From kwatsen@juniper.net  Fri Nov  1 09:41:44 2013
Return-Path: <kwatsen@juniper.net>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 42E1C11E8226 for <saag@ietfa.amsl.com>; Fri,  1 Nov 2013 09:41:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.78
X-Spam-Level: 
X-Spam-Status: No, score=-3.78 tagged_above=-999 required=5 tests=[AWL=-0.182,  BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aJo9qqHcO5jX for <saag@ietfa.amsl.com>; Fri,  1 Nov 2013 09:41:39 -0700 (PDT)
Received: from va3outboundpool.messaging.microsoft.com (va3ehsobe002.messaging.microsoft.com [216.32.180.12]) by ietfa.amsl.com (Postfix) with ESMTP id C574811E817D for <saag@ietf.org>; Fri,  1 Nov 2013 09:41:35 -0700 (PDT)
Received: from mail75-va3-R.bigfish.com (10.7.14.228) by VA3EHSOBE004.bigfish.com (10.7.40.24) with Microsoft SMTP Server id 14.1.225.22; Fri, 1 Nov 2013 16:41:35 +0000
Received: from mail75-va3 (localhost [127.0.0.1])	by mail75-va3-R.bigfish.com (Postfix) with ESMTP id 365F610006C	for <saag@ietf.org>; Fri,  1 Nov 2013 16:41:35 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:157.56.240.101; KIP:(null); UIP:(null); IPV:NLI; H:BL2PRD0510HT001.namprd05.prod.outlook.com; RD:none; EFVD:NLI
X-SpamScore: -21
X-BigFish: VPS-21(zzc85fh4015Izz1f42h2148h208ch1ee6h1de0h1fdah2073h2146h1202h1e76h1d1ah1d2ah1fc6hzz1de098h1033IL17326ah8275bh8275dh18c673h1de097h186068hz2fh2a8h839hbe3he5bhf0ah1288h12a5h12bdh137ah1441h1504h1537h153bh162dh1631h1758h18e1h1946h19b5h19ceh1ad9h1b0ah1bceh1d0ch1d2eh1d3fh1dc1h1dfeh1dffh1e1dh1fe8h1ff5h209eh20f0h2216h1155h)
Received-SPF: pass (mail75-va3: domain of juniper.net designates 157.56.240.101 as permitted sender) client-ip=157.56.240.101; envelope-from=kwatsen@juniper.net; helo=BL2PRD0510HT001.namprd05.prod.outlook.com ; .outlook.com ; 
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(199002)(189002)(164054003)(69226001)(85306002)(83506001)(19580395003)(81686001)(80976001)(15975445006)(65816001)(80022001)(66066001)(76482001)(83322001)(54316002)(56776001)(76796001)(56816003)(77096001)(76786001)(76176001)(63696002)(59766001)(53806001)(50986001)(51856001)(4396001)(46102001)(49866001)(54356001)(74876001)(47976001)(74706001)(36756003)(81342001)(47736001)(15202345003)(81816001)(31966008)(74366001)(74662001)(74502001)(47446002)(16236675002)(81542001)(79102001)(77982001)(83072001)(87266001); DIR:OUT; SFP:; SCL:1; SRVR:CO1PR05MB458; H:CO1PR05MB458.namprd05.prod.outlook.com; CLIP:66.129.224.36; FPR:; RD:InfoNoRecords; A:1; MX:1; LANG:en; 
Received: from mail75-va3 (localhost.localdomain [127.0.0.1]) by mail75-va3 (MessageSwitch) id 1383324092519242_28007; Fri,  1 Nov 2013 16:41:32 +0000 (UTC)
Received: from VA3EHSMHS002.bigfish.com (unknown [10.7.14.232])	by mail75-va3.bigfish.com (Postfix) with ESMTP id 722DE3E0069	for <saag@ietf.org>; Fri,  1 Nov 2013 16:41:32 +0000 (UTC)
Received: from BL2PRD0510HT001.namprd05.prod.outlook.com (157.56.240.101) by VA3EHSMHS002.bigfish.com (10.7.99.12) with Microsoft SMTP Server (TLS) id 14.16.227.3; Fri, 1 Nov 2013 16:41:32 +0000
Received: from CO1PR05MB458.namprd05.prod.outlook.com (10.141.72.140) by BL2PRD0510HT001.namprd05.prod.outlook.com (10.255.100.36) with Microsoft SMTP Server (TLS) id 14.16.371.2; Fri, 1 Nov 2013 16:41:31 +0000
Received: from CO1PR05MB458.namprd05.prod.outlook.com (10.141.72.140) by CO1PR05MB458.namprd05.prod.outlook.com (10.141.72.140) with Microsoft SMTP Server (TLS) id 15.0.810.5; Fri, 1 Nov 2013 16:41:28 +0000
Received: from CO1PR05MB458.namprd05.prod.outlook.com ([169.254.10.180]) by CO1PR05MB458.namprd05.prod.outlook.com ([169.254.10.108]) with mapi id 15.00.0810.005; Fri, 1 Nov 2013 16:41:28 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: saag Group <saag@ietf.org>
Thread-Topic: Reverse SSH, Reverse TLS, and ZeroTouch
Thread-Index: AQHO1yE2caYCztQ0AUi029uSYdyuWw==
Date: Fri, 1 Nov 2013 16:41:28 +0000
Message-ID: <CE9951F5.4B19A%kwatsen@juniper.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
user-agent: Microsoft-MacOutlook/14.3.8.130913
x-originating-ip: [66.129.224.36]
x-forefront-prvs: 00179089FD
Content-Type: multipart/alternative; boundary="_000_CE9951F54B19Akwatsenjunipernet_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
Subject: [saag] Reverse SSH, Reverse TLS, and ZeroTouch
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Nov 2013 16:41:44 -0000

--_000_CE9951F54B19Akwatsenjunipernet_
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable


For those interested, the following security-related documents are being di=
scussed first thing Monday morning in the NETCONF WG meeting:

    - http://tools.ietf.org/html/draft-ietf-netconf-rfc5539bis
    - http://tools.ietf.org/html/draft-ietf-netconf-reverse-ssh
    - http://tools.ietf.org/html/draft-kwatsen-netconf-zerotouch

The agenda has these three presentations happening in the first hour of the=
 meeting:

    - http://www.ietf.org/proceedings/88/agenda/agenda-88-netconf


Thanks,
Kent


--_000_CE9951F54B19Akwatsenjunipernet_
Content-Type: text/html; charset="us-ascii"
Content-ID: <6F8F52BEE1B5504A8FC35BC2DF8E6B8E@namprd05.prod.outlook.com>
Content-Transfer-Encoding: quoted-printable

<html>
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dus-ascii"=
>
</head>
<body style=3D"word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-lin=
e-break: after-white-space; ">
<div style=3D"color: rgb(0, 0, 0); font-family: Calibri, sans-serif; font-s=
ize: 14px; ">
<br>
</div>
<div style=3D"color: rgb(0, 0, 0); font-family: Calibri, sans-serif; font-s=
ize: 14px; ">
For those interested, the following security-related documents are being di=
scussed first thing Monday morning in the NETCONF WG meeting:</div>
<div style=3D"color: rgb(0, 0, 0); font-family: Calibri, sans-serif; font-s=
ize: 14px; ">
<br>
</div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif">&nbsp; &n=
bsp; -&nbsp;<a href=3D"http://tools.ietf.org/html/draft-ietf-netconf-rfc553=
9bis">http://tools.ietf.org/html/draft-ietf-netconf-rfc5539bis</a></font></=
div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif">&nbsp; &n=
bsp; -&nbsp;<a href=3D"http://tools.ietf.org/html/draft-ietf-netconf-revers=
e-ssh">http://tools.ietf.org/html/draft-ietf-netconf-reverse-ssh</a></font>=
</div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif">&nbsp; &n=
bsp; -&nbsp;<a href=3D"http://tools.ietf.org/html/draft-kwatsen-netconf-zer=
otouch">http://tools.ietf.org/html/draft-kwatsen-netconf-zerotouch</a></fon=
t></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif"><br>
</font></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif">The agend=
a has these three presentations happening in the first hour of the meeting:=
</font></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif"><br>
</font></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif">&nbsp; &n=
bsp; -&nbsp;<a href=3D"http://www.ietf.org/proceedings/88/agenda/agenda-88-=
netconf">http://www.ietf.org/proceedings/88/agenda/agenda-88-netconf</a></f=
ont></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif"><br>
</font></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif"><br>
</font></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif">Thanks,</=
font></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif">Kent</fon=
t></div>
<div><font class=3D"Apple-style-span" face=3D"Calibri,sans-serif"><br>
</font></div>
</body>
</html>

--_000_CE9951F54B19Akwatsenjunipernet_--

From dev+ietf@seantek.com  Sat Nov  2 23:47:49 2013
Return-Path: <dev+ietf@seantek.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F56821E80AB; Sat,  2 Nov 2013 23:47:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level: 
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0sMZ0XTutQrA; Sat,  2 Nov 2013 23:47:43 -0700 (PDT)
Received: from mxout-08.mxes.net (mxout-08.mxes.net [216.86.168.183]) by ietfa.amsl.com (Postfix) with ESMTP id 2714611E819C; Sat,  2 Nov 2013 23:47:43 -0700 (PDT)
Received: from [172.20.10.2] (unknown [70.208.69.85]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by smtp.mxes.net (Postfix) with ESMTPSA id 9432C509B5; Sun,  3 Nov 2013 01:47:41 -0500 (EST)
From: Sean Leonard <dev+ietf@seantek.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
Message-Id: <5116BF35-064E-435C-A2BE-9113DE25D44D@seantek.com>
Date: Sat, 2 Nov 2013 23:47:40 -0700
To: urn-nid@ietf.org, saag@ietf.org, apps-discuss@ietf.org
Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
X-Mailer: Apple Mail (2.1510)
Subject: [saag] New version of certspec (01); request review and URN assignment
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Nov 2013 06:47:53 -0000

Hello URN/Apps folks, and SAAG folks:

A new version of the Internet-Draft draft-seantek-certspec (01) has been =
posted to the IETF repository. I would like to notify this list for =
commentary, and utlimately to apply for the URN NID 'cert'.

Compared to 00 last year, this version adds discussion of the need for a =
uniform way to identify certificates by name in a URI/URN, the =
differences between this naming scheme and the ni: URI scheme (RFC =
6920), and a methodology to /resolve/ certain various classes of cert =
URNs to ni, http, ldap, and other URI schemes.

Kind regards,

Sean

**************

A new version of I-D, draft-seantek-certspec-01.txt
has been successfully submitted by Sean Leonard and posted to the
IETF repository.

Filename:	 draft-seantek-certspec
Revision:	 01
Title:		 A Uniform Resource Name (URN) Namespace for =
Certificates
Creation date:	 2013-10-21
Group:		 Individual Submission
Number of pages: 13
URL:             =
http://www.ietf.org/internet-drafts/draft-seantek-certspec-01.txt
Status:          http://datatracker.ietf.org/doc/draft-seantek-certspec
Htmlized:        http://tools.ietf.org/html/draft-seantek-certspec-01
Diff:            =
http://www.ietf.org/rfcdiff?url2=3Ddraft-seantek-certspec-01

Abstract:
  Digital certificates are used in many systems and protocols to
  identify and authenticate parties.  This document describes a Uniform
  Resource Name (URN) namespace that identifies certificates.  These
  URNs can be used when certificates need to be identified by value or
  reference.

                                                                         =
       =20

Please note that it may take a couple of minutes from the time of =
submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

From TurnerS@ieca.com  Tue Nov  5 08:27:19 2013
Return-Path: <TurnerS@ieca.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EACF111E81F3 for <saag@ietfa.amsl.com>; Tue,  5 Nov 2013 08:27:19 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.058
X-Spam-Level: 
X-Spam-Status: No, score=-101.058 tagged_above=-999 required=5 tests=[AWL=-1.207, BAYES_40=-0.185, IP_NOT_FRIENDLY=0.334, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W7JOzBLY4N-G for <saag@ietfa.amsl.com>; Tue,  5 Nov 2013 08:27:13 -0800 (PST)
Received: from gateway06.websitewelcome.com (gateway06.websitewelcome.com [69.93.243.29]) by ietfa.amsl.com (Postfix) with ESMTP id 9852321F9E43 for <saag@ietf.org>; Tue,  5 Nov 2013 08:27:13 -0800 (PST)
Received: by gateway06.websitewelcome.com (Postfix, from userid 5007) id 0A8EBCD7C307D; Tue,  5 Nov 2013 10:27:02 -0600 (CST)
Received: from gator3286.hostgator.com (gator3286.hostgator.com [198.57.247.250]) by gateway06.websitewelcome.com (Postfix) with ESMTP id E0F53CD7C301D for <saag@ietf.org>; Tue,  5 Nov 2013 10:27:01 -0600 (CST)
Received: from [31.133.164.114] (port=51092 helo=dhcp-a472.meeting.ietf.org) by gator3286.hostgator.com with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.80) (envelope-from <TurnerS@ieca.com>) id 1VdjT3-0005Id-G2 for saag@ietf.org; Tue, 05 Nov 2013 10:27:01 -0600
From: Sean Turner <TurnerS@ieca.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_354B2A81-75DA-4592-9564-3BC16EB961D2"; protocol="application/pkcs7-signature"; micalg=sha1
Message-Id: <5CA93BEB-4AE0-416B-B62B-E11C3FEDC76E@ieca.com>
Date: Tue, 5 Nov 2013 08:26:59 -0800
To: saag@ietf.org
Mime-Version: 1.0 (Mac OS X Mail 7.0 \(1816\))
X-Mailer: Apple Mail (2.1816)
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - gator3286.hostgator.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - ieca.com
X-BWhitelist: no
X-Source: 
X-Source-Args: 
X-Source-Dir: 
X-Source-Sender: (dhcp-a472.meeting.ietf.org) [31.133.164.114]:51092
X-Source-Auth: sean.turner@ieca.com
X-Email-Count: 2
X-Source-Cap: ZG9tbWdyNDg7ZG9tbWdyNDg7Z2F0b3IzMjg2Lmhvc3RnYXRvci5jb20=
Subject: [saag] httpbis session
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Nov 2013 16:27:20 -0000

--Apple-Mail=_354B2A81-75DA-4592-9564-3BC16EB961D2
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
	charset=windows-1252

In case you=92re not planning on doing anything this morning, the =
httpbis session at 9am will likely be lively as we=92ll be discussing =
HTTP 2.0=92s use of TLS=92s ALPN as well as encryption and HTTP 2.0.

spt=

--Apple-Mail=_354B2A81-75DA-4592-9564-3BC16EB961D2
Content-Disposition: attachment;
	filename=smime.p7s
Content-Type: application/pkcs7-signature;
	name=smime.p7s
Content-Transfer-Encoding: base64
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--Apple-Mail=_354B2A81-75DA-4592-9564-3BC16EB961D2--

From d3e3e3@gmail.com  Tue Nov  5 12:29:46 2013
Return-Path: <d3e3e3@gmail.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5395C11E813A for <saag@ietfa.amsl.com>; Tue,  5 Nov 2013 12:29:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.552
X-Spam-Level: 
X-Spam-Status: No, score=-102.552 tagged_above=-999 required=5 tests=[AWL=0.048, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7477kGkvS0GH for <saag@ietfa.amsl.com>; Tue,  5 Nov 2013 12:29:45 -0800 (PST)
Received: from mail-ob0-x230.google.com (mail-ob0-x230.google.com [IPv6:2607:f8b0:4003:c01::230]) by ietfa.amsl.com (Postfix) with ESMTP id 5204611E813B for <saag@ietf.org>; Tue,  5 Nov 2013 12:29:45 -0800 (PST)
Received: by mail-ob0-f176.google.com with SMTP id uy5so9141534obc.35 for <saag@ietf.org>; Tue, 05 Nov 2013 12:29:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=3J30pUb5wb1CBuhAnzoUHvmqR1lvuKg6BqHKjONe1FE=; b=YlfQCuOQ3cSYp/URmeSYbN+rXqubNaevVUXed9Rd+tfcUIonV2FSEz9RpSUdKKBy2M Q8gmidhG0WFyLmDIEZij/nfEEXbWxMG2DxTrBGxm6fKk40LWvgaaMwY/depNd6zMeJKI x5z6EGwOQ1VOSAWJKIfuYcRLuVZHN46jZTJD2c1bORD4xchXTgNgFsDRAobsrFCCaZGS IrRSqz4377dF+RwMFyjGFfHnk0VDVpbm23dMxdAFEkg6C0LXpUuMLDIM2UpRUFOR+sXc ZAfncnOv51wy/BeGYKrObe/gs9mMTMu0iX6EF6NN7mM9L3L98ZyhfOigXXO6YiN2lvkI EU7w==
X-Received: by 10.182.29.33 with SMTP id g1mr2188886obh.59.1383683384831; Tue, 05 Nov 2013 12:29:44 -0800 (PST)
MIME-Version: 1.0
Received: by 10.76.33.102 with HTTP; Tue, 5 Nov 2013 12:29:24 -0800 (PST)
In-Reply-To: <20131105192302.29536.6596.idtracker@ietfa.amsl.com>
References: <20131105192302.29536.6596.idtracker@ietfa.amsl.com>
From: Donald Eastlake <d3e3e3@gmail.com>
Date: Tue, 5 Nov 2013 15:29:24 -0500
Message-ID: <CAF4+nEFx0X8U2twpkxbLDyrpyCzoRm5Ee__7jpkJQ0u3pMyuyw@mail.gmail.com>
To: "saag@ietf.org" <saag@ietf.org>
Content-Type: text/plain; charset=ISO-8859-1
Subject: [saag] Fwd: New Version Notification for draft-eastlake-randomness3-00.txt
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Nov 2013 20:29:46 -0000

This is a starting point for an RFC4086bis. I think it has quite a
ways to go. At the Security Directorate meeting (which is currently in
progress), the idea of a separate mailing to discuss randomness, this
document, etc., met with general approval. So you might want to wait
until that is announced plus a day or two for people to sign up,
before posting. But, regardless, if you feel like sending comments to
the authors of this draft, feel free to do so.

Thanks,
Donald
=============================
 Donald E. Eastlake 3rd   +1-508-333-2270 (cell)
 155 Beaver Street, Milford, MA 01757 USA
 d3e3e3@gmail.com


---------- Forwarded message ----------
From:  <internet-drafts@ietf.org>
Date: Tue, Nov 5, 2013 at 2:23 PM
Subject: New Version Notification for draft-eastlake-randomness3-00.txt
To: Steve Crocker <steve@stevecrocker.com>, "Donald E. Eastlake 3rd"
<d3e3e3@gmail.com>, "Jeffrey I. Schiller" <jis@mit.edu>, Charlie
Kaufman <charliek@microsoft.com>


A new version of I-D, draft-eastlake-randomness3-00.txt
has been successfully submitted by Donald E. Eastlake and posted to the
IETF repository.

Filename:        draft-eastlake-randomness3
Revision:        00
Title:           Randomness Requirements for Security
Creation date:   2013-11-05
Group:           Individual Submission
Number of pages: 53
URL:
http://www.ietf.org/internet-drafts/draft-eastlake-randomness3-00.txt
Status:          http://datatracker.ietf.org/doc/draft-eastlake-randomness3
Htmlized:        http://tools.ietf.org/html/draft-eastlake-randomness3-00


Abstract:
   Security systems are built on strong cryptographic algorithms that
   foil pattern analysis attempts. However, the security of these
   systems is dependent on generating secret quantities for passwords,
   cryptographic keys, and similar values. The use of pseudo-random
   processes to generate secret quantities can result in pseudo-
   security.  For example, the sophisticated attacker of these security
   systems may find it easier to reproduce the environment that produced
   the secret quantities, searching a resulting small set of
   possibilities, than to locate the quantities in the whole of the
   potential number space.

   Choosing random quantities to foil a resourceful and motivated
   adversary can be surprisingly difficult. This document points out
   many pitfalls in using poor entropy sources or traditional pseudo-
   random number generation techniques for generating such quantities.
   It recommends the use of multiple sources with a strong mixing
   function, so that no single source need be fully trusted, and
   provides techniques for extending a random seed to a larger quantity
   of pseudo-random material in a cryptographically secure way. And it
   gives examples of how large such quantities need to be for some
   applications. This document obsoletes RFC 4086.





Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

From ondrej.sury@nic.cz  Tue Nov  5 13:04:27 2013
Return-Path: <ondrej.sury@nic.cz>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8EA0A11E8224 for <saag@ietfa.amsl.com>; Tue,  5 Nov 2013 13:04:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.101
X-Spam-Level: 
X-Spam-Status: No, score=-1.101 tagged_above=-999 required=5 tests=[AWL=0.598,  BAYES_00=-2.599, J_CHICKENPOX_23=0.6, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6LFGI9JIIRbF for <saag@ietfa.amsl.com>; Tue,  5 Nov 2013 13:04:27 -0800 (PST)
Received: from mail.nic.cz (mail.nic.cz [IPv6:2001:1488:800:400::400]) by ietfa.amsl.com (Postfix) with ESMTP id 2717711E8219 for <saag@ietf.org>; Tue,  5 Nov 2013 13:04:24 -0800 (PST)
Received: from [192.168.100.102] (unknown [64.114.24.114]) by mail.nic.cz (Postfix) with ESMTPSA id 79ABB13FA60 for <saag@ietf.org>; Tue,  5 Nov 2013 22:04:21 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=nic.cz; s=default; t=1383685463; bh=iPZiWG7mf8b+K4LHWaCrdwKZWmLcHui4FcrwgnElC1o=; h=From:Content-Type:Message-Id:Mime-Version:Subject:Date:References: To:In-Reply-To; b=U4z3W5xRKMZaGkZR8hzhXjJ1zWypPsWyDqp5ncxn7Ql+q9Y3wfwzMnpcVKm1fMJzo 3iApVc0AbypQLRHA/z/1Hx2Qggfybg4G+FDM3pDvnQBJq83463A6oeVzA8/vT8NHy9 JLcvY+41jRP/iegI1jmECpG1X5ghk+QcEuqIon3k=
From: =?utf-8?Q?Ond=C5=99ej_Sur=C3=BD?= <ondrej.sury@nic.cz>
Content-Type: multipart/signed; boundary="Apple-Mail=_3E63836C-9759-4644-AC8F-311EC3E6D3AC"; protocol="application/pkcs7-signature"; micalg=sha1
Message-Id: <A62BF8AE-4EA2-4D4E-B93F-DE7600A80E1F@nic.cz>
Mime-Version: 1.0 (Mac OS X Mail 7.0 \(1816\))
Date: Tue, 5 Nov 2013 13:04:06 -0800
References: <3C74A0C9-DC83-4D1B-A834-2FE0A51415B5@ieca.com>
To: saag@ietf.org
In-Reply-To: <3C74A0C9-DC83-4D1B-A834-2FE0A51415B5@ieca.com>
X-Mailer: Apple Mail (2.1816)
X-Virus-Scanned: clamav-milter 0.97.8 at mail
X-Virus-Status: Clean
Subject: Re: [saag] wg reports
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Nov 2013 21:04:27 -0000

--Apple-Mail=_3E63836C-9759-4644-AC8F-311EC3E6D3AC
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
	charset=utf-8

On 5. 11. 2013, at 8:04, Sean Turner <TurnerS@ieca.com> wrote:
> Please send a summary of your IETF 88 session to the saag mailing =
list.

JFTR dane didn't meet at IETF 88.

O.
--
 Ond=C5=99ej Sur=C3=BD -- Chief Science Officer
 -------------------------------------------
 CZ.NIC, z.s.p.o.    --    Laborato=C5=99e CZ.NIC
 Americka 23, 120 00 Praha 2, Czech Republic
 mailto:ondrej.sury@nic.cz    http://nic.cz/
 tel:+420.222745110       fax:+420.222745112
 -------------------------------------------


--Apple-Mail=_3E63836C-9759-4644-AC8F-311EC3E6D3AC
Content-Disposition: attachment;
	filename=smime.p7s
Content-Type: application/pkcs7-signature;
	name=smime.p7s
Content-Transfer-Encoding: base64

MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIMKTCCBgYw
ggTuoAMCAQICAQIwDQYJKoZIhvcNAQEFBQAwga8xCzAJBgNVBAYTAk5MMSAwHgYDVQQKExdUcnVz
dGVkIEludHJvZHVjZXIgKFRJKTEgMB4GA1UECxMXQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxMzAx
BgNVBAMTKlRydXN0ZWQgSW50cm9kdWNlciAoVEkpIFRvcGxldmVsIENBIC0gRzAwMTEnMCUGCSqG
SIb3DQEJARYYY2FAdHJ1c3RlZC1pbnRyb2R1Y2VyLm5sMB4XDTA0MTIwNzEwMzYxN1oXDTMwMTIw
NjAwMDAwMFowga0xCzAJBgNVBAYTAk5MMSAwHgYDVQQKExdUcnVzdGVkIEludHJvZHVjZXIgKFRJ
KTEgMB4GA1UECxMXQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxMTAvBgNVBAMTKFRydXN0ZWQgSW50
cm9kdWNlciAoVEkpIENsaWVudCBDQSAtIEcwMDExJzAlBgkqhkiG9w0BCQEWGGNhQHRydXN0ZWQt
aW50cm9kdWNlci5ubDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOKQxMR3KDUpfJBz
AhY2BPCByKo9SMp/V0RIboLBD6vO0miSYO9FmP3Q07OKPYR5WdlQyrpKqB1zl0SRz2cDjnYkzvDF
vK5kvMvlTYeQlHypQlvhkTsYWD4ZZxxEhAYBb1s7cYaIahLw6H/RZz+kyWTOc9TncPBvBWIQ1Ypo
S+uQqpopH8s5ebtB/17SbUty5yXiHoaPh/ScdMKqxbyJiL0YRM6SU4YX4HVZ5YGS9aWuiUSiA0YF
8dCR56nErx67wgq8O1GtsSKKOf/ueUxSmrqwgQNlfM9Or5O8kb61s1O2iACHtixoV3ENanylBafU
mRYpNo5tSZsElGfntMoGBy8CAwEAAaOCAiswggInMB0GA1UdDgQWBBSeX93lU8ExaSlN1ZaXxfOP
h2iHTjCB3AYDVR0jBIHUMIHRgBRdbehwJx/8iwlxnguJECc7MUXvoqGBtaSBsjCBrzELMAkGA1UE
BhMCTkwxIDAeBgNVBAoTF1RydXN0ZWQgSW50cm9kdWNlciAoVEkpMSAwHgYDVQQLExdDZXJ0aWZp
Y2F0aW9uIEF1dGhvcml0eTEzMDEGA1UEAxMqVHJ1c3RlZCBJbnRyb2R1Y2VyIChUSSkgVG9wbGV2
ZWwgQ0EgLSBHMDAxMScwJQYJKoZIhvcNAQkBFhhjYUB0cnVzdGVkLWludHJvZHVjZXIubmyCAQAw
DwYDVR0TAQH/BAUwAwEB/zAjBgNVHRIEHDAagRhjYUB0cnVzdGVkLWludHJvZHVjZXIubmwwgasG
A1UdHwSBozCBoDBOoEygSoZIaHR0cDovL2NybDEudHJ1c3RlZC1pbnRyb2R1Y2VyLm5sL2NhL3g1
MDkvZzEvZGF0YS9jcmxzL2NybC1yb290LWNhLTEuY3JsME6gTKBKhkhodHRwOi8vY3JsMi50cnVz
dGVkLWludHJvZHVjZXIubmwvY2EveDUwOS9nMS9kYXRhL2NybHMvY3JsLXJvb3QtY2EtMS5jcmww
IwYDVR0RBBwwGoEYY2FAdHJ1c3RlZC1pbnRyb2R1Y2VyLm5sMAsGA1UdDwQEAwIBBjARBglghkgB
hvhCAQEEBAMCAAcwDQYJKoZIhvcNAQEFBQADggEBAI1sC2l8st3ElC74az6gH7tGXSiS7jicpHeI
10A3KY+7OEPT7BAJDpjMXxSvAwU1vBDFfwEAXGj42xAPB6cynOTDn0OiFpYGvi3EZV3khXYkGPLs
fxZttUyDKqhXcWYy4nnI3fBxqCgLboJFw6OO/SVj5qQdXMZ7VhyFBWJMQkVOnlt6i3xFkG3O5LMI
BDmdL5bZPEe8b6bJkMr+rUYEvorPJmV+CkiewYMaruCbdhwRkpkhXB3qLwB2ppnKxSinAU4f9Rcp
p73h8iDVQ9389iliUKomVQqj9NJv2G6SyJdDQdN2vrldLszNpw6t+zIzCjpgQ//kem5BJ1k4YG3L
CpAwggYbMIIFA6ADAgECAgIGSDANBgkqhkiG9w0BAQUFADCBrTELMAkGA1UEBhMCTkwxIDAeBgNV
BAoTF1RydXN0ZWQgSW50cm9kdWNlciAoVEkpMSAwHgYDVQQLExdDZXJ0aWZpY2F0aW9uIEF1dGhv
cml0eTExMC8GA1UEAxMoVHJ1c3RlZCBJbnRyb2R1Y2VyIChUSSkgQ2xpZW50IENBIC0gRzAwMTEn
MCUGCSqGSIb3DQEJARYYY2FAdHJ1c3RlZC1pbnRyb2R1Y2VyLm5sMB4XDTEyMDgwMTA3NTEyNloX
DTE0MDgwMTA3NTEyNlowejELMAkGA1UEBhMCTkwxGzAZBgNVBAoTElRydXN0ZWQgSW50cm9kdWNl
cjEVMBMGA1UECxMMQ1ouTklDLUNTSVJUMRQwEgYDVQQDEwtPbmRyZWogU3VyeTEhMB8GCSqGSIb3
DQEJARYSb25kcmVqLnN1cnlAbmljLmN6MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA
xlmN+hSg6RxWm1X6QOI3OXHSAqhRzWGb8ismR2+3LGDS640luS8x4VdWo490Ceqz+BZvMhQJwfny
9mb0IejFpx7kBOM7k2rMfOYUXa/pq07ysWEI8bXDcXRBf2ZcG0B/gajLPFA9MADlCWHSf7cNZF6S
XnIHwTn5DowxpbF403NqLWFnTM08wTJkFgGB7WZAtE6KoSigztI39NrtKRsnosZoBMNZS/JG1CLt
VdZPvkHVuiVQWEGYgswBEMGXoR7jtzVNhHr2F1atoBICJVGWFNA8fHvQRLAcXWJTXhKxb2uSq9Yp
kKaZPZ6rrp88qtemvwVnQKE9r3/iPFeTARY7AQIDAQABo4ICdTCCAnEwDAYDVR0TAQH/BAIwADAd
BgNVHQ4EFgQUgizwG0IeMZQlCSduLVeM1zDBdUEwgdwGA1UdIwSB1DCB0YAUnl/d5VPBMWkpTdWW
l8Xzj4doh06hgbWkgbIwga8xCzAJBgNVBAYTAk5MMSAwHgYDVQQKExdUcnVzdGVkIEludHJvZHVj
ZXIgKFRJKTEgMB4GA1UECxMXQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxMzAxBgNVBAMTKlRydXN0
ZWQgSW50cm9kdWNlciAoVEkpIFRvcGxldmVsIENBIC0gRzAwMTEnMCUGCSqGSIb3DQEJARYYY2FA
dHJ1c3RlZC1pbnRyb2R1Y2VyLm5sggECMCMGA1UdEgQcMBqBGGNhQHRydXN0ZWQtaW50cm9kdWNl
ci5ubDAdBgNVHREEFjAUgRJvbmRyZWouc3VyeUBuaWMuY3owCwYDVR0PBAQDAgSwMCcGA1UdJQQg
MB4GCCsGAQUFBwMCBggrBgEFBQcDAwYIKwYBBQUHAwQwEQYJYIZIAYb4QgEBBAQDAgSwMIHVBgNV
HR8Egc0wgcowY6BhoF+GXWh0dHA6Ly9jcmwxLnRydXN0ZWQtaW50cm9kdWNlci5ubC9jYS94NTA5
L2cxL2NhLXNzbC1jbGllbnQvZzEvZGF0YS9jcmxzL2NybC1jbGllbnQtY2EtMS0xLmNybDBjoGGg
X4ZdaHR0cDovL2NybDIudHJ1c3RlZC1pbnRyb2R1Y2VyLm5sL2NhL3g1MDkvZzEvY2Etc3NsLWNs
aWVudC9nMS9kYXRhL2NybHMvY3JsLWNsaWVudC1jYS0xLTEuY3JsMA0GCSqGSIb3DQEBBQUAA4IB
AQAZP/dznHW3BWajBVQ3fTaDsx/3csUE6+jX83r1dgzYjUOmapOzXQVZ2/VTwZTzJSsD7rDgzUN6
sk6YWmUJOwqoEcPasYG9zt9e+bpwc/PURjSowb+WjEE2e4L47x3mPgL0dtlGj4guhRaj247K9N1f
grvlyX0h/IL9JO4CN0I5lAuOaZ3Yfl0euHpHLlXZ9czxkc6dCbtGSZwr3RrltNmMjhp0O3D51fDd
D6mG1vvOEV9Kj1JfSE2cQI5j3GpMlNleZA6noZ93drs2G9/D7WP4uVLCtJfGmG6PJsy4+qN46qXu
ekJR/8WH1aNcH0Ya+JsYrwIFPwL4Cr+JXrbFqUOFMYIDzzCCA8sCAQEwgbQwga0xCzAJBgNVBAYT
Ak5MMSAwHgYDVQQKExdUcnVzdGVkIEludHJvZHVjZXIgKFRJKTEgMB4GA1UECxMXQ2VydGlmaWNh
dGlvbiBBdXRob3JpdHkxMTAvBgNVBAMTKFRydXN0ZWQgSW50cm9kdWNlciAoVEkpIENsaWVudCBD
QSAtIEcwMDExJzAlBgkqhkiG9w0BCQEWGGNhQHRydXN0ZWQtaW50cm9kdWNlci5ubAICBkgwCQYF
Kw4DAhoFAKCCAe8wGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMTMx
MTA1MjEwNDE1WjAjBgkqhkiG9w0BCQQxFgQU1F/1OMpB5NuxKTkt65MVAtFc6tkwgcUGCSsGAQQB
gjcQBDGBtzCBtDCBrTELMAkGA1UEBhMCTkwxIDAeBgNVBAoTF1RydXN0ZWQgSW50cm9kdWNlciAo
VEkpMSAwHgYDVQQLExdDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTExMC8GA1UEAxMoVHJ1c3RlZCBJ
bnRyb2R1Y2VyIChUSSkgQ2xpZW50IENBIC0gRzAwMTEnMCUGCSqGSIb3DQEJARYYY2FAdHJ1c3Rl
ZC1pbnRyb2R1Y2VyLm5sAgIGSDCBxwYLKoZIhvcNAQkQAgsxgbeggbQwga0xCzAJBgNVBAYTAk5M
MSAwHgYDVQQKExdUcnVzdGVkIEludHJvZHVjZXIgKFRJKTEgMB4GA1UECxMXQ2VydGlmaWNhdGlv
biBBdXRob3JpdHkxMTAvBgNVBAMTKFRydXN0ZWQgSW50cm9kdWNlciAoVEkpIENsaWVudCBDQSAt
IEcwMDExJzAlBgkqhkiG9w0BCQEWGGNhQHRydXN0ZWQtaW50cm9kdWNlci5ubAICBkgwDQYJKoZI
hvcNAQEBBQAEggEAJzyFUw3VPC2TwUKPfGdTHH1OEQ00xQGbpd/9yaz2GgYWUvFMG6BJO57wC+WB
cXcj7ixpPF4MLP/Gzaa5C9gp29Hs0gebRITIUBytkcqsBjLhOtggcbcXCmh8b6n1ORhk2CozQ1HQ
jqrKeI4W8md4b+Yb67+uuioMC69ldLlwkLlBb5l6fVwEb85d2CLEVcFQjOM/LCTr8keYsPkjop+9
4nBoWkJC+Ajrvrkne2gtCoWzPsEkePohSntWfwBYi0C+NciVPnTgSQDha5hJwUhfSYuCtIKTtKHp
4TFFTXo0P8jO4501hPxl2PDNvoGI4nT5f7e8LhK6txVoM33LF/UYSAAAAAAAAA==

--Apple-Mail=_3E63836C-9759-4644-AC8F-311EC3E6D3AC--

From shanna@juniper.net  Tue Nov  5 13:53:32 2013
Return-Path: <shanna@juniper.net>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B33E21E80CA for <saag@ietfa.amsl.com>; Tue,  5 Nov 2013 13:53:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.086
X-Spam-Level: 
X-Spam-Status: No, score=-103.086 tagged_above=-999 required=5 tests=[AWL=-0.487, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NSRVCJS367TP for <saag@ietfa.amsl.com>; Tue,  5 Nov 2013 13:53:26 -0800 (PST)
Received: from db9outboundpool.messaging.microsoft.com (mail-db9lp0250.outbound.messaging.microsoft.com [213.199.154.250]) by ietfa.amsl.com (Postfix) with ESMTP id AB3BB11E8103 for <saag@ietf.org>; Tue,  5 Nov 2013 13:53:25 -0800 (PST)
Received: from mail184-db9-R.bigfish.com (10.174.16.249) by DB9EHSOBE013.bigfish.com (10.174.14.76) with Microsoft SMTP Server id 14.1.225.22; Tue, 5 Nov 2013 21:53:24 +0000
Received: from mail184-db9 (localhost [127.0.0.1])	by mail184-db9-R.bigfish.com (Postfix) with ESMTP id 6D31A4017E	for <saag@ietf.org>; Tue,  5 Nov 2013 21:53:24 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:157.56.240.101; KIP:(null); UIP:(null); IPV:NLI; H:BL2PRD0510HT003.namprd05.prod.outlook.com; RD:none; EFVD:NLI
X-SpamScore: 2
X-BigFish: VPS2(z569dhzda00hdc73hzz1f42h2148h208ch1ee6h1de0h1fdah2073h2146h1202h1e76h1d1ah1d2ah1fc6hzzz2fh109h2a8h839h944hd24hf0ah1220h1288h12a5h12a9h12bdh137ah13b6h1441h1504h1537h153bh162dh1631h1758h18e1h1946h19b5h19ceh1ad9h1b0ah224fh1d07h1d0ch1d2eh1d3fh1dc1h1de9h1dfeh1dffh1e1dh1fe8h1ff5h2216h9a9j1155h)
Received-SPF: pass (mail184-db9: domain of juniper.net designates 157.56.240.101 as permitted sender) client-ip=157.56.240.101; envelope-from=shanna@juniper.net; helo=BL2PRD0510HT003.namprd05.prod.outlook.com ; .outlook.com ; 
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(189002)(199002)(76482001)(79102001)(54316002)(56776001)(81542001)(77982001)(59766001)(69226001)(80022001)(81342001)(74502001)(47446002)(74316001)(31966008)(74662001)(66066001)(4396001)(51856001)(47976001)(46102001)(50986001)(76176001)(87266001)(49866001)(221733001)(63696002)(65816001)(47736001)(76796001)(74706001)(56816003)(76786001)(74876001)(76576001)(77096001)(558084003)(33646001)(85306002)(81686001)(81816001)(54356001)(74366001)(80976001)(83322001)(83072001)(53806001)(2656002)(24736002); DIR:OUT; SFP:; SCL:1; SRVR:BLUPR05MB321; H:BLUPR05MB323.namprd05.prod.outlook.com; CLIP:66.129.241.19; FPR:; RD:InfoNoRecords; MX:1; A:1; LANG:en; 
Received: from mail184-db9 (localhost.localdomain [127.0.0.1]) by mail184-db9 (MessageSwitch) id 1383688402367380_2730; Tue,  5 Nov 2013 21:53:22 +0000 (UTC)
Received: from DB9EHSMHS008.bigfish.com (unknown [10.174.16.230])	by mail184-db9.bigfish.com (Postfix) with ESMTP id 55F5C20090	for <saag@ietf.org>; Tue,  5 Nov 2013 21:53:22 +0000 (UTC)
Received: from BL2PRD0510HT003.namprd05.prod.outlook.com (157.56.240.101) by DB9EHSMHS008.bigfish.com (10.174.14.18) with Microsoft SMTP Server (TLS) id 14.16.227.3; Tue, 5 Nov 2013 21:53:22 +0000
Received: from BLUPR05MB321.namprd05.prod.outlook.com (10.141.24.13) by BL2PRD0510HT003.namprd05.prod.outlook.com (10.255.100.38) with Microsoft SMTP Server (TLS) id 14.16.371.2; Tue, 5 Nov 2013 21:53:10 +0000
Received: from BLUPR05MB323.namprd05.prod.outlook.com (10.141.24.26) by BLUPR05MB321.namprd05.prod.outlook.com (10.141.24.13) with Microsoft SMTP Server (TLS) id 15.0.810.5; Tue, 5 Nov 2013 21:53:09 +0000
Received: from BLUPR05MB323.namprd05.prod.outlook.com ([169.254.6.241]) by BLUPR05MB323.namprd05.prod.outlook.com ([169.254.6.92]) with mapi id 15.00.0810.005; Tue, 5 Nov 2013 21:53:09 +0000
From: Stephen Hanna <shanna@juniper.net>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: NEA Report
Thread-Index: Ac7acWlUk6sEcaBQRU6dO4IlcbmzkQ==
Date: Tue, 5 Nov 2013 21:53:08 +0000
Message-ID: <ce352fbf4ce447eea1a8fe573a23912e@BLUPR05MB323.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [66.129.241.19]
x-forefront-prvs: 0021920B5A
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
Subject: [saag] NEA Report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Nov 2013 21:53:32 -0000

The Network Endpoint Assessment (NEA) WG didn't meet
at IETF 88. Our last document (draft-ietf-nea-pt-eap)
is in the RFC Editor's queue, waiting on a normative
reference to draft-ietf-emu-eap-tunnel-method.



