IETF Logo Mail Archive

Re: [Uta] Depreciation (was Re: Adoption of draft-rsalz-use-san)

"Eliot Lear (elear)" <elear@cisco.com> Fri, 19 March 2021 14:12 UTC

Return-Path: <elear@cisco.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1BA463A1616 for <uta@ietfa.amsl.com>; Fri, 19 Mar 2021 07:12:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.621
X-Spam-Level:
X-Spam-Status: No, score=-14.621 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=c9hWYLYZ; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=cisco.onmicrosoft.com header.b=XXsJc0qS
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oHWe7KWRFuOJ for <uta@ietfa.amsl.com>; Fri, 19 Mar 2021 07:12:28 -0700 (PDT)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 94F133A1615 for <uta@ietf.org>; Fri, 19 Mar 2021 07:12:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3416; q=dns/txt; s=iport; t=1616163148; x=1617372748; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=AtmHmlS+6c8/cM57/nl6jVSymezxiTWVEP9n/8tqZqM=; b=c9hWYLYZI0rc8TCteczA8eQ9Atgq+UmcbJYYRcqFefvcyXiCwrDF0aZx PXvhbaoCjGcuv9xA7t7J5fgI8zoXs46fYp81IYbTtZjiWWqqOMclhSkif ovXD/fqKvw3en5rlyu6n53brt43+8EjHsP/kCvPO/EII/Lnmtpxo1X/Ps g=;
X-Files: signature.asc : 488
IronPort-PHdr: A9a23:Gjgf5RIxiS/NzZ7PPNmcuZMyDhhPgJ39IxIV55w7irlHbqWk+dH4MVfC4el25HfTUInb4u4CgO3T4OjsWm0FtJCGtn1KMJlBTAQMhshemQs8SNWEBkv2IL+PDWQ6Ec1OWUUj8yS9Nk5YS9zza13bvju56jtBUhn6PBB+c+LyHIOahs+r1ue0rpvUZQgAhDe0bb5oahusqgCEvcgNiowkIaE0mXP0
IronPort-HdrOrdr: A9a23:H/q8uKqBR9iSQcVsVOM0yQIaV5trK9V00zAX/kB9WHVpW+SivYSHgOkb2RjoiDwYRXEnnpS6NLOdRG7HnKQV3aA4Bp3neAX9omOnIMVZ7YXkyyD9ACGWzIBg/I9aWexFBNX0ZGIUse/T6gO1Cstl5dGB/ryhi+u29QYTcShBQchbnmBEIyycFVB7QxQDIJI/GoaV6MYvnUvfRV08aMOnCn4ZG9XSvtGjruOmXTcqJT4CrDOPgzSh9aLgH3Gjvis2fjtTzd4ZgBP4uiPj4KHLiYDf9jb90Cvp441SiJ/dzLJ4dbCxo+w0DhmptQqyfoRmXNS5zXAIicWi8kwjntWJgzpIBbUI11rrcmu4oQTg1mDbuV5EgRKPuDzo40fLmsD3SCk3DMBMn+tiA2bkwnA9t9Jx2r8j5RP+i7NrDAjNlCm4x9/EWwACrDvNnVMekPUeh3EabI0GaLU5l/1nwGppFv47bUbHwbFiNNMrINDX5f5Qf1/fRWvepHNTzNulWWl2NguaQ2AZ0/blkAR+rTRc9Q811cYflnAP+NYWUJ9f/dnJNaxuifVnUtIWV6RgH+0MKPHHSFDlcFbpCia/MF7nHKYINzbmsJjs+og44+msZdguwIYtno/CFHdVr3Q7dU6rKcDm5uwPzjn9BEGGGRj9wMBX4JZ0/pfmQqDwDCGFQFcy18S6pfESBdDaRuazNJpaD+SLFxqoJa95mynFH7VCI3gXV8MY/vwhXUiVn87NIor28uzXGcyjYobFIHIBYCfSE3EDVD/8KIFr9UawQEL1hxDXRjfockz79pRgDbjC84EoudEwH7wJljJQpUWy58mNJzEHmLcxZlFCLLTulb7+o3K382bO52BgIQFcEU5R/bXlXxpx1Es3GnKxVYxGl8SUeGhU0nfCDAR4VdnqHAlWoEky5bi6NIWKxScpC8uuN2WTi3d7ngPTc74s3om4oev1cJIxCZgrHJFrHQLQDhpvhEJBs2FYcjIJQUfZCxLjgaiol4YvGenabtVw6T3bevJ8mDb6jwG8rdtqbmYHVzSuOPTn8DoGdn5xvBlN1IMxxJCHgi2iLGMjhv9QCiw9VE2nRJRcDAqEY41InKvMYw8YdxbRuRWqzzcuZ2Ht60IewkvmICH8Q4CWPnNt/lZFz63t7FR4Ml+4Qns1QHV7vYphfF6250pb2fOXZ6a1zmuaYkYDxOZYKz3efT4OOGpVtqKK/Q/QlzCYGXo8wJIyeuTbEbQ4arnWnmigMYuSiMg9brNp1YcgMNjvt+MRONjvCDO9PXf9C+kz3RaSqWtgMC5oqGM8mfeA4myu0EGomHo+C+HVOlJoWvUSJMyd9XHtQ7KN3I9ihdw4+eu2PWOZUK/K9YjHKzpCIAjUu2i4UqUhro1Vp7s7sP9rBIbAOAG4nU1vzVE7NoP5hUkeSKN07PTIPZJuZdUbf2Zc8kAynNqCIUM3umXNc6ADVEBoi2WeM8KC4rLOp7ZqGEGHqQfqMVSU8iFW/Z7+LmC+/K9fD7h1LXVdaUA65ngn4fiLcJfIDh62M+5E51i3PxaGAfFgYbnAHa9VqBl049uFxbDKMyX53R3dpjt9LOZF9X29Tca7HQKLHqpJ/rWBSCOxq7rv5NT2ijH9DSa/YQAfg4ZOcEQLdMRNijU4luQMo2CPY72yplhgikdU5DFsi0Xk1Yen6nrKBE0uC3ysvrxGGT1IdmWShcvL8eKExG3w7ThM157EDlpRdLh1aq4tZ5myKTxvJ8gWtKOp+KRqgj0rWmZaM1IB
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AYAADir1Rg/4kNJK1RCRsBAQEBAQEBAQUBAQESAQEBAwMBAQGBfAYBAQELAYFSUQeBSAg2MYRCg0gDhFlgiEcDmTOBLoElA1QEBwEBAQoDAQEyAgQBAYRQAoF7AiU0CQ4CAwEBCwEBBQEBAQIBBgRxhWENhkQBAQEDASMdAQE3AQQLAgEIDgoqAgIyJQIEDgUOEYIuAiEBglUDDiEBoAsCih53gTKDBAEBBoJMgkYYggwHCYE5AYFSgSOKTSYcgUlCgTgMEIFbfj6EFINCNYIrgV5mBi42BC8UgRU/gR8RnSGccgqDBoEeg1yCbpRuAx+DRIpplg2zFF4Bg3sCBAIEBQIOAQEGgVQ6gVlwFWUBgj4+EhcCDY4fg2+KWXM4AgYBCQEBAwl8jlkBAQ
X-IronPort-AV: E=Sophos;i="5.81,262,1610409600"; d="asc'?scan'208";a="605004090"
Received: from alln-core-4.cisco.com ([173.36.13.137]) by rcdn-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 19 Mar 2021 14:12:27 +0000
Received: from mail.cisco.com (xbe-aln-006.cisco.com [173.36.7.21]) by alln-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 12JECRNw020062 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Fri, 19 Mar 2021 14:12:27 GMT
Received: from xfe-rcd-002.cisco.com (173.37.227.250) by xbe-aln-006.cisco.com (173.36.7.21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.3; Fri, 19 Mar 2021 09:12:27 -0500
Received: from xfe-aln-005.cisco.com (173.37.135.125) by xfe-rcd-002.cisco.com (173.37.227.250) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.3; Fri, 19 Mar 2021 09:12:27 -0500
Received: from NAM12-MW2-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-005.cisco.com (173.37.135.125) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.3 via Frontend Transport; Fri, 19 Mar 2021 09:12:26 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fKyS58jilbab/rmoYcRjsHsqp15t+DLWqtah4roU4igQG1nmIC11KiLt2Zs+/AeCm7Mtt2GR6wsEgMHrdXWmUAGMKDJvmmjPxALKVUfl6fjjWC7hK53z5vQxnJihwVfVfYfSWYuPygJI3ymJ024+y6a5JgTsm+iVjTQD7FbHRC+8PtpN/f/mRfF3NAGBnnnXR/r4zn+yXrOtBLfZlbRufRCXpoP3kVzsQhsrLGKI/UxdelpHGrvLOlrs/7LneUoqvQteMBK1hOOmMmtetPjebRRZgzwKO8qke+cUzCUsqUF8JbWU2SBWZaLRsnbYe641iyoWRHB0yLJPfiA9WT7QbQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JhMf4CxP66jhF/2tbKgDNVsn7DhULTloVRn1gzZA+YE=; b=BztKOFAyWMpFotbwjbg937x5oEQ4CziDmIkNIH6yp/ukuz+/ALhdjT7QlcJT3PMLlYrIWkKaijSJ4m8+5YZOrVvEuocTih7x/joYUXSkBuF3wbLcKdyHT4rT3f7rrIxOJgIVdKwOnaTnpc/kO4tJ2SZzYT28W4tO+7c/d36FztO6Djbu3hC14TohpxuqE+EY/kcP71MmnhEpydT2Ney24aOPfVcz0Ece1GXs4bCZywUFFb9iKfOfysfiRS34NTNQXg2J2vHtpMQjAGGzeEfkByRVUm4Om8XPixw+lcmy6jnW/g6EYzDcT/ewEWuRG2MC+u7hO2g/qmocHMBIotRdNQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JhMf4CxP66jhF/2tbKgDNVsn7DhULTloVRn1gzZA+YE=; b=XXsJc0qSy9SXhsmBs1lmwIDcGxqrGChc1UfWbIe0Nh7JYXhcaxPVoDbI/MHP2IwYEr8XOluaw2k4eFdROzQSxFdKRJtXG36oYIyymRNbAiWX5GNoCAyjvCEQ0Vk6r3m78PjA2Rcr1j5iQzcGwUIS2KwlRftQaIwykuFvFfOPM60=
Received: from BY5PR11MB4211.namprd11.prod.outlook.com (2603:10b6:a03:1ba::10) by SJ0PR11MB4912.namprd11.prod.outlook.com (2603:10b6:a03:2ae::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3933.31; Fri, 19 Mar 2021 14:12:25 +0000
Received: from BY5PR11MB4211.namprd11.prod.outlook.com ([fe80::3172:bfd7:8fdf:98fd]) by BY5PR11MB4211.namprd11.prod.outlook.com ([fe80::3172:bfd7:8fdf:98fd%4]) with mapi id 15.20.3955.023; Fri, 19 Mar 2021 14:12:25 +0000
From: "Eliot Lear (elear)" <elear@cisco.com>
To: Hubert Kario <hkario@redhat.com>
CC: "uta@ietf.org" <uta@ietf.org>
Thread-Topic: [Uta] Depreciation (was Re: Adoption of draft-rsalz-use-san)
Thread-Index: AQHXHLHqUhgLu5a3Z06rW7SEdMXDnKqLWmAA
Date: Fri, 19 Mar 2021 14:12:25 +0000
Message-ID: <5B307E1B-7A3B-4A1F-8299-4F9EF433BC8A@cisco.com>
References: <004201d718e1$007959a0$016c0ce0$@gmail.com> <E4D5BAE4-6BCA-4405-B9AA-D83F0F784A81@cisco.com> <CACsn0cky0_HhD-j0GhOZ2VjuYcqoP8eXVHbFrvFm4wGOBH_c3g@mail.gmail.com> <D62376C8-9EB3-4956-8B64-7BDE99B1984F@cisco.com> <c3590f1d-9062-47e8-8d3b-683b1f599a3d@redhat.com>
In-Reply-To: <c3590f1d-9062-47e8-8d3b-683b1f599a3d@redhat.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3654.60.0.2.21)
authentication-results: redhat.com; dkim=none (message not signed) header.d=none;redhat.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2a02:aa15:4101:2a80:aca8:453b:21d8:6aa9]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 746a6b15-4de6-4929-bc05-08d8eae105ae
x-ms-traffictypediagnostic: SJ0PR11MB4912:
x-microsoft-antispam-prvs: <SJ0PR11MB4912BD259CAF98738191C53DBF689@SJ0PR11MB4912.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4211.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(39860400002)(346002)(396003)(376002)(136003)(366004)(186003)(2616005)(33656002)(8936002)(71200400001)(2906002)(66946007)(66616009)(478600001)(86362001)(66476007)(66556008)(64756008)(91956017)(76116006)(6486002)(38100700001)(99936003)(4326008)(6512007)(8676002)(6506007)(5660300002)(83380400001)(316002)(66446008)(53546011)(6916009)(36756003)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: vMaPRtbM9A86YSdY7kXpvESdKO2zVGR6ACTfPW+GjsF9pDZcXUuMAMNfq94JeczZ4ihJyuOPR7ONvhz1ZBAoTzQ2mq/sLUMBaQAGLyjT5kOYwYSCgbak33F3aE37J6z/jHcqv0jzro2hJZMQ+tiYog8Yetgx+fW0tFQvhnBFI98rpEsogCsZJ/MG84x/B9vKMSgbwP3t/9esFYNIpZG914qxq4yfDkBTw5kkdbHV8KPEI/Cy9Aiw2kXnPjscpc13YVLhlYPuXAECpLEEpZLqDle5shKK88X8zF7OgP/AFEKc/RWgDDJT5x7mBy5UxD6C7UVbeqYRWjAVXDYUxF0zNaAihCLyV9YQyHZNGmRpW6Y8VUkFW7S7uK28l/BdCQ3p5jfBPrlEPzQvn+AmJ6vaM6fPRck0ZCNkbGuhUKdNJerv0BkzSIEtkpEpbqMgopktM4z/kW7kBrsFSa66fGdNV3dZKvmtZgVki+w/YFSLS6A91K+YK0TuH6k5Yg25grBmAtR/kYj2vY1f3F2A+Hgdn930XJpn/CoT07bMAcfEvLPG4QYyJq33eY/xZ5MZOIJaa1kGr1JqlNwvMwC0LDs3sH3ouy1RnvYi3buJtuRwnSYn9WN2Ndl8sw66x4otzX73Kk1jee7tdUYdIQ1WHxRFubML89xo/KJZGOYnZ/KbJhk8sLgRd2gcoBLnTxZYDI1KFINbXyfN7p8FR/ZormFVm9mTHAUMYOKy2dp1aznCbBYwxTlPIai9UsMWQAJMzYPYWZlsgBQntCONduQmFqAuHJmabIOmwrEzhHnLFPe2q2wWHuNF10orKSUQnSqX8dk8Qb+R6O6ggqetX55r69PMstZeFYpjugU4RzU4YnfUQxlCRt/QbZu/JD7Y91a6f6IVRiblke2Hc/OSCFmfdqOgqIUh69i13xpS3Sbl74rI8x5nezCXAkiEhy9tFK+NXWUWkjl+c9Jk2/pPGmPpoYZgup77A4L1enkZkFoI6frg8j1JBxyLNuGTBlhcRcTBGNq8aMeoGN8ZuY1QZmcpSME4bi6zdxK/y7UyspkNkyfciNoWb1v68w88Tgx5BzinazyJgsJ2jBnYgDsqGQR0bEGZLIVbhKV9Yi6Vw4mzgNsCj6CEf+e3FtmRCD0JViglgVgof87vIsLnqhjUyfEYjzWAD+kAs5u559VHHiUlZ9rCE+5sf6CQo4clMMHxxxVJJlbWPKhf4aRtbL0TMxSvbyQZPs76VB44HZV03PMRjrluZ7CjDtLi4WUCcvYS/vVbumZlfFI1ZZ/kb8knhD3qJCOdQQFPShro4w7KZOR5zTFnCNm7J/sOuK55D6fYDgDEkFi1rKZhEcI/EOcQ0qABEEMzbmLnLhv458Bk9gLmiDkgqfcyQP/yqYGadIQ+3GnvL3e6AZF4wtil69r5ip9gdwNdIA==
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; boundary="Apple-Mail=_5544CD3A-FB59-4160-A5D2-907D1E88E387"; protocol="application/pgp-signature"; micalg="pgp-sha256"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4211.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 746a6b15-4de6-4929-bc05-08d8eae105ae
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Mar 2021 14:12:25.4934 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: gy7M6UstIy2HeysGpzowTliYrC7WvAGfZ7ZxdxswMhL7xJkZX0cL5e9lG282AQFK
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR11MB4912
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.21, xbe-aln-006.cisco.com
X-Outbound-Node: alln-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/B4kh6LRcdNOyeVZfASoRlsXlnAU>
Subject: Re: [Uta] Depreciation (was Re: Adoption of draft-rsalz-use-san)
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Mar 2021 14:12:30 -0000


