[Anima] representing ACP info in X.509 certs
Stephen Kent <stkent@verizon.net> Sun, 21 June 2020 00:03 UTC
Return-Path: <stkent@verizon.net>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C9C7D3A07BA for <anima@ietfa.amsl.com>; Sat, 20 Jun 2020 17:03:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verizon.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KHVipwO_myf8 for <anima@ietfa.amsl.com>; Sat, 20 Jun 2020 17:03:39 -0700 (PDT)
Received: from sonic316-12.consmr.mail.bf2.yahoo.com (sonic316-12.consmr.mail.bf2.yahoo.com [74.6.130.122]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C11763A07B6 for <anima@ietf.org>; Sat, 20 Jun 2020 17:03:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=verizon.net; s=a2048; t=1592697818; bh=bqpO0GHSSrNP4sD6SW1OmvTh/FrglViMPVO3cgyvr4I=; h=To:From:Subject:Date:References:From:Subject; b=ZeTSnfP7lVHNze/3zuVedjkZCXRwtIiZSoVBhwpPrs+oS9UclNcfvHxaZkBdcobLuiUShcT8TMDW+EIBC+nDf81SfA3Odt3FE/QNYENF+VS/XTp+TrCKdulSmq2wgADSUbcdo8nkh7QqfOvx8ffhLRTI4z9a6YS+sVe5OHbZD8m5g0/gkFHQhl6XPEMpxRnCblwFy9IgO1Mblo/iniRZ9mXom7g2BsJWA+JuOW+QYY86hNXOpmxm++jc/Ae++KQkLTVbyzi3XhIY68NbhTu4hPmoZTyVJAEj4jczMe6x12WfAdn7I4k5Y+xZBM60GqNN4isCFiJcLXyUJf2VxBrtRQ==
X-YMail-OSG: F1E.nG4VM1kMugB_s4doWs0dOl1ba3d5p787HPHYj3naUBNrBxZ6SiH5ZVZ3diJ 4jr0onhphE.klGAv5Ng0HuXEE9fDpOyJzpUZcVs1GiyL9QRhmxVTjrp0j3TGhZexeQVgOhqglL1t PZwvXq.bANMcu2ULRrqSA.IsdSubx8VXa76vzetukltDAlblMEU019bv5otG2Uarxmdd6eUSu3Xf Y1iX67auRAuE.qJUIc3RMHBTyZOUlJd9E5R1nQ30nCC8QeuNv6LYb5RAIq4tJikx5syLAPm1ptDM WC9Is61TCwKKVh7.22HRZoOfmpmnqCSdSdn4_4sxicimAn4l2CkuoB8lMBeioV8IlSJOCJ4HwbaM q5tQkCs7M9q4Ty0X3KYplZia_3taEWePtSvZhFGsQIWxD0Ae70aN53jqAl56c92sVmdhF19lgv83 D6yPMOXq5wzhFgucOXLeojnjKAjaZfkgvoD2IqC8Hz6X8y_b_eddDDFfMdsffKWJuNIA2PIXEEeV 8DkEulnG_yLnXAZO5n04pevZCHVqvW0VrctPWNwMxRgQtMUZU.UQoI8Ftl1aOlzuySq.a7LaE_z2 oqgNuYjk5vx9iifdwFh5KPfy0Nka_fbxrT3ggJX5EqNPCv9eohebC1grYe3aCpnIvB8RIra5ubtG bFaf7Gy15M06plNeM5DGFeIs3ggalqxXXFA.vArprf24En5P6AiPFtJ5bH.8WqkBiZVVYFu.o7D9 9NGqqTuT1CKDMpVaUhKoxr9FBxF8jGyTcF6fbdGSN7pCFvADpDCf.STuGIH8Le0oZjpn9ogM3.Ie 4tFLXK7fGJmYX7sTEh.ZSNTXLk0kwc7ggPFGL8OSMGn6hSjvJAkeA9BLEzvQ9UQ5d6sUJXGw1efK 7XEoUsaOa7CLGwZcCC2i8pZEhN4bklCxrXVN2qlu8RyJEQ_Xmr9ytoyeuVqVp7lYfL74InLS1G6T gtsVUUbel
Received: from sonic.gate.mail.ne1.yahoo.com by sonic316.consmr.mail.bf2.yahoo.com with HTTP; Sun, 21 Jun 2020 00:03:38 +0000
Received: by smtp410.mail.bf1.yahoo.com (VZM Hermes SMTP Server) with ESMTPA ID a8b8f6c603d8b276ff61976a245114f5; Sun, 21 Jun 2020 00:03:33 +0000 (UTC)
To: anima@ietf.org
From: Stephen Kent <stkent@verizon.net>
Message-ID: <ece7aed3-ede3-5546-4586-1d98d3f71183@verizon.net>
Date: Sat, 20 Jun 2020 20:03:31 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:68.0) Gecko/20100101 Thunderbird/68.9.0
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------4E984BB7D5F4FD56BDFC3D17"
Content-Language: en-US
References: <ece7aed3-ede3-5546-4586-1d98d3f71183.ref@verizon.net>
X-Mailer: WebService/1.1.16138 hermes_aol Apache-HttpAsyncClient/4.1.4 (Java/11.0.7)
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/D1mt-vh_802NRPfEdCAoPHqz4ns>
Subject: [Anima] representing ACP info in X.509 certs
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 21 Jun 2020 00:03:41 -0000
Folks, My perspective matches what Russ & Ben have suggested, i.e., use of rfc822Name is inappropriate for this context. RFC 5280 is very clear about the intended use of the rfc822Name field in a cert and the proposed use in the anima context is inconsistent with 5280 text. A reasonable, appropriate way forward is to define a new otherName type for the anima context. Steve
- [Anima] representing ACP info in X.509 certs Stephen Kent
- Re: [Anima] representing ACP info in X.509 certs Eric Rescorla
- Re: [Anima] representing ACP info in X.509 certs Michael Richardson
- Re: [Anima] representing ACP info in X.509 certs Eric Rescorla
- Re: [Anima] representing ACP info in X.509 certs Owen Friel (ofriel)
- Re: [Anima] representing ACP info in X.509 certs Stephen Kent
- Re: [Anima] representing ACP info in X.509 certs Brian E Carpenter
- Re: [Anima] representing ACP info in X.509 certs Stephen Kent
- Re: [Anima] representing ACP info in X.509 certs Michael Richardson
- Re: [Anima] representing ACP info in X.509 certs Eliot Lear
- Re: [Anima] representing ACP info in X.509 certs Toerless Eckert
- Re: [Anima] representing ACP info in X.509 certs Eliot Lear
- Re: [Anima] representing ACP info in X.509 certs Toerless Eckert
- Re: [Anima] representing ACP info in X.509 certs Eric Rescorla
- Re: [Anima] representing ACP info in X.509 certs Toerless Eckert
- Re: [Anima] representing ACP info in X.509 certs Stephen Kent
- Re: [Anima] representing ACP info in X.509 certs Toerless Eckert