From dromasca@avaya.com  Wed Nov  6 07:10:15 2013
Return-Path: <dromasca@avaya.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7446011E81A1 for <saag@ietfa.amsl.com>; Wed,  6 Nov 2013 07:10:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.828
X-Spam-Level: 
X-Spam-Status: No, score=-102.828 tagged_above=-999 required=5 tests=[AWL=-0.229, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7uYIpY1rLVQ9 for <saag@ietfa.amsl.com>; Wed,  6 Nov 2013 07:10:09 -0800 (PST)
Received: from p-us1-iereast-outbound.us1.avaya.com (p-us1-iereast-outbound.us1.avaya.com [135.11.29.13]) by ietfa.amsl.com (Postfix) with ESMTP id D67F221F9360 for <saag@ietf.org>; Wed,  6 Nov 2013 07:10:08 -0800 (PST)
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AvcGANlaelLGmAcV/2dsb2JhbABagmYhgQu/PYEkFm0HgicBAQMSKDgHEgEVBRAUQhcPAQQODRqHXwGiCJ0GjygxgyeBEAOecIsmgyaCKg
X-IronPort-AV: E=Sophos;i="4.93,647,1378872000"; d="scan'208";a="35818990"
Received: from unknown (HELO co300216-co-erhwest-exch.avaya.com) ([198.152.7.21]) by p-us1-iereast-outbound.us1.avaya.com with ESMTP; 06 Nov 2013 10:10:07 -0500
Received: from unknown (HELO AZ-FFEXHC02.global.avaya.com) ([135.64.58.12]) by co300216-co-erhwest-out.avaya.com with ESMTP; 06 Nov 2013 10:04:20 -0500
Received: from AZ-FFEXMB04.global.avaya.com ([fe80::6db7:b0af:8480:c126]) by AZ-FFEXHC02.global.avaya.com ([135.64.58.12]) with mapi id 14.03.0146.000; Wed, 6 Nov 2013 16:09:52 +0100
From: "Romascanu, Dan (Dan)" <dromasca@avaya.com>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: SACM meeting report
Thread-Index: Ac7bAjwKpuv5XWlkSlaEhKXC1+C8Bw==
Date: Wed, 6 Nov 2013 15:09:52 +0000
Message-ID: <9904FB1B0159DA42B0B887B7FA8119CA1292DFE6@AZ-FFEXMB04.global.avaya.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [135.64.58.45]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: [saag] SACM meeting report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Nov 2013 15:10:15 -0000

The SACM WG met on Monday. Most of the time in the meeting agenda was dedic=
ated to discussing the use cases and the requirements documents. The WG wil=
l work intensively in the next few months to consolidate the use cases list=
, eliminate redundancy and make clear the relationship between use cases an=
d requirements. Revised I-Ds for use cases and requirements are expected to=
 be submitted before the end of November. The next step will have in focus =
the architecture document. The WG will probably hold a virtual interim meet=
ing by mid-December.=20

Adam and Dan



From shawn.emery@oracle.com  Wed Nov  6 10:07:43 2013
Return-Path: <shawn.emery@oracle.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AD42B11E8115 for <saag@ietfa.amsl.com>; Wed,  6 Nov 2013 10:07:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.412
X-Spam-Level: 
X-Spam-Status: No, score=-6.412 tagged_above=-999 required=5 tests=[AWL=0.186,  BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, UNPARSEABLE_RELAY=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sDKjjYpF-7zN for <saag@ietfa.amsl.com>; Wed,  6 Nov 2013 10:07:37 -0800 (PST)
Received: from userp1040.oracle.com (userp1040.oracle.com [156.151.31.81]) by ietfa.amsl.com (Postfix) with ESMTP id 26EC411E8132 for <saag@ietf.org>; Wed,  6 Nov 2013 10:07:37 -0800 (PST)
Received: from acsinet22.oracle.com (acsinet22.oracle.com [141.146.126.238]) by userp1040.oracle.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.1) with ESMTP id rA6I7ZOq021873 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for <saag@ietf.org>; Wed, 6 Nov 2013 18:07:36 GMT
Received: from userz7021.oracle.com (userz7021.oracle.com [156.151.31.85]) by acsinet22.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id rA6I7Y0f010921 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <saag@ietf.org>; Wed, 6 Nov 2013 18:07:35 GMT
Received: from abhmt114.oracle.com (abhmt114.oracle.com [141.146.116.66]) by userz7021.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id rA6I7Y44023573 for <saag@ietf.org>; Wed, 6 Nov 2013 18:07:34 GMT
Received: from dhcp-a59d.meeting.ietf.org (/31.133.165.157) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Wed, 06 Nov 2013 10:07:34 -0800
Message-ID: <527A8565.6010403@oracle.com>
Date: Wed, 06 Nov 2013 11:07:33 -0700
From: Shawn M Emery <shawn.emery@oracle.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:24.0) Gecko/20100101 Thunderbird/24.1.0
MIME-Version: 1.0
To: saag@ietf.org
References: <5279334C.6090904@oracle.com>
In-Reply-To: <5279334C.6090904@oracle.com>
X-Forwarded-Message-Id: <5279334C.6090904@oracle.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Source-IP: acsinet22.oracle.com [141.146.126.238]
Subject: [saag] kitten Summary - IETF 88
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Nov 2013 18:07:43 -0000

*Steps back out of time machine*

Co-chairs: Sam Hartman, Shawn Emery, and Josh Howlett (DNA)

The WG met for the Thursday Afternoon Session II (after the SAAG meeting)

I've included the high-lighted topics on the agenda that were discussed:

GS2 Updates
   Discussed updates to the SASL-GS2 specification to remove the requirement for
   mechanisms that do not provide mutual authentication.

Updates to OAuth
   Discussed updates to the OAuth draft to remove GS2 related text.  Polled
   the room to determine if removal of "-PLUS" specification from the draft
   was acceptable.

AES-[CBC|CTS]-SHA2
   Discussed whether we could reach consensus on which mode to use after moving away from
   CBC for draft-ietf-kitten-aes-cts-hmac-sha2.

New Drafts
   Discussed draft that has been approved as WG item:

     draft-williams-kitten-generic-naming-attributes

   and confirmed whether or not that the following draft is to be considered as a WG item:

     draft-williams-kitten-krb5-pkcross

Shawn.
--
kitten co-chair


From paul.hoffman@vpnc.org  Wed Nov  6 11:05:01 2013
Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A961721E80B6 for <saag@ietfa.amsl.com>; Wed,  6 Nov 2013 11:05:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level: 
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TDZ2wfga8F8m for <saag@ietfa.amsl.com>; Wed,  6 Nov 2013 11:05:01 -0800 (PST)
Received: from hoffman.proper.com (IPv6.Hoffman.Proper.COM [IPv6:2605:8e00:100:41::81]) by ietfa.amsl.com (Postfix) with ESMTP id 0100A21E8087 for <saag@ietf.org>; Wed,  6 Nov 2013 11:04:58 -0800 (PST)
Received: from dhcp-b88d.meeting.ietf.org (dhcp-b88d.meeting.ietf.org [31.133.184.141]) (authenticated bits=0) by hoffman.proper.com (8.14.7/8.14.7) with ESMTP id rA6J4uUY044337 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO) for <saag@ietf.org>; Wed, 6 Nov 2013 12:04:58 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
From: Paul Hoffman <paul.hoffman@vpnc.org>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
Message-Id: <F04CBA40-D534-4DB0-8951-D613AEDA7377@vpnc.org>
Date: Wed, 6 Nov 2013 11:04:56 -0800
To: saag Group <saag@ietf.org>
Mime-Version: 1.0 (Mac OS X Mail 7.0 \(1816\))
X-Mailer: Apple Mail (2.1816)
Subject: [saag] IPsecME WG report for IETF88
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Nov 2013 19:05:01 -0000

The IPsecME WG's main focus these days is on auto discovery VPN (ADVPN). =
Our "problem statement and requirements" RFC is finished, and we now =
have three different proposals for protocols. We have now had =
presentations on all three protocols and have started to compare them to =
each other. We also had a presentation about possible new work on =
handing over child SAs after IKEv2 reauthentication. There was also a =
discussion of moving some of our standards to Internet Standard, and =
that work will probably go fairly quickly.

--Yaron Sheffer and Paul Hoffman=

From derek@ihtfp.com  Wed Nov  6 16:59:03 2013
Return-Path: <derek@ihtfp.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0F8BE21E8191 for <saag@ietfa.amsl.com>; Wed,  6 Nov 2013 16:59:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.88
X-Spam-Level: 
X-Spam-Status: No, score=-101.88 tagged_above=-999 required=5 tests=[AWL=0.108, BAYES_00=-2.599, HELO_MISMATCH_ORG=0.611, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Zj9ftTi7Nxls for <saag@ietfa.amsl.com>; Wed,  6 Nov 2013 16:58:57 -0800 (PST)
Received: from mail2.ihtfp.org (MAIL2.IHTFP.ORG [204.107.200.7]) by ietfa.amsl.com (Postfix) with ESMTP id 24F6D21E81BC for <saag@ietf.org>; Wed,  6 Nov 2013 16:58:45 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id 5806626029B for <saag@ietf.org>; Wed,  6 Nov 2013 19:58:44 -0500 (EST)
Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 31832-08 for <saag@ietf.org>; Wed,  6 Nov 2013 19:58:43 -0500 (EST)
Received: from mocana.ihtfp.org (unknown [IPv6:2001:67c:370:176:224:d7ff:fee7:8924]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "mocana.ihtfp.org", Issuer "IHTFP Consulting Certification Authority" (verified OK)) by mail2.ihtfp.org (Postfix) with ESMTPS id BE6C42600B9 for <saag@ietf.org>; Wed,  6 Nov 2013 19:58:42 -0500 (EST)
Received: (from warlord@localhost) by mocana.ihtfp.org (8.14.7/8.14.7/Submit) id rA70weV8023017; Wed, 6 Nov 2013 19:58:40 -0500
From: Derek Atkins <derek@ihtfp.com>
To: saag@ietf.org
Date: Wed, 06 Nov 2013 19:58:40 -0500
Message-ID: <sjmzjph81tr.fsf@mocana.ihtfp.org>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.2 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
X-Virus-Scanned: Maia Mailguard 1.0.2a
Subject: [saag] OAUTH WG report for IETF-88
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 00:59:04 -0000

OAUTH-WG -- IETF-88
1450-1720 PST 	Monday Afternoon Session II

We went through the status of all our current documents.  assertions
and saml2-bearer are waiting of further review from the Chairs.
jwt-bearer is waiting on an updated draft from the author.  http-mac
and use-cases are waiting for the Chairs.  There are some new drafts
in the pipeline but the WG will not consider them until the current
work gets unblocked.  Most of the working group time was spent talking
about Dynmic Registration.  It was a good conversation but no
consensus was achieved during the meeting.

After the meeting time a number of participants got together and
started to work through the remaining issues, so they plan to write
their findings to bring back to the group and we'll schedule an
interim virtual meeting in December to discuss it if we need more
interactive time.  Hopefully this will allow the document set to
progress by London.

-derek, OAuth co-chair

-- 
       Derek Atkins                 617-623-3745
       derek@ihtfp.com             www.ihtfp.com
       Computer and Internet Security Consultant

From odonoghue@isoc.org  Thu Nov  7 11:10:43 2013
Return-Path: <odonoghue@isoc.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E1E4911E8261 for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:10:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.353
X-Spam-Level: 
X-Spam-Status: No, score=-103.353 tagged_above=-999 required=5 tests=[AWL=-0.088, BAYES_00=-2.599, IP_NOT_FRIENDLY=0.334, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZKrvZg6cul0T for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:10:38 -0800 (PST)
Received: from smtp140.dfw.emailsrvr.com (smtp140.dfw.emailsrvr.com [67.192.241.140]) by ietfa.amsl.com (Postfix) with ESMTP id 63BC221F9DB0 for <saag@ietf.org>; Thu,  7 Nov 2013 11:10:04 -0800 (PST)
Received: from localhost (localhost.localdomain [127.0.0.1]) by smtp14.relay.dfw1a.emailsrvr.com (SMTP Server) with ESMTP id 8F8EE298637 for <saag@ietf.org>; Thu,  7 Nov 2013 14:10:03 -0500 (EST)
X-Virus-Scanned: OK
Received: by smtp14.relay.dfw1a.emailsrvr.com (Authenticated sender: odonoghue-AT-isoc.org) with ESMTPSA id 5A19F298588 for <saag@ietf.org>; Thu,  7 Nov 2013 14:10:03 -0500 (EST)
Message-ID: <527BE58C.8000304@isoc.org>
Date: Thu, 07 Nov 2013 11:10:04 -0800
From: Karen O'Donoghue <odonoghue@isoc.org>
Organization: ISOC
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:24.0) Gecko/20100101 Thunderbird/24.1.0
MIME-Version: 1.0
To: saag@ietf.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: [saag] JOSE WG summary - IETF 88
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: odonoghue@isoc.org
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 19:10:44 -0000

The JOSE WG met on Thursday 7 November 2013 at 0900 PST.

The JOSE WG has been focused entirely on resolving issues in the issue 
tracker for the four core specification (JWA, JWS, JWE, JWK). Previous 
to this IETF, there have been four virtual interim meetings and a series 
of meetings between the editor and the wg co-chairs to address open 
issues. This has resulted in most of the remaining open issues having 
proposed resolutions that are either awaiting implementation or 
verification. Today's meeting focused on identifying resolutions for all 
the remaining open issues. The editor plans two updates between now and 
the end of the year that will close all remaining open issues. A virtual 
interim is tentatively planned for 13 January to review the document set 
and prepare for WGLC. In addition, a plan for the cook book document was 
discussed and an initial draft of that document is expected in January 
as well.



