Benjamin, thanks for a very thorough summary of the discussion.
I was thinking about the use of 2119 keywords in the context of draft-ietf-v6ops-cpe-slaac-renum and realizing that there's a subtle but important difference between a BCP that says MUST NOT vs. a protocol specification that says MUST NOT:
In a BCP - MUST NOT presumably means "doing this violates what we
consider best current practice".
In a protocol specification - MUST NOT means "a protocol
implementation violates the standard if it does this"
A lot of my concern about draft-ietf-tls-oldversions-deprecate-09 is that it may be taken to mean that implementations MUST NOT permit use of TLS versions < 1.2 even though there are valid reasons for doing so. I think draft-ietf-tls-oldversions-deprecate would be Mostly Harmless if it were clear that it's only making operational recommendations that aren't binding on implementations, and that there may continue to be valid corner cases in which there's a need for implementations to be configurable to use older TLS versions. Perhaps language to this effect could be added in the proposed section 7 or elsewhere.
Keith
-- last-call mailing list last-call@xxxxxxxx https://www.ietf.org/mailman/listinfo/last-call
