[TLS] Re: Mike Bishop's No Objection on draft-ietf-tls-rfc8446bis-12: (with COMMENT)
Mike Bishop <mbishop@evequefou.be> Mon, 02 June 2025 17:49 UTC
Return-Path: <mbishop@evequefou.be>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 9BDDD2FD2DF3; Mon, 2 Jun 2025 10:49:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (1024-bit key) header.d=evequefou.onmicrosoft.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5d2spok4T_z9; Mon, 2 Jun 2025 10:49:17 -0700 (PDT)
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on2093.outbound.protection.outlook.com [40.107.220.93]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 4E8312FD2DEC; Mon, 2 Jun 2025 10:49:17 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=miFFXiBNzgdGq13zZYYpHIqLU5OP6fdbxim93WmwFtxKeuPG8fQwaavg3VvPkHLNkfVrtydP8x+nVqZI5Vw/wYO3O+zcZvIQcrrp2qgXkhN0/KDW3K94vHIkOD6yszZwerWPsV3huXdPj2Gog3/aJYmIlAdhltxxXJsgOiwKGGf0l9zf0dmYPQI0qprIveH8qXg2N23Wp6+rbMy7xA3f7hhD3zrCj5ttMUsVESC0uXy+G4rlyx2Lwm7SaQ+K3T4BlJpA2Ja8+bwuF4TIhJeFd8FVSbRtYHlVsNxULodonYKqo5RZpcY8f7FPiVHxaAvB3p68/u2447uLM1AqllF01A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=XbiVc/+xIWKMhFKLlog5NXCrSIZGm1KfkrlR8AiXL9o=; b=b9fzLIUXps8OJjd5kZPOJHbRjPeqM8d/RDrdknapd7anJL6my5mzfDjMoz63trf6cJrGcqjA4L5oJluiESL1zAgIJ4STyMXwTChlAoFTVLd946bSX9WwKqZ2FIXaNjJE7oL2V29gkqveicvvszwKctdzjJByjYQpu7DjMaTIiCtj17JaRUi/FCNMZzBJQJlenvdtSxTkSfB3vaPtdMzkWCzM46fXdXkRgStE2mIPleXOwfdN5fD0sWTELyd+Na8Y93qng+fBvaUKjMpeHkhUMgg3CwR/xt/TVSj0n/269rM9m6BQ4VLfP3sMMkzcORt8fyhnrnQ+lKRVThhUq/ki3Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=evequefou.be; dmarc=pass action=none header.from=evequefou.be; dkim=pass header.d=evequefou.be; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=evequefou.onmicrosoft.com; s=selector2-evequefou-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=XbiVc/+xIWKMhFKLlog5NXCrSIZGm1KfkrlR8AiXL9o=; b=ZykRU2PbsMAyWXvNY13GYkbW4kKy0IZSscyJzat425XigVTCEzqlDr8jMY2hvC8XM2YIHg/avp1RLWCIM6UOHB4jgEEbcIZtLIVgsuQEDec2y0oL5XUFtWqkRNXaFUF7ZktSem1RxOKS/f7PuFY7n+qoO7pGcdvT+qOcT5AIjoc=
Received: from IA0PPF726CD7A1F.namprd22.prod.outlook.com (2603:10b6:20f:fc04::d2b) by DM4PR22MB3397.namprd22.prod.outlook.com (2603:10b6:8:53::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8746.41; Mon, 2 Jun 2025 17:49:14 +0000
Received: from IA0PPF726CD7A1F.namprd22.prod.outlook.com ([fe80::c552:f531:59c0:7988]) by IA0PPF726CD7A1F.namprd22.prod.outlook.com ([fe80::c552:f531:59c0:7988%5]) with mapi id 15.20.8746.035; Mon, 2 Jun 2025 17:49:14 +0000
From: Mike Bishop <mbishop@evequefou.be>
To: Eric Rescorla <ekr@rtfm.com>