From jsalowey@cisco.com  Thu Nov  7 11:18:24 2013
Return-Path: <jsalowey@cisco.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87D7811E828A for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:18:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.562
X-Spam-Level: 
X-Spam-Status: No, score=-110.562 tagged_above=-999 required=5 tests=[AWL=0.038, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1LsWKAuTRhst for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:18:18 -0800 (PST)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) by ietfa.amsl.com (Postfix) with ESMTP id 3BEF811E8285 for <saag@ietf.org>; Thu,  7 Nov 2013 11:18:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=885; q=dns/txt; s=iport; t=1383851890; x=1385061490; h=from:to:subject:date:message-id:content-id: content-transfer-encoding:mime-version; bh=7LxXGVGzDVDDMqJynAdb08HAxrluJKLZNv9/NejEO1o=; b=B+nlXo/EOOgkKUGkMqQPvLHK787D77weuHKET4sxS1Xwymy5yyzy8zjl VB7aGr1wI8zKHHvHmLbp5dOfdRnw4nKla1EVcpCqHYCFlijislxl+nTsk fZ0je9OlTRJRRao7tNhVBkYKg9ZvAUXMtfSEQ3XyvOAVQJaelW1W5VEpC 0=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AsEGAD7ne1KtJXHA/2dsb2JhbABagweBC8A0Fm0Hgiw6UQE+QicEiBSbE6FakwCBEAOYDJIKgyaCKg
X-IronPort-AV: E=Sophos;i="4.93,653,1378857600"; d="scan'208";a="282100781"
Received: from rcdn-core2-5.cisco.com ([173.37.113.192]) by rcdn-iport-5.cisco.com with ESMTP; 07 Nov 2013 19:18:09 +0000
Received: from xhc-rcd-x10.cisco.com (xhc-rcd-x10.cisco.com [173.37.183.84]) by rcdn-core2-5.cisco.com (8.14.5/8.14.5) with ESMTP id rA7JI8eM013871 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <saag@ietf.org>; Thu, 7 Nov 2013 19:18:08 GMT
Received: from xmb-rcd-x09.cisco.com ([169.254.9.122]) by xhc-rcd-x10.cisco.com ([173.37.183.84]) with mapi id 14.03.0123.003; Thu, 7 Nov 2013 13:18:08 -0600
From: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: TLS working group report
Thread-Index: AQHO2+4XDFhnY8UyBkSymdkCw0ZBNQ==
Date: Thu, 7 Nov 2013 19:18:07 +0000
Message-ID: <1F3F70CE-4994-4AB2-A21A-5F2A51EF65B4@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [10.85.165.166]
Content-Type: text/plain; charset="us-ascii"
Content-ID: <E49DCB06B7639842BD71B75740FB640E@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: [saag] TLS working group report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 19:18:24 -0000

TLS met on Tuesday Afternoon.  The raw public key draft has completed IETF =
last call.   The cached info draft will be reviewed by the DICE working gro=
up.  The ALPN draft is under discussion due to issues with some servers dro=
pping clientHellos of particular sizes.  TLS-PWD will be heading to working=
 group last call.   The room voiced support for adopting the TLS BCP draft,=
 but a new revision will be necessary before working group adoption.   We d=
iscussed several approaches to migrate to encrypt then mac for CBC mode, mo=
re discussion on the list is necessary to determine the approach.  We had a=
 presentation on ChaCha20 based cipher suites and there was general support=
 for it in the room.  We discussed different protocol flows to reduce the r=
ound trips for the TLS 1.3 handshake and to initiate encryption earlier in =
the TLS 1.3 handshake.  =

From kwiereng@cisco.com  Thu Nov  7 11:19:41 2013
Return-Path: <kwiereng@cisco.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C12421F9DB4 for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:19:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level: 
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZXk2AmlRuK5h for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:19:35 -0800 (PST)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) by ietfa.amsl.com (Postfix) with ESMTP id 9A2A611E8285 for <saag@ietf.org>; Thu,  7 Nov 2013 11:19:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=180; q=dns/txt; s=iport; t=1383851962; x=1385061562; h=from:to:subject:date:message-id:content-id: content-transfer-encoding:mime-version; bh=2apytFXOUisuRonsHM/K12Npj6EH6DrQTQKuKyoAev4=; b=XWm0wO74oyg7NQUXlQ4hA0/8fWAeGyvKG6jYUfhmnqXwVu08K4BiumoQ McECbRqIjn3RKSVXCyxDfKyAd6o2s2Z3ZmqxDX5iPfSem2se0C2hrXXUo b4BpDhpR6kVelrZatu0aynLn5RS1pk9JC84ItJ7uIetaJik4X8xu7eZKH U=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AsEGAD7ne1KtJXHA/2dsb2JhbABagweBC8A0Fm0Hgiw6UQEaJEIXEASIFJsToVqTAIEQA5gMkgqDJoIq
X-IronPort-AV: E=Sophos;i="4.93,653,1378857600"; d="scan'208";a="282101282"
Received: from rcdn-core2-5.cisco.com ([173.37.113.192]) by rcdn-iport-5.cisco.com with ESMTP; 07 Nov 2013 19:19:22 +0000
Received: from xhc-rcd-x03.cisco.com (xhc-rcd-x03.cisco.com [173.37.183.77]) by rcdn-core2-5.cisco.com (8.14.5/8.14.5) with ESMTP id rA7JJMYg016541 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <saag@ietf.org>; Thu, 7 Nov 2013 19:19:22 GMT
Received: from xmb-aln-x12.cisco.com ([169.254.7.149]) by xhc-rcd-x03.cisco.com ([173.37.183.77]) with mapi id 14.03.0123.003; Thu, 7 Nov 2013 13:19:21 -0600
From: "Klaas Wierenga (kwiereng)" <kwiereng@cisco.com>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: ABFAB WG summary
Thread-Index: AQHO2+5CJkjmMwC9ikKLfLqLVi/PZw==
Date: Thu, 7 Nov 2013 19:19:20 +0000
Message-ID: <81A5460A-4CF4-473F-8008-DB8CB76A32AB@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [10.61.109.120]
Content-Type: text/plain; charset="us-ascii"
Content-ID: <DE2B430606BD9241AE9815056B2ADE97@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: [saag] ABFAB WG summary
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 19:19:41 -0000

ABFAB is not meeting until after SAAG (today 1730 PST)

topics:=20
- AAA-SAML draft,=20
- ABFAB architecture draft,=20
- UI draft

- Possible new work to take on.

Klaas

From jsalowey@cisco.com  Thu Nov  7 11:24:03 2013
Return-Path: <jsalowey@cisco.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C9B311E8281 for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:24:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.569
X-Spam-Level: 
X-Spam-Status: No, score=-110.569 tagged_above=-999 required=5 tests=[AWL=0.030, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WtrOE+20h2xQ for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:23:57 -0800 (PST)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) by ietfa.amsl.com (Postfix) with ESMTP id B448411E828D for <saag@ietf.org>; Thu,  7 Nov 2013 11:23:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=174; q=dns/txt; s=iport; t=1383852228; x=1385061828; h=from:to:subject:date:message-id:content-id: content-transfer-encoding:mime-version; bh=3lPXkEqwXv8OmfDOfZ495bqRQdB1WIvPKJQv3cGQRUo=; b=USZ6KaPG7xjo2KHku1FiVTXsVg2PsLdi4ro56vfA22QcjBGoZij1xROG rN9LjlBg+tgs2g2uV1FDsAYkOjIS6WCgsB+jGT76PE/S9CaLiuL/3cq18 /aNW6WMoZYxjvpD96ZiI+oeO1Y2SXdkqotnxTsmVYltr0c9jO1hDhoH4D k=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AsEGAD7ne1KtJXG8/2dsb2JhbABagweBC8A0Fm0Hgiw6UQE+QicEiBSbE6FakwCBEAOYDJIKgyaCKg
X-IronPort-AV: E=Sophos;i="4.93,653,1378857600"; d="scan'208";a="281908466"
Received: from rcdn-core2-1.cisco.com ([173.37.113.188]) by rcdn-iport-1.cisco.com with ESMTP; 07 Nov 2013 19:23:36 +0000
Received: from xhc-rcd-x08.cisco.com (xhc-rcd-x08.cisco.com [173.37.183.82]) by rcdn-core2-1.cisco.com (8.14.5/8.14.5) with ESMTP id rA7JNaQB011880 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <saag@ietf.org>; Thu, 7 Nov 2013 19:23:36 GMT
Received: from xmb-rcd-x09.cisco.com ([169.254.9.122]) by xhc-rcd-x08.cisco.com ([173.37.183.82]) with mapi id 14.03.0123.003; Thu, 7 Nov 2013 13:23:36 -0600
From: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: EMU working group summary
Thread-Index: AQHO2+7a1h2lzEERaEeJ9CjYbzsAMw==
Date: Thu, 7 Nov 2013 19:23:35 +0000
Message-ID: <5165B55F-569C-4D53-89B5-C3AAF9916D21@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [10.85.165.166]
Content-Type: text/plain; charset="us-ascii"
Content-ID: <2FCB89FA7D569C40B71BE7A60A95B51F@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: [saag] EMU working group summary
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 19:24:03 -0000

THe EMU working group did not meet at IETF-88.   The mutual crypto binding =
draft was published as RFC 7029.  The TEAP draft is working its way through=
 IESG review.  =

From ynir@checkpoint.com  Thu Nov  7 11:36:51 2013
Return-Path: <ynir@checkpoint.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A30911E8188 for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:36:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.525
X-Spam-Level: 
X-Spam-Status: No, score=-10.525 tagged_above=-999 required=5 tests=[AWL=0.074, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pAaM2fjW+uZK for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 11:36:35 -0800 (PST)
Received: from smtp.checkpoint.com (smtp.checkpoint.com [194.29.34.68]) by ietfa.amsl.com (Postfix) with ESMTP id 0E05721E8172 for <saag@ietf.org>; Thu,  7 Nov 2013 11:36:19 -0800 (PST)
Received: from DAG-EX10.ad.checkpoint.com ([194.29.34.150]) by smtp.checkpoint.com (8.13.8/8.13.8) with ESMTP id rA7JaIMa032541 for <saag@ietf.org>; Thu, 7 Nov 2013 21:36:18 +0200
X-CheckPoint: {527BEA2E-0-1B221DC2-1FFFF}
Received: from IL-EX10.ad.checkpoint.com ([169.254.2.106]) by DAG-EX10.ad.checkpoint.com ([169.254.3.213]) with mapi id 14.03.0123.003; Thu, 7 Nov 2013 21:36:18 +0200
From: Yoav Nir <ynir@checkpoint.com>
To: IETF Security Area Advisory Group <saag@ietf.org>
Thread-Topic: HTTP-Auth working group report
Thread-Index: AQHO2/Cgvl090WZeKkazBjKqfTZrzw==
Date: Thu, 7 Nov 2013 19:36:17 +0000
Message-ID: <6396B7BB-F10A-4AEA-84F7-04569E3A48B3@checkpoint.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [172.31.20.53]
x-kse-antivirus-interceptor-info: scan successful
x-kse-antivirus-info: Clean
Content-Type: text/plain; charset="us-ascii"
Content-ID: <0ADEE9C3399AFE40A186AD2818AC9DF6@ad.checkpoint.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: [saag] HTTP-Auth working group report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 19:36:53 -0000

The HTTP-Auth working group will meet Friday morning at 9:00 AM

The plan is to discuss the HOBA and Rest-Auth documents, as well as commona=
lities among all proposals.

We will also report of the interim meeting that dealt with MutualAuth. Othe=
r documents are progressing, but we try to discuss only a few per meeting, =
so as to have a more useful discussion.

Matt & Yoav=

From dgellert@silverspringnet.com  Thu Nov  7 13:25:37 2013
Return-Path: <dgellert@silverspringnet.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D6FE11E8110 for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 13:25:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level: 
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g3WwBLenHDK7 for <saag@ietfa.amsl.com>; Thu,  7 Nov 2013 13:25:32 -0800 (PST)
Received: from it-ipcorp-01.silverspringnet.com (it-ipcorp-01.silverspringnet.com [74.121.22.25]) by ietfa.amsl.com (Postfix) with ESMTP id DA8F321E8092 for <saag@ietf.org>; Thu,  7 Nov 2013 13:25:31 -0800 (PST)
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgsGAE4EfFIKOQxz/2dsb2JhbABXA4JDgU++REqBPW0HgicFHRBeASoWAQY5FBMEEwjFCI4agQ43EoMPgRADrTyBaEI
X-IronPort-AV: E=Sophos;i="4.93,654,1378882800"; d="scan'208,217";a="3553631"
Received: from sfo-barrlb-01.silverspringnet.com (HELO mail.silverspringnet.com) ([10.57.12.115]) by it-ipcorp-01.silverspringnet.com with ESMTP/TLS/AES128-SHA; 07 Nov 2013 13:25:32 -0800
Received: from SFO-EXMB-03.silverspringnet.com ([fe80::e877:a0b0:2e8d:1b57]) by SFO-EXCA-02.silverspringnet.com ([::1]) with mapi id 14.02.0318.004; Thu, 7 Nov 2013 13:25:28 -0800
From: Dorothy Gellert <dgellert@silverspringnet.com>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: Dice WG report
Thread-Index: AQHO2//hKpdwVOrIJkamD2Qe7sq04Q==
Date: Thu, 7 Nov 2013 21:25:27 +0000
Message-ID: <B01B11D1C8F1994AB77D0EF55A50302641B10C@SFO-EXMB-03.silverspringnet.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [10.57.12.115]
Content-Type: multipart/alternative; boundary="_000_B01B11D1C8F1994AB77D0EF55A50302641B10CSFOEXMB03silversp_"
MIME-Version: 1.0
X-Mailman-Approved-At: Thu, 07 Nov 2013 13:54:45 -0800
Subject: [saag] Dice WG report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2013 21:25:37 -0000

--_000_B01B11D1C8F1994AB77D0EF55A50302641B10CSFOEXMB03silversp_
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Dice met for the first time as a WG on Monday afternoon.   The DTLS profile=
 draft was presented and a call for Volunteers for authors/Editor was made =
as the previous authors were unable to continue the work.   Klaus Hartke pr=
esented the dice practical issues draft as input to the profile draft.   Th=
e Multicast draft was presented, a number of comments were discussed includ=
ing the limited scope of using DTLS for multicast, crypto agility for regio=
nal plug ins, detecting replay attacks.  Given updates to the current draft=
, a hum was taken by the WG to progress this draft to WG status.   This dec=
ision will be confirmed on the WG list.

