Re: [Uta] Éric Vyncke's No Objection on draft-ietf-uta-rfc7525bis-09: (with COMMENT)
Peter Saint-Andre <stpeter@stpeter.im> Wed, 13 July 2022 18:12 UTC
Return-Path: <stpeter@stpeter.im>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 108E8C14CF0F; Wed, 13 Jul 2022 11:12:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=stpeter.im header.b=dHgtzA2c; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=kZIRaTWc
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g4OtCggarBfM; Wed, 13 Jul 2022 11:12:09 -0700 (PDT)
Received: from wout5-smtp.messagingengine.com (wout5-smtp.messagingengine.com [64.147.123.21]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D42ECC14F72F; Wed, 13 Jul 2022 11:12:09 -0700 (PDT)
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id 504B7320090C; Wed, 13 Jul 2022 14:12:08 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Wed, 13 Jul 2022 14:12:08 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=stpeter.im; h=cc :cc:content-transfer-encoding:content-type:date:date:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:sender:subject:subject:to:to; s=fm1; t=1657735927; x= 1657822327; bh=tyUTwxOAHcg80vEx8SN3oGmXXGDlhHurltsogvFx50k=; b=d HgtzA2cickKYx0DF3RZplPj/fwAj25xnUEQ+41SOliUiEXKf3xI1oA7jCPsdIFGa jETsPALQ3ZFpmS5YIo9BMF7jCyQkpmnmx4CZvD05ZA+d7jagIGKLZjvwuexLTA8N xDRcXiA07SA3S5oId/tzYPrv2d5c1zJ4PULMUIpArlogt0gOfTBEgACnlTDGgDj5 EU9Lf8hVVpztL7aaP6TzdirmhLm9TCCpmFK4oTikInTpEGrcjJzWnlutxhgK7/oK NDiYaoorjRPy3diIlyqzTLVJp1mdurOlTDGacDdM2iQFeKRkUnvCVE+uhN3GFOOG gJRjGoAHFBZINIagfMacw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:date:date:feedback-id:feedback-id:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:sender:subject:subject:to:to:x-me-proxy:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t=1657735927; x= 1657822327; bh=tyUTwxOAHcg80vEx8SN3oGmXXGDlhHurltsogvFx50k=; b=k ZIRaTWcLLzfnP5sptCQTG02N0Ax6RLgcoHq4R0vbt8BoIG+CBeFZODP0yqG0ETvM n3PUeAKbF4OYewdFfte5wC/Pe5HiCOmG/ZOy8UCbCtUPM3mmeOjVLCs+bPHNMixK pjkiv5u4EvBla9e+QzFGy5Q14+C5xTRzVZqBW0eS0vQ/eoXlBxN4r7HKRQ2X5RrB GR6vsWNDPuHWn04JWouf6gJWwStW7gF4uAQpSFPLU/X+A/BFQErrXc4cPtiicrfH /ENFnj2Wp87Iok/thvO3SurBsxjzLwVtpTzkr6+QHkpmI6A7Ds+zKG73YpwxhgDe Ew6i6h5DLmGyX5dz8eDrA==
X-ME-Sender: <xms:9wrPYhRYZ3bmT0LhXJQdZjcysKsEbWeTlUn86ueR7YMVRcbzxtOrsQ> <xme:9wrPYqyUiBVflGJ55O2Ek6240NmuB3cbynvHrJAaEb_i0Rkk3Sw9mN5f08fdOv58Y E5jET_Z11ofPtM8Qw>
X-ME-Received: <xmr:9wrPYm0tqg5_yCNjE3-tK_ICwv7gbeDTc3anlQt039W-uh7KZ4qrIFH3wBeg>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrudejjedguddvudcutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd enucfjughrpefkffggfgfvvehfhffujggtgfesthekredttdefjeenucfhrhhomheprfgv thgvrhcuufgrihhnthdqtehnughrvgcuoehsthhpvghtvghrsehsthhpvghtvghrrdhimh eqnecuggftrfgrthhtvghrnhepudfgfeelveekiefhgeduheehveffheffffejiedtueej ledtteduheetgefgvdejnecuffhomhgrihhnpehivghtfhdrohhrghdpghhithhhuhgsrd gtohhmnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhep shhtphgvthgvrhesshhtphgvthgvrhdrihhm
X-ME-Proxy: <xmx:9wrPYpCxpM59Tj1wxFKR3Q94UimBqE_B-tl8waeLDtVc6TsgojqwRw> <xmx:9wrPYqi-qsC1TDC44LqAESweuDayODQisNFoqBbqN0bjop-eQaCkbA> <xmx:9wrPYtq5xGNMTiBHND30xiCix6R9cdBeXy6QHYjXEFMwl4MVuZDj4w> <xmx:9wrPYsZt4q4hoPdlCnE0McgyXySQsVwu-md3rzYcUyx-iUyYTvAQzw>
Feedback-ID: i24394279:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Wed, 13 Jul 2022 14:12:06 -0400 (EDT)
Message-ID: <a5948297-021e-fbd5-c05b-4587cdf10658@stpeter.im>
Date: Wed, 13 Jul 2022 12:12:06 -0600
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0) Gecko/20100101 Thunderbird/91.11.0
Content-Language: en-US
To: Éric Vyncke <evyncke@cisco.com>, The IESG <iesg@ietf.org>
Cc: draft-ietf-uta-rfc7525bis@ietf.org, uta-chairs@ietf.org, uta@ietf.org, leifj@sunet.se
References: <165761223987.5020.15178372510088278304@ietfa.amsl.com>
From: Peter Saint-Andre <stpeter@stpeter.im>
In-Reply-To: <165761223987.5020.15178372510088278304@ietfa.amsl.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/-Tz6YY0-USqsp5pDx7-qppktpF8>
Subject: Re: [Uta] Éric Vyncke's No Objection on draft-ietf-uta-rfc7525bis-09: (with COMMENT)
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jul 2022 18:12:14 -0000
