UTA (Tue 21 Jul, 17:40-18:40) ---- Welcome & Notewell by Leif Document Status reviewed briefly: RFC 7457 (+Errata);R FC 7525 (+Errata); RFC 7590 - draft-ietf-uta-email-tls-certs-03 was in WGLC, got a few last minute comments that are editorial, so existing WGLC will stand Deployable Enhanced Email Privacy (Chris Newman) presentation RE: draft-ietf-uta-email-deep-01 A few changes to this version of draft e.g. clarify abstract, editorial, recommend STARTTLS for SMTP for submission in addition to Implicit TLS. Open issues: some text related to TLS 10 vs TLS 12. Qn - should we have a way to do public key pinning for email? Inclined to leave this to subsequent work, since it adds quite a bit. Ref RFC 7469. Daniel (DKG)(comment) - has not given sufficient consideration to pinning as to whether to advise, but suggests that separate draft is way forward. Looking for Port data stats on 465 vs 587 usage in the wild, but for now, being agnostic in some degree to cater for either. Solicits help to get stats from largest 10 email providers to see which is used/preferred. Farrell say can be presented at SAAG. Basically just text massaging is left. Volunteers for review called = DKG, Alexi, Aaron, Victor. Keith via Jabba ask is this review prior to WGLC - clarified that yes, this is for prior review. These will be posted to the mailing list, but wait until Chris does his update first. Chris will try to complete the update this week. Leif suggests we need a wider IETF review over dual registration of both ports TLS and DTLS Security Modules (Pascal Urien) presents proposed new draft : draft-urien-uta-tls-dtls-security-module-00 TLS & DTLD widely used (EAP, HTTPS, CoAP). see Pascal's slides for details. Proposal is to utilize ISO 7816 chips (e.g. smartcards) to provide Encryption/Decryption via EAP-TLS or EAP-DTLS. Usage is to create software bridge to perform segmentation and reassembly operations with the security module. The software bridge then provides an interface for applications to send encrypted & HMACed record packets, and decrypting & checking of the same. Qns - DKG: Clarification is that smartcard is a blackbox for these operations. What are data rate limits? Few KBits/sec. Qn from Jabba (Victor) - why is this being presented in this group? Its is a trusted computing help for either client or server. DKG - what does error reporting look like to elements interacting with this? It just fails similar to a browser fail. Implementers can choose which algorithms etc. they want to support on a specific implementation. The intended status of the draft is experimental - what is the author's expectation from presenting here? Author would like to get some feedback from the WG because the software bridge role is focus of this WG. Author invited to solicit comments on the list to ascertain interest for WG. Open Mic Steve (Cisco) - has draft on cert validation that he is interested in bringing to WG. Alexi is interested. Steve will send draft to list. Leif: Have more or less done what WG set out to do, so how long do we stick around, are there other things still to do? Speedy completion of work is NOT a failure, it is a success. Is anyone interested in TAC - Stephen Farrell says that would be TLS WG and not UTA.