Dorothy Gellert
E dgellert@silverspringnet.com<mailto:dgellert@silverspringnet.com>
O +1 650 839 4378
C +1 650 556-5994





--_000_B01B11D1C8F1994AB77D0EF55A50302641B10CSFOEXMB03silversp_
Content-Type: text/html; charset="us-ascii"
Content-ID: <D1052029D7A5194797386DD3C6D7E406@silverspringnet.com>
Content-Transfer-Encoding: quoted-printable

<html>
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dus-ascii"=
>
<meta name=3D"Title" content=3D"">
<meta name=3D"Keywords" content=3D"">
<meta name=3D"ProgId" content=3D"Word.Document">
<meta name=3D"Generator" content=3D"Microsoft Word 14">
<meta name=3D"Originator" content=3D"Microsoft Word 14">
<link rel=3D"File-List" href=3D"file://localhost/Users/dgellert/Library/Cac=
hes/TemporaryItems/msoclip/0clip_filelist.xml"><!--[if gte mso 9]><xml>
 <o:OfficeDocumentSettings>
  <o:AllowPNG/>
 </o:OfficeDocumentSettings>
</xml><![endif]--><link rel=3D"themeData" href=3D"file://localhost/Users/dg=
ellert/Library/Caches/TemporaryItems/msoclip/0clip_themedata.xml"><!--[if g=
te mso 9]><xml>
 <w:WordDocument>
  <w:View>Normal</w:View>
  <w:Zoom>0</w:Zoom>
  <w:TrackMoves/>
  <w:TrackFormatting/>
  <w:PunctuationKerning/>
  <w:ValidateAgainstSchemas/>
  <w:SaveIfXMLInvalid>false</w:SaveIfXMLInvalid>
  <w:IgnoreMixedContent>false</w:IgnoreMixedContent>
  <w:AlwaysShowPlaceholderText>false</w:AlwaysShowPlaceholderText>
  <w:DoNotPromoteQF/>
  <w:LidThemeOther>EN-US</w:LidThemeOther>
  <w:LidThemeAsian>JA</w:LidThemeAsian>
  <w:LidThemeComplexScript>X-NONE</w:LidThemeComplexScript>
  <w:Compatibility>
   <w:BreakWrappedTables/>
   <w:SnapToGridInCell/>
   <w:WrapTextWithPunct/>
   <w:UseAsianBreakRules/>
   <w:DontGrowAutofit/>
   <w:SplitPgBreakAndParaMark/>
   <w:EnableOpenTypeKerning/>
   <w:DontFlipMirrorIndents/>
   <w:OverrideTableStyleHps/>
   <w:UseFELayout/>
  </w:Compatibility>
  <m:mathPr>
   <m:mathFont m:val=3D"Cambria Math"/>
   <m:brkBin m:val=3D"before"/>
   <m:brkBinSub m:val=3D"&#45;-"/>
   <m:smallFrac m:val=3D"off"/>
   <m:dispDef/>
   <m:lMargin m:val=3D"0"/>
   <m:rMargin m:val=3D"0"/>
   <m:defJc m:val=3D"centerGroup"/>
   <m:wrapIndent m:val=3D"1440"/>
   <m:intLim m:val=3D"subSup"/>
   <m:naryLim m:val=3D"undOvr"/>
  </m:mathPr></w:WordDocument>
</xml><![endif]--><!--[if gte mso 9]><xml>
 <w:LatentStyles DefLockedState=3D"false" DefUnhideWhenUsed=3D"true"
  DefSemiHidden=3D"true" DefQFormat=3D"false" DefPriority=3D"99"
  LatentStyleCount=3D"276">
  <w:LsdException Locked=3D"false" Priority=3D"0" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Normal"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"heading 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 7"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 8"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 9"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 7"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 8"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 9"/>
  <w:LsdException Locked=3D"false" Priority=3D"35" QFormat=3D"true" Name=3D=
"caption"/>
  <w:LsdException Locked=3D"false" Priority=3D"10" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Title"/>
  <w:LsdException Locked=3D"false" Priority=3D"1" Name=3D"Default Paragraph=
 Font"/>
  <w:LsdException Locked=3D"false" Priority=3D"11" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Subtitle"/>
  <w:LsdException Locked=3D"false" Priority=3D"22" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Strong"/>
  <w:LsdException Locked=3D"false" Priority=3D"20" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Emphasis"/>
  <w:LsdException Locked=3D"false" Priority=3D"59" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Table Grid"/>
  <w:LsdException Locked=3D"false" UnhideWhenUsed=3D"false" Name=3D"Placeho=
lder Text"/>
  <w:LsdException Locked=3D"false" Priority=3D"1" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"No Spacing"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 1"/>
  <w:LsdException Locked=3D"false" UnhideWhenUsed=3D"false" Name=3D"Revisio=
n"/>
  <w:LsdException Locked=3D"false" Priority=3D"34" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"List Paragraph"/>
  <w:LsdException Locked=3D"false" Priority=3D"29" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Quote"/>
  <w:LsdException Locked=3D"false" Priority=3D"30" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Intense Quote"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"19" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Subtle Emphasis"/>
  <w:LsdException Locked=3D"false" Priority=3D"21" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Intense Emphasis"/>
  <w:LsdException Locked=3D"false" Priority=3D"31" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Subtle Reference"/>
  <w:LsdException Locked=3D"false" Priority=3D"32" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Intense Reference"/>
  <w:LsdException Locked=3D"false" Priority=3D"33" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Book Title"/>
  <w:LsdException Locked=3D"false" Priority=3D"37" Name=3D"Bibliography"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" QFormat=3D"true" Name=3D=
"TOC Heading"/>
 </w:LatentStyles>
</xml><![endif]--><style>
<!--
 /* Font Definitions */
@font-face
	{font-family:"?? ??";
	panose-1:0 0 0 0 0 0 0 0 0 0;
	mso-font-charset:128;
	mso-generic-font-family:roman;
	mso-font-format:other;
	mso-font-pitch:fixed;
	mso-font-signature:1 134676480 16 0 131072 0;}
@font-face
	{font-family:"?? ??";
	panose-1:0 0 0 0 0 0 0 0 0 0;
	mso-font-charset:128;
	mso-generic-font-family:roman;
	mso-font-format:other;
	mso-font-pitch:fixed;
	mso-font-signature:1 134676480 16 0 131072 0;}
@font-face
	{font-family:Cambria;
	panose-1:2 4 5 3 5 4 6 3 2 4;
	mso-font-charset:0;
	mso-generic-font-family:auto;
	mso-font-pitch:variable;
	mso-font-signature:-536870145 1073743103 0 0 415 0;}
 /* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{mso-style-unhide:no;
	mso-style-qformat:yes;
	mso-style-parent:"";
	margin:0in;
	margin-bottom:.0001pt;
	mso-pagination:widow-orphan;
	font-size:12.0pt;
	font-family:Cambria;
	mso-ascii-font-family:Cambria;
	mso-ascii-theme-font:minor-latin;
	mso-fareast-font-family:"?? ??";
	mso-fareast-theme-font:minor-fareast;
	mso-hansi-font-family:Cambria;
	mso-hansi-theme-font:minor-latin;
	mso-bidi-font-family:"Times New Roman";
	mso-bidi-theme-font:minor-bidi;}
.MsoChpDefault
	{mso-style-type:export-only;
	mso-default-props:yes;
	font-family:Cambria;
	mso-ascii-font-family:Cambria;
	mso-ascii-theme-font:minor-latin;
	mso-fareast-font-family:"?? ??";
	mso-fareast-theme-font:minor-fareast;
	mso-hansi-font-family:Cambria;
	mso-hansi-theme-font:minor-latin;
	mso-bidi-font-family:"Times New Roman";
	mso-bidi-theme-font:minor-bidi;}
@page WordSection1
	{size:8.5in 11.0in;
	margin:1.0in 1.25in 1.0in 1.25in;
	mso-header-margin:.5in;
	mso-footer-margin:.5in;
	mso-paper-source:0;}
div.WordSection1
	{page:WordSection1;}
-->
</style><!--[if gte mso 10]>
<style>
 /* Style Definitions */
table.MsoNormalTable
	{mso-style-name:"Table Normal";
	mso-tstyle-rowband-size:0;
	mso-tstyle-colband-size:0;
	mso-style-noshow:yes;
	mso-style-priority:99;
	mso-style-parent:"";
	mso-padding-alt:0in 5.4pt 0in 5.4pt;
	mso-para-margin:0in;
	mso-para-margin-bottom:.0001pt;
	mso-pagination:widow-orphan;
	font-size:12.0pt;
	font-family:Cambria;
	mso-ascii-font-family:Cambria;
	mso-ascii-theme-font:minor-latin;
	mso-hansi-font-family:Cambria;
	mso-hansi-theme-font:minor-latin;}
</style>
<![endif]-->
</head>
<body style=3D"word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-lin=
e-break: after-white-space; color: rgb(0, 0, 0); ">
<div>
<div>
<div style=3D"font-family: Calibri, sans-serif; font-size: 14px; "><!--[if =
gte mso 9]><xml>
 <o:OfficeDocumentSettings>
  <o:AllowPNG/>
 </o:OfficeDocumentSettings>
</xml><![endif]--><!--[if gte mso 9]><xml>
 <w:WordDocument>
  <w:View>Normal</w:View>
  <w:Zoom>0</w:Zoom>
  <w:TrackMoves/>
  <w:TrackFormatting/>
  <w:PunctuationKerning/>
  <w:ValidateAgainstSchemas/>
  <w:SaveIfXMLInvalid>false</w:SaveIfXMLInvalid>
  <w:IgnoreMixedContent>false</w:IgnoreMixedContent>
  <w:AlwaysShowPlaceholderText>false</w:AlwaysShowPlaceholderText>
  <w:DoNotPromoteQF/>
  <w:LidThemeOther>EN-US</w:LidThemeOther>
  <w:LidThemeAsian>JA</w:LidThemeAsian>
  <w:LidThemeComplexScript>X-NONE</w:LidThemeComplexScript>
  <w:Compatibility>
   <w:BreakWrappedTables/>
   <w:SnapToGridInCell/>
   <w:WrapTextWithPunct/>
   <w:UseAsianBreakRules/>
   <w:DontGrowAutofit/>
   <w:SplitPgBreakAndParaMark/>
   <w:EnableOpenTypeKerning/>
   <w:DontFlipMirrorIndents/>
   <w:OverrideTableStyleHps/>
   <w:UseFELayout/>
  </w:Compatibility>
  <m:mathPr>
   <m:mathFont m:val=3D"Cambria Math"/>
   <m:brkBin m:val=3D"before"/>
   <m:brkBinSub m:val=3D"&#45;-"/>
   <m:smallFrac m:val=3D"off"/>
   <m:dispDef/>
   <m:lMargin m:val=3D"0"/>
   <m:rMargin m:val=3D"0"/>
   <m:defJc m:val=3D"centerGroup"/>
   <m:wrapIndent m:val=3D"1440"/>
   <m:intLim m:val=3D"subSup"/>
   <m:naryLim m:val=3D"undOvr"/>
  </m:mathPr></w:WordDocument>
</xml><![endif]--><!--[if gte mso 9]><xml>
 <w:LatentStyles DefLockedState=3D"false" DefUnhideWhenUsed=3D"true"
  DefSemiHidden=3D"true" DefQFormat=3D"false" DefPriority=3D"99"
  LatentStyleCount=3D"276">
  <w:LsdException Locked=3D"false" Priority=3D"0" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Normal"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"heading 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 7"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 8"/>
  <w:LsdException Locked=3D"false" Priority=3D"9" QFormat=3D"true" Name=3D"=
heading 9"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 7"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 8"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" Name=3D"toc 9"/>
  <w:LsdException Locked=3D"false" Priority=3D"35" QFormat=3D"true" Name=3D=
"caption"/>
  <w:LsdException Locked=3D"false" Priority=3D"10" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Title"/>
  <w:LsdException Locked=3D"false" Priority=3D"1" Name=3D"Default Paragraph=
 Font"/>
  <w:LsdException Locked=3D"false" Priority=3D"11" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Subtitle"/>
  <w:LsdException Locked=3D"false" Priority=3D"22" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Strong"/>
  <w:LsdException Locked=3D"false" Priority=3D"20" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Emphasis"/>
  <w:LsdException Locked=3D"false" Priority=3D"59" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Table Grid"/>
  <w:LsdException Locked=3D"false" UnhideWhenUsed=3D"false" Name=3D"Placeho=
lder Text"/>
  <w:LsdException Locked=3D"false" Priority=3D"1" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"No Spacing"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 1"/>
  <w:LsdException Locked=3D"false" UnhideWhenUsed=3D"false" Name=3D"Revisio=
n"/>
  <w:LsdException Locked=3D"false" Priority=3D"34" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"List Paragraph"/>
  <w:LsdException Locked=3D"false" Priority=3D"29" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Quote"/>
  <w:LsdException Locked=3D"false" Priority=3D"30" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Intense Quote"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 1"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 2"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 3"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 4"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 5"/>
  <w:LsdException Locked=3D"false" Priority=3D"60" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Shading Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"61" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light List Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"62" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Light Grid Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"63" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 1 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"64" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Shading 2 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"65" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 1 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"66" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium List 2 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"67" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 1 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"68" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 2 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"69" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Medium Grid 3 Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"70" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Dark List Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"71" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Shading Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"72" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful List Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"73" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" Name=3D"Colorful Grid Accent 6"/>
  <w:LsdException Locked=3D"false" Priority=3D"19" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Subtle Emphasis"/>
  <w:LsdException Locked=3D"false" Priority=3D"21" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Intense Emphasis"/>
  <w:LsdException Locked=3D"false" Priority=3D"31" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Subtle Reference"/>
  <w:LsdException Locked=3D"false" Priority=3D"32" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Intense Reference"/>
  <w:LsdException Locked=3D"false" Priority=3D"33" SemiHidden=3D"false"
   UnhideWhenUsed=3D"false" QFormat=3D"true" Name=3D"Book Title"/>
  <w:LsdException Locked=3D"false" Priority=3D"37" Name=3D"Bibliography"/>
  <w:LsdException Locked=3D"false" Priority=3D"39" QFormat=3D"true" Name=3D=
"TOC Heading"/>
 </w:LatentStyles>
</xml><![endif]--><!--[if gte mso 10]>
<style>
 /* Style Definitions */
table.MsoNormalTable
	{mso-style-name:"Table Normal";
	mso-tstyle-rowband-size:0;
	mso-tstyle-colband-size:0;
	mso-style-noshow:yes;
	mso-style-priority:99;
	mso-style-parent:"";
	mso-padding-alt:0in 5.4pt 0in 5.4pt;
	mso-para-margin:0in;
	mso-para-margin-bottom:.0001pt;
	mso-pagination:widow-orphan;
	font-size:12.0pt;
	font-family:Cambria;
	mso-ascii-font-family:Cambria;
	mso-ascii-theme-font:minor-latin;
	mso-hansi-font-family:Cambria;
	mso-hansi-theme-font:minor-latin;}
</style>
<![endif]--><!--StartFragment-->
<p class=3D"MsoNormal">Dice met for the first time as a WG on Monday aftern=
oon.<span style=3D"mso-spacerun:yes">&nbsp;&nbsp;
</span>The DTLS profile draft was presented and a call for Volunteers for a=
uthors/Editor was made as the previous authors were unable to continue the =
work.<span style=3D"mso-spacerun:yes">&nbsp;&nbsp;
</span>Klaus Hartke presented the dice practical issues draft as input to t=
he profile draft.<span style=3D"mso-spacerun:yes">&nbsp;
</span><span style=3D"mso-spacerun:yes">&nbsp;</span>The Multicast draft wa=
s presented, a number of comments were discussed including the limited scop=
e of using DTLS for multicast, crypto agility for regional plug ins, detect=
ing replay attacks.
<span style=3D"mso-spacerun:yes">&nbsp;</span>Given updates to the current =
draft, a hum was taken by the WG to progress this draft to WG status.<span =
style=3D"mso-spacerun:yes">&nbsp;&nbsp;
</span>This decision will be confirmed on the WG list.</p>
<p class=3D"MsoNormal">&nbsp;<o:p></o:p></p>
<!--EndFragment--></div>
<div>
<div>
<div>
<p class=3D"MsoNormal" style=3D"color: rgb(0, 0, 0); margin-top: 0in; margi=
n-right: 0in; margin-left: 0in; margin-bottom: 0.0001pt; font-size: 11pt; f=
ont-family: Calibri, sans-serif; ">
<b><span style=3D"font-size: 10pt; color: rgb(31, 73, 125); ">Dorothy Gelle=
rt</span></b></p>
<p class=3D"MsoNormal" style=3D"color: rgb(0, 0, 0); margin-top: 0in; margi=
n-right: 0in; margin-left: 0in; margin-bottom: 0.0001pt; font-size: 11pt; f=
ont-family: Calibri, sans-serif; ">
<b><span style=3D"font-size: 9pt; color: rgb(155, 187, 89); ">E</span></b><=
span style=3D"font-size: 9pt; color: black; ">&nbsp;</span><u><span style=
=3D"font-size: 9pt; color: blue; "><a href=3D"mailto:dgellert@silverspringn=
et.com" style=3D"color: blue; text-decoration: underline; ">dgellert@silver=
springnet.com</a></span></u><span style=3D"font-size: 9pt; color: rgb(31, 7=
3, 125); "></span><b><span style=3D"font-size: 9pt; color: rgb(155, 187, 89=
); "><o:p></o:p></span></b></p>
<p class=3D"MsoNormal" style=3D"color: rgb(0, 0, 0); margin-top: 0in; margi=
n-right: 0in; margin-left: 0in; margin-bottom: 0.0001pt; font-size: 11pt; f=
ont-family: Calibri, sans-serif; ">
<b><span style=3D"font-size: 9pt; color: rgb(155, 187, 89); ">O</span></b><=
span style=3D"font-size: 9pt; color: black; ">&nbsp;</span><span style=3D"f=
ont-size: 9pt; color: rgb(31, 73, 125); ">&#43;1 650 839 4378<o:p></o:p></s=
pan></p>
<p class=3D"MsoNormal" style=3D"color: rgb(0, 0, 0); margin-top: 0in; margi=
n-right: 0in; margin-left: 0in; margin-bottom: 0.0001pt; font-size: 11pt; f=
ont-family: Calibri, sans-serif; ">
<span style=3D"font-size: 9pt; color: rgb(31, 73, 125); "><span class=3D"Ap=
ple-style-span" style=3D"font-size: 15px; color: rgb(0, 0, 0); "><span styl=
e=3D"font-size: 9pt; color: black; ">C&nbsp;</span></span><span class=3D"Ap=
ple-style-span" style=3D"font-size: 15px; color: rgb(0, 0, 0); "><span styl=
e=3D"font-size: 9pt; color: rgb(31, 73, 125); ">&#43;1
 650 556-5994</span></span></span></p>
<p class=3D"MsoNormal" style=3D"color: rgb(0, 0, 0); margin-top: 0in; margi=
n-right: 0in; margin-left: 0in; margin-bottom: 0.0001pt; ">
<font class=3D"Apple-style-span" face=3D"Times New Roman,serif"><br>
</font></p>
<p class=3D"MsoNormal" style=3D"font-family: Calibri, sans-serif; font-size=
: 14px; margin-top: 0in; margin-right: 0in; margin-left: 0in; margin-bottom=
: 0.0001pt; ">
<font class=3D"Apple-style-span" color=3D"#008000" face=3D"Webdings"><span =
class=3D"Apple-style-span" style=3D"font-size: 19px;"><br>
</span></font></p>
<p class=3D"MsoNormal" style=3D"color: rgb(0, 0, 0); margin-top: 0in; margi=
n-right: 0in; margin-left: 0in; margin-bottom: 0.0001pt; font-size: 11pt; f=
ont-family: Calibri, sans-serif; ">
<o:p>&nbsp;</o:p></p>
</div>
<div style=3D"font-family: Calibri, sans-serif; color: rgb(0, 0, 0); font-s=
ize: 14px; ">
<br>
</div>
</div>
</div>
</div>
</div>
</body>
</html>

