Re: [dane] SMIMEA prototyping
ALAIN AINA <aalain@trstech.net> Tue, 30 September 2014 18:50 UTC
Return-Path: <aalain@trstech.net>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 16F741A8779 for <dane@ietfa.amsl.com>; Tue, 30 Sep 2014 11:50:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.688
X-Spam-Level:
X-Spam-Status: No, score=-2.688 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.786, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5rrSJJEz-7KX for <dane@ietfa.amsl.com>; Tue, 30 Sep 2014 11:50:01 -0700 (PDT)
Received: from trstech.net (afribone.trstech.net [196.200.57.137]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 66C391A87A5 for <dane@ietf.org>; Tue, 30 Sep 2014 11:49:28 -0700 (PDT)
Received: from [80.248.74.18] (helo=[192.168.3.100]) by trstech.net with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.80) (envelope-from <aalain@trstech.net>) id 1XZ2V5-0000Mm-Jp; Tue, 30 Sep 2014 18:50:19 +0000
Mime-Version: 1.0 (Apple Message framework v1085)
Content-Type: text/plain; charset="us-ascii"
From: ALAIN AINA <aalain@trstech.net>
In-Reply-To: <ED6F2DCA-C3D9-4B40-A94C-AAF93C4A3882@verisign.com>
Date: Tue, 30 Sep 2014 18:48:37 +0000
Content-Transfer-Encoding: quoted-printable
Message-Id: <546440C2-C8FA-4B46-AA31-B89872F41AFE@trstech.net>
References: <ED6F2DCA-C3D9-4B40-A94C-AAF93C4A3882@verisign.com>
To: "Osterweil, Eric" <eosterweil@verisign.com>
X-Mailer: Apple Mail (2.1085)
X-SA-Exim-Connect-IP: 80.248.74.18
X-SA-Exim-Mail-From: aalain@trstech.net
X-SA-Exim-Version: 4.2.1 (built Fri, 28 Sep 2012 15:58:25 +0000)
X-SA-Exim-Scanned: Yes (on trstech.net)
Archived-At: http://mailarchive.ietf.org/arch/msg/dane/Y5pTFILLxrRp5KsSM0ZRSv1zKs4
Cc: dane WG list <dane@ietf.org>
Subject: Re: [dane] SMIMEA prototyping
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Sep 2014 18:50:03 -0000
This sounds interesting... Thanks --Alain On Sep 29, 2014, at 11:44 AM, Osterweil, Eric wrote: > Hey everyone, > > A few of us at Verisign (actually, that would be Lynch Davis) have been working on a prototype for the SMIMEA draft. We have written a general library+API, we have integrated it into Thunderbird, and have begun integrating into Mail.app. Our plans are to publish this as open source at some point after the DANE workshop that will be taking place at ICANN 51 (where we will be demo'ing it). We ran into numerous interesting wrinkles and made some specific design choices, but at a high level the S/MIME prototype: > - can sign > - can encrypt > - can decrypt (without writing clear text to disk) > - can verify > - and supports several features that are enabled through suggested additions. > > With the foresight that zones may need to be delegated to accommodate churn and scale, some certificates may need to be selectively authenticated or deauthenticated (perhaps on a per-user basis), and the locations of certificate information may need to be managed in different places (some in the DNS, some in external locations), etc. we have made some operational choices to modify elements of the draft in our prototype. We intend to detail these in a follow-on email. > > We're hoping to show this off at the upcoming IETF too. > > Eric > _______________________________________________ > dane mailing list > dane@ietf.org > https://www.ietf.org/mailman/listinfo/dane
- [dane] SMIMEA prototyping Osterweil, Eric
- Re: [dane] SMIMEA prototyping Richard Lamb
- Re: [dane] SMIMEA prototyping ALAIN AINA
- Re: [dane] SMIMEA prototyping Osterweil, Eric