[TLS] Re: Adoption call for TLS 1.2 Update for Long-term Support

Peter Gutmann <pgut001@cs.auckland.ac.nz> Thu, 07 November 2024 13:58 UTC

Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 57750C14F61A for <tls@ietfa.amsl.com>; Thu, 7 Nov 2024 05:58:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.007
X-Spam-Level:
X-Spam-Status: No, score=-2.007 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.auckland.ac.nz
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 83QJuHOpIvId for <tls@ietfa.amsl.com>; Thu, 7 Nov 2024 05:58:07 -0800 (PST)
Received: from AUS01-SY4-obe.outbound.protection.outlook.com (mail-sy4aus01on2157.outbound.protection.outlook.com [40.107.107.157]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 46917C14F5E4 for <tls@ietf.org>; Thu, 7 Nov 2024 05:58:05 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=Pr4xAFL5fZrCTuV0hTR4AZNpm+xRsBD7g9+i/8nIpi/4LXinbfdVXxVV+Z1bACxX3ag/Bcy+u8rqHEG4k5yPFslzBHWgF8W7UZl19qBzUIxVCY2UaSkct3V3kWZ+thtfGTrmGwvHBtyZvEGT4BgxKiigms+/XoPjknLWOyu8d9FWNez48OZncTVJHI4yjLnopgPzkba47a+Q61H66j3J2RVFx+V2oakGcyfa8RDzK7uS+5CnAFhDBxqA1i+RCqobZhueQPNTJeKvlFhpWCACUKmyW7yKzsdVpJw9cs5kn8Ta1vpHjI9+EnO5bzwlN6fYu33edDIsYoAgMxK4T20/mw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=8nLftOOheU6qe+Ocpvq24s5Cs3MupkDXRNp+rozTFG8=; b=rjJlsVNSLrDYY8/F1g7DdEKK+nwYYolSblwGTEJ4cCAB+7NSs1zBcT+qfHeE80z68UoNNa8t6jwHf4KYmGLAGxl7quUnOEV92DlvgOphmwT6SXE3RDx3MqVoOir159Zztj8kzxdRog4VATxmda9vEm9+NmReTgFmuGWhGQ84jV+lxBIf1/QJt6uuU90Et/V89bhyctrYhVXyd9URmyV8RICLBpQWQXE5Z/OgeBo9853LX2QqFpcoUI4v1Do+j+wXjg78fDKC4vCbDR1FnKkMZSPqgoP7KsAvpkzHYYhNpdmQom76l8Q1p4gKUH5fwhnbFEw7Pn6+IDbvtn9FUxB56Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.auckland.ac.nz; dmarc=pass action=none header.from=cs.auckland.ac.nz; dkim=pass header.d=cs.auckland.ac.nz; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.auckland.ac.nz; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8nLftOOheU6qe+Ocpvq24s5Cs3MupkDXRNp+rozTFG8=; b=DXkhR0YrRyz0gimgKZ+jDQ+U/zfNhhqz7S8S0HLLELgU4dlZC30AYbmYURBRWK/6Lg6PiRDMBFnz4s85VDyNoiINlk1qeyilJoY4RttO+mdlk8gbdqc6eUIXNrJyRPvhxhykbdFfXQITQv/xMXydTS1bzPfgHU3lE6DbnQVOvhSymcVges90ETpcJZNbc5wsjnTCGQQ7psg1c+t5JqSB3pUQJXEeagrVU5vCM/WXsfOXs03CzPmKid5SJ8HWqda91UXixge18UihfM7UZNRm3yKa63WZdLfVxdVFBj2e5gGwBRwNcCqzzpAo+e01a/5frewsHSkTBX5u0PRR3i6HAg==
Received: from ME0P300MB0713.AUSP300.PROD.OUTLOOK.COM (2603:10c6:220:229::18) by SY8P300MB0489.AUSP300.PROD.OUTLOOK.COM (2603:10c6:10:29a::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8137.20; Thu, 7 Nov 2024 13:58:02 +0000
Received: from ME0P300MB0713.AUSP300.PROD.OUTLOOK.COM ([fe80::2b6:430a:4d2a:5c52]) by ME0P300MB0713.AUSP300.PROD.OUTLOOK.COM ([fe80::2b6:430a:4d2a:5c52%2]) with mapi id 15.20.8137.019; Thu, 7 Nov 2024 13:58:02 +0000
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: "David A. Cooper" <david.cooper=40nist.gov@dmarc.ietf.org>, "TLS@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Re: Adoption call for TLS 1.2 Update for Long-term Support
Thread-Index: AQHbL7U0CRlDS0ZuQUmAB4nfWN7L+7KpF9QAgAAZvgCAAAcogIABdYmAgAEsSS4=
Date: Thu, 07 Nov 2024 13:58:02 +0000