--_000_B01B11D1C8F1994AB77D0EF55A50302641B10CSFOEXMB03silversp_--

From dev+ietf@seantek.com  Thu Nov  7 19:24:42 2013
Return-Path: <dev+ietf@seantek.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 504E411E814B; Thu,  7 Nov 2013 19:24:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level: 
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NsbkkfxZ0bKE; Thu,  7 Nov 2013 19:24:37 -0800 (PST)
Received: from mxout-07.mxes.net (mxout-07.mxes.net [216.86.168.182]) by ietfa.amsl.com (Postfix) with ESMTP id 85AA411E822C; Thu,  7 Nov 2013 19:24:13 -0800 (PST)
Received: from [142.131.19.16] (unknown [64.114.24.114]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by smtp.mxes.net (Postfix) with ESMTPSA id 0AC6F22E259; Thu,  7 Nov 2013 22:24:06 -0500 (EST)
From: Sean Leonard <dev+ietf@seantek.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_44F48962-CDBB-4588-8170-43FEFF435A19"; protocol="application/pkcs7-signature"; micalg=sha1
Message-Id: <92685DEB-1713-4018-8E27-C8D78829EEB7@seantek.com>
Date: Thu, 7 Nov 2013 19:24:06 -0800
To: "urn-nid@ietf.org" <urn-nid@ietf.org>, "saag@ietf.org" <saag@ietf.org>, "apps-discuss@ietf.org" <apps-discuss@ietf.org>
Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
X-Mailer: Apple Mail (2.1510)
Subject: [saag] New version of certspec (02) incorporating Dale's feedback
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Nov 2013 03:24:42 -0000

--Apple-Mail=_44F48962-CDBB-4588-8170-43FEFF435A19
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
	charset=us-ascii

Hello URN/Apps folks, and SAAG folks:

A new version of the Internet-Draft draft-seantek-certspec (02) has been =
posted to the IETF repository. I would like to notify this list for =
further commentary.

Dale Worley provided excellent feedback on the urn-nid mailing list, all =
of which I considered and most of which I incorporated. Some of the =
changes are significant; the most significant changes are tightening up =
the acceptable characters for various certspec productions, and =
referring and conforming to URNBIS =
(http://tools.ietf.org/html/draft-ietf-urnbis-rfc2141bis-urn-06) as much =
as possible, instead of RFC 2141. I also changed a lot of nomenclature =
to be consistent--for example, I refer to certificates encoded in their =
entirety as "content-based certspecs" rather than "value-based =
certspecs" (in contrast to certificate identifiers by reference), since =
"certspec-value" is the counterpart to "certspec-type". I will respond =
to Dale's feedback on the urn-nid list.

Kind regards,

Sean

**************
Subject: New Version Notification for draft-seantek-certspec-02.txt

A new version of I-D, draft-seantek-certspec-02.txt
has been successfully submitted by Sean Leonard and posted to the
IETF repository.

Filename:	 draft-seantek-certspec
Revision:	 02
Title:		 A Uniform Resource Name (URN) Namespace for =
Certificates
Creation date:	 2013-11-08
Group:		 Individual Submission
Number of pages: 19
URL:             =
http://www.ietf.org/internet-drafts/draft-seantek-certspec-02.txt
Status:          http://datatracker.ietf.org/doc/draft-seantek-certspec
Htmlized:        http://tools.ietf.org/html/draft-seantek-certspec-02
Diff:            =
http://www.ietf.org/rfcdiff?url2=3Ddraft-seantek-certspec-02

Abstract:
  Digital certificates are used in many systems and protocols to
  identify and authenticate parties.  This document describes a Uniform
  Resource Name (URN) namespace that identifies certificates.  These
  URNs can be used when certificates need to be identified by value or
  reference.

--Apple-Mail=_44F48962-CDBB-4588-8170-43FEFF435A19
Content-Disposition: attachment;
	filename=smime.p7s
Content-Type: application/pkcs7-signature;
	name=smime.p7s
Content-Transfer-Encoding: base64
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--Apple-Mail=_44F48962-CDBB-4588-8170-43FEFF435A19--

From vf@unity.net  Mon Nov 11 10:11:51 2013
Return-Path: <vf@unity.net>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5181211E821C for <saag@ietfa.amsl.com>; Mon, 11 Nov 2013 10:11:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.185
X-Spam-Level: 
X-Spam-Status: No, score=-0.185 tagged_above=-999 required=5 tests=[BAYES_40=-0.185]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NJb6yEo-n59V for <saag@ietfa.amsl.com>; Mon, 11 Nov 2013 10:11:46 -0800 (PST)
Received: from vc.unity.net (140-242.trifle.net [195.24.140.242]) by ietfa.amsl.com (Postfix) with ESMTP id E14B311E81B2 for <saag@ietf.org>; Mon, 11 Nov 2013 10:11:45 -0800 (PST)
Received: from vf by vc.unity.net with local (Exim 4.80) (envelope-from <vf@unity.net>) id 1Vfvwe-0006Kd-1g; Mon, 11 Nov 2013 20:10:40 +0200
Date: Mon, 11 Nov 2013 20:10:39 +0200
From: Vadym Fedyukovych <vf@unity.net>
To: saag@ietf.org
Message-ID: <20131111181039.GB30360@vc.unity.net>
References: <5267EAF2.2000608@KingsMountain.com> <CAPv4CP-mxR5whK+yW6Gjrs20nJ+3zZ7Wwyn3_ZRdUw-bS0y2Mg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
In-Reply-To: <CAPv4CP-mxR5whK+yW6Gjrs20nJ+3zZ7Wwyn3_ZRdUw-bS0y2Mg@mail.gmail.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
X-SA-Exim-Connect-IP: <locally generated>
X-SA-Exim-Mail-From: vf@unity.net
X-SA-Exim-Scanned: No (on vc.unity.net); SAEximRunCond expanded to false
Subject: Re: [saag] [perpass] fyi: Dan Geer: Tradeoffs in Cyber Security [9 October 13, UNCC[
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Nov 2013 18:11:51 -0000

On Wed, Oct 23, 2013 at 01:08:27PM -0400, Scott Brim wrote:
> This is fantastic.  Thanks.
> 
> It illumines something: Surveillance by governments is not the biggest of
> our problems. Privacy in the ordinary operation of a technology-based
> society is significantly bigger. Criminals, big business ... but also
> businesses and casual individuals have access to data you wish they didn't.
> Yes the IETF needs to do better with crypto and authentication, but the
> fundamental designs of the protocols they are being added to need to
> support them.  From the bottom up, we need to proactively (not reactively)
> make sure that IETF protocol designs take privacy into consideration.
> 
> Scott

It would be my pleasure to name U-Prove, Idemix and DAA for consideration,
on the grounds of their properties.

Vadym Fedyukovych


From rgm-sec@htt-consult.com  Tue Nov 12 14:41:41 2013
Return-Path: <rgm-sec@htt-consult.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87B0621E80A5 for <saag@ietfa.amsl.com>; Tue, 12 Nov 2013 14:41:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level: 
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4AAiloWelBSv for <saag@ietfa.amsl.com>; Tue, 12 Nov 2013 14:41:41 -0800 (PST)
Received: from klovia.htt-consult.com (klovia.htt-consult.com [IPv6:2607:f4b8:3:0:218:71ff:fe83:66b9]) by ietfa.amsl.com (Postfix) with ESMTP id D910021E8098 for <saag@ietf.org>; Tue, 12 Nov 2013 14:41:40 -0800 (PST)
Received: from localhost (unknown [127.0.0.1]) by klovia.htt-consult.com (Postfix) with ESMTP id D830162A6B for <saag@ietf.org>; Tue, 12 Nov 2013 22:41:37 +0000 (UTC)
X-Virus-Scanned: amavisd-new at localhost
Received: from klovia.htt-consult.com ([127.0.0.1]) by localhost (klovia.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NWnjPmO-Nff2 for <saag@ietf.org>; Tue, 12 Nov 2013 17:41:27 -0500 (EST)
Received: from lx120e2.htt-consult.com (unknown [216.1.225.2]) (Authenticated sender: rgm-sec@htt-consult.com) by klovia.htt-consult.com (Postfix) with ESMTPSA id 725FE62A6D for <saag@ietf.org>; Tue, 12 Nov 2013 17:41:27 -0500 (EST)
Message-ID: <5282AE85.50208@htt-consult.com>
Date: Tue, 12 Nov 2013 16:41:09 -0600
From: Robert Moskowitz <rgm-sec@htt-consult.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130625 Thunderbird/17.0.7
MIME-Version: 1.0
To: "saag@ietf.org" <saag@ietf.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: [saag] SIESTA mailing list
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Nov 2013 22:41:41 -0000

The SIESTA mailing list is now open.

You can subscribe to the list at:

https://www.ietf.org/mailman/listinfo/siesta

I am currently at IEEE 802.  I will work on getting my welcome posts up 
no later than eod monday.  Right now I am suppose to be focusing on the 
802.15.9 document...



