logo Mail Archive

[TLS]Re: Consensus call for RFC8773bis Formal Analysis Requirement

Christopher Patton <cpatton@cloudflare.com> Mon, 26 August 2024 23:05 UTC

Return-Path: <cpatton@cloudflare.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 433CCC14F5EC for <tls@ietfa.amsl.com>; Mon, 26 Aug 2024 16:05:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cloudflare.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UqmIzkBn9dkw for <tls@ietfa.amsl.com>; Mon, 26 Aug 2024 16:05:02 -0700 (PDT)
Received: from mail-ot1-x32e.google.com (mail-ot1-x32e.google.com [IPv6:2607:f8b0:4864:20::32e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D803C1D4A78 for <tls@ietf.org>; Mon, 26 Aug 2024 16:05:02 -0700 (PDT)
Received: by mail-ot1-x32e.google.com with SMTP id 46e09a7af769-70943713472so3143133a34.2 for <tls@ietf.org>; Mon, 26 Aug 2024 16:05:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cloudflare.com; s=google09082023; t=1724713501; x=1725318301; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=dXB/WPPKL1gWFdbHG6RUGXjkGPxyDki5M5CJKjH4wJ4=; b=gGP3JuG+rXoBvGKuTZqqmO83CHnkzZyWC1sMHuvPt9huNf4yto0UH8Nxkc8i/bIlo9 8O6w/NTOhbS/lFJomy+vYAl2ClMNrNK8fsn16IJDkl6wYwg+qL86XGv9dNQVhZqF1U2N taz3hIwwAP6SztHb3d7Lhgv/aGXhsckNggJqqCOymRubcq9FgIKJ+PTL/dflsabEtZKh ZMfVJqmiLZiWFD3fm9iCoIPGCg/Z1vqG68sIqA1Ip7km/h4SM0vBzRASsy4jPmXuQg/3 qZkhf86Fd6Ay7byIQ0Gh4eFRF7qHYJNuKmVyxQtej9UnQ5Oj7GVw39WHSHMA+RBZLJxX coNQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1724713501; x=1725318301; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=dXB/WPPKL1gWFdbHG6RUGXjkGPxyDki5M5CJKjH4wJ4=; b=Ez866iG0s8TOCGxj4u9zV9UhlUZ1ZnYK7sB5bBfr3N6MWAXP/K+x1Rey0Lbic3tN/T IA9C9AxLdoVV3oAABPVj2tCBuZTaf+QVA+29QggfkBXPCuUqIgBvIw6PiS7IBXlW50T5 5B7JQFgAsdwcQD2rPcZGWsNdvD1IwAy8YNcQxqYrPQNRvohqhxqu+x2NPaVSU651ybmR SDWrat09EBj0JNF6eQlgY8bIckfk3ll/Zxxw+GGfWv0m20LuMG/RBTVIG7AW/kq3huq2 oIGy/uHDsI45RSkGFVpkMAhlf1ByoNnSSMFQTFX4T5I7/9i02Dvv7GXbh7AsP12f+8X+ LZzA==
X-Forwarded-Encrypted: i=1; AJvYcCUXDPH5uttZ52+Y8WI4cEu5IzJm8yPhrJ/6eaoI6M1UYCI0fLobWTLggsAJ61nEkz3BidM=@ietf.org
X-Gm-Message-State: AOJu0Yz3GkXREZXSTP4P+IZQc72RgabyQkriMHM4kfAJHQN3cADYrvsb u1sG+i24wp854Yyc4X2Lt6qXoHWiuV46FoOd94QpPHuJ49/M7T82Hao4DmnchCZUqUMilfluywS Q2IKFZkig3OAX6XfbFQvQEpzrCpXvAmKJkJnvNitPK2vGcBH8RnA=
X-Google-Smtp-Source: AGHT+IG0Mdjb/XU3qYM1rZlF1wfmt7jiJkrmMw3ZoJ7CpRdpGReN3dkhFlxy9eTLmbvi2nFOiqR8l8ipDh7wHqzL+jo=
X-Received: by 2002:a05:6830:6e07:b0:70e:10d6:73ee with SMTP id 46e09a7af769-70f4848fc4amr1175970a34.29.1724713501498; Mon, 26 Aug 2024 16:05:01 -0700 (PDT)
MIME-Version: 1.0
References: <1E84DBF8-CA48-4CA9-A435-9E61E981D8DF@akamai.com> <6284E288-4F8E-4E2A-8335-5054D9D7A6DF@obtuse.com> <CAFR824xAxfUFrXyo5PZckJPqoM3fU8ESNrDHUfOKNzDF_jJZQA@mail.gmail.com> <A5E3474B-E3D5-4DA2-BCAD-D443B2A02B5A@akamai.com> <CAFR824y=stSf28Lt=bDoM2yCOHMAEt2OsaFPAY7dxGjx+-DHug@mail.gmail.com> <B7872890-71F2-41BC-9ED9-F085CB18FA95@akamai.com> <42b1b48a-b641-44f9-b4e5-137f401bcfec@cs.tcd.ie>
In-Reply-To: <42b1b48a-b641-44f9-b4e5-137f401bcfec@cs.tcd.ie>
From: Christopher Patton <cpatton@cloudflare.com>
Date: Mon, 26 Aug 2024 16:04:50 -0700
Message-ID: <CAG2Zi22n65ksbx61fHiTg5yg=zwAa3drXadTJq-Z88K2qYo1SA@mail.gmail.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: multipart/alternative; boundary="000000000000992a9806209e272a"
Message-ID-Hash: HCPWLBMAR5AP42TWQJTAVRXMJNYR4JFI
X-Message-ID-Hash: HCPWLBMAR5AP42TWQJTAVRXMJNYR4JFI
X-MailFrom: cpatton@cloudflare.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>, "TLS@ietf.org" <tls@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [TLS]Re: Consensus call for RFC8773bis Formal Analysis Requirement
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/hJrbMz80FOTFM2lIHnSNONMw5co>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

I vote for Option 1: Let's see if/how this changes existing proofs before
we move to standards track. From a quick look, it doesn't seem like
implementing this extension should cause anyone trouble, but we might as
well be sure.

Chris P.



On Mon, Aug 26, 2024 at 3:46 PM Stephen Farrell <stephen.farrell@cs.tcd.ie>
wrote:

>
> WRT the draft, yes I think more formal analysis is likely
> warranted.
>
> WRT Rich's complaint: I think the chairs would be wise to try
> to explicitly address the points he makes and that were raised
> at the IETF-120 session. I got the distinct impression that
> a bunch of active WG participants were not happy with the state
> of the triage panel thing, and also the distinct impression
> that the chairs weren't quite grokking that. (It can be hard to
> pickup the overall message from the front of the room sometimes.)
>
> My take on the panel is roughly: yes, I don't get why there seems
> no desire to collaborate with ufmrg (but I'm biased there:-), and
> I also think that the anonymity thing means we shouldn't take
> panel comments as seriously as ones made in public - but there
> is nothing preventing the chairs from encouraging panel members to
> just copy the list with their comments as the norm and handle any
> situation where someone can't do that as an exception. (I've also,
> as a sorta-bogus member of the the CFRG crypto panel, seen some
> issues with people taking CFRG crypto panel output more seriously
> than sometimes warranted - many of those reviews are very good,
> but not all are equal, and those reviews are not as directly
> affecting the IETF standards process, so what's ok there may not
> be ok here.)
>
> Cheers,
> S.
>
> _______________________________________________
> TLS mailing list -- tls@ietf.org
> To unsubscribe send an email to tls-leave@ietf.org
>

v2.40.4 | Report a Bug | By Email | System Status