[TLS] Fwd: I-D Action: draft-sandj-tls-iana-registry-updates-01.txt

Sean Turner <sean@sn3rd.com> Thu, 20 October 2016 18:15 UTC

Return-Path: <sean@sn3rd.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 60E121295D2 for <tls@ietfa.amsl.com>; Thu, 20 Oct 2016 11:15:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sn3rd.com
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id RWMqy4tS7t26 for <tls@ietfa.amsl.com>; Thu, 20 Oct 2016 11:15:31 -0700 (PDT)
Received: from mail-qk0-x234.google.com (mail-qk0-x234.google.com [IPv6:2607:f8b0:400d:c09::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6284D1294D0 for <tls@ietf.org>; Thu, 20 Oct 2016 11:15:31 -0700 (PDT)
Received: by mail-qk0-x234.google.com with SMTP id n189so109957718qke.0 for <tls@ietf.org>; Thu, 20 Oct 2016 11:15:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; h=from:content-transfer-encoding:subject:date:references:to :message-id:mime-version; bh=/16AdBlhAaUAW2j/vRCIKJ+qxLuOCYHrNbh/b4qvFvk=; b=gSgleDIeqpG4herjeRrrcv0hxbVwesRwzC0JKOFjsu7Gj3gdt6oBeU2D8iY+No8M/t Z8DX3zplAS7yMEFHbQ4QEWqw+MrPWLrUgkORge1fN9jOA6FfMnsjHNzn3Kyn30ZSdh8n CtmbewLmIULjoY/+swIhWHr+Rqjtjr1tUi35E=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:content-transfer-encoding:subject:date :references:to:message-id:mime-version; bh=/16AdBlhAaUAW2j/vRCIKJ+qxLuOCYHrNbh/b4qvFvk=; b=Uv06DmGZCG7MhG38/1CzfTRpoGCObOw07ZlNCGU8jxS5WJ7Ig5i7hJJfFJ3Q+nHG1h YW5Obx4Mx4+frm/SvIllzYjS46YZwRwHf1HNXavVMA8xQxVTHNfiCMARSmDzuTfGTK2q eOL93y61DhBwTehvKiUk1+H0TUvcxNfSC9xxVY60e3qSdEpEB9bYQL9xC1Eg0ueUBaHL 6SyqKZAoYnjp3i+snhFM0KAhZOqPxl5osOcqEE9HbBszfL5wB4PICNjk9aPuMuUtXZFu yI16elvJdL11ZWU5nvvmkFSelEGCXOJfGFsSqHf8LtfDZM6qK8puyJoyoaeTc7gp5cjH y5Dg==
X-Gm-Message-State: ABUngvfp0B4Qa+zd0cPr5GyBY7LJ4KEwVjK7+0kyipW+pjNI+jN98hcyfJ83VjMfVLyblQ==
X-Received: by with SMTP id p69mr1506524qki.241.1476987330115; Thu, 20 Oct 2016 11:15:30 -0700 (PDT)
Received: from [] ([]) by smtp.gmail.com with ESMTPSA id n128sm11773523qka.49.2016. for <tls@ietf.org> (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Thu, 20 Oct 2016 11:15:29 -0700 (PDT)
From: Sean Turner <sean@sn3rd.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Date: Thu, 20 Oct 2016 14:15:27 -0400
References: <147698308536.18060.6507822848649177768.idtracker@ietfa.amsl.com>
To: "<tls@ietf.org>" <tls@ietf.org>
Message-Id: <B34D7C26-11F1-4FAD-9E3C-617BCA6EAD2C@sn3rd.com>
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/jdiUID71kMfqKtbJvRa0c8jGjk8>
Subject: [TLS] Fwd: I-D Action: draft-sandj-tls-iana-registry-updates-01.txt
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Oct 2016 18:15:33 -0000


Joe and I submitted a revised version that merged a PR from DKG and incorporated the recommended cipher suite list that was in a.4 of draft-ietf-tls-tls13-14 (and a couple of other tweaks).

A repo for the draft can be found at:
PRs welcome.

A couple of things I am hoping for some input on:

1) I’d like to add something along the line of the following as a warning at the top of the cider suite registry for those that simply go to the cipher list and don’t read the RFCs:

    WARNING: Cryptographic algorithms will be broken
    or weakened over time.  Blindly implementing cipher
    suites listed here is not advised.  Implementers and
    users need to check that the cryptographic algorithms
    listed continue to provide the expected level of security.

2) draft-ietf-tls-tls13 will indicate cipher suites that are recommended for TLS1.3; remember the negotiation mechanism is different now so we’re using the same registry but the values are in the new range.  It seems like we still need to populate the recommended column for pre-1.3 from -14 A.4?


> Begin forwarded message:
> From: internet-drafts@ietf.org
> Subject: I-D Action: draft-sandj-tls-iana-registry-updates-01.txt
> Date: October 20, 2016 at 13:04:45 EDT
> To: <i-d-announce@ietf.org>
> Reply-To: internet-drafts@ietf.org
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
>        Title           : D/TLS IANA Registry Updates
>        Authors         : Joe Salowey
>                          Sean Turner
> 	Filename        : draft-sandj-tls-iana-registry-updates-01.txt
> 	Pages           : 10
> 	Date            : 2016-10-20
> Abstract:
>   This document changes the IANA registry policy for a number of
>   registries related to DTLS and TLS, renames some of the registries
>   for consistency, and adds notes to many of the registries.  As a
>   result, this document updates many RFCs (see updates header).
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-sandj-tls-iana-registry-updates/
> There's also a htmlized version available at:
> https://tools.ietf.org/html/draft-sandj-tls-iana-registry-updates-01
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-sandj-tls-iana-registry-updates-01
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> _______________________________________________
> I-D-Announce mailing list
> I-D-Announce@ietf.org
> https://www.ietf.org/mailman/listinfo/i-d-announce
> Internet-Draft directories: http://www.ietf.org/shadow.html
> or ftp://ftp.ietf.org/ietf/1shadow-sites.txt