IETF Logo Mail Archive

Re: [Acme] ACME signature mechanics

Anders Rundgren <anders.rundgren.net@gmail.com> Tue, 30 December 2014 06:46 UTC

Return-Path: <anders.rundgren.net@gmail.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EFFD61A88B8 for <acme@ietfa.amsl.com>; Mon, 29 Dec 2014 22:46:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.1
X-Spam-Level:
X-Spam-Status: No, score=-0.1 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Bpvq56AhaXRF for <acme@ietfa.amsl.com>; Mon, 29 Dec 2014 22:46:53 -0800 (PST)
Received: from mail-we0-x22a.google.com (mail-we0-x22a.google.com [IPv6:2a00:1450:400c:c03::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BBB2F1A0AF1 for <acme@ietf.org>; Mon, 29 Dec 2014 22:46:52 -0800 (PST)
Received: by mail-we0-f170.google.com with SMTP id w61so558924wes.15 for <acme@ietf.org>; Mon, 29 Dec 2014 22:46:51 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=yRUyeXJ0fOLMotDcEqSZiQdsOxdw6k58+42oTsKT54I=; b=IlOL3hcioyDNrTkn+LBKxbvmFlMZz0jxx6wwWGfDw+DDYR0iz9wKmKbFoogeeNd2ld yleTPRURRh4XGSPco6cyJvVx2cYpFmb9ttHbN73wnLekjR0eejC489jTk+KRDFdCRX7v auC+fcYlZ+ykDynixPkGVG27TYSgkZm/3IBpRoG4NXAEgwLE7UBJ8uPqre6L7y5RgfXv yOfB7AjPJTUanPbioBj/koTdQRMblIuDo12sRUYW7gOrom6i+2T72YUwQsSuoZQntkz7 t7I0gcypkKCryOovHK4MruLUucCgR6yuOr/HI5E3HJrjEwp5FlrPV1J8aDcXQHv3YDwq JYvw==
X-Received: by 10.180.107.136 with SMTP id hc8mr103904612wib.32.1419922011517; Mon, 29 Dec 2014 22:46:51 -0800 (PST)
Received: from [192.168.1.79] (48.194.130.77.rev.sfr.net. [77.130.194.48]) by mx.google.com with ESMTPSA id dp8sm42183437wib.20.2014.12.29.22.46.50 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 29 Dec 2014 22:46:51 -0800 (PST)
Message-ID: <54A24A56.30703@gmail.com>
Date: Tue, 30 Dec 2014 07:46:46 +0100
From: Anders Rundgren <anders.rundgren.net@gmail.com>
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.3.0
MIME-Version: 1.0
To: Martin Thomson <martin.thomson@gmail.com>
References: <548FF9E3.1020703@gmail.com> <CAL02cgT9iYqtX2Ui5XQYnj=yeF_QnSkKn-jE0D5d56WMzB5bBg@mail.gmail.com> <CAMm+LwjwG0dPTkByu5WZ_ev3xNxAMwunoc-A_VK4sKPSZXRYDw@mail.gmail.com> <006c01d01a33$2b086890$811939b0$@icloud.com> <CABkgnnWGQarDzpx-3f488OF2w3eyTV1iUr4GWyND+_avRHNZ6w@mail.gmail.com> <004901d01a94$55e9ebe0$01bdc3a0$@icloud.com> <54928827.9030009@gmail.com> <CAMm+Lwifqgt9e_i=froACzGW3bsY05KBiJJFBRJrqJcZrEqN8A@mail.gmail.com> <009d01d01af3$8013a2d0$803ae870$@icloud.com> <CAMm+Lwj-mN9=Dbw0-xUjhj1XUyw5NZiDQ4SaY6xcCAAy+VZTMA@mail.gmail.com> <54A24341.7020104@gmail.com> <CABkgnnVpeLnJ3Ke49GmcfM_JLHugGsajrht0=nUAkBgQJ+PbJw@mail.gmail.com>
In-Reply-To: <CABkgnnVpeLnJ3Ke49GmcfM_JLHugGsajrht0=nUAkBgQJ+PbJw@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/acme/kUxll_dC7K6U3p4WdwkwOqzncpc
Cc: "acme@ietf.org" <acme@ietf.org>
Subject: Re: [Acme] ACME signature mechanics
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Dec 2014 06:46:57 -0000

On 2014-12-30 07:33, Martin Thomson wrote:
> On 29 December 2014 at 22:16, Anders Rundgren
> <anders.rundgren.net@gmail.com> wrote:
>> BTW, undefined object serialization order isn't exactly as popular as
>> claimed :-)
>
> Or you could implement using a map that is secure and end up with a
> properly unpredictable enumeration order.
>

Right.

But by honoring insertion order as the default, everyone get what they want
at the cost of a minor overhead.

A core idea behind JCS is to do as little as is technically possible.

Anders

v2.23.0 | Report a Bug | By Email