Re: [dane] Protocol Action: 'The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA' to Proposed Standard (draft-ietf-dane-protocol-23.txt)
Warren Kumari <warren@kumari.net> Fri, 15 June 2012 15:53 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A5F8D21F857D for <dane@ietfa.amsl.com>; Fri, 15 Jun 2012 08:53:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.599
X-Spam-Level:
X-Spam-Status: No, score=-106.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mPCv7lDGdPjT for <dane@ietfa.amsl.com>; Fri, 15 Jun 2012 08:53:55 -0700 (PDT)
Received: from vimes.kumari.net (vimes.kumari.net [198.186.192.250]) by ietfa.amsl.com (Postfix) with ESMTP id C3CE521F8573 for <dane@ietf.org>; Fri, 15 Jun 2012 08:53:55 -0700 (PDT)
Received: from dhcp-172-19-118-235.cbf.corp.google.com (unknown [64.13.52.115]) by vimes.kumari.net (Postfix) with ESMTPSA id BFB3A1B402B8 for <dane@ietf.org>; Fri, 15 Jun 2012 11:53:54 -0400 (EDT)
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Apple Message framework v1278)
From: Warren Kumari <warren@kumari.net>
In-Reply-To: <20120615121239.13766.94700.idtracker@ietfa.amsl.com>
Date: Fri, 15 Jun 2012 11:53:53 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <88D74E66-459F-48D1-BE5A-9479F1A9712F@kumari.net>
References: <20120615121239.13766.94700.idtracker@ietfa.amsl.com>
To: dane mailing list <dane@ietf.org>
X-Mailer: Apple Mail (2.1278)
Subject: Re: [dane] Protocol Action: 'The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA' to Proposed Standard (draft-ietf-dane-protocol-23.txt)
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Jun 2012 15:53:56 -0000
Hello all, The chairs would like to take this opportunity to thank the the entire Working Group for all of their hard work, input, careful review and professionalism. Particular thanks to the authors (Paul Hoffman, Jakob Schlyter) for managing to interpret our often poorly articulated instructions and for being willing to so quickly integrate changes and rev the document…. We have made some great progress now (although it has taken much longer than we had hoped, apologies for that), and can now start focusing on: A: deployment and B: the "How to do DANE with $foo" series. Once again, thank you to everyone for contributing, and trying to remain civil / willing to listen to opposing viewpoints. W On Jun 15, 2012, at 8:12 AM, The IESG wrote: > The IESG has approved the following document: > - 'The DNS-Based Authentication of Named Entities (DANE) Transport Layer > Security (TLS) Protocol: TLSA' > (draft-ietf-dane-protocol-23.txt) as Proposed Standard > > This document is the product of the DNS-based Authentication of Named > Entities Working Group. > > The IESG contact persons are Stephen Farrell and Sean Turner. > > A URL of this Internet Draft is: > http://datatracker.ietf.org/doc/draft-ietf-dane-protocol/ > > > > > Technical Summary > > Encrypted communication on the Internet often uses Transport Level > Security (TLS), which depends on third parties to certify the keys > used. This document improves on that situation by enabling the > administrator of a domain name to publish the keys used in the > DNS, secured with DNSSEC. > > Working Group Summary > > > The working group made extensive use of the issue tracker: > listing, opening, discussing and then calling consensus on > each issue. This gave everyone the opportunity to participate > and be heard. There have been approximately 2,000 messages > discussing this (and closely related) documents. > > Document Quality > > There is a tool (Swede - https://github.com/pieterlexis/swede) > that generates TLSA records, and a proof-of-concept implementation > of DANE for NSS (https://mattmccutchen.net/cryptid/#nss-dane). > A number of vendors have mentioned that they are planning on > implementing the specification. > > I do not think that it would be fair (or possible) to single > out any specific reviewers -- we have had a large number of very > active reviewers / participants and they have all been very diligent > (and sometimes vocal :-)) in providing feedback. > > Personnel > > Warren Kumari is acting as the Document Shepherd. > Stephen Farrell is the Responsible Area Director. > > > > _______________________________________________ > dane mailing list > dane@ietf.org > https://www.ietf.org/mailman/listinfo/dane > -- A. No Q. Is it sensible to top-post?
- [dane] Protocol Action: 'The DNS-Based Authentica… The IESG
- Re: [dane] Protocol Action: 'The DNS-Based Authen… Warren Kumari
- Re: [dane] Protocol Action: 'The DNS-Based Authen… Peter Saint-Andre
- [dane] That "next" thing Paul Hoffman
- [dane] RFC 4322/4025, was Re: That "next" thing Paul Wouters
- Re: [dane] RFC 4322/4025, was Re: That "next" thi… Paul Hoffman
- Re: [dane] RFC 4322/4025, was Re: That "next" thi… Paul Wouters
- Re: [dane] Protocol Action: 'The DNS-Based Authen… Leif Johansson
- Re: [dane] RFC 4322/4025, was Re: That "next" thi… Paul Hoffman