Thread-Topic: Mike Bishop's No Objection on draft-ietf-tls-rfc8446bis-12: (with COMMENT)
Thread-Index: AQHbyNeXQcI/fW79ukCKh/9IQUhPtrPrU8uAgASySUmAABAwAIAAIbtT
Date: Mon, 02 Jun 2025 17:49:14 +0000
Message-ID: <IA0PPF726CD7A1F8D709AF21DEE2740CC86DA62A@IA0PPF726CD7A1F.namprd22.prod.outlook.com>
References: <174767061547.310160.15957128808257142354@dt-datatracker-59b84fc74f-84jsl> <CABcZeBOL=4bYocGd_agfCQ0kiYTOYH=Wbbsc2ZoE3SZs52waqw@mail.gmail.com> <IA0PPF726CD7A1FFEE479A7255771147F2ADA62A@IA0PPF726CD7A1F.namprd22.prod.outlook.com> <CABcZeBP-6j5sk6j+ok2zhG_8xfGOt32g52HbNDqq_du7+RiwkQ@mail.gmail.com>
In-Reply-To: <CABcZeBP-6j5sk6j+ok2zhG_8xfGOt32g52HbNDqq_du7+RiwkQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=evequefou.be;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: IA0PPF726CD7A1F:EE_|DM4PR22MB3397:EE_
x-ms-office365-filtering-correlation-id: f72a8fb0-4c40-4011-ff74-08dda1fdca2b
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|376014|1800799024|10070799003|366016|38070700018|7053199007|8096899003|13003099007;
x-microsoft-antispam-message-info: 3Wa5QnE8Bc2MbwDnjzBEGfKq9B5UgxvgLlEmT7XGBleLM1sCD/4f16CCTY+tfLn/cZONdsQbDzE30/OSO523t36/sqI96fQnMvJoQtF+g4b9icKwfWcnTp/uYomebQY5fIdKZf3TGBaOpi34NNTq4C4qqLSmSkdJCesC6qOkUsMtoSFCpFcKKd4wlMNOQNJHjGuK80DLWj88YKjEILYFjPTM5BIKUJptil2LsTmMMPv+djKMQ1IWGxCYL6BxXbLNB0r/U4snpmM+5kn2uFP6Zbqjfexef009zytJ1GmVdzvzwzJ8LOXmbhdcU7dZJNa1bSAuQ9+38Oi4BZI54BKPbng9Qia5sKkIXxZQ+M1nRBTUEK84QgnTBZ9O3H8fCZHwxQaSJt0k4cEX4oN1UgtFJIghNCtZr3cke3XaYChP7/qEIp3i91gawVbbKPoAsupu7wZt/pC5y7PFiEHndAC9RYrxqtVyyNWHVrwVP+QHWp2wZNF+7HvL1T2QSa6me9WJjJj7HZITFqrK/KkO4aSarhKnersMaTsmDaKEEu+KRPskZyJQmW1TwipCvyMINDdpDnUHYX5ZtRptQiAILImntBN97rXCLqOgMN4X93O1mO5Ltta4VEl42FyBOvBoyPM00F2juV64Zx3uMBMsUoC0Sy4qnTGaRXXqj3r/0pKw5eS8oL0MY8WwyH/Z35zvt6XVdAyHei64BMInI6A8mfOXl5G68WrAjEWX5vF/Hqc1EB+VfBXNxoC9P6eZYyT2ba6kX735JfLOA1WlRpRSwT2MYZ/Su6WRNQVU0vU0fsSp1iu/shDbFjpFEWfLBr7FTT/sYRVolvSNc9oDuV1ztU02DVlXRxhYOpkT/6rfUs/1i6CkCC/7wFCchFcTD4EFqc6b15U5pwCisziohtyiMKEdvw8oBU71qc1V71BFOCk7HFGW1QX81pRM60QZ7N0/+Zdrl6w5k4OUZSHRUGn57QwZ6x8eHnzkXzmXNhgdSGN3H7EczCrNCK2F4V2/PAQeQP436svi73M4oj+HHxurbN9OlOjhuv4306wY/G0lxi4Baq5MQjYKh053bzYvrq9aPo3Dyh1aKlsRRFjSwJ+ZNKmnDVXxht4W1LCLyDHTaHVBnOTjgtAbDMjvrqTawjdsEfZpo8CbqJeZefgqOWtvS/cyUfKBVD39JYFxTQy1I+Q/9j2zN7r39BLSbzYgQyl+Hb3a8GiNgtVgsaVu6gMp2P5Ove/a9F+iM/aEownTw2nMaY+17b6aIWEa6lRSktgmb6re92+dukOwRvuQWn2qYsnBPAxnC5I6a4iTtylfxHswxVXq6zQZzZZhC1gFTB8xVaJDXEo5dKbawg7yLeeWJhFjEogkWGzb/ldAehge29J97AtzhrByVwn7ivLl6MG7JiUSGJMXK9CwxQs748PIFD3yeuiuwhGdBK2OibQ4H82uv2k=
