[Dance] Encoding of the certificate
"Stange, Wolf" <wolf-joergen.stange@accenture.com> Wed, 08 February 2023 08:25 UTC
Return-Path: <wolf-joergen.stange@accenture.com>
X-Original-To: dance@ietfa.amsl.com
Delivered-To: dance@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1AC11C14CEF9 for <dance@ietfa.amsl.com>; Wed, 8 Feb 2023 00:25:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=accenture.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wbWNSJeeZ8zA for <dance@ietfa.amsl.com>; Wed, 8 Feb 2023 00:25:43 -0800 (PST)
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on20705.outbound.protection.outlook.com [IPv6:2a01:111:f400:7eab::705]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 34137C14CEFA for <dance@ietf.org>; Wed, 8 Feb 2023 00:25:43 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=IyWe2gwwHo6Uc6SrU4xPiJHel8D207DgCZbD23YnkFtEIP7RZFieiTGSPHmlip/64lgrJ7MO+CE5Cgv/hNAGL6JQqlQ0uCSfOAWOsdAviLNE5uF/E7pmxUD7V6o2bkCt7osmfdWjayJpBBJC1Oh9smr1sowyGIcCl0Ga2p5WGmQqp0/C19qtI4Iel5bWGNLCdO6fXKg5tnNEvbLtULTH62MPInSYCpWbujZUjQmW4bwX38ecVD9+Y00Q6erwDQBBhHJoTqSfENZZNZa0OxMYu2zMdJ0RDwmvVJbio+rV/kvAwKk5i1BqrJ5N5v7hDCAQgYvP+ZWTgZqLQROj4hqmSw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=shzLBFEDR8qgKVM5vhpiZOsT2fQDNrWbC3PJnycWn60=; b=ezMDovvDdv8FvKEfn81uOErx5Mv7VNHSNN4Hiiweigq3+MBiG+CGQypJBmSSlx2aF/szVU8LwfXzT0NnQsI0HOVUwj4hNNJmPNYq5wvABKaYBxtcaCFtQPfieb3JcRJWckEOksULwJEKsNFp54oXNsFE3R8VWe5Vrnxd8mL0f/j+nyBAVR5N4l3yY4zZsY8LTQ3uJ+aXczHyvLgKUsMYZ5XW+8ceXN+At7G6Gk22lI0GHOmGrIzXPq5IBG1qkqn9Hyh+CbaDkohcOuPjPlh6gKrUAzDJsJNLovxUcjqyqgcZEJg1HcjBUr63lRcrley8H2X3MEa8CwL1+3+2vQ6rcg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=accenture.com; dmarc=pass action=none header.from=accenture.com; dkim=pass header.d=accenture.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=accenture.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=shzLBFEDR8qgKVM5vhpiZOsT2fQDNrWbC3PJnycWn60=; b=UPxIKaV5FsaD5n2EPoU0dz4aCeJOXdWuiFo7/Al8CJurgaj7+n6T+aw1ZFdQ8fuToDy2ubmHSy7tLuG4Lbp/tXLB4RLf1jZvt3Xx+4itr70rU84Qm+fmjC4MBfASE2hF1tQwihqCtP1NB76XAuW6wW8RP301B0/CGKC/RqmYDGTwaPsyAMgDwo+TuaW9MpCzOtf5snq2yTwTLYbOCQ32NS/udf9SRLgBCEF1IeoWUD/y10gIsQFohzoboA9J7vtXvvfkO96y9ehIv8AThHm/3ChpieG8TpNa3MuDLq3yLdyfmCEn2JT67DjvySd11rYzx+DvUrAWMWa+mD7uAzKyPw==
Received: from SJ0P114MB1246.NAMP114.PROD.OUTLOOK.COM (2603:10b6:a03:2a6::8) by CO1P114MB1140.NAMP114.PROD.OUTLOOK.COM (2603:10b6:303:14::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6064.37; Wed, 8 Feb 2023 08:25:40 +0000
Received: from SJ0P114MB1246.NAMP114.PROD.OUTLOOK.COM ([fe80::3566:10a:d04a:c95f]) by SJ0P114MB1246.NAMP114.PROD.OUTLOOK.COM ([fe80::3566:10a:d04a:c95f%9]) with mapi id 15.20.6064.036; Wed, 8 Feb 2023 08:25:40 +0000
From: "Stange, Wolf" <wolf-joergen.stange@accenture.com>
To: "dance@ietf.org" <dance@ietf.org>
Thread-Topic: Encoding of the certificate
Thread-Index: Adk7luObouG02cHORqyjaQnZrSfZ8Q==
Date: Wed, 08 Feb 2023 08:25:40 +0000
Message-ID: <SJ0P114MB1246C45019BA1E7318A4BAE2ACD89@SJ0P114MB1246.NAMP114.PROD.OUTLOOK.COM>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=accenture.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SJ0P114MB1246:EE_|CO1P114MB1140:EE_
x-ms-office365-filtering-correlation-id: aac26050-d6d5-457e-5550-08db09ae1032
