Re: [TLS] Publication has been requested for draft-ietf-tls-oldversions-deprecate-05

Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Tue, 01 October 2019 10:51 UTC

Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0C2C3120137; Tue, 1 Oct 2019 03:51:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AqkhbQiXkuWm; Tue, 1 Oct 2019 03:51:31 -0700 (PDT)
Received: from mail-ot1-x333.google.com (mail-ot1-x333.google.com [IPv6:2607:f8b0:4864:20::333]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B960912001A; Tue, 1 Oct 2019 03:51:31 -0700 (PDT)
Received: by mail-ot1-x333.google.com with SMTP id 41so11084602oti.12; Tue, 01 Oct 2019 03:51:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=aKf6RPCYFYMH5+0LrOBjApLuSGVXw+eeM96ww9hyKZE=; b=o/j8uLGwKiZefAOv30XLyIt2EgECB9c1T1y6fUxJjVc69RJFgfDbqG3N6E8Wf+7Vnw FJYdCZbYN2IYiv6dHiUxhrojEOS2VuU3npX8q0iCC09UukhtbW2COfDCEqdtO8b1jxg/ rEpW0gpCOhCKprwN8gje4Y+p8tvN+2HQCbRuYBNGWUif/Ldfld9dRpaYzjxAn+KfRcBQ R6TAfZUy990VnjslMJ8rPcOBaO86DCcS9+rMW8HFn0fQNwBCVXrwBmlrKmL4FaEzID1R 0vAtVFbamY2RfoiF7SQP2EvvPThBFPf2jhvzZvu50pvDXvP7l7PqytExR11po1wnjff0 KS2g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=aKf6RPCYFYMH5+0LrOBjApLuSGVXw+eeM96ww9hyKZE=; b=GYhI+J1G3sicRIU6OY/u1jStDSufNn4/ZbBQ+Un5c9Lapmmd3/+I1PdP4fXpXnTTyN hsaxNM+mQPXZPX1Pa5nToIxtL43Jv7oVMZXUhAmmdXh++/YS6eVTY/5UvEcmi0ZxwwDM 4HvmIIb0audoaSZXXR/T6y+G9+eg07n8StyzZ4MwCotseUbKbUvyuKG7HPffHqQh4OFm cIjtCL+hkaQKfvsy2GYGLg8FiNUzSLmNT8BCDvps7ebxMBiT2xdhCLO3HZoOsnxnEOg2 P4YY4wF/ZLxaOYkqhkC5E1escdhkJihE7TgKS52jdXA6tZmCYRLf/BWvJ4plsBSfWNN3 +iyw==
X-Gm-Message-State: APjAAAUr5QslZhEnUcB0suGJyFyWM/98h+hKfvpfITexmP4HarL0Ssdo Y580hb8knfb2Atab7YWBaQQqEK+rRz5Kn46yLIg=
X-Google-Smtp-Source: APXvYqzIEyLuIlz6GB8iH9ZIP/ECafGAetl6Za7gDIq2rfKwIhynj4G64iGI5KdIUAl3yqhBK3XgJsWDk8cQKF0mEZ4=
X-Received: by 2002:a9d:8a7:: with SMTP id 36mr17852206otf.114.1569927091066; Tue, 01 Oct 2019 03:51:31 -0700 (PDT)
MIME-Version: 1.0
References: <156172485494.20653.307396745611384846.idtracker@ietfa.amsl.com> <989F828F-B427-47A6-A114-4EAEA67D43D7@ericsson.com>
In-Reply-To: <989F828F-B427-47A6-A114-4EAEA67D43D7@ericsson.com>
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Date: Tue, 1 Oct 2019 06:50:55 -0400
Message-ID: <CAHbuEH403MK4C_1dkedWX1fGiBMpVjvKahFY=+iC-gwQrTVtqg@mail.gmail.com>
To: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org>
Cc: Sean Turner via Datatracker <noreply@ietf.org>, "kaduk@mit.edu" <kaduk@mit.edu>, "iesg-secretary@ietf.org" <iesg-secretary@ietf.org>, "tls-chairs@ietf.org" <tls-chairs@ietf.org>, "tls@ietf.org" <tls@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000961dbe0593d722f4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/wJVAqpJH1l9nQNQgvDlIcbziCkE>
Subject: Re: [TLS] Publication has been requested for draft-ietf-tls-oldversions-deprecate-05
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Oct 2019 10:51:34 -0000

On Tue, Oct 1, 2019 at 4:04 AM John Mattsson <john.mattsson=
40ericsson.com@dmarc.ietf.org> wrote:

> Hi,
>
> I think draft-ietf-tls-oldversions-deprecate needs to update
> draft-ietf-rtcweb-security-arch as well.
>
> draft-ietf-rtcweb-security-arch-20 uses DTLS and even talks about support
> of DTLS 1.0.
>
>   "Earlier drafts of this specification required DTLS
>   1.0 with the cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, and
>   at the time of this writing some implementations do not support DTLS
>   1.2; endpoints which support only DTLS 1.2 might encounter
>   interoperability issues."
>
> Good catch.


> You should check if there are more drafts in the publication process that
> needs to be updated.
>

This is something the security directorate should be watching for to check
in reviews prior to publication.  The ADs will also be adding this to their
list of things to look for in drafts that are in the publication queue as
that's been the practice for some time.  A proactive search could be
helpful, but having the stop gap in place is likely best as it could come
in in drafts that have not been written yet.

Best regards,
Kathleen

>
> Cheers,
> John
>
> -----Original Message-----
> From: TLS <tls-bounces@ietf.org> on behalf of Sean Turner via Datatracker
> <noreply@ietf.org>
> Date: Friday, 28 June 2019 at 15:14
> To: "kaduk@mit.edu" <kaduk@mit.edu>
> Cc: "iesg-secretary@ietf.org" <iesg-secretary@ietf.org>rg>, "
> tls-chairs@ietf.org" <tls-chairs@ietf.org>rg>, "TLS@ietf.org" <tls@ietf.org>
> Subject: [TLS] Publication has been requested for
> draft-ietf-tls-oldversions-deprecate-05
>
>     Sean Turner has requested publication of
> draft-ietf-tls-oldversions-deprecate-05 as Best Current Practice on behalf
> of the TLS working group.
>
>     Please verify the document's state at
> https://datatracker.ietf.org/doc/draft-ietf-tls-oldversions-deprecate/
>
>     _______________________________________________
>     TLS mailing list
>     TLS@ietf.org
>     https://www.ietf.org/mailman/listinfo/tls
>
>
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls
>


-- 

Best regards,
Kathleen