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:IA0PPF726CD7A1F.namprd22.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(376014)(1800799024)(10070799003)(366016)(38070700018)(7053199007)(8096899003)(13003099007);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: Ow8G7Hzh+IsKYDMguTJPZmZ+dCBn84ryrHveAyo6fhSwpiZ/Qkkb6GFaHdZcyWFt/927hOyP6gCgiGDjwoHDnVJzsReDMgDn0cyZOr3/iBKhpPlutuJtprv1s2Q4P0U+sgtQaSNYPdH0KbAZg7tExlUBQHu832KBENCpEULrbGK+qHLMWRkgq6wnX44V8w1nONezea4NgSvD72xH8vY9DBbn/q68re/SrsScGjohEePLCKlobv6Ey2Rj9ptDmTpLmYml9ZFFSUlWW+qWFXtZj5pF9gNBLGDIYlOlGVDSNRxAxOqvq8ifo7SpGK4jr1AXFf1moaMIGV1k/oVlSYVa8OgS/0nQs8DA2fxJokswST0vMjEdQxqGeKstVLVvNUBHw7X2GYGIlSJn+XJHiwM6j7WGAOSoDvoLe4D8DCM85wjrq1nPnN8gYFT8C0gT742RfNolQQwF9QfUu4lc1wQiFtLrpD5qJOlSyD/ntXBn/0NDoSUpZFtB73jn2eBIAuSYIXV8Y0tSX8tImZWgbF1lsBXOvTnekjQ8fCeUNWvS8W25JOu7bwjji+uKRsNRipFzau6SYnZew8qySIUALHfZVPdGFJrdgij24puaIblbBdOnVGQWwWFRsKasHw36cwtMZzu/U1EUlC90n7kfP1WKfBjKyJaPAFXjJrpkIqnwi+S59zsZHQypeqFJdhiDl0opgyMfm4BiGuySsDp6JQE0qKEppTsXiEXb06fiCD19A+S+xMMWiWST4MZJVF3AnNGHeHVBQZRZk9HSgRwUcyjnX7opt5ZGB0W7+I4CRPLgwt/JITzpKMOI4Ba/cg/Wjs1jgVEk6/rvUOwM5xDjlnU3PiON9R/UmYYKQ/JnLu4vsxQ0c134jNB/ZGQg6TCtoGxRZWYZYOtn3auzlLKQy6LRmrOMpvt83QlgvBAmSlsOZaTdUJeb4L4s7abk9jvdSsakr6atU6wywIXcclDRmZvSW9JdKxAK50ylAKBfZ8t/rg1OvCXBKGrWdBOleNam3M0iDtSiLuSbD3fhtEDzx+JAxYfHJzslLRDAx4a4aJpMRAry5ECs5dBaNfUugdmTlZ79lFbtIkxbIZ4Xa4hrwFyI/xI6WPd141ji3uWE84vjGTxq3rTlWQOiGvyBHz0jraRpi1XsiXzO7Z2wBruCiFTvEF3K5zQir5a6zRLYW251Hpe7oeTpsbOr/huJTlsB/a4jR1UnXUWUynL/Z3AgaBmBjvRTClx70eGNTdzeptd/7FVPyAuP5o+7IQzVpJmxohE2BH7UtseIlKe4Us/BKXk0DEoM+ScheVLlHmiIqiz0CTx48YMkY7k/Wd6GC9zvnvmmdEJkGM0a3pjM2bRtOsJdBNznnQDmOGON69do2gufV/NJz/IgEoZV0WoFGhNwJ+egKwCj+S3qiwakqfSjIVW185pgIRmj4tA96pDTqx3OcnzcS0A/7KwyTvTmKWuUoXQGLIGXgysMVwxwWCHbt8bvIl/EZVK/jO2UeXevsA3eJ6NrZDOip615okr0vNPaIspe4ky+9cFvDwpRrQp+aO9v3v2m9AN/cKwpCRaUI7o04Up7MdjF5hZXPqWo/vm+W/t6sOjoYFMwBwkzkIZwFcZOwX8ItpQZ+G4cN+u64OMfPIytFcgsjRoNleUEGt+QmHRu
Content-Type: multipart/alternative; boundary="_000_IA0PPF726CD7A1F8D709AF21DEE2740CC86DA62AIA0PPF726CD7A1F_"
MIME-Version: 1.0
X-OriginatorOrg: evequefou.be
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: IA0PPF726CD7A1F.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f72a8fb0-4c40-4011-ff74-08dda1fdca2b
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Jun 2025 17:49:14.6608 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 41eaf50b-882d-47eb-8c4c-0b5b76a9da8f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: yFs7lJBi76KfIZMINmbf8s3V1LpWsEPqlQdg/6LD2cK3Wp5wrb1T7CskUTYLM6CXNsksLJ4H9uVMA0pOiJWmvQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM4PR22MB3397
