Re: [dane] Working group Last call: draft-ietf-dane-smime-11.txt
Jim Schaad <ietf@augustcellars.com> Mon, 01 August 2016 17:53 UTC
Return-Path: <ietf@augustcellars.com>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE03A12DA21 for <dane@ietfa.amsl.com>; Mon, 1 Aug 2016 10:53:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.188
X-Spam-Level:
X-Spam-Status: No, score=-3.188 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-1.287, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iL8ybaXFuLyv for <dane@ietfa.amsl.com>; Mon, 1 Aug 2016 10:53:33 -0700 (PDT)
Received: from mail2.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 463FB12DA02 for <dane@ietf.org>; Mon, 1 Aug 2016 10:53:33 -0700 (PDT)
Received: from hebrews (24.21.96.37) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Mon, 1 Aug 2016 10:59:42 -0700
From: Jim Schaad <ietf@augustcellars.com>
To: 'Paul Hoffman' <paul.hoffman@vpnc.org>
References: <F7B890A0-6A67-41C0-B46A-831EC55452D3@ogud.com> <CAHw9_i+2wGPgKk9oKJLH+ZF-5pztPMeDv+4=SXP5qgM1-PH7fw@mail.gmail.com> <alpine.LRH.2.20.1607250908430.18124@bofh.nohats.ca> <032801d1e67d$34d80d90$9e8828b0$@augustcellars.com> <82DB30B8-FA78-4B35-AE4B-CC6AC984715E@vpnc.org>
In-Reply-To: <82DB30B8-FA78-4B35-AE4B-CC6AC984715E@vpnc.org>
Date: Mon, 01 Aug 2016 10:53:29 -0700
Message-ID: <01e501d1ec1d$9d8bb300$d8a31900$@augustcellars.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQKO9jUL14/4foXd2RoMMb1DpIWOmgI0XZifAcquQy4B8k1y1QE+dBxjnoDQJvA=
Content-Language: en-us
X-Originating-IP: [24.21.96.37]
Archived-At: <https://mailarchive.ietf.org/arch/msg/dane/P47Ca2XGmmjHOKzV02tQNds0tHs>
Cc: 'dane WG list' <dane@ietf.org>
Subject: Re: [dane] Working group Last call: draft-ietf-dane-smime-11.txt
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Aug 2016 17:53:35 -0000
A more complete statement might have been nicer, but I will assume that anybody implementing this knows about S/MIME capabilities. What is there is adequate to address my comment. Jim > -----Original Message----- > From: Paul Hoffman [mailto:paul.hoffman@vpnc.org] > Sent: Sunday, July 31, 2016 6:08 PM > To: Jim Schaad <ietf@augustcellars.com> > Cc: dane WG list <dane@ietf.org> > Subject: Re: [dane] Working group Last call: draft-ietf-dane-smime-11.txt > > On 25 Jul 2016, at 7:02, Jim Schaad wrote: > > >>> I also wanted to make sure people (including the authors) had seen: > >>> https://www.ietf.org/mail-archive/web/dane/current/msg08382.html > >> > >> This has come up in the past when discussing SMIME. One suggestion > >> was to use a different prefix (like _encrypt. and _sign). When this > >> was brought up, the patent status of this was not entirely clear, and > >> there were privacy discussions raised on exposing queries to the > >> purpose of the query. Perhaps the document can state that if the > >> certificate is obtained via SMIMEA, it should be checked whether it > >> is suitable for the task to perform. And that publishers are > >> encouraged to publish SMIMEA records for certificates that allow both > >> signing and encryption. > >> But this latter approach did not have a clear consensus. > > > > This is not the issue that my message was designed to highlight. In > > S/MIME it is possible to say which of the message formats and which > > content encryption algorithms are supported by a client. This is not > > the same as designating if a certificate is being used for encryption > > or signing. > > We will add a mention of RFC 4262 to the draft. > > --Paul Hoffman
- Re: [dane] Working group Last call: draft-ietf-da… John Levine
- Re: [dane] Working group Last call: draft-ietf-da… Warren Kumari
- Re: [dane] Working group Last call: draft-ietf-da… John Levine
- Re: [dane] Working group Last call: draft-ietf-da… Sean Leonard
- Re: [dane] Working group Last call: draft-ietf-da… Patrik Fältström
- Re: [dane] Working group Last call: draft-ietf-da… Paul Hoffman
- Re: [dane] Working group Last call: draft-ietf-da… Paul Hoffman
- [dane] Working group Last call: draft-ietf-dane-s… Olafur Gudmundsson
- Re: [dane] Working group Last call: draft-ietf-da… Paul Wouters
- Re: [dane] Working group Last call: draft-ietf-da… Paul Hoffman
- Re: [dane] Working group Last call: draft-ietf-da… Jim Schaad
- Re: [dane] Working group Last call: draft-ietf-da… Paul Wouters
- Re: [dane] Working group Last call: draft-ietf-da… Rose, Scott
- Re: [dane] Working group Last call: draft-ietf-da… John Levine
- Re: [dane] Working group Last call: draft-ietf-da… Warren Kumari
- Re: [dane] Working group Last call: draft-ietf-da… Paul Hoffman
- Re: [dane] Working group Last call: draft-ietf-da… Jim Schaad
- Re: [dane] Working group Last call: draft-ietf-da… Paul Hoffman