Hi Martin,
> -Original Message-
> From: Martin Thomson
> Sent: 15 July 2022 21:37
> To: Peter Saint-Andre ; Rob Wilton (rwilton)
> ; The IESG
> Cc: draft-ietf-uta-rfc7525...@ietf.org; uta-cha...@ietf.org; uta@ietf.org;
> le...@sunet.se
> Subject: Re: [Uta] Robert Wilton's Discuss on draf
Hi Rob,
On Monday, 18 July 2022 at 15:35, Rob Wilton (rwilton)
wrote:
> > I think that you are right to be cautious here. What you want to
> > have happen is interoperability. If you say 1.2 or later, then
> > there is a risk of some implementations doing 1.2 only and some
> > doing 1.3 only,
On Mon, Jul 18, 2022, at 15:34, Rob Wilton (rwilton) wrote:
> I completely get wanting the interop, but the MUST implement TLS 1.2
> still feels too strong given that AIUI, one of the reasons for TLS 1.3
> was to help mitigate some of the security issues that turned up in TLS
> 1.2. It feels re
On 7/18/22 10:15 AM, Martin Thomson wrote:
On Mon, Jul 18, 2022, at 15:34, Rob Wilton (rwilton) wrote:
I completely get wanting the interop, but the MUST implement TLS 1.2
still feels too strong given that AIUI, one of the reasons for TLS 1.3
was to help mitigate some of the security issues that
Hi Thomas,
From: Thomas Fossati
Sent: 18 July 2022 16:41
To: Rob Wilton (rwilton) ; Martin Thomson
; Peter Saint-Andre ; The IESG
Cc: draft-ietf-uta-rfc7525...@ietf.org; uta-cha...@ietf.org; uta@ietf.org;
le...@sunet.se
Subject: Re: [Uta] Robert Wilton's Discuss on draft-ietf-uta-rfc7525bis-
Hi Rob, Peter,
On Thursday, 14 July 2022 at 16:07, Peter Saint-Andre
wrote:
> On 7/14/22 3:37 AM, Robert Wilton via Datatracker wrote:
> > (4)
> > When using RSA, servers MUST authenticate using certificates
> > with at least a 2048-bit modulus for the public key. In
> > addition, t
Hi Rob, I'm circling back to an earlier point in the thread to cover all
of the issues. (Thomas and I just discussed these topics, but Yaron was
not able to join our call because of illness.)
On 7/14/22 9:06 AM, Peter Saint-Andre wrote:
Hi Robert, thanks for the review. Comments inline.
On 7/
Hi Éric, see further thoughts on ECH below.
On 7/13/22 12:12 PM, Peter Saint-Andre wrote:
On 7/12/22 1:50 AM, Éric Vyncke via Datatracker wrote:
Éric Vyncke has entered the following ballot position for
draft-ietf-uta-rfc7525bis-09: No Objection
### Section 3.7 ESNI as a SHOULD ?
Shouldn'
Martin Thomson wrote:
> But I don't think that you can drop TLS 1.2 today without some care and
that approach is not really generally applicable.
I don't think this statement is true. For example, one could easily write
an iOS or Android app, and only communicate with big cloud providers or
CDNs [
