[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with

To: rms@xxxxxxx
Subject: Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
From: "Steven M. Bellovin" <smb@xxxxxxxxxxxxxxx>
Date: Thu, 3 Jul 2008 07:31:06 -0400
Cc: paul.hoffman@xxxxxxxx, tls@xxxxxxxx, iesg@xxxxxxxx
Delivered-to: tls@xxxxxxxxxxxxxx
In-reply-to: <E1KEM2k-0005fY-Sn@xxxxxxxxxxxxxxxxx>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Organization: Columbia University
References: <200806301701.m5UH1rdm023287@xxxxxxxxxxxxxxxxxxx> <E1KDSPJ-0004XB-TT@xxxxxxxxxxxxxxxxx> <2CB988A3-B88D-4B88-A3B6-6F7D99802439@xxxxxxxxxxxxxx> <E1KDmbL-0001jF-Bk@xxxxxxxxxxxxxxxxx> <> <87ej6dckui.fsf@xxxxxxxxxxxxxxxxxxx> <20080701205128.3a90bb9c@xxxxxxxxxxxxxxx> <33F4A444-C32B-461C-922D-5D442DE43EB3@xxxxxxxxxxxxxx> <E1KEM2k-0005fY-Sn@xxxxxxxxxxxxxxxxx>
Sender: tls-bounces@xxxxxxxx

On Thu, 03 Jul 2008 06:28:02 -0400
Richard M Stallman <rms@xxxxxxx> wrote:

>     It's worse than that. There's no "IETF police" to come after  
>     violators, or enforce section 7 of 3979. If some individual fails
> to disclose, she will not be barred from participating in IETF  
>     discussions, or from posting new drafts.  If a company fails to  
>     disclose, definitely no action will be taken against its
> employees.   
> 
> If this is true, does it indicate that the IETF needs to take a
> stronger stand in enforcing its own rules?

Based on the precedents in the Dell and Rambus cases, it was felt that
government enforcement (in the US) would suffice.  Besides, the IETF
has little recourse of its own on late discoveries; "destandardizing"
something that others are implementing isn't very practical in many
cases.


		--Steve Bellovin, http://www.cs.columbia.edu/~smb
_______________________________________________
TLS mailing list
TLS@xxxxxxxx
https://www.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Richard M Stallman

References:
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Martin Rex
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Richard M Stallman
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Yoav Nir
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Richard M Stallman
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Paul Hoffman
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Simon Josefsson
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Steven M. Bellovin
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Yoav Nir
- Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
  - From: Richard M Stallman

Prev by Date: Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
Next by Date: Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
Previous by thread: Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
Next by thread: Re: [TLS] Document Action: 'TLS Elliptic Curve Cipher Suites with
Index(es):
- Date
- Thread