> On 19 Mar 2021, at 12:20, Hubert Kario <hkario@redhat.com> wrote:
> 
> it's also a place that needs to keep on moving forward as new attacks and
> more powerful computers come into light every year

Sure.  That’s why I support the draft.

> 
>>> which nothing short of
>>> MUST NOT seems to get across.
>> 
>> Why would you think that in this case?  The IEEE has been remarkably good at tracking our work, as have a  great many other organizations, but for uses you’ve never considered.  That’s why code like OpenSSL is deployed in places you’ve never heard of.  And while you’re right, we’re not the protocol police, it’s bad when we give developers advice they simply cannot follow because they live in the real world.
> 
> they also need to accept the reality that their use-case is a niche use
> case for the whole ecosystem, so not all things will align nicely and not
> all advice will be applicable to them

Is it?  There are hundreds of millions of devices that cover this use case, and that number is accelerating.

> 
> so maybe, we should give them a little bit of credit and assume that they are
> able to differentiate stuff that makes sense in their context from stuff
> that's applicable to the web in general

And herein lies the problem: either this document is intended for the “web” or it is intended to be general.  The two are not the same.  I like scoping this document broadly, though, to mark what is currently a best practice.  And THEN you can give those people credit for doing the right thing, because they largely have in the past.

To be clear: this is a bit of a juggernaut.  The idea that a device identity survives through the entire lifetime of a device very much depends on what that lifetime is.  Toys and IT equipment have 3-5 year lifetimes.  Some sensors have six week lifetimes.  Some stuff in the ground has 40-50 year lifetimes, and some mechanical tools like presses have 120 year lifetimes.

So sure.  802.1AR is going to need to evolve around these concepts.  But let’s please just recognize the reality we face, that the currently deployed systems are going to be around for quite a while, they will continue to verify as they do, and their certs won’t change, at least for onboarding purposes.

Eliot

v2.23.0 | Report a Bug | By Email