From benl@google.com  Wed Nov 13 04:31:56 2013
Return-Path: <benl@google.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E03DB21E805D for <saag@ietfa.amsl.com>; Wed, 13 Nov 2013 04:31:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level: 
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[AWL=0.000,  BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7EzVWzDpECVl for <saag@ietfa.amsl.com>; Wed, 13 Nov 2013 04:31:56 -0800 (PST)
Received: from mail-vb0-x22a.google.com (mail-vb0-x22a.google.com [IPv6:2607:f8b0:400c:c02::22a]) by ietfa.amsl.com (Postfix) with ESMTP id 5DB4A11E814B for <saag@ietf.org>; Wed, 13 Nov 2013 04:31:56 -0800 (PST)
Received: by mail-vb0-f42.google.com with SMTP id p14so223031vbm.29 for <saag@ietf.org>; Wed, 13 Nov 2013 04:31:55 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=HTTPX+WlRI8wGWUjOcwXBxQnR+gTfCP4D7ooH89Io64=; b=dUf6dcmBnBoyy23UhyANd96nDzCqE5P4NpuhCeNNbtfHDtqSogPS8q9PL8F1vAtnyL +8Y6yzl4zR5CdqsylVdsT7q4ABax0BF9/dPOJ1Xq8ZQJZ9yiebJJR5O/vu5LMkuLpDl9 gaYFd6grAbAXqMbnknyfIyJCrtDvKVHDOnBQZqxsgOSMq7vrjjDqm52Q4UGFgQHfa0lO QAnJ17Zqr72571AptCHtsFkCbM0HU9YsVKujGdcWzKxUXC7sD829CZXDhddDtQZxuZn+ dB80NJE3pfFA1WJcmED2ZrM9CLP/gSN+X1FNz8kdV5CPIBuyVJL/v1cu2ExJIbKj5OKu iG9Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=HTTPX+WlRI8wGWUjOcwXBxQnR+gTfCP4D7ooH89Io64=; b=j7nB7tpJohmnXGdnpTHa+cuMngeQmTNcwAP3ao4meWk/yxMINlKr/Pahjy0cvuZD6e G5N17L95a1XrfPfE4z2iPHR0L2fLtcPAs9iosmThoLigTWT5kxTTZxM+AhT/qXLWrJpn KFpPFY6YTrklYTvxyJpGr8+9SLDRB5NQSwyTLKUZBZQ6kET75znIenD8MJsCxkZ8fVa1 7uceZb3W72/77Zv70fDI2yteq8ESD98+CFYWhrcBR94O2hpOUvf1OxnomzqP6kkabfet fMXgsd6DHtiWevw9X2b4ZgFNXB8JFWBBcUjtXwTkgh6WDNL3CVknxssTYE0z3h7YDpJF y2OQ==
X-Gm-Message-State: ALoCoQlmDMLXAhPIR0y86oqzbZBBjHhF/nDza+3h1N4FS0yaV2MbtztzKVkTHpDdepBIEq0JhJFRIlERA4EjRSigYqm3IH7Mef12Oomg0+M60KNzG3RbNW5ZKY8G7SoTpUA+JEpV33LWKfcxAhGwj+07S7RQooxRDl1rY6SSv8D0Uo3r6Deudij+9BQvwaEdVEf6sI6imZg7
MIME-Version: 1.0
X-Received: by 10.58.216.74 with SMTP id oo10mr33919904vec.0.1384345914982; Wed, 13 Nov 2013 04:31:54 -0800 (PST)
Received: by 10.52.183.65 with HTTP; Wed, 13 Nov 2013 04:31:54 -0800 (PST)
In-Reply-To: <5282AE85.50208@htt-consult.com>
References: <5282AE85.50208@htt-consult.com>
Date: Wed, 13 Nov 2013 12:31:54 +0000
Message-ID: <CABrd9SSGdZLkOoVBaiwWaazmk0=pEZpHdeSEdk69XyesuX78nQ@mail.gmail.com>
From: Ben Laurie <benl@google.com>
To: Robert Moskowitz <rgm-sec@htt-consult.com>
Content-Type: text/plain; charset=ISO-8859-1
Cc: "saag@ietf.org" <saag@ietf.org>
Subject: Re: [saag] SIESTA mailing list
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Nov 2013 12:31:57 -0000

On 12 November 2013 22:41, Robert Moskowitz <rgm-sec@htt-consult.com> wrote:
> The SIESTA mailing list is now open.
>
> You can subscribe to the list at:
>
> https://www.ietf.org/mailman/listinfo/siesta
>
> I am currently at IEEE 802.  I will work on getting my welcome posts up no
> later than eod monday.  Right now I am suppose to be focusing on the
> 802.15.9 document...

On the face of it, the goals sound impossible: if the application
security context (ASC) is completely decoupled from the communication
context, then how can you defend against
mitm/hijacking/injection/whatever? Only, it seems to me, by tying the
ASC to the data that is sent, somehow - that is, to the communication
context (at some level).

From rgm-sec@htt-consult.com  Wed Nov 13 06:30:48 2013
Return-Path: <rgm-sec@htt-consult.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1DCA911E8159 for <saag@ietfa.amsl.com>; Wed, 13 Nov 2013 06:30:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level: 
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iGMWYM+d8tYT for <saag@ietfa.amsl.com>; Wed, 13 Nov 2013 06:30:47 -0800 (PST)
Received: from klovia.htt-consult.com (klovia.htt-consult.com [IPv6:2607:f4b8:3:0:218:71ff:fe83:66b9]) by ietfa.amsl.com (Postfix) with ESMTP id B6ED321E80B1 for <saag@ietf.org>; Wed, 13 Nov 2013 06:30:42 -0800 (PST)
Received: from localhost (unknown [127.0.0.1]) by klovia.htt-consult.com (Postfix) with ESMTP id 0BD8F62A7E; Wed, 13 Nov 2013 14:30:34 +0000 (UTC)
X-Virus-Scanned: amavisd-new at localhost
Received: from klovia.htt-consult.com ([127.0.0.1]) by localhost (klovia.htt-consult.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XW8EQruxxvs2; Wed, 13 Nov 2013 09:30:23 -0500 (EST)
Received: from lx120e2.htt-consult.com (unknown [216.1.225.2]) (Authenticated sender: rgm-sec@htt-consult.com) by klovia.htt-consult.com (Postfix) with ESMTPSA id 855D362A77; Wed, 13 Nov 2013 09:30:23 -0500 (EST)
Message-ID: <52838CF4.8090407@htt-consult.com>
Date: Wed, 13 Nov 2013 08:30:12 -0600
From: Robert Moskowitz <rgm-sec@htt-consult.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130625 Thunderbird/17.0.7
MIME-Version: 1.0
To: Ben Laurie <benl@google.com>
References: <5282AE85.50208@htt-consult.com> <CABrd9SSGdZLkOoVBaiwWaazmk0=pEZpHdeSEdk69XyesuX78nQ@mail.gmail.com>
In-Reply-To: <CABrd9SSGdZLkOoVBaiwWaazmk0=pEZpHdeSEdk69XyesuX78nQ@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: "saag@ietf.org" <saag@ietf.org>
Subject: Re: [saag] SIESTA mailing list
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Nov 2013 14:30:48 -0000

On 11/13/2013 06:31 AM, Ben Laurie wrote:
> On 12 November 2013 22:41, Robert Moskowitz <rgm-sec@htt-consult.com> wrote:
>> The SIESTA mailing list is now open.
>>
>> You can subscribe to the list at:
>>
>> https://www.ietf.org/mailman/listinfo/siesta
>>
>> I am currently at IEEE 802.  I will work on getting my welcome posts up no
>> later than eod monday.  Right now I am suppose to be focusing on the
>> 802.15.9 document...
> On the face of it, the goals sound impossible: if the application
> security context (ASC) is completely decoupled from the communication
> context, then how can you defend against
> mitm/hijacking/injection/whatever? Only, it seems to me, by tying the
> ASC to the data that is sent, somehow - that is, to the communication
> context (at some level).
>
I welcome you to bring this to the list next week.   I (and others) will 
address it there.  My attention this week has to be on security for 
802.15....



From stephen.farrell@cs.tcd.ie  Wed Nov 13 14:05:34 2013
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8512821E811A; Wed, 13 Nov 2013 14:05:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.926
X-Spam-Level: 
X-Spam-Status: No, score=-102.926 tagged_above=-999 required=5 tests=[AWL=-0.679, BAYES_00=-2.599, SARE_SUB_11CONS_WORD=0.352, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Awvabs-ic2w7; Wed, 13 Nov 2013 14:05:28 -0800 (PST)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) by ietfa.amsl.com (Postfix) with ESMTP id A2B3B21E8104; Wed, 13 Nov 2013 14:05:27 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id F171BBE80; Wed, 13 Nov 2013 22:05:26 +0000 (GMT)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nFovoWoxQeEh; Wed, 13 Nov 2013 22:05:25 +0000 (GMT)
Received: from [10.87.48.12] (unknown [86.41.61.15]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 14096BE7D; Wed, 13 Nov 2013 22:05:25 +0000 (GMT)
Message-ID: <5283F7A2.5040106@cs.tcd.ie>
Date: Wed, 13 Nov 2013 22:05:22 +0000
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.1.0
MIME-Version: 1.0
To: "\"saag@ietf.org\" per" <saag@ietf.org>, perpass <perpass@ietf.org>,  "cfrg@irtf.org" <cfrg@irtf.org>, "secdir@ietf.org" <secdir@ietf.org>
References: <20131113215822.13869.69647.idtracker@ietfa.amsl.com>
In-Reply-To: <20131113215822.13869.69647.idtracker@ietfa.amsl.com>
X-Enigmail-Version: 1.6
X-Forwarded-Message-Id: <20131113215822.13869.69647.idtracker@ietfa.amsl.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: Apps Discuss <apps-discuss@ietf.org>
Subject: [saag] Fwd: New Non-WG Mailing List: dsfjdssdfsd
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Nov 2013 22:05:34 -0000

Hi,

There was some discussion in Vancouver at the secdir lunch and
the perpass BoF about better randomness recommendations and we
agreed to set up a new list. Details for that are below.

Many thanks to Dan Harkins and Paul Hoffman for agreeing to
moderate this. I think Don Eastlake is also working on an update
to RFC 4086 so this could be a useful place to talk about that.
I'm hoping that one of them will kick off the discussion in a
few days, once folks have had a chance to sign up.

Regards,
Stephen.

-------- Original Message --------
Subject: New Non-WG Mailing List: dsfjdssdfsd
Date: Wed, 13 Nov 2013 13:58:22 -0800
From: IETF Secretariat <ietf-secretariat@ietf.org>
Reply-To: ietf@ietf.org
To: IETF Announcement List <ietf-announce@ietf.org>
CC: dsfjdssdfsd@ietf.org, dharkins@lounge.org, paul.hoffman@vpnc.org

A new IETF non-working group email list has been created.

List address: dsfjdssdfsd@ietf.org
Archive:
http://www.ietf.org/mail-archive/web/dsfjdssdfsd/current/maillist.html
To subscribe: https://www.ietf.org/mailman/listinfo/dsfjdssdfsd

Purpose: The dsfjdssdfsd list provides a venue for discussion of
randomness in IETF protocols, for example related to updating RFC 4086.

For additional information, please contact the list administrators.





From stephen.farrell@cs.tcd.ie  Mon Nov 25 06:27:07 2013
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 174BD1ADBCA for <saag@ietfa.amsl.com>; Mon, 25 Nov 2013 06:27:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level: 
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qEpZUG8BeU-O for <saag@ietfa.amsl.com>; Mon, 25 Nov 2013 06:27:05 -0800 (PST)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) by ietfa.amsl.com (Postfix) with ESMTP id E32231AD9AD for <saag@ietf.org>; Mon, 25 Nov 2013 06:27:04 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id CDCC9BE3F for <saag@ietf.org>; Mon, 25 Nov 2013 14:27:04 +0000 (GMT)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SNR93hZSRa25 for <saag@ietf.org>; Mon, 25 Nov 2013 14:27:04 +0000 (GMT)
Received: from [134.226.36.180] (stephen-think.dsg.cs.tcd.ie [134.226.36.180]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id AAAF5BE3E for <saag@ietf.org>; Mon, 25 Nov 2013 14:27:04 +0000 (GMT)
Message-ID: <52935E39.7040802@cs.tcd.ie>
Date: Mon, 25 Nov 2013 14:27:05 +0000
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.1.1
MIME-Version: 1.0
To: "saag@ietf.org" <saag@ietf.org>
References: <20131122173554.16611.88076.idtracker@ietfa.amsl.com>
In-Reply-To: <20131122173554.16611.88076.idtracker@ietfa.amsl.com>
X-Enigmail-Version: 1.6
X-Forwarded-Message-Id: <20131122173554.16611.88076.idtracker@ietfa.amsl.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Subject: [saag] Fwd: WG Review: Using TLS in Applications (uta)
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Nov 2013 14:27:07 -0000

FYI, please note this proposed new APPS area WG. We'll need
to try get a bunch of security folks involved in that so
please consider spending a few cycles to help out with the
work.

I'd say discussion of that charter would be best done on
apps-discuss@ietf.org since its proposed as an APPS area
WG and the apps-discuss list is probably where there's
the best concentration of relevant expertise, so please
direct any substantive discussion there.

Thanks,
S.


-------- Original Message --------
Subject: WG Review: Using TLS in Applications (uta)
Date: Fri, 22 Nov 2013 09:35:54 -0800
From: The IESG <iesg-secretary@ietf.org>
Reply-To: ietf@ietf.org
To: IETF-Announce <ietf-announce@ietf.org>

A new IETF working group has been proposed in the Applications Area. The
IESG has not made any determination yet. The following draft charter was
submitted, and is provided for informational purposes only. Please send
your comments to the IESG mailing list (iesg at ietf.org) by 2013-12-02.

Using TLS in Applications (uta)
------------------------------------------------
Current Status: Proposed WG

Assigned Area Director:
  Barry Leiba <barryleiba@computer.org>


Charter:

There is a renewed and urgent interest in the IETF to increase the
security of transmissions over the Internet. Many application protocols
have defined methods for using TLS to authenticate the server (and
sometimes the client), and to encrypt the connection between the client
and server. However, there is a diversity of definitions and
requirements, and that diversity has caused confusion for application
developers and also has led to lack of interoperability or lack of
deployment. Implementers and deployers are faced with multiple security
issues in real-world usage of TLS, which currently does not preclude
insecure ciphers and modes of operation.

This WG has the following tasks:

- Update the definitions for using TLS over a set of representative
application protocols.  This includes communication with proxies, between
servers, and between peers, where appropriate, in addition to
client/server communication.

- Specify a set of best practices for TLS clients and servers, including
but not limited to recommended versions of TLS, using forward secrecy,
and one or more ciphersuites and extensions that are mandatory to
implement.

- Consider, and possibly define, a standard way for an application client
and server to use unauthenticated encryption through TLS when server
and/or client authentication cannot be achieved.

- Create a document that helps application protocol developers use TLS in
future application definitions.

The initial set of representative application protocols is SMTP, POP,
IMAP, XMPP, and HTTP 1.1. It is expected that other protocols that use
TLS might later be updated using the guidelines from this WG, and that
those updates will happen through other WGs or through individual
submissions.

The WG will make the fewest changes needed to achieve good interoperable
security for the applications using TLS.  No changes to TLS itself will
be made in this WG, and the WG will ensure that changes to current
versions of popular TLS libaries will not be required to conform to the
WG's specifications.

This WG will collaborate with other IETF WGs, in particular with the TLS
and DANE WGs.

Milestones: