> On Nov 5, 2018, at 1:22 PM, Salz, Rich <rs...@akamai.com> wrote:
>
> I need to review things some more, but FYI I believe I will say that mixing
> trust models is a bad idea, and opportunistic fallback seems both premature
> optimization and adding in the risk. I would support bringing back -07
> semantics.
That's the trouble with "short responses", they are too short to get the key
details across. This is NOT a simple issue that can adequately be reduced
to a couple of pithy paragraphs.
The -07 document is broken and has lost consensus. It has a broken unilateral
client-side TOFU pinning downgrade protection mechanism, that nobody wants.
Removing it entirely severely limits the scope of the draft to much less than
was intended and was promised in the introduction.
We're not "mixing" trust models, DANE explicitly supports either augmenting
WebPKI (certificate usage 0/1) with CA or EE certificate assertions, or
bypassing it with usages 2/3. SMTP does 2/3 only, I would expect browsers
to look to do 0/1, which has the benefit of getting both DANE and CT, DANE
provides stronger authentication than DV cert issuances, while CT provides
some measure of auditability.
There are many problems with -07 beyond just pinning, various gaps in the
smaller design that really should be addressed.
I could write more, but then folks are liable to stop reading, I don't know
how to get past that, except by becoming an author, and finally issuing
a new version of the draft for review (~25 commits pending on github waiting
for the green light), that folks might have to actually read all the way
through... :-(
--
Viktor.
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls
