[Asrg] Accreditation Mechanism Proposal

"Hallam-Baker, Phillip" <pbaker@verisign.com> Wed, 17 March 2004 15:29 UTC

Received: from optimus.ietf.org (optimus.ietf.org [132.151.1.19]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA11884 for <asrg-archive@odin.ietf.org>; Wed, 17 Mar 2004 10:29:04 -0500 (EST)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1B3cyD-0006pM-Ok for asrg-archive@odin.ietf.org; Wed, 17 Mar 2004 10:28:37 -0500
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id i2HFSbpQ026241 for asrg-archive@odin.ietf.org; Wed, 17 Mar 2004 10:28:37 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1B3cyC-0006p9-EU for asrg-web-archive@optimus.ietf.org; Wed, 17 Mar 2004 10:28:36 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA11834 for <asrg-web-archive@ietf.org>; Wed, 17 Mar 2004 10:28:32 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1B3cyA-0003HI-00 for asrg-web-archive@ietf.org; Wed, 17 Mar 2004 10:28:34 -0500
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1B3cxJ-0003AV-00 for asrg-web-archive@ietf.org; Wed, 17 Mar 2004 10:27:43 -0500
Received: from optimus.ietf.org ([132.151.1.19]) by ietf-mx with esmtp (Exim 4.12) id 1B3cwO-00033K-00 for asrg-web-archive@ietf.org; Wed, 17 Mar 2004 10:26:44 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1B3cvj-0006cK-BG; Wed, 17 Mar 2004 10:26:03 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1B3cvE-0006ag-88 for asrg@optimus.ietf.org; Wed, 17 Mar 2004 10:25:32 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA11686 for <asrg@ietf.org>; Wed, 17 Mar 2004 10:25:28 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1B3cvB-0002uY-00 for asrg@ietf.org; Wed, 17 Mar 2004 10:25:29 -0500
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1B3cuG-0002oQ-00 for asrg@ietf.org; Wed, 17 Mar 2004 10:24:35 -0500
Received: from peacock.verisign.com ([65.205.251.73]) by ietf-mx with esmtp (Exim 4.12) id 1B3ctO-0002if-00 for asrg@ietf.org; Wed, 17 Mar 2004 10:23:38 -0500
Received: from MOU1WNEXC03.vcorp.ad.vrsn.com (mailer3.verisign.com [65.205.251.55]) by peacock.verisign.com (8.12.11/) with ESMTP id i2HFNbCs023432 for <asrg@ietf.org>; Wed, 17 Mar 2004 07:23:37 -0800 (PST)
Received: by mou1wnexc03.vcorp.ad.vrsn.com with Internet Mail Service (5.5.2657.72) id <HCHA0HQK>; Wed, 17 Mar 2004 07:23:37 -0800
Message-ID: <C6DDA43B91BFDA49AA2F1E473732113E0A19E4@mou1wnexm05.vcorp.ad.vrsn.com>
From: "Hallam-Baker, Phillip" <pbaker@verisign.com>
To: asrg@ietf.org
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2657.72)
Content-Type: multipart/mixed; boundary="----_=_NextPart_000_01C40C33.CE6B24FC"
Subject: [Asrg] Accreditation Mechanism Proposal
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
Date: Wed, 17 Mar 2004 07:23:32 -0800
X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org
X-Spam-Status: No, hits=0.1 required=5.0 tests=AWL autolearn=no version=2.60

All,

	A proposal for an accreditation mechanism is attached. This proposal
is based on the earlier RBL scheme proposed by Vixie, and designed to be
compatible with CallerID. I will submit as an ID later on today.

	Basically the scheme returns an A record in response to a lookup. So
in order for example.com to announce that it is accredited by the class3
service of verisign the SPF or CallerID record would contain the tripple:

	"accreditation" "class3.verisign.com""DNS-A"

	I.e. this is an accreditation property, the accreditor service is at
class3.verisign.com, the protocol is a DNS A record lookup.

	We can conflate the "accreditation" and "DNS-A" components, but that
is a bad idea, the A record convention is pretty limiting, there are only 24
bits worth of data that can be returned. It would be useful to be able to
extend to use of other protocol records such as NAPTR and SRV.

	Some folk inside VeriSign suggested that we use the convention that
an unlisted domain just returns domain does not exist. 


	I believe that we should have some facility here for a description
of the accreditation service. This is because the receiver has to arrive at
an evaluation of the accreditation service before the information can
converge. The ability to use learning systems is very attractive here.
Telling the learning system basic information about the format of the data
is pretty useful, what is the basis that the info was collected on, is the
data bit field formatted or in some other form?

	I provide the start of a description language here but on second
thoughts the best approach here would be to write the data structure in XML,
stick it up on a web site and put the URL in the DNS. The format is not a
big priority for me at the moment since it only really affects the
accreditation services and the filter writers. I don't think that either
community will be particularly large (10 to 20 at most). It is not something
we need to make a priority when we are using our limited standards track
bandwidth.

	
			Phill