Re: [TLS] AD review of draft-ietf-tls-prohibiting-rc4-01
Yoav Nir <ynir.ietf@gmail.com> Tue, 25 November 2014 17:58 UTC
Return-Path: <ynir.ietf@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5339E1A6FEE for <tls@ietfa.amsl.com>; Tue, 25 Nov 2014 09:58:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CnCfsj-Lwl2e for <tls@ietfa.amsl.com>; Tue, 25 Nov 2014 09:58:00 -0800 (PST)
Received: from mail-wi0-x233.google.com (mail-wi0-x233.google.com [IPv6:2a00:1450:400c:c05::233]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D133C1A6EED for <tls@ietf.org>; Tue, 25 Nov 2014 09:57:59 -0800 (PST)
Received: by mail-wi0-f179.google.com with SMTP id ex7so2329307wid.6 for <tls@ietf.org>; Tue, 25 Nov 2014 09:57:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=yex63a5i6MwsEF0k16UlR5wOPWhdTUKSkcgc7KOe++M=; b=QIIpE5UGYjHE0oIHb//wkn1sg1YfCoeHm79SuZwerKFoj/uvgXGr7+eaiDWyoJ0Rp/ 2titBjA8gxxbdArxGLW33Rm/mhrD9Ezv0RTQhb6O4+x2SBdTcSBKqRewJOnv35uFZzph KUv0I+A51RbkQSf6TAeX54o3tYQDaHkjexPQYJiY/YmGqmShdH3EH8eSNvD5gQjI4iRn bzVLHDX0ex2c1SciVSlNxxXo1RRICraoQyFeKt7pZXbeQ/OoObL1qOKfUPnPx3gx1zsd yeIy0hNg+jEuRPjq4Tf0nrEjxVMO7vC9CpWnGEi+tiRs8Pn3LkC/NukBoZ/L78sBYUxg Uv5w==
X-Received: by 10.180.108.77 with SMTP id hi13mr34232621wib.73.1416938278536; Tue, 25 Nov 2014 09:57:58 -0800 (PST)
Received: from [192.168.1.103] (IGLD-84-228-139-23.inter.net.il. [84.228.139.23]) by mx.google.com with ESMTPSA id rx8sm2846166wjb.30.2014.11.25.09.57.57 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Tue, 25 Nov 2014 09:57:58 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 8.1 \(1993\))
From: Yoav Nir <ynir.ietf@gmail.com>
In-Reply-To: <5474BA41.1040009@cs.tcd.ie>
Date: Tue, 25 Nov 2014 19:57:56 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <3C7E01A2-545A-45EB-BC45-E91AD7157EE3@gmail.com>
References: <5474BA41.1040009@cs.tcd.ie>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
X-Mailer: Apple Mail (2.1993)
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/kbEa4RVlkcC0Cg8hQA303sEbFXQ
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] AD review of draft-ietf-tls-prohibiting-rc4-01
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Nov 2014 17:58:02 -0000
I’d say no. Definitely not without also deprecating TLS_RSA_EXPORT_WITH_DES40_CBC_SHA, and that is out of scope for *this* document. Perhaps, though we could add a reference to this RFC to all the ciphersuites listed in appendix A? I see that many ciphersuites already have more than one reference listed. Yoav > On Nov 25, 2014, at 7:20 PM, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote: > > > Hiya, > > I have a question to ask before starting IETF LC. I don't > care much what answer you provide but we will be asked > later and I don't recall it being discussed here, so let's > get it out of the way: > > This says there are no IANA actions, which is consistent > with how e.g. export ciphersuites were handled I think. > But would the WG like to add a column saying "deprecated" > or similar to [2]? > > My assumption is the answer is "no" or at least "not in > this document" so unless the chairs tell me to hold off > again I'll start IETF LC tomorrow. (OTOH, a part of me > would be happy to see a draft that deprecated a whole > nice big pile of ciphersuites;-) > > Cheers, > S. > > [1] https://datatracker.ietf.org/doc/draft-ietf-tls-prohibiting-rc4/ > [2] > https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-4 > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls
- [TLS] AD review of draft-ietf-tls-prohibiting-rc4… Stephen Farrell
- Re: [TLS] AD review of draft-ietf-tls-prohibiting… Yoav Nir