Re: [TLS] Publication of draft-rhrd-tls-tls13-visibility-00
Ion Larranaga Azcue <ilarra@s21sec.com> Tue, 17 October 2017 19:55 UTC
Return-Path: <ilarra@s21sec.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3C54F132705 for <tls@ietfa.amsl.com>; Tue, 17 Oct 2017 12:55:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.701
X-Spam-Level:
X-Spam-Status: No, score=-4.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O8tDohAIo03n for <tls@ietfa.amsl.com>; Tue, 17 Oct 2017 12:55:28 -0700 (PDT)
Received: from mail.ssi.pt (mail1.ssi.pt [195.23.55.2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CEDDD13292A for <tls@ietf.org>; Tue, 17 Oct 2017 12:55:27 -0700 (PDT)
From: Ion Larranaga Azcue <ilarra@s21sec.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Florian Weimer <fweimer@redhat.com>, Hubert Kario <hkario@redhat.com>
CC: "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] Publication of draft-rhrd-tls-tls13-visibility-00
Thread-Index: AQHTO72INxjGwk0f70e0hZ2DWWm8J6Lb99iAgAM9PuCAAPX8AIAABTcAgAFt2gCAABvygIAGS3YAgAA4PXCAAAQkAIAAMCDB///0FICAABKpwQ==
Date: Tue, 17 Oct 2017 19:55:24 +0000
Message-ID: <1508270124069.56797@s21sec.com>
References: <7E6C8F1F-D341-456B-9A48-79FA7FEC0BC1@gmail.com> <2078865.Sr80Q4DYO4@pintsize.usersys.redhat.com> <d74976e1-6c0a-a833-178b-d0cfa9ef68cf@cs.tcd.ie> <2530307.EziazPmtDQ@pintsize.usersys.redhat.com> <03d1ea01-d6d7-bf2b-89ed-97a8a270a62e@cs.tcd.ie> <eaeae6e9-dd17-1482-ccae-2af6a14a8b18@redhat.com> <ba29233fe2aa48c78a6ee0e1f7f0584e@LXDOMEXC01.ssidom.com> <7fb19d55-1d51-aa95-5ba5-d383be6c7c47@cs.tcd.ie> <1508265272860.41983@s21sec.com>, <75f64d63-12c1-a5b3-ea4d-8a612e86d371@cs.tcd.ie>
In-Reply-To: <75f64d63-12c1-a5b3-ea4d-8a612e86d371@cs.tcd.ie>
Accept-Language: es-ES, pt-PT, en-US
Content-Language: es-ES
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.228.250.16]
x-exclaimer-md-config: 006f0bbf-7968-42ed-bdf3-292cea52a85c
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/z9m80_Hnu6BmE6pgDI3tCzZOe9w>
Subject: Re: [TLS] Publication of draft-rhrd-tls-tls13-visibility-00
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Oct 2017 19:55:31 -0000
> I agree. > > My point is that if this draft were accepted, then the > infrastructure for the above scenario would all be in > place (the DH value for the snooper and the code to expose > session information to that snooper) and the above > scenario would be more likely to happen, more often. > IOW, by standardising draft-rehired, we'd *also* be > putting in place standard building blocks for an OOB, > client is never told mechanism. I don't see it that way... For me, using the capabilities provided by this draft in order to get an OOB-only "no client involved" mechanism is more difficult and probably less efficient than creating one from scratch... That being said... One thing that bothers me from my last emails is that I seem to find myself on the draft-defending side of the discussion while I don't really like the draft itself due to the concerns I pointed out in my first email... I'm not fully against adding monitoring capabilities to the protocol, but I would prefer a "no-monitoring-allowed" TLS if the alternative was going with an insecure tapping mechanism.
- [TLS] Publication of draft-rhrd-tls-tls13-visibil… Ralph Droms
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Richard Barnes
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Russ Housley
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Arnaud Taddei
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Arnaud Taddei
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Richard Barnes
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Nick Sullivan
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ion Larranaga Azcue
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Hubert Kario
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Russ Housley
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Russ Housley
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Hubert Kario
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Hubert Kario
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Florian Weimer
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ion Larranaga Azcue
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ion Larranaga Azcue
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ion Larranaga Azcue
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Benjamin Kaduk
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Blumenthal, Uri - 0553 - MITLL
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Darin Pettis
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Christian Huitema
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Benjamin Kaduk
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Blumenthal, Uri - 0553 - MITLL
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Andrei Popov
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Tony Arcieri
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ilari Liusvaara
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Russ Housley
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Benjamin Kaduk
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Tony Arcieri
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Dave Garrett
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Russ Housley
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Blumenthal, Uri - 0553 - MITLL
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Kathleen Moriarty
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Kathleen Moriarty
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Steve Fenter
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Blumenthal, Uri - 0553 - MITLL
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Steve Fenter
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Peter Gutmann
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Yoav Nir
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Peter Saint-Andre
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ralph Droms
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Hubert Kario
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Dave Garrett
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Blumenthal, Uri - 0553 - MITLL
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Adam Caudill
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Tony Arcieri
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Benjamin Kaduk
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Benjamin Kaduk
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Colm MacCárthaigh
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Blumenthal, Uri - 0553 - MITLL
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Tony Arcieri
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ion Larranaga Azcue
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Hubert Kario
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Peter Saint-Andre
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Joseph Salowey
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ralph Droms
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ralph Droms
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Yoav Nir
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Yoav Nir
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ralph Droms
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Kathleen Moriarty
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ackermann, Michael
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Richard Barnes
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Roland Zink
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… David A. Cooper
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Jeffrey Walton
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Nick Sullivan
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Ted Lemon
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Richard Barnes
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Peter Bowen
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Stephen Farrell
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Salz, Rich
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Paul Hoffman
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Sean Turner
- Re: [TLS] Publication of draft-rhrd-tls-tls13-vis… Benjamin Kaduk