Re: [dane] Last Call: <draft-ietf-dane-smime-15.txt> (Using Secure DNS to Associate Certificates with Domain Names For S/MIME) to Experimental RFC
Russ Housley <housley@vigilsec.com> Mon, 20 February 2017 22:08 UTC
Return-Path: <housley@vigilsec.com>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E32C11293DC for <dane@ietfa.amsl.com>; Mon, 20 Feb 2017 14:08:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ILUVYIw9-uUy for <dane@ietfa.amsl.com>; Mon, 20 Feb 2017 14:08:29 -0800 (PST)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0EA4B12706D for <dane@ietf.org>; Mon, 20 Feb 2017 14:08:29 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 3FAEB30042F for <dane@ietf.org>; Mon, 20 Feb 2017 17:08:28 -0500 (EST)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id kwED7pm91xDs for <dane@ietf.org>; Mon, 20 Feb 2017 17:08:27 -0500 (EST)
Received: from russhousleymbp.home (pool-108-45-101-150.washdc.fios.verizon.net [108.45.101.150]) by mail.smeinc.net (Postfix) with ESMTPSA id 1E63C3002B9; Mon, 20 Feb 2017 17:08:27 -0500 (EST)
From: Russ Housley <housley@vigilsec.com>
Message-Id: <C8F3EDBB-8D78-4C22-AA12-4751AA7EBDA8@vigilsec.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_F480C90B-B149-4041-AD77-D53539ED048C"; protocol="application/pkcs7-signature"; micalg="sha1"
Mime-Version: 1.0 (Mac OS X Mail 10.2 \(3259\))
Date: Mon, 20 Feb 2017 17:08:26 -0500
In-Reply-To: <148735135694.19996.10639905917399706253.idtracker@ietfa.amsl.com>
To: IETF <ietf@ietf.org>
References: <148735135694.19996.10639905917399706253.idtracker@ietfa.amsl.com>
X-Mailer: Apple Mail (2.3259)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dane/rUS_Ospk4Ggka6i10whDvIAMlk8>
Cc: dane@ietf.org
Subject: Re: [dane] Last Call: <draft-ietf-dane-smime-15.txt> (Using Secure DNS to Associate Certificates with Domain Names For S/MIME) to Experimental RFC
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Feb 2017 22:08:31 -0000
I just took a look at this document, and I think it is ready for publication as an Experimental RFC. Russ > On Feb 17, 2017, at 12:09 PM, The IESG <iesg-secretary@ietf.org> wrote: > > > The IESG has received a request from the DNS-based Authentication of > Named Entities WG (dane) to consider the following document: > - 'Using Secure DNS to Associate Certificates with Domain Names For > S/MIME' > <draft-ietf-dane-smime-15.txt> as Experimental RFC > > The IESG plans to make a decision in the next few weeks, and solicits > final comments on this action. Please send substantive comments to the > ietf@ietf.org mailing lists by 2017-03-03. Exceptionally, comments may be > sent to iesg@ietf.org instead. In either case, please retain the > beginning of the Subject line to allow automated sorting. > > Abstract > > > This document describes how to use secure DNS to associate an S/MIME > user's certificate with the intended domain name, similar to the way > that DNS-Based Authentication of Named Entities (DANE), RFC 6698, > does for TLS. > > > > > The file can be obtained via > https://datatracker.ietf.org/doc/draft-ietf-dane-smime/ > > IESG discussion can be tracked via > https://datatracker.ietf.org/doc/draft-ietf-dane-smime/ballot/ > > The following IPR Declarations may be related to this I-D: > > https://datatracker.ietf.org/ipr/2468/ > https://datatracker.ietf.org/ipr/2446/ > > > > >