Message-ID-Hash: TWSGQ3PLHQUYS3OFALL6RMB63BFBL4QQ
X-Message-ID-Hash: TWSGQ3PLHQUYS3OFALL6RMB63BFBL4QQ
X-MailFrom: mbishop@evequefou.be
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: The IESG <iesg@ietf.org>, "draft-ietf-tls-rfc8446bis@ietf.org" <draft-ietf-tls-rfc8446bis@ietf.org>, "tls-chairs@ietf.org" <tls-chairs@ietf.org>, "tls@ietf.org" <tls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: Mike Bishop's No Objection on draft-ietf-tls-rfc8446bis-12: (with COMMENT)
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/rpS5iR0OPReH6OUP_u5Q7g3kBh0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
From a real-world perspective, I agree — if servers choose to negotiate deprecated protocols, they should at least use the anti-downgrade mechanisms we've built. In terms of spec consistency, it feels very odd to have 2119 requirements that only apply if you choose to violate the requirements we've already stated. So it's a 6919-esque MUST NOT (BUT WE KNOW YOU WILL). RFC8996 acknowledges that there will be a delay between publication of the BCP and implementation of the deprecation in the real world; "Adopting the practices recommended by this document for any systems that need to communicate with the aforementioned class of systems will cause failure to interoperate. [Consider the trade-off] when deciding how quickly to adopt the recommendations specified in this document." I can certainly understand making a similar acknowledgement here, but perhaps stronger language warning such implementations that they're straying off the beaten path is useful. Regardless, this is a non-blocking comment, and I'll defer to you, the WG, and the responsible AD on exactly how to balance this. ________________________________ From: Eric Rescorla <ekr@rtfm.com> Sent: Monday, June 2, 2025 11:35 AM To: Mike Bishop <mbishop@evequefou.be> Cc: The IESG <iesg@ietf.org>; draft-ietf-tls-rfc8446bis@ietf.org <draft-ietf-tls-rfc8446bis@ietf.org>; tls-chairs@ietf.org <tls-chairs@ietf.org>; tls@ietf.org <tls@ietf.org>; sean@sn3rd.com <sean@sn3rd.com> Subject: Re: Mike Bishop's No Objection on draft-ietf-tls-rfc8446bis-12: (with COMMENT) Thanks. It might help to start with some background. While it's true that the IETF has deprecated TLS versions prior to TLS 1.2, we also know that there are many sites which support TLS 1.0 and TLS 1.1. [0] We would still like those implementations to perform anti-downgrade, despite violating this other MUST. So, I don't think that treating this as a historical