Re: [dane] draft-wouters-dane-openpgp-01 review
Mark Andrews <marka@isc.org> Tue, 07 January 2014 02:10 UTC
Return-Path: <marka@isc.org>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A45F1AE3CB for <dane@ietfa.amsl.com>; Mon, 6 Jan 2014 18:10:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.161
X-Spam-Level:
X-Spam-Status: No, score=0.161 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.538, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pesVzUgNMbS0 for <dane@ietfa.amsl.com>; Mon, 6 Jan 2014 18:10:54 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) by ietfa.amsl.com (Postfix) with ESMTP id 38BD31ADF2E for <dane@ietf.org>; Mon, 6 Jan 2014 18:10:54 -0800 (PST)
Received: from mx.pao1.isc.org (localhost [127.0.0.1]) by mx.pao1.isc.org (Postfix) with ESMTP id E1D08C947C for <dane@ietf.org>; Tue, 7 Jan 2014 02:10:32 +0000 (UTC) (envelope-from marka@isc.org)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=isc.org; s=dkim2012; t=1389060645; bh=MHYOYpaxKH4U1StFyXNwa3I+hipSCDaRNYm/Hb7i8Sg=; h=To:From:References:Subject:In-reply-to:Date; b=WhOqHoYbssO6umL2tNQPYsXvTgEcJfaVpPPFJ4ECE+mWW8/yo5xHkIhQxZCfEWY3q e4B6awpMZglItpdVOai7vkI9fAZQP6ZqBR6GdTj33yrwSlnTzIoYf8Uiozp6c82SSH f7IzMPmFihf4V4sj7Qefx/0RgP2Wnlfccqkp4MrY=
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) by mx.pao1.isc.org (Postfix) with ESMTP for <dane@ietf.org>; Tue, 7 Jan 2014 02:10:32 +0000 (UTC) (envelope-from marka@isc.org)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id AA2D2160446 for <dane@ietf.org>; Tue, 7 Jan 2014 02:20:49 +0000 (UTC)
Received: from rock.dv.isc.org (c211-30-183-50.carlnfd1.nsw.optusnet.com.au [211.30.183.50]) by zmx1.isc.org (Postfix) with ESMTPSA id 7C90A160050 for <dane@ietf.org>; Tue, 7 Jan 2014 02:20:49 +0000 (UTC)
Received: from rock.dv.isc.org (localhost [IPv6:::1]) by rock.dv.isc.org (Postfix) with ESMTP id A6C6BC772A3 for <dane@ietf.org>; Tue, 7 Jan 2014 13:11:42 +1100 (EST)
To: "dane@ietf.org list" <dane@ietf.org>
From: Mark Andrews <marka@isc.org>
References: <E05CBC7F-1B37-49A0-9E27-D2B52BFA48A9@ogud.com>
In-reply-to: Your message of "Mon, 06 Jan 2014 13:25:24 -0500." <E05CBC7F-1B37-49A0-9E27-D2B52BFA48A9@ogud.com>
Date: Tue, 07 Jan 2014 13:11:42 +1100
Message-Id: <20140107021142.A6C6BC772A3@rock.dv.isc.org>
X-DCC--Metrics: post.isc.org; whitelist
Subject: Re: [dane] draft-wouters-dane-openpgp-01 review
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Jan 2014 02:10:55 -0000
Section 3.1 has lots of factually incorrect rationals for encoding using base32. The DNS is capable of encoding binary data in labels up to 63 octets. I've got no problem with encoding, but if one intends to include rationalisations please make them factually correct. There is no mention of how to encode LHS which exceed 63 octets when encoded using base32. Pack the left most labels or the right most labels? There is no mention of how to normalise LHS prior to base32 encoding. Are "Hugh" and "hugh" the same? Should "hugh" and "hugh+xxx" be treated the same? It should be possible to specify normalisation rules and store them at _openpgpkey. Is the input UTF-8 or some other character set. If UTF-8 what normalisations need to be applied? It might be useful to suppress the padding at the end of base32 encoded strings. We already do similar suppression with NSEC3 records. -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: marka@isc.org
- [dane] draft-wouters-dane-openpgp-01 review Olafur Gudmundsson
- Re: [dane] draft-wouters-dane-openpgp-01 review Viktor Dukhovni
- Re: [dane] draft-wouters-dane-openpgp-01 review Mark Andrews
- Re: [dane] draft-wouters-dane-openpgp-01 review Paul Wouters
- Re: [dane] draft-wouters-dane-openpgp-01 review Paul Wouters
- Re: [dane] draft-wouters-dane-openpgp-01 review Mark Andrews
- Re: [dane] draft-wouters-dane-openpgp-01 review Viktor Dukhovni
- Re: [dane] draft-wouters-dane-openpgp-01 review Mark Andrews
- Re: [dane] draft-wouters-dane-openpgp-01 review Jelte Jansen
- Re: [dane] draft-wouters-dane-openpgp-01 review Scott Rose