Re: [dane] WGLC: DANE-SRV & DANE-SMTP

Viktor Dukhovni <ietf-dane@dukhovni.org> Fri, 30 January 2015 00:07 UTC

Date: Fri, 30 Jan 2015 00:07:48 +0000
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: dane@ietf.org
Message-ID: <20150130000747.GF8034@mournblade.imrryr.org>
References: <0DAFC2A8-A1E2-46F4-BA52-E8261CB09159@ogud.com> <9DEDC923-8B03-4AF7-82FF-60C96C614641@ieca.com> <20150122220856.GJ8034@mournblade.imrryr.org> <383563B8-2F31-48F2-9B09-C7195313DB15@ieca.com> <CAHw9_i+gYJqwaOp_=mg-EJHN7TJHZLBNKBRHXTYbVe6rQ8k8ZQ@mail.gmail.com> <54CA808C.8080507@andyet.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <54CA808C.8080507@andyet.net>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dane/WQ897bPajGeh6mKryO2U2Pk8oMw>
Subject: Re: [dane] WGLC: DANE-SRV & DANE-SMTP
Precedence: list
Reply-To: dane@ietf.org

On Thu, Jan 29, 2015 at 11:48:44AM -0700, Peter Saint-Andre - &yet wrote:

> BTW, Matt Miller and I plan to meet in person next week to work through
> Viktor's feedback on DANE-SRV, too.

Thanks.  Once concern beyond the SRV draft itself, is that in UTA
I see an XMPP draft, that delegates all the DANE bits to the SRV
draft, but the SRV draft is not XMPP-specific, and in particular
does not fully lay out requirements for opportunistic clients (as
in server-to-server XMPP where even if TLS may be required,
authentication is IIRC optional and opportunistic).

So there seems to be a specification gap between the generic SRV
document and the actual requirements of XMPP.  It seems to me that
DANE for XMPP is under-specified.  Many of the detailed issues
addressed by the SMTP draft might reasonably apply also to (server
to server) XMPP if the spec were more complete.

Who's doing the XMPP server DANE implementation?  Perhaps the
problem is that either the implementations are not mature and have
tackled all the issues yet, or the implementors have not raised them
to the spec writers...

Or perhaps I my SMTP draft is unnecessarily detailed, and people
should be able to figure all the messy bits out for themselves?

This is again about XMPP, not the SRV draft, but if the SRV draft
is to serve as a complete spec for XMPP with DANE there may be more
than needs to be said (opportunistic authentication use-case, DANE
vs. PKIX usages, ...).

Perhaps the UTA XMPP draft is the place to fill any residual gaps.

-- 
	Viktor.

[dane] WGLC: DANE-SRV & DANE-SMTP Olafur Gudmundsson
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Stephane Bortzmeyer
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Olafur Gudmundsson
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Peter Saint-Andre - &yet
[dane] Reminder: WGLC: DANE-SRV & DANE-SMTP Olafur Gudmundsson
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Paul Hoffman
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Dan York
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Viktor Dukhovni
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Shumon Huque
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Olafur Gudmundsson
Re: [dane] WGLC: DANE-SRV & DANE-SMTP James Cloos
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Peter Saint-Andre - &yet
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Sean Turner
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Viktor Dukhovni
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Sean Turner
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Peter Saint-Andre - &yet
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Viktor Dukhovni
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Peter Saint-Andre - &yet
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Viktor Dukhovni
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Sean Turner
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Viktor Dukhovni
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Viktor Dukhovni
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Sean Turner
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Warren Kumari
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Peter Saint-Andre - &yet
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Viktor Dukhovni
Re: [dane] WGLC: DANE-SRV & DANE-SMTP Olafur Gudmundsson