[Uta] Oppurtunistic DANE TLS
"Olle E. Johansson" <oej@edvina.net> Mon, 10 February 2014 06:45 UTC
Return-Path: <oej@edvina.net>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A399A1A0798 for <uta@ietfa.amsl.com>; Sun, 9 Feb 2014 22:45:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.348
X-Spam-Level:
X-Spam-Status: No, score=0.348 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, HELO_EQ_SE=0.35, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id h89yurB1BXFS for <uta@ietfa.amsl.com>; Sun, 9 Feb 2014 22:45:50 -0800 (PST)
Received: from smtp7.webway.se (smtp7.webway.se [IPv6:2a02:920:212e::205]) by ietfa.amsl.com (Postfix) with ESMTP id 3BCE91A05A5 for <uta@ietf.org>; Sun, 9 Feb 2014 22:45:49 -0800 (PST)
Received: from [192.168.40.13] (h87-96-134-129.dynamic.se.alltele.net [87.96.134.129]) by smtp7.webway.se (Postfix) with ESMTPA id AC64C93C2A2; Mon, 10 Feb 2014 06:45:46 +0000 (UTC)
From: "Olle E. Johansson" <oej@edvina.net>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Mon, 10 Feb 2014 07:45:47 +0100
Message-Id: <11FC4C44-9FD7-42BD-9A85-3AED9C8BFF23@edvina.net>
To: uta@ietf.org
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
X-Mailer: Apple Mail (2.1827)
Cc: Olle E Johansson <oej@edvina.net>
Subject: [Uta] Oppurtunistic DANE TLS
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Feb 2014 06:45:52 -0000
Hi!
The DANE working group has a draft about Oppurtunistic DANE TLS. As Paul has a draft that defines Oppurtunistic TLS, I thought it would be a good thing to be aware of in this group. Here's the author's definition:
"opportunistic DANE TLS: Best-effort use of TLS, resistant to
downgrade attacks for destinations with DNSSEC-validated TLSA
records. When opportunistic DANE TLS is determined to be
unavailable, clients should fall back to opportunistic TLS below.
Opportunistic DANE TLS requires support for DNSSEC, DANE and
STARTTLS on the client side and STARTTLS plus a DNSSEC published
TLSA record on the server side."
http://tools.ietf.org/html/draft-ietf-dane-smtp-with-dane-05
/O
- [Uta] Oppurtunistic DANE TLS Olle E. Johansson
- Re: [Uta] Oppurtunistic DANE TLS Olle E. Johansson
- Re: [Uta] Oppurtunistic DANE TLS Paul Hoffman