IETF Logo Mail Archive

Re: [100attendees] Side Meeting on considerations on using short-term certificates.

Yoav Nir <ynir.ietf@gmail.com> Mon, 13 November 2017 13:21 UTC

Return-Path: <ynir.ietf@gmail.com>
X-Original-To: 100attendees@ietfa.amsl.com
Delivered-To: 100attendees@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 38012129577 for <100attendees@ietfa.amsl.com>; Mon, 13 Nov 2017 05:21:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mcvNtnvUJc5R for <100attendees@ietfa.amsl.com>; Mon, 13 Nov 2017 05:21:55 -0800 (PST)
Received: from mail-pg0-x229.google.com (mail-pg0-x229.google.com [IPv6:2607:f8b0:400e:c05::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5EBBB1294D8 for <100attendees@ietf.org>; Mon, 13 Nov 2017 05:21:55 -0800 (PST)
Received: by mail-pg0-x229.google.com with SMTP id s11so7188799pgc.5 for <100attendees@ietf.org>; Mon, 13 Nov 2017 05:21:55 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=WdugFVWWTl5Q/Ug7AXjwx3hBr+T3/qEwE8yecBEZ3yw=; b=T/gVzw9gQqKTbUO3zs4Piu9R/iUZqq8ZT00XB5/vL+OVFUHS3B7q7Y/fK/7LBxVUum 0miDZWEt6ayZVtfOlsIkQfYAP9slmxdOQ4SbZHyTAsgVYUG8y94IAkQ5oW4Ki16nk6JA fGRerSoejNDR/q61EfjjFNKLiNHBbiZd5AFHjmzaMidUWCNL9KGTkK81qnO/rURHRltH pVAzJuNyV9KjUobquIxdS/aTyxHrblwALBrmtouY+jPv9tkbrjZMjKcRw6w/UzBmIrOq o7QTuIQNhDqnXxM/sEVWXEB+wzV2SpN23Mkw01Es+cXSsRmOA9f5YC025YjJ/x8ydr8z YGlA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=WdugFVWWTl5Q/Ug7AXjwx3hBr+T3/qEwE8yecBEZ3yw=; b=ZLOLjkKZSbydxfbmuuSdCFLNg1yiiOsSxt7kO+j1R/fBdbIPLIHHc8DxINLdZfJRDb oenHoR9ywMXkHLfIdktR4qHLV8CcbXm4OArp4C0zuFQO1RKHyGGZHlSA47kBU3BYHNma +KDRO1i9XnJvWbypkPQCYgz+K8VVza+ERlvjaLLawDhx22bUu76upwh/n/AEDHno2GYI 56A2KVUjFuAgul/ylr7odeRgkMTmU9y+u+Ldy1DZBzwK/Xo5vYLSfwuA2LaBhJ71ysTO N6WZKVl0tzqX6f4pyN6aVSYKH9TRFBuCthYjh36HPpWvWIe6ImcpSIsuP2tFqinua4O6 BX3Q==
X-Gm-Message-State: AJaThX4NWjFuEcaT+9Z3cmV/dKFAylTdexbsNCmLZ5FOK5RKDUaNthZZ eyoRCkBLKL0TVGM4lTdkkxECaqM8
X-Google-Smtp-Source: AGs4zMbrg8EZpPVo8c+9K7KGrm07TmcJ0N376vXy43JykxR9AgxcT6IBDPiayFRbLx8H+AzAp3JP6g==
X-Received: by 10.99.107.197 with SMTP id g188mr6464545pgc.295.1510579314987; Mon, 13 Nov 2017 05:21:54 -0800 (PST)
Received: from [172.20.5.55] ([203.127.152.4]) by smtp.gmail.com with ESMTPSA id t4sm8317965pfd.110.2017.11.13.05.21.53 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 13 Nov 2017 05:21:54 -0800 (PST)
From: Yoav Nir <ynir.ietf@gmail.com>
Message-Id: <B77F0C65-A7F3-4419-83AF-234CACD4F069@gmail.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_8FDB1B8F-DF49-4B41-9030-D01E06EB0ACA"; protocol="application/pgp-signature"; micalg=pgp-sha512
Mime-Version: 1.0 (Mac OS X Mail 11.1 \(3445.4.7\))
Date: Mon, 13 Nov 2017 21:21:51 +0800
In-Reply-To: <6242d566-37bb-a81b-5ed5-1b50b2d0eff7@labs.htt-consult.com>
Cc: 100attendees@ietf.org
To: Robert Moskowitz <rgm@labs.htt-consult.com>
References: <7AEE0333-EF1B-49CF-A9D6-88D0A491C541@gmail.com> <6242d566-37bb-a81b-5ed5-1b50b2d0eff7@labs.htt-consult.com>
X-Mailer: Apple Mail (2.3445.4.7)
Archived-At: <https://mailarchive.ietf.org/arch/msg/100attendees/hM0pVi7nfEASJWzzZ1MEtfE9rq4>
Subject: Re: [100attendees] Side Meeting on considerations on using short-term certificates.
X-BeenThere: 100attendees@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Mailing list of IETF 100 attendees that have opted in on this list." <100attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/100attendees>, <mailto:100attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/100attendees/>
List-Post: <mailto:100attendees@ietf.org>
List-Help: <mailto:100attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/100attendees>, <mailto:100attendees-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Nov 2017 13:21:57 -0000

CBOR and ACME both end at 17:50, 10 minutes before we begin.



> On 13 Nov 2017, at 11:17, Robert Moskowitz <rgm@labs.htt-consult.com> wrote:
> 
> Conflicts with CBOR and ACME.  And Melinda's TRANS conflicts with SUIT.
> 
> Always conflicts.  This is way in the old days of BAR BOFS, they were held around 10pm...
> 
> Bob
> 
> On 11/13/2017 10:45 AM, Yoav Nir wrote:
>> Hi, all
>> 
>> In recent years there’s been growing interest in short-term automatically-renewed (STAR) certificates.  The idea is to renew certificates often and forego revocation checking.
>> 
>> ACME has a draft for such certificate, and STIR has a candidate among others.
>> 
>> STAR certificates have somewhat different operational and security properties compared to regular PKI.  I’ve tried to document some of them in a draft:
>> https://tools.ietf.org/html/draft-nir-saag-star-00 <https://tools.ietf.org/html/draft-nir-saag-star-00>
>> This draft is in a very initial state, and I’m looking for input about this.
>> 
>> I’ve reserved the Hullet room on Thursday at 18:00.  Anyone who’s interested is invited.
>> 
>> Hope to see you there
>> 
>> Yoav
>> 
>> _______________________________________________
>> 100attendees mailing list
>> 100attendees@ietf.org <mailto:100attendees@ietf.org>
>> https://www.ietf.org/mailman/listinfo/100attendees <https://www.ietf.org/mailman/listinfo/100attendees>
> 
> --
> Robert Moskowitz
> Owner
> HTT Consulting
> C:      248-219-2059
> F:      248-968-2824
> E:      rgm@labs.htt-consult.com <mailto:rgm@labs.htt-consult.com>
> 
> There's no limit to what can be accomplished if it doesn't matter who gets the credit

v2.8.7 | Report a Bug | By Email