Re: [TLS] Draft TLS Extension for Path Validation
Peter Gutmann <pgut001@cs.auckland.ac.nz> Thu, 26 May 2022 08:47 UTC
Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E4B15C14F738 for <tls@ietfa.amsl.com>; Thu, 26 May 2022 01:47:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id G4WSPKirD0dG for <tls@ietfa.amsl.com>; Thu, 26 May 2022 01:47:02 -0700 (PDT)
Received: from au-smtp-delivery-117.mimecast.com (au-smtp-delivery-117.mimecast.com [103.96.21.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 08D50C14F718 for <tls@ietf.org>; Thu, 26 May 2022 01:47:01 -0700 (PDT)
Received: from AUS01-SY4-obe.outbound.protection.outlook.com (mail-sy4aus01lp2171.outbound.protection.outlook.com [104.47.71.171]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id au-mta-75-WpiR7CilNIunLsnMfFhHPA-1; Thu, 26 May 2022 18:46:57 +1000
X-MC-Unique: WpiR7CilNIunLsnMfFhHPA-1
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com (2603:10c6:10:10b::10) by SYBPR01MB5386.ausprd01.prod.outlook.com (2603:10c6:10:17::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5273.17; Thu, 26 May 2022 08:46:55 +0000
Received: from SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::4d78:e58:4ae1:d3ec]) by SY4PR01MB6251.ausprd01.prod.outlook.com ([fe80::4d78:e58:4ae1:d3ec%9]) with mapi id 15.20.5293.013; Thu, 26 May 2022 08:46:55 +0000
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: Ilari Liusvaara <ilariliusvaara@welho.com>, Ashley Kopman <akopman@conceptsbeyond.com>
CC: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Draft TLS Extension for Path Validation
Thread-Index: AQHYcFjqS0jtIQIfzEKhuTEINJO2Y60v6F6AgADwz+0=
Date: Thu, 26 May 2022 08:46:55 +0000
Message-ID: <SY4PR01MB625129F45E7382C35CA02F39EED99@SY4PR01MB6251.ausprd01.prod.outlook.com>
References: <2790C640-0841-43BC-94CA-0890ECEA672A@conceptsbeyond.com> <Yo50IQhyJM/VABlL@LK-Perkele-VII2.locald>
In-Reply-To: <Yo50IQhyJM/VABlL@LK-Perkele-VII2.locald>
Accept-Language: en-NZ, en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: d8c70904-813c-441c-a897-08da3ef449db
x-ms-traffictypediagnostic: SYBPR01MB5386:EE_
x-microsoft-antispam-prvs: <SYBPR01MB53867E779EB5B16C6732518DEED99@SYBPR01MB5386.ausprd01.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0
x-microsoft-antispam-message-info: vDigvOBnHFLM3cV6m7kxi6czcMDeWMrKOQVbZVWKB4jd8ojve8wWe3+fyfqBZFhv4uQNerHRoXwD1l7SjbOzHOVlo7Y09ZO+tonFrD/lxpdYonNfU4jmC8DscPdn6Xu/9aWFkDA8QNU8TU4ig1CRYsWl14YoZM4y2ercM5Y8jdzlTsLVL6YY9nw1Jk8vVR0Kust3oeLsP5dHx8E2S7HSHtAhxsXXhN8/RwxRSleul5VprT3hf665jow9OkQFWgD+EH36o/0LbVC73OMzD1iVY5O1bnRHkyDjBYKXMkiSaDhpnu14ioWBYx3A+q9/6svdxOirmJC2sxySyZDiAmM6A/J8YGKR9oidGNHVOjJ3x+zafs1HfLWGiGmgU7x1aICEmtMBOE0K5khoAms2YlTKc3BOWG7aGwHhUbGVm5Rxj6MzUojeWM6l7icQD/YfzOcY3p7PXLae4F8kflX/KR9Wb82unJ2mCgqbsakLqecJgBvwWJEgAJ8x1d41jsLHkx6Gf6v+aRvJGC4XvT3uTOFQyPnB6lSLSf9j32IramFDBV5gA+7u6OadxBp3eBm6Mm3s3X9+iBcnYKzldPWyWSsIjdf2/nESeVKuExcFEeNtmtnrKJSaZz5UyTts6KZIvWSnDev/gfypOaIBe6Fy/6woJdS+mEHt23295Bq2taqG65fAHgApP9S74UwuqIBcDKDnFYQN7if4JZ9QRn2YZdhmDw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SY4PR01MB6251.ausprd01.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(508600001)(66476007)(2906002)(786003)(76116006)(33656002)(66946007)(71200400001)(66556008)(110136005)(316002)(64756008)(4744005)(26005)(8936002)(86362001)(5660300002)(9686003)(8676002)(4326008)(52536014)(186003)(38100700002)(6506007)(7696005)(55016003)(122000001)(38070700005)(66446008); DIR:OUT; SFP:1101
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
MIME-Version: 1.0
X-OriginatorOrg: cs.auckland.ac.nz
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SY4PR01MB6251.ausprd01.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d8c70904-813c-441c-a897-08da3ef449db
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 May 2022 08:46:55.7952 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 2iIbBBRcflq1mOQQbNLB81VNLgBzAgYtoVFfUY3qu2yGJZC0Emg7+uUcl4Ds0HH8nILic+pYua0xXhXKVumFdlmnsj+blccxVpca2CHSO0g=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SYBPR01MB5386
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: cs.auckland.ac.nz
Content-Language: en-NZ
Content-Type: text/plain; charset="WINDOWS-1252"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/hy-LkBevsn_UYJDHU9JjpDUZA7A>
Subject: Re: [TLS] Draft TLS Extension for Path Validation
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 May 2022 08:47:05 -0000
An indirect question on the overall premise here: Given that SCVP is essentially nonexistent (unless there's some niche market somewhere using it that I'm not aware of, which is why I didn't use an unqualified "nonexistent"), does it really matter much? If an RFC falls in the forest and all that... Peter.
- [TLS] Draft TLS Extension for Path Validation Ashley Kopman
- Re: [TLS] Draft TLS Extension for Path Validation Robert Moskowitz
- Re: [TLS] Draft TLS Extension for Path Validation Ilari Liusvaara
- Re: [TLS] Draft TLS Extension for Path Validation Peter Gutmann
- Re: [TLS] Draft TLS Extension for Path Validation Robert Moskowitz
- Re: [TLS] Draft TLS Extension for Path Validation Robert Moskowitz
- Re: [TLS] Draft TLS Extension for Path Validation Ashley Kopman
- Re: [TLS] Draft TLS Extension for Path Validation Salz, Rich
- Re: [TLS] Draft TLS Extension for Path Validation Ashley Kopman
- Re: [TLS] Draft TLS Extension for Path Validation Robert Moskowitz
- Re: [TLS] Draft TLS Extension for Path Validation Eric Rescorla
- Re: [TLS] Draft TLS Extension for Path Validation Ashley Kopman
- Re: [TLS] Draft TLS Extension for Path Validation Ira McDonald
- Re: [TLS] Draft TLS Extension for Path Validation Ashley Kopman