Re: [TLS] draft-green-tls-static-dh-in-tls13-01

Melinda Shore <> Mon, 17 July 2017 04:47 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 894C2129ADA for <>; Sun, 16 Jul 2017 21:47:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id pTi947-UsJI4 for <>; Sun, 16 Jul 2017 21:47:20 -0700 (PDT)
Received: from ( [IPv6:2a00:1450:400c:c0c::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 207E9126B72 for <>; Sun, 16 Jul 2017 21:47:20 -0700 (PDT)
Received: by with SMTP id w4so16322450wrb.2 for <>; Sun, 16 Jul 2017 21:47:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20150623; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-transfer-encoding; bh=HBnqGCMybY5RyuMRolRhSV/bW6VSZ4Tb53hLaWPm3Mw=; b=rMJO8k6CqKbKt9D3HK0Pz/j1yPYRrz1XrNORk0qWosvgIDYzAil3ooLpfukatJ1NO/ V7r6Riq0OhPe+crqKbj63b2E+WdzOZMhj8oZNRDs3fAjXmE+1MfMc4aMWPVVOrwVC5Jw qTWCDDmbIqvTgxOB+ty9fyfF7wFIazgou6EfadPS7Ro2NMNCkOWwJGfKB2lxTXEwS9+J mjq00BQ9/qQFAjnpk0oRtdYi2mBj9wkbK9vg64iHDW5LvEgg1fSYCTvokRlFxrEm9oKL By6in5RQLr71nj4ClivknU3eLK/g5keAP1CqDS1rCYG4SIOB+Yy10XtuA/hPnb05YMgY KOdQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding; bh=HBnqGCMybY5RyuMRolRhSV/bW6VSZ4Tb53hLaWPm3Mw=; b=pq/KQiZbp/Hb7KsY8v/Ni6A99/4Mk8VilP6vYllMTfO7fUsxIAmqqhDt0In1VnJPAz +KqWx4rqhq3armMijAupaNkycLKHfMaa3s4/17P00LLafKDMehZNUALC2g5QOejIcLNX UpSbRnW/zoLitW1RNSucouT5BvAXTAtwGbW6Qw5BI7nL/bXfXnpdz/MZJn7F7suq4j/Q DlTsk8pY1ADSK01ExF2q/fTK5N+ou9EzUTiRO8qVLJ4mZ9wQK1AUXk5XgXLfjCH8xNDC UfzHolra2UA1d71vgzReHboaI7cJHKM33lRneHTUocQ5BDOvfdW4o/UHr6DsCUQecKna nRkQ==
X-Gm-Message-State: AIVw112MZfSHVBgvkxYTEigcSjBbrG1VNDJf5D6sKwhGB0QgSw7+mVUZ 2JEK/Cp0LB7oYc5vkv4jCg==
X-Received: by with SMTP id c20mr10084319wre.80.1500266838404; Sun, 16 Jul 2017 21:47:18 -0700 (PDT)
Received: from ([2001:67c:1232:144:29a3:303b:43a5:f0bb]) by with ESMTPSA id 22sm17635547wru.29.2017. for <> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 16 Jul 2017 21:47:17 -0700 (PDT)
References: <> <> <> <> <> <> <> <> <> <> <> <>
From: Melinda Shore <>
Message-ID: <>
Date: Mon, 17 Jul 2017 06:47:17 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <>
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 8bit
Archived-At: <>
Subject: Re: [TLS] draft-green-tls-static-dh-in-tls13-01
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 17 Jul 2017 04:47:21 -0000

On 7/17/17 1:23 AM, Daniel Kahn Gillmor wrote:
> Could you point me (and the list) to those requirements, please?  More
> specificity than "some countries" would be a useful contribution to this
> discussion.

At the time when I was working on VoIP there were a few countries,
such as South Africa, which required that any media streams collected
as a result of a wiretap order be handed over in the clear.  But this
was 20 years ago and things may or may not have changed.  That said,
I expect their requirements can be met by having operators in those
countries stick with TLS 1.2.

There are things that would surprise me more right now than having
proponents of weakening TLS 1.3 come back with a list of countries.
Such as, for example, having representatives from service providers
in those countries show up with requirements - that would surprise me,
given that they haven't yet and that getting TLS 1.3 done has been a
lengthy effort.

At this point the request to add the static D-H proposal to TLS 1.3
strikes me as unreasonable, even given what are frankly vague
references to countries requiring that data be decrypted before being
handed off to law enforcement or the government.