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0P114MB1246.NAMP114.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230025)(4636009)(396003)(376002)(39860400002)(346002)(366004)(136003)(451199018)(316002)(83380400001)(2906002)(8936002)(52536014)(55016003)(41300700001)(3480700007)(33656002)(5660300002)(38070700005)(15974865002)(86362001)(122000001)(38100700002)(82950400001)(82960400001)(66946007)(76116006)(66476007)(66556008)(66446008)(64756008)(6916009)(8676002)(478600001)(9686003)(26005)(186003)(966005)(6506007)(71200400001)(66899018)(7696005); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_SJ0P114MB1246C45019BA1E7318A4BAE2ACD89SJ0P114MB1246NAMP_"
MIME-Version: 1.0
X-OriginatorOrg: accenture.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0P114MB1246.NAMP114.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: aac26050-d6d5-457e-5550-08db09ae1032
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Feb 2023 08:25:40.3125 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: e0793d39-0939-496d-b129-198edd916feb
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 4hGSaTJgAK9TouqYjVr3xWBz2zaELFFTzJNF9bMRi9OeVgvFIOT3C4Ijqed9wSy0doJMLEhDz5UUc2ggFYJBPoYto5Qf++4XLHLw4iDnWIPdX+rUC+UXB88NXooblpJ9
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CO1P114MB1140
Archived-At: <https://mailarchive.ietf.org/arch/msg/dance/cMnTBUE7EZ_dQuBT4T6SoN3ymM4>
Subject: [Dance] Encoding of the certificate
X-BeenThere: dance@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: DANE Authentication for Network Clients Everywhere <dance.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dance>, <mailto:dance-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dance/>
List-Post: <mailto:dance@ietf.org>
List-Help: <mailto:dance-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dance>, <mailto:dance-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Feb 2023 08:25:47 -0000
Hello, I've just discovered DANCE and am really excited about it, because I really like and use DANE already. However, I've a question: DANE is using Base16 (hex) for storing the certificate/subpubkey data in the TLSA record - Have there been any thoughts about using base64 as the encoding for the data, or even more compact encodings? You would always need two bytes to represent a byte in base16 (= doubling it), whereas base64 maps every 3 bytes of data to 4 characters/bytes. For example, encoding 32 bytes: b16 => 64 bytes; b64 => 44 bytes. I see, that it could make hash comparisons more difficult in some cases (when using a hash matching type (1, 2) and the representation IS already in hex). But for the matching type 0 (full), it COULD still bring an advantage when storing large information in the record, especially in the case of selector 0 (full cert). Best Wolf :-) ________________________________ This message is for the designated recipient only and may contain privileged, proprietary, or otherwise confidential information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the e-mail by you is prohibited. Where allowed by local law, electronic communications with Accenture and its affiliates, including e-mail and instant messaging (including content), may be scanned by our systems for the purposes of information security and assessment of internal compliance with Accenture policy. Your privacy is important to us. Accenture uses your personal data only in compliance with data protection laws. For further information on how Accenture processes your personal data, please see our privacy statement at https://www.accenture.com/us-en/privacy-policy. ______________________________________________________________________________________ www.accenture.com
- [Dance] Encoding of the certificate Stange, Wolf
- Re: [Dance] Encoding of the certificate Shreyas Zare
- Re: [Dance] Encoding of the certificate Michael Richardson
- Re: [Dance] Encoding of the certificate Rick van Rein