[Uta] BCP portion of draft-ietf-email-deep / relaxing MSP requirements
Keith Moore <moore@network-heretics.com> Sun, 02 April 2017 21:35 UTC
Return-Path: <moore@network-heretics.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB461126B7F for <uta@ietfa.amsl.com>; Sun, 2 Apr 2017 14:35:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.62
X-Spam-Level:
X-Spam-Status: No, score=-2.62 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=messagingengine.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AJO6sF08AggQ for <uta@ietfa.amsl.com>; Sun, 2 Apr 2017 14:35:55 -0700 (PDT)
Received: from out1-smtp.messagingengine.com (out1-smtp.messagingengine.com [66.111.4.25]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6E3161292F4 for <uta@ietf.org>; Sun, 2 Apr 2017 14:35:54 -0700 (PDT)
Received: from compute6.internal (compute6.nyi.internal [10.202.2.46]) by mailout.nyi.internal (Postfix) with ESMTP id D68B720A8E; Sun, 2 Apr 2017 17:35:53 -0400 (EDT)
Received: from frontend2 ([10.202.2.161]) by compute6.internal (MEProxy); Sun, 02 Apr 2017 17:35:53 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:message-id:mime-version:subject:to:x-me-sender :x-me-sender:x-sasl-enc:x-sasl-enc; s=fm1; bh=Khtx7rvIWOw8IFZRYF yNk8vdrZLLg2tOngBkbiX/AMw=; b=Q3uxWMV6C2t3V185m2DHOHDWQVP8OapBrM cJZnaWtlk+KKxoeBJ08+SYg9Y3uBcgCv/by0w/qPjRC9vIv8xcSpcSANTh8srzvL V+BEmxBSZiTq24rF/hDP2xzf4bFLQ4629/mD0qaHR0YTHRZDp0Xl0/XKhqxV5iJN 9KfysE4pd4qzMB7+435GrGmGzzAwEsrOimGmyWW4UaXwRTwpuEBVDe/jVfFfkE7y pTlF4xasICg0ReUIVklGKjBnFMAZUmEG16U8eebEnhK46ZBmppRg7HVaquLgs6Ot dBK+yd3UaCKjNIJbkNIoz3quxCI3zlcv59/AcCqzP1+A/298ZE1w==
X-ME-Sender: <xms:uW7hWLy-mlUyG81SB0PWi57LdpOGh134Z2Zs32lCZPnV_TB3qYIBWA>
X-Sasl-enc: 4k4K2izNxfenc0lzvitVxf5a0VDS5dSyle3tTDXAAESU 1491168953
Received: from [192.168.1.66] (108-221-180-15.lightspeed.knvltn.sbcglobal.net [108.221.180.15]) by mail.messagingengine.com (Postfix) with ESMTPA id 8FD1F2436B; Sun, 2 Apr 2017 17:35:53 -0400 (EDT)
To: uta@ietf.org
From: Keith Moore <moore@network-heretics.com>
Message-ID: <5978a631-11d5-ff65-d1ba-d446a7af3b20@network-heretics.com>
Date: Sun, 02 Apr 2017 17:35:52 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/v3UYHjhDheHXtRgw9YrtgrvRiDE>
Subject: [Uta] BCP portion of draft-ietf-email-deep / relaxing MSP requirements
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 02 Apr 2017 21:35:57 -0000
After thinking about this a bit, it seems to me that if any portions of draft-ietf-email-deep should be BCP, it's those that describe requirements for MSPs. Those are indeed practice, not protocol. In the interest of expediency, I'd be fine with making those portions of MUA-STS non-normative and keeping them in the same document. I'd also be happy to separate that out into a separate BCP document, though it would take a bit longer. But if we do that, I'd really like to get consensus on the technical bits of MUA-STS first. Also, based on input from the Fastmail folks in Chicago, I think it makes sense to relax the MSP requirements somewhat. The goal of MUA-STS is to get all MUA-server links robustly encrypted. Different MSPs can quite reasonably choose different ways of doing this, based on whatever works for their operations and customers. If an MSP does this by some other means than the MUA-STS protocol extensions, the goal is still met. Keith