IETF Logo Mail Archive

Re: [Uta] Any thoughts on draft-rsalz-uta-require-tls13 ?

John Mattsson <john.mattsson@ericsson.com> Wed, 20 March 2024 14:30 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29075C15107F for <uta@ietfa.amsl.com>; Wed, 20 Mar 2024 07:30:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.998
X-Spam-Level:
X-Spam-Status: No, score=-6.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qC5Gay51LSP1 for <uta@ietfa.amsl.com>; Wed, 20 Mar 2024 07:30:34 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2095.outbound.protection.outlook.com [40.107.22.95]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 98C7BC151983 for <uta@ietf.org>; Wed, 20 Mar 2024 07:30:34 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=StsWkly0jv+0pXgQC8kuS932INmONQywIpAR3Scbm7mXcWjTXhBweP2VwLnVIXKp1z+yoKTcYnJwLBzkboEMKbL/EG+Vv/g5AQZur59ayU6HDKJ4JWJNVN8EB/74vAFsqDvP+EN5SFwVUuHuTDhN6iRrcixyDsYOfsSnobsMNUuQNg1YN0IIhIv1NTC0VdQAEiT+0vtxDsrtlOAGQ+6a+SSqh4YWAQl44MFGQpdTRMAS/RTbEr8+Dfpo+bWPo8JONnN4tGH8VhibWl+9EYf5RwpXy+tK8oApUch1lvrv+EZ8sxntMNhoCGhX4B2AQImcBCurAjDx+O2lqne46jaMOw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=XquVez9FAuYquINIZz+28DUN9tZqVMNMV0xJ8BoQejA=; b=Qjg26BJoOop4FzRa/LVUgo2xph7VkGRk/U5yHXKZdzp4WyhOJHmTO0yhZrzSZYMLUmO9rAIfZeLBFCVhjc+1MREVGXKZZyVwXNzYZsgV8ZtzWW86r6ioTMPeQMagaumEjmiJQ6xLPu/TAYwwMhqEgMdmUE4ZsJX/91LwPey2alABDxw+4QiLRU6k5+i+eoFFFnq2sMhgLKtR9vrQs6boF/SXkRSWBUKbrjhQz8WY+e048IEvn585TjHAOOzxuyQVP3DZYhBaplS+Iob4F7mg+JkIjJP1TasG0V/BhD4O/50NY60e6X4yVHFgNE2Cml07vSqSM3mKnOoF+MDFfsU+vA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=XquVez9FAuYquINIZz+28DUN9tZqVMNMV0xJ8BoQejA=; b=k7vrmsuVl+wWEttZLBTRZMS+T4nxpN/wRHAClGHxwf1hzDJTQvGNHMHU7eKA0EMyjYx+QMRBp4ORP8EvPEM6KDub4jHXyG9AWf5b1QfCmADLKeOkcJKx3On8/IR/ZNuKcfDSpENGHool2nhqTJInybn4BbA+MXyC1TC4Sz1H4eVYpatD/VTFuwJXNq3TLq9hf5x+CsBzm8T20bDLfhsrt8eQX3P/xrgOrbqYVeQ2EX8cIwNtoyGpoAYGvPzeeuvFx7h/7VOtEQ0vk/VerxryrMgaSstEchTl41sp19c5JPrjlkk5cb0LKvADm8RiSMeIL2OJzRGj8lUZMbh4VaokVA==
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com (2603:10a6:150:114::10) by AS8PR07MB7829.eurprd07.prod.outlook.com (2603:10a6:20b:39d::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7386.27; Wed, 20 Mar 2024 14:30:31 +0000
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::b0d0:9785:585a:9568]) by GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::b0d0:9785:585a:9568%4]) with mapi id 15.20.7386.025; Wed, 20 Mar 2024 14:30:31 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: Orie Steele <orie@transmute.industries>, "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>
CC: "uta@ietf.org" <uta@ietf.org>
Thread-Topic: [Uta] Any thoughts on draft-rsalz-uta-require-tls13 ?
Thread-Index: AQHaKGAxILGNPAqQ/EynSFcha8G1sLCcecwAgKTbJ2c=
Date: Wed, 20 Mar 2024 14:30:31 +0000
Message-ID: <GVXPR07MB96789FF74C839D00549DCF7F89332@GVXPR07MB9678.eurprd07.prod.outlook.com>
References: <0F3679CA-6FE8-491E-AF4F-303D39ADCCC1@akamai.com> <CAN8C-_L=P=kkYj3ChqWOm5OXk4rdXjFXWPLTNPJ8Mc+SsbV2MA@mail.gmail.com>
In-Reply-To: <CAN8C-_L=P=kkYj3ChqWOm5OXk4rdXjFXWPLTNPJ8Mc+SsbV2MA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: GVXPR07MB9678:EE_|AS8PR07MB7829:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVXPR07MB9678.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(1800799015)(376005)(366007); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_GVXPR07MB96789FF74C839D00549DCF7F89332GVXPR07MB9678eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: GVXPR07MB9678.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: dac160b9-7844-4d50-038d-08dc48ea4bcc
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Mar 2024 14:30:31.0587 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: CpKKGC8qMAksIGcY7MY1MANkv8pIErjEQQjLSSQmOfmcx5XEQzVWC3mQT2l9yB+SqOZxgPpns6mR142eHF3gdKQY1CUia/rMY7UWfWvqNt0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR07MB7829
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/cmzPZ4M8ekRnVVwk4u6j4S1itjQ>
Subject: Re: [Uta] Any thoughts on draft-rsalz-uta-require-tls13 ?
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Mar 2024 14:30:39 -0000

Hi,

I think this should be published asap. A BCP would be even better.

IETF is as usual late:
- NIST requires support TLS 1.3 since 1 Jan 2024. Not just in new deployments but everywhere.
- 3GPP requires TLS 1.3 everywhere in the core network since the first 5G specification (Rel-15, 2018).

- "New Protocols"
I think this should be "new RFCs". Publishing bis versions of old protocols should also require TLS 1.3.

- "TLS 1.2 is in widespread use and can be configured such that it provides good security properties."

This is correct but gives the wrong picture of existing deployments. It is not uncommon with very badly configured and unsecure TLS 1.2.

- "While application layer traffic is always encrypted"

Not uncommon that TLS 1.2 deployments supports NULL encryption.

- "This deficiency may be addressed through proper configuration"

Only if you have a modern TLS 1.2 implementation. An old TLS 1.2 implementation cannot be configured to be secure as it lacks AEAD, extended master secret, and might lack ECDHE, etc.

- "Rather, some extensions are required to provide security."

Also cipher suites with ECDHE and AEAD.

Cheers,
John Preuß Mattsson

From: Uta <uta-bounces@ietf.org> on behalf of Orie Steele <orie@transmute.industries>
Date: Thursday, 7 December 2023 at 03:01
To: Salz, Rich <rsalz=40akamai.com@dmarc.ietf.org>
Cc: uta@ietf.org <uta@ietf.org>
Subject: Re: [Uta] Any thoughts on draft-rsalz-uta-require-tls13 ?
(chair hat off)

I read the draft, it looks good to me.

OS

On Wed, Dec 6, 2023 at 10:21 AM Salz, Rich <rsalz=40akamai.com@dmarc.ietf.org<mailto:40akamai.com@dmarc.ietf.org>> wrote:
The draft is at https://datatracker.ietf.org/doc/draft-rsalz-uta-require-tls13/ and it’s maintained on GitHub at https://github.com/richsalz/tls12-frozen<https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-e5e4ba8e3be0422f&q=1&e=88a0ecda-2aaf-4740-a49a-66e650c06005&u=https%3A%2F%2Fgithub.com%2Frichsalz%2Ftls12-frozen>  There are two documents in that repo.

The draft updates RFC 9325 in the following way:
Any new protocol that uses TLS MUST specify as its default TLS 1.3 (or a higher TLS version, when one becomes stadardized). For example, QUIC [QUICTLS<https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-4172a38ca4bb7e3b&q=1&e=88a0ecda-2aaf-4740-a49a-66e650c06005&u=https%3A%2F%2Frichsalz.github.io%2Ftls12-frozen%2Fdraft-rsalz-uta-require-tls13.html%23QUICTLS>] requires TLS 1.3 and specifies that endpoints MUST terminate the connection if an older version is used.

If deployment considerations are a concern, the protocol MAY specify TLS 1.2 as an additional, non-default option. As a counter example, the Usage Profile for DNS over TLS [DNSTLS<https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-731d02a3479eb30f&q=1&e=88a0ecda-2aaf-4740-a49a-66e650c06005&u=https%3A%2F%2Frichsalz.github.io%2Ftls12-frozen%2Fdraft-rsalz-uta-require-tls13.html%23DNSTLS>] specifies TLS 1.2 as the default, while also allowing TLS 1.3. For newer specifications that choose to support TLS 1.2, those preferences are to be reversed.

One motivation is that TLS is in a call for adoption of a “TLS 1.2 is frozen” draft which specifies that no new features, in particular *post-quantum crypto* will not be added to TLS 1.2. As PQC is now a hot topic, it might be worth firming up the advice to applications.

_______________________________________________
Uta mailing list
Uta@ietf.org<mailto:Uta@ietf.org>
https://www.ietf.org/mailman/listinfo/uta


--



ORIE STEELE
Chief Technology Officer
www.transmute.industries<https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-a7ff2eb208872658&q=1&e=88a0ecda-2aaf-4740-a49a-66e650c06005&u=http%3A%2F%2Fwww.transmute.industries%2F>

[Image removed by sender.]<https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-833883293856debb&q=1&e=88a0ecda-2aaf-4740-a49a-66e650c06005&u=https%3A%2F%2Ftransmute.industries%2F>

v2.23.0 | Report a Bug | By Email