Re: [TLS] [OPSEC] Call For Adoption: draft-wang-opsec-tls-proxy-bp

"Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com> Mon, 27 July 2020 12:56 UTC

IronPort-PHdr: 9a23:VsYHUBeGi/2GAHj6fJd+/MaslGMj4e+mNxMJ6pchl7NFe7ii+JKnJkHE+PFxlwaQA9ff77RBivaQvqz9CiQM4peE5XYFdpEEFxoIkt4fkAFoBsmZQVb6I/jnY21ffoxCWVZp8mv9PR1TH8DzNFnW5Hiz8XgfFgisfQZwL/7+T4jVicn/3uuu+prVNgNPgjf1Yb57IBis6wvLscxDiop5IaF3wRzM8XY=
From: "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com>
To: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>, Stephen Farrell <stephen.farrell@cs.tcd.ie>, Jen Linkova <furry13@gmail.com>, OPSEC <opsec@ietf.org>, "tls@ietf.org" <tls@ietf.org>
CC: OpSec Chairs <opsec-chairs@ietf.org>
Thread-Topic: [OPSEC] [TLS] Call For Adoption: draft-wang-opsec-tls-proxy-bp
Thread-Index: AQHWZBBXfEOfXmicKUiEGO0IxBKiNaka7PaA
Date: Mon, 27 Jul 2020 12:55:36 +0000
Message-ID: <43A56381-0BA8-4123-A2D5-950FD1EDFC86@cisco.com>
References: <DM6PR05MB634890A51C4AF3CB1A03DA0BAE7A0@DM6PR05MB6348.namprd05.prod.outlook.com> <CAFU7BAS=ymUPTAGB_fOSrHTG0OajV1n5M1-yOBWxvGam-a89AA@mail.gmail.com> <d9d6d8c2-3916-be28-d01f-f040a28ce361@cs.tcd.ie> <9F2FDA20-12AA-4523-905D-7C9380B7A390@ll.mit.edu>
In-Reply-To: <9F2FDA20-12AA-4523-905D-7C9380B7A390@ll.mit.edu>
Accept-Language: en-US
Content-Language: en-US
user-agent: Microsoft-MacOutlook/10.10.18.200713
Content-Type: text/plain; charset="utf-8"
Content-ID: <ACBF446D6323E64281EC60657BDD48E1@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: d1c9f0ab-5fd8-4aae-5bd1-08d8322c5b4e
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Jul 2020 12:55:36.3737 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: IwcNl9W5e8ul/v6ZANtZ677OpYUGd2SqDXxuIff2tClhItlRGT5qwQSjPt3YLBmWmQ8JxugI9Qk1st9MBhLlBw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3158
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.11, xch-rcd-001.cisco.com
X-Outbound-Node: rcdn-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/hcR1GojyFdq6K1iJdiKmx9Wm7Bw>
Subject: Re: [TLS] [OPSEC] Call For Adoption: draft-wang-opsec-tls-proxy-bp
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Jul 2020 12:56:46 -0000

The document is not imposing any standards but rather provide guidelines for those implementing TLS proxies;  given that proxies will continue to exist I'm not sure why there is a belief that the IETF should ignore this.

Warm regards, Nancy

On 7/27/20, 5:20 AM, "OPSEC on behalf of Blumenthal, Uri - 0553 - MITLL" <opsec-bounces@ietf.org on behalf of uri@ll.mit.edu> wrote:

    I support Stephen and oppose adoption. IMHO, this is not a technology that IETF should standardize.
    
    
    On 7/25/20, 10:07, "TLS on behalf of Stephen Farrell" <tls-bounces@ietf.org on behalf of stephen.farrell@cs.tcd.ie> wrote:
    
    
        I oppose adoption. While there could be some minor benefit
        in documenting the uses and abuses seen when mitm'ing tls,
        I doubt that the effort to ensure a balanced document is at
        all worthwhile. The current draft is too far from what it'd
        need to be to be adopted.
    
        Send to ISE.
    
        S.
    
        On 23/07/2020 02:30, Jen Linkova wrote:
        > One thing to add here: the chairs would like to hear active and
        > explicit support of the adoption. So please speak up if you believe
        > the draft is useful and the WG shall work on getting it published.
        > 
        > On Mon, Jul 20, 2020 at 3:35 AM Ron Bonica
        > <rbonica=40juniper.net@dmarc.ietf.org> wrote:
        >>
        >> Folks,
        >>
        >>
        >>
        >> This email begins a Call For Adoption on draft-wang-opsec-tls-proxy-bp.
        >>
        >>
        >>
        >> Please send comments to opsec@ietf.org by August 3, 2020.
        >>
        >>
        >>
        >>                                                                 Ron
        >>
        >>
        >>
        >>
        >> Juniper Business Use Only
        >>
        >> _______________________________________________
        >> OPSEC mailing list
        >> OPSEC@ietf.org
        >> https://www.ietf.org/mailman/listinfo/opsec
        > 
        > 
        > 
        > --
        > SY, Jen Linkova aka Furry
        > 
        > _______________________________________________
        > TLS mailing list
        > TLS@ietf.org
        > https://www.ietf.org/mailman/listinfo/tls
        >

[TLS] Call For Adoption: draft-wang-opsec-tls-pro… Ron Bonica
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Jen Linkova
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Tobias Mayer (tmayer)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Nancy Cam-Winget (ncamwing)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Stephen Farrell
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Wang (ejwang)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Blumenthal, Uri - 0553 - MITLL
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Ira McDonald
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Salz, Rich
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Stephen Farrell
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Nancy Cam-Winget (ncamwing)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Blumenthal, Uri - 0553 - MITLL
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Ben Schwartz
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Nick Harper
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Salz, Rich
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Blumenthal, Uri - 0553 - MITLL
Re: [TLS] [EXTERNAL] Re: [OPSEC] Call For Adoptio… Andrei Popov
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Roelof duToit
Re: [TLS] [OPSEC] [EXTERNAL] Re: Call For Adoptio… Roelof duToit
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Wang (ejwang)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Wang (ejwang)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Stephen Farrell
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Roelof duToit
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Ashutosh Singh
Re: [TLS] Call For Adoption: draft-wang-opsec-tls… Martin Thomson
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Arnaud.Taddei.IETF
Re: [TLS] Call For Adoption: draft-wang-opsec-tls… Eric Rescorla
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… tom petch
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Wang (ejwang)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Watson Ladd
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Nick Harper
Re: [TLS] Call For Adoption: draft-wang-opsec-tls… Rob Sayre
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Martin Thomson
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Salz, Rich
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Wang (ejwang)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Wang (ejwang)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Stephen Farrell
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Rescorla
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Stephen Farrell
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Carrick Bartle
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Rescorla
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Rob Sayre
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Salz, Rich
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Wang (ejwang)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Rob Sayre
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Paul Brears
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Töma Gavrichenkov
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Töma Gavrichenkov
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Salz, Rich
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Töma Gavrichenkov
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Salz, Rich
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Töma Gavrichenkov
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Nick Harper
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Ben Smyth
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Eric Wang (ejwang)
Re: [TLS] [OPSEC] Call For Adoption: draft-wang-o… Rob Sayre