Message-ID: <ME0P300MB0713B652FF234088C06045D2EE5C2@ME0P300MB0713.AUSP300.PROD.OUTLOOK.COM>
References: <278163DF-0CB8-472F-84CB-0B8236FEC7C1@sn3rd.com> <231D5F24-E1AE-4F7C-9860-F6B0FF79D6FF@akamai.com> <CACcvr=nX=pk+uZMgBomWjaD54aW0KRtbL-voY4-PHCynELZdDw@mail.gmail.com> <9CE2D516-B780-481A-8A5D-E5DEC900D2E6@broadcom.com> <CABcZeBNbNU0qrzGj3O8dkjOHL3atzO287UF=YbW1C161mG-b3w@mail.gmail.com> <c8355f01-05c8-49df-8b2f-cb110abf402d@nist.gov>
In-Reply-To: <c8355f01-05c8-49df-8b2f-cb110abf402d@nist.gov>
Accept-Language: en-NZ, en-US
Content-Language: en-NZ
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.auckland.ac.nz;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: ME0P300MB0713:EE_|SY8P300MB0489:EE_
x-ms-office365-filtering-correlation-id: 02ae9a4c-1e72-4237-9a19-08dcff34320c
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|376014|366016|1800799024|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:ME0P300MB0713.AUSP300.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(376014)(366016)(1800799024)(38070700018);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: cs.auckland.ac.nz
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: ME0P300MB0713.AUSP300.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 02ae9a4c-1e72-4237-9a19-08dcff34320c
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Nov 2024 13:58:02.2269 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d1b36e95-0d50-42e9-958f-b63fa906beaa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: agYUpIuUa/aEl3lP1VhmAYj14yT6i0jk0PIgMUDjW9ic2Q9SgRlakpCRtf8c+6b7vR1FMVYqmUoP1XUQRB2ZVzUNox5rV2SOQ22VEfxjD0Y=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SY8P300MB0489
Message-ID-Hash: 7DARSCTX243LBWS7H4DUWFJI2PX2TENO
X-Message-ID-Hash: 7DARSCTX243LBWS7H4DUWFJI2PX2TENO
X-MailFrom: pgut001@cs.auckland.ac.nz
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: Adoption call for TLS 1.2 Update for Long-term Support
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/oV6bvHm3l5FfwCXQomvPisFP9ZI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

David A. Cooper <david.cooper=40nist.gov@dmarc.ietf.org> writes:

>It would also be inappropriate to adopt it as a WG document, especially as a
>standards track document,

I was thinking more informational.  Actually I'm not too fussed over what
category it's in, as long as it gets out of its current limbo.

>It would be contrary to the goal of this draft to suggest that those who have
>been using it since 2016 should not modify their implementations to align
>with changes made by the WG.

It was put on hold so as not to interfere with the TLS 1.3 process (and then
admittedly I forgot to un-hold it afterwards).  It seems like you're saying
that doing what the WG requested now makes it ineligible for consideration by
the WG.

Another point is that it's been around for eight years, it's not like people
haven't had more than enough opportunity to comment on it and suggest changes
in that time.  The current late-to-the-party response seems to be mostly a
chorus of "I haven't read it but I know I don't like it".

Peter.