On 7/12/22 1:50 AM, Éric Vyncke via Datatracker wrote: > Éric Vyncke has entered the following ballot position for > draft-ietf-uta-rfc7525bis-09: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ > for more information about how to handle DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-uta-rfc7525bis/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > # Éric Vyncke, INT AD, comments for draft-ietf-uta-rfc7525bis-09 > CC @evyncke > > Thank you for the work put into this document. > > Please find below some non-blocking COMMENT points (but replies would be > appreciated even if only for my own education). > > Special thanks to Leif Johansson for the shepherd's detailed write-up including > the WG consensus and the justification of the intended status. > > I hope that this review helps to improve the document, > > Regards, > > -éric > > ## COMMENTS > > ### No 7457bis ? > > I find a little weird that the legacy 'attack' document, RFC 7457, is not > updated, but that the new attacks (the updated content of RFC 7457) are > described in this document. No hard feeling though, and thanks for the warning > text in section 1. The original chronology of work in the UTA WG was to define the attacks that justified further work (RFC 7457), then doing that further work. It was a kind of "scaffolding" and perhaps we didn't see the need for that the second time around. > ### Section 1 > > ``` > Therefore this document replaces [RFC7525], with an explicit goal to > encourage migration of most uses of TLS 1.2 to TLS 1.3. > ``` > Should it be stated with 'RECOMMEND' ? I'm not sure that RECOMMEND belongs in text that's merely explaining the motivation for this work. There are plenty of actual recommendations later in the document. > ### Section 1 what is meant by "stronger" > > ``` > Furthermore, this > document provides a floor, not a ceiling, so stronger options are > always allowed (e.g., depending on differing evaluations of the > importance of cryptographic strength vs. computational load). > ``` > > While the astute readers will understand what is meant by 'stronger', should > this document be clear on what is meant by 'stronger' in each subsequent > sections ? I suppose that RFC 3365 / BCP 61 defined "strong" in the context of IETF protocols, but more directly appropriate might be a pointer to RFC 4949. Section 2 already does include this sentence: A number of security-related terms in this document are used in the sense defined in [RFC4949]. We could change that to: A number of security-related terms in this document are used in the sense defined in [RFC4949], including "attack", "authentication", "certificate", ..., "self-signed certificate", "strength", and "strong". > ### Section 3.1.1 what about SSLv1 > > While I am not familiar with old SSL, if there was a SSLv1, should this > document also have recommendation about SSLv1 ? That's pretty much implied by the prohibition on anything older than TLS 1.2. We mention 1.0 and 1.1 simply because they were not forbidden by RFC 7525. > ### Section 3.1.1 unclear > > Perhaps because I am not a native English speaker, but I find this sentence > hard to parse: ``` > Even if a TLS > implementation defaults to TLS 1.3, as long as it supports TLS 1.2 > it MUST follow all the recommendations in this document. Other folks seem to have been confused by that, too, so we need to make it clearer. This is a possibility: "To the extent that an implementation supports TLS 1.2 (even if it defaults to TLS 1.3), it MUST follow the recommendations regarding TLS 1.2 specified in this document." > ### Section 3.1.3 SCSV > > It would not hurt expanding "SCSV" at first use even if a reference is added. Agreed. > ### Section 3.7 ESNI as a SHOULD ? > > Shouldn't ESNI be a normative "SHOULD" ? Or is the non-normative text "just" to > avoid forming a cluster with ESNI draft ? Which would be sad... There is always debate about references to works in progress. It's not clear that a protocol still being hashed out in a WG (even a protocol as important as ESNI) can be reasonably considered a best current practice, given that it's far from stable. Eventually, we assume that the IETF will publish rfc7525ter to replace rfc7525bis, at which time that BCP will include updated recommendations (including, I'd expect, ESNI and various other things that are developed between now and then). > ### Section 4.1 post-quantum crypto > > A little surprised by the absence of any "post-quantum crypto" reference in > this introduction text. Noted: https://github.com/yaronf/I-D/issues/423 > ### Section 4.5 TWIRL ? > > Should "TWIRL" be expanded ? or at least given a reference ? Yes: https://github.com/yaronf/I-D/issues/424 Peter
- [Uta] Éric Vyncke's No Objection on draft-ietf-ut… Éric Vyncke via Datatracker
- Re: [Uta] Éric Vyncke's No Objection on draft-iet… Peter Saint-Andre
- Re: [Uta] Éric Vyncke's No Objection on draft-iet… Peter Saint-Andre