requirement is the right answer. -Ekr [0] https://www.ssllabs.com/ssl-pulse/ On Mon, Jun 2, 2025 at 7:40 AM Mike Bishop <mbishop@evequefou.be<mailto:mbishop@evequefou.be>> wrote: Sorry, I should have quoted it. It's https://tlswg.org/tls13-spec/draft-ietf-tls-rfc8446bis.html#section-4.1.3-11 in the editor's copy: [RFC8996<https://tlswg.org/tls13-spec/draft-ietf-tls-rfc8446bis.html#RFC8996>] and Appendix E.5<https://tlswg.org/tls13-spec/draft-ietf-tls-rfc8446bis.html#backward-compatibility-security> forbid the negotiation of TLS versions below 1.2. However, server implementations which do not follow that guidance MUST set the last 8 bytes of their ServerHello.random value to the bytes: 44 4F 57 4E 47 52 44 00 Appendix E.5 states that versions below 1.2 "MUST NOT be negotiated for any reason," yet this text then has a MUST-level requirement applying exclusively to server implementations which ignore the MUST NOT. ________________________________ From: Eric Rescorla <ekr@rtfm.com<mailto:ekr@rtfm.com>> Sent: Friday, May 30, 2025 10:54 AM To: Mike Bishop <mbishop@evequefou.be<mailto:mbishop@evequefou.be>> Cc: The IESG <iesg@ietf.org<mailto:iesg@ietf.org>>; draft-ietf-tls-rfc8446bis@ietf.org<mailto:draft-ietf-tls-rfc8446bis@ietf.org> <draft-ietf-tls-rfc8446bis@ietf.org<mailto:draft-ietf-tls-rfc8446bis@ietf.org>>; tls-chairs@ietf.org<mailto:tls-chairs@ietf.org> <tls-chairs@ietf.org<mailto:tls-chairs@ietf.org>>; tls@ietf.org<mailto:tls@ietf.org> <tls@ietf.org<mailto:tls@ietf.org>>; sean@sn3rd.com<mailto:sean@sn3rd.com> <sean@sn3rd.com<mailto:sean@sn3rd.com>> Subject: Re: Mike Bishop's No Objection on draft-ietf-tls-rfc8446bis-12: (with COMMENT) Thank you for comments. I have made a PR to address most of these comments: https://github.com/tlswg/tls13-spec/pull/1385 I am a bit unsure about one comment. Can you point to the offending text for the comment below: The language around the SCSV for pre-1.2 values feels odd. You MUST NOT negotiate older versions, but if you do anyway, you MUST do it this way? I would shift this to a description of how clients and servers were required to behave prior to this revision of 1.3 at most.
- [TLS] Mike Bishop's No Objection on draft-ietf-tl… Mike Bishop via Datatracker
- [TLS] Re: Mike Bishop's No Objection on draft-iet… Eric Rescorla
- [TLS] Re: Mike Bishop's No Objection on draft-iet… Mike Bishop
- [TLS] Re: Mike Bishop's No Objection on draft-iet… Eric Rescorla
- [TLS] Re: Mike Bishop's No Objection on draft-iet… Mike Bishop
- [TLS] Re: Mike Bishop's No Objection on draft-iet… Eric Rescorla