Re: [dane] I-D Action: draft-ietf-dane-srv-04.txt

Matt Miller <mamille2@cisco.com> Tue, 11 February 2014 22:17 UTC

Return-Path: <mamille2@cisco.com>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B1F4A1A0748 for <dane@ietfa.amsl.com>; Tue, 11 Feb 2014 14:17:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.028
X-Spam-Level:
X-Spam-Status: No, score=-9.028 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, MISSING_HEADERS=1.021, RP_MATCHES_RCVD=-0.548, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kUkUmODBOggt for <dane@ietfa.amsl.com>; Tue, 11 Feb 2014 14:17:36 -0800 (PST)
Received: from alln-iport-6.cisco.com (alln-iport-6.cisco.com [173.37.142.93]) by ietfa.amsl.com (Postfix) with ESMTP id AFFBE1A0738 for <dane@ietf.org>; Tue, 11 Feb 2014 14:17:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3057; q=dns/txt; s=iport; t=1392157056; x=1393366656; h=message-id:date:from:mime-version:cc:subject:references: in-reply-to:content-transfer-encoding; bh=+htbKl7jkOZpef0FsxLUKecJyNwxgG0kmem/OAxcFdw=; b=UstEVM5ftrK3+DmplxJKM5OZeod1dfwkSE8JK9rSu27t2emVm4zhxeYe oCftnADilRUY7ZoOkoZzs2/TzfJukPuQM+J4S0KNiav7s4NYuFd5nySMY SJmNQTlYPpaTgm6a66OJaBtBsxtGDW1Dt3bnwL3BYv0SS0B+XehxjU3WR o=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: ArYKAC+h+lKtJV2Z/2dsb2JhbABagww4UQanYJcvJHMWdIIdCAEBAQQBAQFrCgEQCxgJFg8JAwIBAgEVMBMBBQIBAQWFbYIPCAXJaheORjMHgn6BOgSJEDiOYoEyiy6FQINNggo
X-IronPort-AV: E=Sophos;i="4.95,828,1384300800"; d="scan'208";a="19694855"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by alln-iport-6.cisco.com with ESMTP; 11 Feb 2014 22:17:36 +0000
Received: from xhc-rcd-x05.cisco.com (xhc-rcd-x05.cisco.com [173.37.183.79]) by rcdn-core-2.cisco.com (8.14.5/8.14.5) with ESMTP id s1BMHZoR024769 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <dane@ietf.org>; Tue, 11 Feb 2014 22:17:36 GMT
Received: from jack.cisco.com (64.101.72.76) by xhc-rcd-x05.cisco.com (173.37.183.79) with Microsoft SMTP Server (TLS) id 14.3.123.3; Tue, 11 Feb 2014 16:17:35 -0600
Message-ID: <52FAA17F.3060703@cisco.com>
Date: Tue, 11 Feb 2014 15:17:35 -0700
From: Matt Miller <mamille2@cisco.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:24.0) Gecko/20100101 Thunderbird/24.3.0
MIME-Version: 1.0
CC: <dane@ietf.org>
References: <20140211221320.30490.31053.idtracker@ietfa.amsl.com>
In-Reply-To: <20140211221320.30490.31053.idtracker@ietfa.amsl.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Originating-IP: [64.101.72.76]
Subject: Re: [dane] I-D Action: draft-ietf-dane-srv-04.txt
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Feb 2014 22:17:38 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Viktor (and DANE),

Peter and I believe this revision addresses all of your feedback.
Please let us if anything is missing or inconsistent.

Also added an SRV example for the expected records, updated
referenced, and author information.


- -- 
- - m&m

Matt Miller < mamille2@cisco.com >
Cisco Systems, Inc.

On 2/11/14, 3:13 PM, internet-drafts@ietf.org wrote:
> 
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories. This draft is a work item of the DNS-based
> Authentication of Named Entities Working Group of the IETF.
> 
> Title           : Using DNS-Based Authentication of Named Entities
> (DANE) TLSA records with SRV and MX records. Authors         : Tony
> Finch Matthew Miller Peter Saint-Andre Filename        :
> draft-ietf-dane-srv-04.txt Pages           : 13 Date            :
> 2014-02-11
> 
> Abstract: The DANE specification (RFC 6698) describes how to use
> TLSA resource records in the DNS to associate a server's host name
> with its TLS certificate.  The association is secured with DNSSEC.
> Some application protocols use SRV records (RFC 2782) to indirectly
> name the server hosts for a service domain (SMTP uses MX records
> for the same purpose).  This specification gives generic
> instructions for how these application protocols locate and use
> TLSA records when technologies such as SRV records are used.
> Separate documents give the details that are specific to particular
> application protocols.
> 
> 
> The IETF datatracker status page for this draft is: 
> https://datatracker.ietf.org/doc/draft-ietf-dane-srv/
> 
> There's also a htmlized version available at: 
> http://tools.ietf.org/html/draft-ietf-dane-srv-04
> 
> A diff from the previous version is available at: 
> http://www.ietf.org/rfcdiff?url2=draft-ietf-dane-srv-04
> 
> 
> Please note that it may take a couple of minutes from the time of
> submission until the htmlized version and diff are available at
> tools.ietf.org.
> 
> Internet-Drafts are also available by anonymous FTP at: 
> ftp://ftp.ietf.org/internet-drafts/
> 
> _______________________________________________ I-D-Announce
> mailing list I-D-Announce@ietf.org 
> https://www.ietf.org/mailman/listinfo/i-d-announce Internet-Draft
> directories: http://www.ietf.org/shadow.html or
> ftp://ftp.ietf.org/ietf/1shadow-sites.txt
> 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - https://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBCgAGBQJS+qF/AAoJEDWi+S0W7cO1xhgH/3TPIubid6u7F8xGIco1swTc
bMWQfFVaMTddUOaLL0AsaZUSkTuGMPzYtIQK42f4H5IWQbavZMXmtTLKv8bQxfIG
2dGTr8BtstzoMxe4K5klO18owov0lnum8R9MN7AIPIiawL46HFJ4p9L3D8V1j1kR
yEpP8AhyDijPUIBRcC38y3YTDtKAIpu1Cdh7f9n3PpdqVtF428dHZqU8J7sz+zrU
o8AlQ9HMjFzxKE4SuLJxrMBMUmJsSvH2MHu7/FkI9FFFq05kHaxOkBfrkSxbRf3Q
F0Da5Pp3p4maRGdxjJslA4PYYo/SSt1HyD2GqaR9GVPzUF/G/P2SPbCCNbLvt0E=
=U/kn
-----END PGP SIGNATURE-----