IETF Logo Mail Archive

Re: [TLS] consensus call: deprecate all FFDHE cipher suites

Christopher Wood <caw@heapingbits.net> Fri, 10 March 2023 01:35 UTC

Return-Path: <caw@heapingbits.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 34F1BC16B5BF for <tls@ietfa.amsl.com>; Thu, 9 Mar 2023 17:35:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.799
X-Spam-Level:
X-Spam-Status: No, score=-2.799 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=heapingbits.net header.b="UbQ9G+O1"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="FUeXCsON"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jjOfIfbCs30d for <tls@ietfa.amsl.com>; Thu, 9 Mar 2023 17:35:13 -0800 (PST)
Received: from wout1-smtp.messagingengine.com (wout1-smtp.messagingengine.com [64.147.123.24]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9130EC16B5CF for <tls@ietf.org>; Thu, 9 Mar 2023 17:35:13 -0800 (PST)
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.west.internal (Postfix) with ESMTP id 5DA4E3200940; Thu, 9 Mar 2023 20:35:12 -0500 (EST)
Received: from mailfrontend2 ([10.202.2.163]) by compute5.internal (MEProxy); Thu, 09 Mar 2023 20:35:12 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=heapingbits.net; h=cc:cc:content-transfer-encoding:content-type:content-type :date:date:from:from:in-reply-to:in-reply-to:message-id :mime-version:references:reply-to:sender:subject:subject:to:to; s=fm1; t=1678412111; x=1678498511; bh=vEgUv6jJjSrrXnwGV3m2DAADy YJgm75b6Cwz3jXZRm0=; b=UbQ9G+O1ezZBZtoSkkcIbGmgFZDkKqYN+w4HEW6ZA bMICedZF5m5SoJmp75T2mkMS8dLbejeH9CH01WUUNSyaA4kc/j9tmcxPmOrpjE1o 3FVeCoFb0Foqkyh2OvJZLzawpsMzGnCLQxSwSstGhnx9UuMvZhdNs7+XXbAaveGp azWKj0SEIAar3tt3ETLHHI51AgXXzBxQeL92b7Sw4q0/N2MWIXuVzRMTrVQXqBys ntZBlm6POrSPrcGGk3V/4DeoO7K0iILqD4A7VMm5TSn2r6aMvz/8lD7FND0Zn0DA h7ueWwoOUH36kE9jiRS0XX8eXJRuaMo2szGCCR1jX9kng==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:content-type:date:date:feedback-id:feedback-id :from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:sender:subject:subject:to:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; t= 1678412111; x=1678498511; bh=vEgUv6jJjSrrXnwGV3m2DAADyYJgm75b6Cw z3jXZRm0=; b=FUeXCsONZHKSza9NmAUjUcLErx8yA+hD7gkudTjgB14VdVNine7 IQSpSg3iM7LRHXrR+hbJhtpAoUjkTtQkMsF5d00HgQwI5abYnaaKIWif7hdxz77J fUU8xHHKyOlcPe9pjxP4OlgQXlvcQ3FRvJ7MDbYYvxj3SPtv7MPAE/lyzxRB4qLH mKSAtC6aQqVanBxRT6VKjkpXQn51e6JFaDRiqcMS63a/iA0z19dx1v5pTUZXopDq diorWi1e/Oo05JhYOBRZ6Mb7U7C4eNT5c+r0VK8iLUgovOMwuyO3YuqYfXzMv4Vb TX9L5e9R5FaNt5sY7VpuwiU18BjrKYv9Grw==
X-ME-Sender: <xms:T4kKZHFNRYOHUL0whpQinp3i3JB-XrJm1rLkytdW3qTlGJYMGppyKg> <xme:T4kKZEWbN9L6AfJ4dzr4aXO0ENScXqyYLUoGnvPgpFbb08lLx0-4ebqSAUAy-8Laf f_uNgIZfh8Gr_oG2lg>
X-ME-Received: <xmr:T4kKZJJyKWj5ZCrx5DZI3uMxM54aJ3yyLsZJwuKHlXSWFbnoPUm4SZ7y0kW5u_rZHqhixOvrOG1b-sDmhIFVTI6ldMcDG4AsyxQ>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvhedrvddujedgfeehucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurheptggguffhjgffvefgkfhfvffosehtqhhmtdhhtddvnecuhfhrohhmpeevhhhr ihhsthhophhhvghrucghohhougcuoegtrgifsehhvggrphhinhhgsghithhsrdhnvghtqe enucggtffrrghtthgvrhhnpefhjedtleektdduhfeihfethfekvddthedtgfekieejheff hedvieefveeugfetueenucffohhmrghinhepihgvthhfrdhorhhgnecuvehluhhsthgvrh fuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomheptggrfieshhgvrghpihhnghgs ihhtshdrnhgvth
X-ME-Proxy: <xmx:T4kKZFFgEBaasE7qzrmutjGqfq97IO4t1dovbNmeMYHeDi9cJH9cAg> <xmx:T4kKZNWMcWD2-4B2rjSynA4ejkgg_Qd3SJAoKnQl6BOfwe3rB6N_Pg> <xmx:T4kKZAPxIiCL2eFFOzG8_9zT97GPsFqxAQMYhS518a1I657buKbBqw> <xmx:T4kKZOeP55DR7x0IQa5L-N2LsuGD8i6FWob7a4l_H-raXHuGgvYDhw>
Feedback-ID: i2f494406:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Thu, 9 Mar 2023 20:35:11 -0500 (EST)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.120.41.1.1\))
From: Christopher Wood <caw@heapingbits.net>
In-Reply-To: <AAEB9108-0EFA-4F77-81FB-8767927428E9@sn3rd.com>
Date: Thu, 09 Mar 2023 20:35:09 -0500
Cc: "TLS@ietf.org" <tls@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <23F0D72A-AE59-4854-81B8-931884B7EAB9@heapingbits.net>
References: <AAEB9108-0EFA-4F77-81FB-8767927428E9@sn3rd.com>
To: Sean Turner <sean@sn3rd.com>
X-Mailer: Apple Mail (2.3696.120.41.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/sOUWaxtdxOVhDBH114W5zkm8LAY>
Subject: Re: [TLS] consensus call: deprecate all FFDHE cipher suites
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Mar 2023 01:35:18 -0000

First, let us apologize for taking so long to conclude this consensus call. We should have closed this much sooner.

After reviewing the responses on the mailing list, and taking into consideration discussions that took place during meetings, it is our assessment that there is rough consensus to deprecate FFDHE in TLS 1.2, i.e., all TLS_DHE_* ciphersuites.

Authors, can you please update the document (and fix the clarification that Ekr recently raised) at your convenience?

Best,
Chris, Joe, Sean

> On Dec 13, 2022, at 9:46 AM, Sean Turner <sean@sn3rd.com> wrote:
> 
> During the tls@IETF 115 session topic covering draft-ietd-tls-deprecate-obsolete-kex, the sense of the room was that there was support to deprecate all FFDHE cipher suites including well-known groups. This message starts the process to judge whether there is consensus to deprecate all FFDHE cipher suites including those well-known groups. Please indicate whether you do or do not support deprecation of FFDHE cipher suites by 2359UTC on 6 January 2023. If do not support deprecation, please indicate why.
> 
> NOTE: We had an earlier consensus call on this topic when adopting draft-ietd-tls-deprecate-obsolete-kex, but the results were inconclusive. If necessary, we will start consensus calls on other issues in separate threads.
> 
> Cheers,
> Chris, Joe, and Sean
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls

v2.23.0 | Report a Bug | By Email