Russ, On 15/03/18 17:29, Russ Housley wrote: >>> Nalini, why don't you (the consortium) define the standard, >>> then? > >> Indeed, if a “TLS13-visibility” standard has to be defined, it >> would make sense for the consortium (rather than the TLS WG) to >> define it. > > In fact, my mistake that was caught by Martin is exactly the reason > that we want the experts in the TLS WG to review the document.
Two things:- 1. I disagree with your assertion. Broad review to improve security is well worthwhile and is a reason to bring work to the IETF. Figuring out the how to controversially yet diligently make TLS (or any IETF protocol) *weaker* is not part of our process, and would IMO be extremely long-term damaging to the argument that IETF security review is a benefit of work being done via the IETF's processes. 2. Having had that fairly fundamental error pointed out, and given the serious amount of analysis done for TLS1.3, and *not done* for this MitM enabler, (e.g. the >1 snooper issue has some showstoppers IMO no matter how any MitM capability proposal tries to tackle or avoid it) - would you not now agree that your draft is far too far from baked to be worth the WG's f2f time in London, even if the WG had consensus to consider the topic, which I think we've all acknowledged is not the case? (*) Thanks, S. (*) I considered not making this point - it could suit my arguments better if the WG have a sequence of drafts like this and draft-green to dismiss I guess but in fairness and just in case you're now happy to withdraw your request for a slot, I figured it worth asking, as I continue to think that the way this topic is being mishandled is a bad plan for all concerned. > > Russ > > > > > _______________________________________________ TLS mailing list > TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls >
0x7B172BEA.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
