[TLS]Re: Working Group Last Call for Legacy RSASSA-PKCS1-v1_5 codepoints for TLS 1.3
David Benjamin <davidben@chromium.org> Wed, 22 May 2024 14:29 UTC
Return-Path: <davidben@google.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B32EC15108E for <tls@ietfa.amsl.com>; Wed, 22 May 2024 07:29:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.248
X-Spam-Level:
X-Spam-Status: No, score=-9.248 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_SPF_WL=-7.5] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=chromium.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wZhkwe8W5x_w for <tls@ietfa.amsl.com>; Wed, 22 May 2024 07:29:19 -0700 (PDT)
Received: from mail-yw1-x1129.google.com (mail-yw1-x1129.google.com [IPv6:2607:f8b0:4864:20::1129]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 612DEC14F6B2 for <tls@ietf.org>; Wed, 22 May 2024 07:29:19 -0700 (PDT)
Received: by mail-yw1-x1129.google.com with SMTP id 00721157ae682-622f5a0badcso55158467b3.2 for <tls@ietf.org>; Wed, 22 May 2024 07:29:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; t=1716388158; x=1716992958; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=GvyMlGthcsopf9qJfBhJ/dIxrbJcWoCtpx+bjJ0Unkc=; b=h7paCBj6tyDBd1qMP8700Meu5ixdVa3cjr8slW/2Gs0Yqnbc0aBAet1VCYd6jM3xRQ jsefM50CyeQev5D2MkS0qLzWLwTJTqcrPz6fY/KPj5POQWWiEzXqiAc5wB/N/Aj5A6H+ eytslNkb/o8jbfNKipBwnVVXrhyV//wTqryuA=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1716388158; x=1716992958; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=GvyMlGthcsopf9qJfBhJ/dIxrbJcWoCtpx+bjJ0Unkc=; b=KiXhXDRiKl2uGs5OfyJU/kfQMZe3x3bnOChnxmk9QMSXyq2FA2bgCo23SOIWUSOj4/ ACzUa3/M7+lbx24DGTuHECSZeMUmeg+eWUVVNhxaAyDlT3WHxKXY1Q4KmE249EDpjToM G8gWqYIlIH9d2LobZ7QVYGd8P2EkG+vVSa6HUTcBMgjH3/pt5ByaInb5V8r7W8t0nXQT Dtb3P6oQt2zAJKvJ2vd/36q/Ub8YXGgz5djVyHjsDpMROH8nxv8mghP8xn+YNwdoq9Kw TI0X8eDJu90dL5Swumg8m5tusIUfzjlJC3E7JvPBe1AtYOGkpGB48Dd93CIFOi3o4arx guQA==
X-Forwarded-Encrypted: i=1; AJvYcCUTXWDwjXN79h7t5Z6h64zkPp0eZrZt15TdTbEPWtMkHYZyJwAptigf+wHz8k1d01m+ggupjNVZximbmzg=
X-Gm-Message-State: AOJu0YzA+MzPKZHz18HE3Z3aM3wjENwcwMw0PWDW0xPsmtjaiEerUwT+ H0uLJi7qdyoYjpjWkrenKFvsU+Zi5WjVl01tkhP/uW90NGXiqaaLJFNfX/tZb6whmsGs7CtN4R9 uXRVqfwJ1J3/6GNnXj6N7mMCRlYfojfN7C0Vdgfze1JMsmZ2p
X-Google-Smtp-Source: AGHT+IGpAa1sibjY4CfledY4z3GsOKVaM/I4FuH5r+XcD3bpZyOuk5LodqAZh8I1jjdO/IeWdwO7sUzvtTs2DywDOjE=
X-Received: by 2002:a0d:e896:0:b0:627:89be:397f with SMTP id 00721157ae682-627e468deffmr21951417b3.4.1716388158011; Wed, 22 May 2024 07:29:18 -0700 (PDT)
MIME-Version: 1.0
References: <00F1241B-A3BC-474F-965B-BBABD5A6BBC0@sn3rd.com> <5711BB4A-CB44-4144-AE69-872D3379D320@sn3rd.com> <9D8AF0B8-4094-4602-B0DB-9CE905A8A4D8@akamai.com>
In-Reply-To: <9D8AF0B8-4094-4602-B0DB-9CE905A8A4D8@akamai.com>
From: David Benjamin <davidben@chromium.org>
Date: Wed, 22 May 2024 10:28:59 -0400
Message-ID: <CAF8qwaDTiFvs8khdQ-7fKej=uhcu-x4ypXOTUxx_Y7DLu3oBLg@mail.gmail.com>
To: "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="00000000000075576406190bc24f"
Message-ID-Hash: LOSE2AOOZGSIV7A5NYO4SXLIHSFQJ6VW
X-Message-ID-Hash: LOSE2AOOZGSIV7A5NYO4SXLIHSFQJ6VW
X-MailFrom: davidben@google.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: TLS List <tls@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [TLS]Re: Working Group Last Call for Legacy RSASSA-PKCS1-v1_5 codepoints for TLS 1.3
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
On Wed, May 22, 2024 at 10:27 AM Salz, Rich <rsalz= 40akamai.com@dmarc.ietf.org> wrote: > > This email starts the working group last call for "Legacy > RSASSA-PKCS1-v1_5 codepoints for TLS 1.3” I-D, located here: > > No comments, ship it. > > > The only comment/question I have about this I-D (and I hope this is not > too much of a bikeshed) is whether the Recommended column should be “D” > instead of “N”. > > I think that would be a mistake as it makes the vast deployment of > existing TPM machines nonconformant. In a few years, maybe. For now, > not-recommended is strong enough. > (I don't have strong feelings on this and am happy to defer this to what everyone else wants. Just briefly noting that "N" in the document isn't an explicit preference here. "D" just didn't exist at the time the document was written.) David
- [TLS]Working Group Last Call for Legacy RSASSA-PK… Sean Turner
- [TLS]Re: Working Group Last Call for Legacy RSASS… Sean Turner
- [TLS]Re: Working Group Last Call for Legacy RSASS… Salz, Rich
- [TLS]Re: Working Group Last Call for Legacy RSASS… David Benjamin
- [TLS]Re: Working Group Last Call for Legacy RSASS… Sean Turner
- [TLS]Re: Working Group Last Call for Legacy RSASS… Andrei Popov
- [TLS]Re: Working Group Last Call for Legacy RSASS… Sean Turner
- [TLS]Re: Working Group Last Call for Legacy RSASS… Sean Turner
- [TLS]Re: Working Group Last Call for Legacy RSASS… Sean Turner