Re: [Uta] Proposed list of deliverables
"Orit Levin (LCA)" <oritl@microsoft.com> Tue, 21 January 2014 07:14 UTC
Return-Path: <oritl@microsoft.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D35D51A0053 for <uta@ietfa.amsl.com>; Mon, 20 Jan 2014 23:14:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.602
X-Spam-Level:
X-Spam-Status: No, score=-2.602 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4Brh6IHAJCYU for <uta@ietfa.amsl.com>; Mon, 20 Jan 2014 23:14:31 -0800 (PST)
Received: from na01-bl2-obe.outbound.protection.outlook.com (mail-bl2lp0206.outbound.protection.outlook.com [207.46.163.206]) by ietfa.amsl.com (Postfix) with ESMTP id 4B94C1A005E for <uta@ietf.org>; Mon, 20 Jan 2014 23:14:31 -0800 (PST)
Received: from BY2PR03MB300.namprd03.prod.outlook.com (10.141.139.24) by BY2PR03MB298.namprd03.prod.outlook.com (10.141.139.17) with Microsoft SMTP Server (TLS) id 15.0.859.15; Tue, 21 Jan 2014 07:14:23 +0000
Received: from BY2PR03MB300.namprd03.prod.outlook.com ([10.141.139.24]) by BY2PR03MB300.namprd03.prod.outlook.com ([10.141.139.24]) with mapi id 15.00.0859.013; Tue, 21 Jan 2014 07:14:23 +0000
From: "Orit Levin (LCA)" <oritl@microsoft.com>
To: Alexey Melnikov <alexey.melnikov@isode.com>
Thread-Topic: [Uta] Proposed list of deliverables
Thread-Index: Ac8UDfYmUjL7spWFRWi+szgpg2cFIgByAAQAACcVp6A=
Date: Tue, 21 Jan 2014 07:14:22 +0000
Message-ID: <1b080185f6fe4bafbe064d18301b5ac1@BY2PR03MB300.namprd03.prod.outlook.com>
References: <0bc674da169f4772b0fb2173ed679115@BY2PR03MB300.namprd03.prod.outlook.com> <52DD0DC4.4010207@isode.com>
In-Reply-To: <52DD0DC4.4010207@isode.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [98.247.123.117]
x-forefront-prvs: 0098BA6C6C
x-forefront-antispam-report: SFV:NSPM; SFS:(10009001)(6009001)(13464003)(189002)(199002)(24454002)(164054003)(51704005)(479174003)(377454003)(51856001)(33646001)(50986001)(54356001)(74706001)(46102001)(66066001)(19580405001)(83322001)(86362001)(65816001)(83072002)(15202345003)(80022001)(19580395003)(53806001)(4396001)(85852003)(49866001)(47736001)(47976001)(74876001)(74316001)(81686001)(93136001)(74366001)(90146001)(92566001)(93516002)(80976001)(2656002)(56816005)(76482001)(87936001)(85306002)(561944002)(74662001)(74502001)(47446002)(81342001)(81542001)(81816001)(79102001)(63696002)(87266001)(31966008)(76576001)(54316002)(59766001)(15975445006)(77982001)(56776001)(76796001)(76786001)(69226001)(24736002); DIR:OUT; SFP:1101; SCL:1; SRVR:BY2PR03MB298; H:BY2PR03MB300.namprd03.prod.outlook.com; CLIP:98.247.123.117; FPR:; InfoNoRecordsMX:1; A:1; LANG:en;
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
Cc: "uta@ietf.org" <uta@ietf.org>, Pete Resnick <presnick@qti.qualcomm.com>, Barry Leiba <barryleiba@computer.org>
Subject: Re: [Uta] Proposed list of deliverables
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jan 2014 07:14:34 -0000
Alexey et al, Sounds good to me. Removing overlaps by merging the drafts is definitely the right way forward. draft-newman-email-deep has a number of interesting suggestions. Some of the described techniques could be generalized and discussed in the context of the application-independent deliverable #4, indeed. Overall, it would be great if the authors of these and other UTA-related drafts make a stab at identifying practices and techniques useful for other application protocols. Once specified in a way independent from the application logic, they will become candidates towards #4. Thanks, Orit. > -----Original Message----- > From: Alexey Melnikov [mailto:alexey.melnikov@isode.com] > Sent: Monday, January 20, 2014 3:52 AM > To: Orit Levin (LCA) > Cc: uta@ietf.org; Pete Resnick; Barry Leiba > Subject: Re: [Uta] Proposed list of deliverables > > Hi, > This looks sensible, but I am trying to figure out how existing drafts > fit into this plan. > > On 18/01/2014 06:24, Orit Levin (LCA) wrote: > > Below is the list of deliverables for your consideration: > > > > 1. A threat analysis document containing a collection of known security > breaches to application protocols due to poor use of TLS (Likely an > Informational RFC) > > 2. Applications' independent document recommending best existing and future > practices for using TLS (Likely a BCP or a Proposed Standard RFC) > > 3. A set of documents, each describing best existing and future practices for > using TLS with a specific application protocol, i.e., SMTP, POP, IMAP, XMPP, > HTTP 1.1, etc. (Case-by-case likely a BCP or a Proposed Standard RFC) > It sounds like the following 2 would cover this for SMTP/POP/IMAP: > > http://datatracker.ietf.org/doc/draft-melnikov-email-tls-certs/ > http://datatracker.ietf.org/doc/draft-moore-email-tls/ > > (Some pieces of draft-newman-email-deep might apply here as well). > > 4. A document discussing (and potentially defining) how to apply the > opportunistic encryption approach (preliminary outlined in draft-farrelll-mpls- > opportunistic-encrypt-00.txt) to TLS. (Category TBD) > > There is a document defining this for email: > http://datatracker.ietf.org/doc/draft-newman-email-deep/ > > Last time I talked to Chris and Keith, they were planning to merge it > with Keith's document: > http://datatracker.ietf.org/doc/draft-moore-email-tls/ > > > I would like to confirm with WG chairs that the proposal above makes sense. > > Best Regards, > Alexey > > Please, send your feedback to the list (including short +1s to indicate that the > direction makes sense to you). > > > > Thanks, > > Leif and Orit - the chairs.
- [Uta] Proposed list of deliverables Orit Levin (LCA)
- Re: [Uta] Proposed list of deliverables Linus Nordberg
- Re: [Uta] Proposed list of deliverables Leif Johansson
- Re: [Uta] Proposed list of deliverables Alexey Melnikov
- Re: [Uta] Proposed list of deliverables Paul Hoffman
- [Uta] dual meaning of "pinning" [was: Re: Propose… Daniel Kahn Gillmor
- Re: [Uta] dual meaning of "pinning" [was: Re: Pro… Alyssa Rowan
- Re: [Uta] Proposed list of deliverables Orit Levin (LCA)
- Re: [Uta] dual meaning of "pinning" [was: Re: Pro… Daniel Kahn Gillmor
- Re: [Uta] Proposed list of deliverables Orit Levin (LCA)
- Re: [Uta] Proposed list of deliverables Orit Levin (LCA)
- Re: [Uta] Proposed list of deliverables Peter Saint-Andre
- Re: [Uta] Proposed list of deliverables Peter Saint-Andre
- Re: [Uta] Proposed list of deliverables Peter Saint-Andre
- Re: [Uta] Proposed list of deliverables Peter Saint-Andre
- Re: [Uta] Proposed list of deliverables Orit Levin (LCA)
- Re: [Uta] Proposed list of deliverables Peter Saint-Andre
- Re: [Uta] Proposed list of deliverables Orit Levin (LCA)
- Re: [Uta] Proposed list of deliverables Peter Saint-Andre
- Re: [Uta] Proposed list of deliverables Orit Levin (LCA)
- Re: [Uta] Proposed list of deliverables Yaron Sheffer
- Re: [Uta] Proposed list of deliverables Peter Saint-Andre
- Re: [Uta] Proposed list of deliverables Orit Levin (LCA)
- Re: [Uta] Proposed list of deliverables Alexey Melnikov
- Re: [Uta] Proposed list of deliverables Orit Levin (LCA)