Re: [TLS] Precluding bilateral opt-in for downgrade protection.

Viktor Dukhovni <ietf-dane@dukhovni.org> Sat, 28 April 2018 20:19 UTC

Return-Path: <ietf-dane@dukhovni.org>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C740E1200C5 for <tls@ietfa.amsl.com>; Sat, 28 Apr 2018 13:19:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RZLZH49Xy2jJ for <tls@ietfa.amsl.com>; Sat, 28 Apr 2018 13:19:05 -0700 (PDT)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [108.5.242.66]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6F0A21200A0 for <tls@ietf.org>; Sat, 28 Apr 2018 13:19:05 -0700 (PDT)
Received: from [192.168.1.161] (straasha.imrryr.org [100.2.39.101]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mournblade.imrryr.org (Postfix) with ESMTPSA id 931207A3309 for <tls@ietf.org>; Sat, 28 Apr 2018 20:19:04 +0000 (UTC) (envelope-from ietf-dane@dukhovni.org)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 11.3 \(3445.6.18\))
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
In-Reply-To: <CAHPuVdX3jT4ge2fJRcQ1ee_uvvkH_PAngihr8PSww-eKSW5Mnw@mail.gmail.com>
Date: Sat, 28 Apr 2018 16:19:03 -0400
Content-Transfer-Encoding: 7bit
Reply-To: TLS WG <tls@ietf.org>
Message-Id: <616F4599-7409-4ECA-BD78-B16FDE8206A2@dukhovni.org>
References: <C7CAD4AD-B296-473A-890D-BEBA115990B4@dukhovni.org> <CAHPuVdV+qhC=jS-JEoS6ig6ofRXV__VLOmSL=6c=3_vJK-zCpQ@mail.gmail.com> <alpine.LRH.2.21.1804281435500.11560@bofh.nohats.ca> <CAHPuVdX3jT4ge2fJRcQ1ee_uvvkH_PAngihr8PSww-eKSW5Mnw@mail.gmail.com>
To: TLS WG <tls@ietf.org>
X-Mailer: Apple Mail (2.3445.6.18)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/mLL728mnniTRkomnpYqge9X-Kk4>
Subject: Re: [TLS] Precluding bilateral opt-in for downgrade protection.
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 28 Apr 2018 20:19:08 -0000


> On Apr 28, 2018, at 4:11 PM, Shumon Huque <shuque@gmail.com> wrote:
> 
> What greatly surprised me was that Viktor (and you) did not come to
> this realization until a few months ago (I believe that was shortly after I
> asked Viktor in private email to read the entire draft and I assume he 
> came upon the text that described the issue, and the possibility of
> extending the protocol to include DoE later). 

In my case, too many of the available cycles for this document were
consumed by the necessary, but not security relevant, discussion of
the payload format, and I had no time left for take in the big picture.
I wish it were otherwise.  It would have been far better to deal with
this at the outset...

-- 
	Viktor.