[TLS] Re: 【Reply to the comments after the presentation in Montreal】RE: Re: FW: New Version Notification for draft-wang-tls-service-affinity-00.txt

[Wei Wang]

Hi Usama,


    Sorry for the late response. We have uploaded the -v01 of 
draft-wang-tls-service-affinity. In the latest version, the following 
modifications have been made according to your comments:

The introduction has been re-write, the CATS part has been moved to Use case 
section.


A new section is added to describe the Motivation and design rationale.


The protocol design in section 4 has been revised based on TLS 1.3.


Since we are not very familiar with security-related technologies, would you 
like to help us improve the content of security considerations?



Best Regards,
Wei


         Original
         
       
From: Muhammad Usama Sardar <muhammad_usama.sar...@tu-dresden.de&gt;
Date: 2026-02-02 19:24
To: Aijun Wang <wangai...@tsinghua.org.cn&gt;
Cc: tls <tls@ietf.org&gt;, draft-wang-tls-service-affinity 
<draft-wang-tls-service-affin...@ietf.org&gt;, Mohit Sahni 
<msa...@paloaltonetworks.com&gt;
Subject: [TLS] Re: 【Reply to the comments after the presentation in 
Montreal】RE: Re: FW: New Version Notification for 
draft-wang-tls-service-affinity-00.txt



                          On 30.01.26 14:25, Aijun Wang wrote: We will refine 
the draft in the coming days which         will try to address your comments.

Thanks. Here is a structure that would help me to help you :)
 

Introduction

Problem statement: Say in general what the problem is. IMHO           this 
should not&nbsp;include CATS. Anyone unfamiliar with           CATS should be 
able to understand your problem.
 

Terminology

Define any terms not defined in RFC8446bis
 

Motivation and design rationale

I really like how Russ motivates the problem statement in           RFC8773bis 
[0]. Use it as a sample.
 

Here you should address all the concerns from WG, including           
justification with compelling arguments and authentic           references why 
you think it should be done within TLS           handshake.

You could put CATS here as a motivational use case.

Proposed solution (one or more sections)
 

Protocol design with protocol diagram (Use TLS 1.3 only)
 

Security considerations

Threat model

Desired security goals

Other security implications/considerations

Hope it helps.

You may also find [1] helpful. I will update it in the next weeks       with 
more details.
 

-Usama
 

[0]  https://www.ietf.org/archive/id/draft-ietf-tls-8773bis-13.html#section-3

[1] 
https://www.ietf.org/archive/id/draft-usama-tls-fatt-extension-01.html#section-4
_______________________________________________
TLS mailing list -- tls@ietf.org
To unsubscribe send an email to tls-le...@ietf.org