IETF Logo Mail Archive

Re: [dane] email canonicalization for SMIMEA owner names

Mark Andrews <marka@isc.org> Fri, 12 December 2014 00:10 UTC

Return-Path: <marka@isc.org>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 78BA01A90E0 for <dane@ietfa.amsl.com>; Thu, 11 Dec 2014 16:10:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Level:
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LSbEz3zjc84v for <dane@ietfa.amsl.com>; Thu, 11 Dec 2014 16:09:59 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88EFC1A90D8 for <dane@ietf.org>; Thu, 11 Dec 2014 16:09:57 -0800 (PST)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) by mx.pao1.isc.org (Postfix) with ESMTP id AB5A83493CE for <dane@ietf.org>; Fri, 12 Dec 2014 00:09:55 +0000 (UTC)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id 09A02160067 for <dane@ietf.org>; Fri, 12 Dec 2014 00:14:29 +0000 (UTC)
Received: from rock.dv.isc.org (c211-30-183-50.carlnfd1.nsw.optusnet.com.au [211.30.183.50]) by zmx1.isc.org (Postfix) with ESMTPSA id D292D16005C for <dane@ietf.org>; Fri, 12 Dec 2014 00:14:28 +0000 (UTC)
Received: from rock.dv.isc.org (localhost [IPv6:::1]) by rock.dv.isc.org (Postfix) with ESMTP id B0FE5254EAE8 for <dane@ietf.org>; Fri, 12 Dec 2014 11:09:53 +1100 (EST)
To: dane@ietf.org
From: Mark Andrews <marka@isc.org>
References: <95826148-4F06-4942-87A4-2F6601BA0F90@nist.gov> <20141211221456.GI3448@localhost> <20141211235519.GO25666@mournblade.imrryr.org>
In-reply-to: Your message of "Thu, 11 Dec 2014 23:55:19 -0000." <20141211235519.GO25666@mournblade.imrryr.org>
Date: Fri, 12 Dec 2014 11:09:53 +1100
Message-Id: <20141212000953.B0FE5254EAE8@rock.dv.isc.org>
Archived-At: http://mailarchive.ietf.org/arch/msg/dane/6uhMYBs9rPM1H-EXulzKD-HhcCc
Subject: Re: [dane] email canonicalization for SMIMEA owner names
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Dec 2014 00:10:00 -0000

We could just do this correctly and use SRV records to point to
keyserver servers running over TLS.  The keyserver can do whatever
local canonicalisations that are required.  The SMTP server could
even be performing this role on a different port.  That way you
only have to enter the canonicalisation rules once.

This also gets rid of the complaints about being able to walk the
zone.

-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email