Dear OPSEC members, I hope everyone has been safe and healthy during this special time...
We submitted this “TLS proxy best practice” draft for review by the OPSEC WG. Since it is related to the implementation of a critical network function offered and deployed by security vendors, we thought it would be suitable to be discussed here and eventually adopted by this WG. https://tools.ietf.org/html/draft-wang-tls-proxy-best-practice-01 (this revision incorporated several offline review comments.) Please let us know your feedback and comments. Your review is much appreciated! Best, -Eric On Mar 4, 2020, at 5:37 PM, Eric Wang (ejwang) <[email protected]<mailto:[email protected]>> wrote: Hello OPSEC participants, We just submitted the following draft related to security best practices for implementing "TLS proxy", a common function leveraged by network operators. We thought it is relevant to this working group and would appreciate your review and comments. This document is also related to draft-camwinget-tls-ns-impact<https://datatracker.ietf.org/doc/draft-camwinget-tls-ns-impact/> which Nancy sent out earlier. Best, -Eric (on behalf of the authors) Begin forwarded message: From: <[email protected]<mailto:[email protected]>> Subject: New Version Notification for draft-wang-tls-proxy-best-practice-01.txt Date: March 4, 2020 at 3:19:48 PM PST To: Andrew Ossipov <[email protected]<mailto:[email protected]>>, Eric Wang <[email protected]<mailto:[email protected]>>, "Roelof DuToit" <[email protected]<mailto:[email protected]>> A new version of I-D, draft-wang-tls-proxy-best-practice-01.txt has been successfully submitted by Eric Wang and posted to the IETF repository. Name: draft-wang-tls-proxy-best-practice Revision: 01 Title: TLS Proxy Best Practice Document date: 2020-03-04 Group: Individual Submission Pages: 16 URL: https://www.ietf.org/internet-drafts/draft-wang-tls-proxy-best-practice-01.txt Status: https://datatracker.ietf.org/doc/draft-wang-tls-proxy-best-practice/ Htmlized: https://tools.ietf.org/html/draft-wang-tls-proxy-best-practice-01 Htmlized: https://datatracker.ietf.org/doc/html/draft-wang-tls-proxy-best-practice Diff: https://www.ietf.org/rfcdiff?url2=draft-wang-tls-proxy-best-practice-01 Abstract: TLS proxies are widely deployed by organizations to enable security features and apply enterprise policies. This document defines a TLS proxy and discusses a wide range of security requirements to guide TLS proxy implementations. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org/>. The IETF Secretariat
_______________________________________________ OPSEC mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsec
