IETF Logo Mail Archive

Re: [dane] Compressed Call for Adoption: draft-gilmore-dane-rawkeys-00

Peter Koch <pk@DENIC.DE> Mon, 23 June 2014 11:14 UTC

Return-Path: <peter@denic.de>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 63F361B28ED for <dane@ietfa.amsl.com>; Mon, 23 Jun 2014 04:14:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.602
X-Spam-Level:
X-Spam-Status: No, score=-2.602 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.651] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Vp1NZ9LpvYEG for <dane@ietfa.amsl.com>; Mon, 23 Jun 2014 04:14:23 -0700 (PDT)
Received: from office.denic.de (office.denic.de [81.91.160.182]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 149251ABB90 for <dane@ietf.org>; Mon, 23 Jun 2014 04:14:17 -0700 (PDT)
Received: from x27.adm.denic.de (x28.fra2.if.denic.de [10.122.64.17]) by office.denic.de with esmtp id 1Wz2CU-0006VE-IS; Mon, 23 Jun 2014 13:14:14 +0200
Received: from localhost by x27.adm.denic.de with local id 1Wz2CU-0004gD-ES; Mon, 23 Jun 2014 13:14:14 +0200
Date: Mon, 23 Jun 2014 13:14:14 +0200
From: Peter Koch <pk@DENIC.DE>
To: dane@ietf.org
Message-ID: <20140623111414.GE8868@x28.adm.denic.de>
Mail-Followup-To: dane@ietf.org
References: <CAHw9_i+EtVskqkT1V9V_bvPOCpGdZpz4-Vr4ME_DiC7EvxVQwg@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CAHw9_i+EtVskqkT1V9V_bvPOCpGdZpz4-Vr4ME_DiC7EvxVQwg@mail.gmail.com>
User-Agent: Mutt/1.4.2.3i
Sender: Peter Koch <peter@denic.de>
Archived-At: http://mailarchive.ietf.org/arch/msg/dane/bmo-UmdT9BPsONzK9c7m571l-fk
Subject: Re: [dane] Compressed Call for Adoption: draft-gilmore-dane-rawkeys-00
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Jun 2014 11:14:30 -0000

On Mon, Jun 23, 2014 at 06:16:01AM -0400, Warren Kumari wrote:

> This document was written in response to a request, and so we are
> compressing the more traditional 2 week call for adoption to instead
> be a single week.
> 
> Please let us know clearly if you *object* to this document being
> adopted, with a clear explanation of why.

I'd expect the next thing for the IETF is to introduce an objection fee ...

> This call for adoption ends Monday 07-Jul-2014.

?

I've read the draft but not any preceding discussion.  Publishing (not
"authenticating", please) raw keys in the DNS makes a lot of sense IMHO,
but it's not obvious to me why the TLSA RR type is the right one.
The document does not explain why the expansion of the usage "3"
is backwards compatible, i.e., not confusing old clients.

-Peter

v2.23.0 | Report a Bug | By Email