Re: [dane] Start of WGLC for draft-ietf-dane-openpgpkey: objection about keyring format documentation
Paul Hoffman <paul.hoffman@vpnc.org> Mon, 09 March 2015 01:04 UTC
Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9FCFB1A0069 for <dane@ietfa.amsl.com>; Sun, 8 Mar 2015 18:04:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.552
X-Spam-Level:
X-Spam-Status: No, score=0.552 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, HELO_MISMATCH_COM=0.553] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id p0jyzDEQTBOT for <dane@ietfa.amsl.com>; Sun, 8 Mar 2015 18:04:26 -0700 (PDT)
Received: from proper.com (Opus1.Proper.COM [207.182.41.91]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A7FB91A0052 for <dane@ietf.org>; Sun, 8 Mar 2015 18:04:26 -0700 (PDT)
Received: from [10.20.30.101] (50-1-99-2.dsl.dynamic.fusionbroadband.com [50.1.99.2]) (authenticated bits=0) by proper.com (8.15.1/8.14.9) with ESMTPSA id t2914PNm091083 (version=TLSv1 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <dane@ietf.org>; Sun, 8 Mar 2015 18:04:26 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
X-Authentication-Warning: proper.com: Host 50-1-99-2.dsl.dynamic.fusionbroadband.com [50.1.99.2] claimed to be [10.20.30.101]
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2070.6\))
From: Paul Hoffman <paul.hoffman@vpnc.org>
In-Reply-To: <54EF3A7D.6070809@redhat.com>
Date: Sun, 08 Mar 2015 18:04:25 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <8CB4E1AD-35C6-4A92-97ED-CC2853C2896C@vpnc.org>
References: <CAHw9_iJPuG23Aok7V_wcAMirua_DPDLHy01tnd+DaUqEeK3NZA@mail.gmail.com> <54EF3A7D.6070809@redhat.com>
To: dane WG list <dane@ietf.org>
X-Mailer: Apple Mail (2.2070.6)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dane/rrDlC12nzc-I3_cj9ehIaGmChLo>
Subject: Re: [dane] Start of WGLC for draft-ietf-dane-openpgpkey: objection about keyring format documentation
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Mar 2015 01:04:27 -0000
On Feb 26, 2015, at 7:23 AM, Petr Spacek <pspacek@redhat.com> wrote: > The main problem is that > http://tools.ietf.org/html/draft-ietf-dane-openpgpkey-01#section-2.1 > 2.1. The OPENPGPKEY RDATA component > The RDATA (or RHS) of an OPENPGPKEY Resource Record contains a single > value consisting of a [RFC4880] formatted OpenPGP public keyring. > > references > > http://tools.ietf.org/html/rfc4880#section-3.6 > 3.6. Keyrings > A keyring is a collection of one or more keys in a file or database. > Traditionally, a keyring is simply a sequential list of keys, but may > be any suitable database. It is beyond the scope of this standard to > discuss the details of keyrings or other databases. > > and this definitely is not a definition you could use for implementation. I fully agree on this. In fact, I think I brought the lack of interop up during the discussion leading up to RFC 2440, and was told that it was too late to change. (To be fair, we used the "too late to change" phrase a lot leading up to the spec for S/MIME v2. Ah, those carefree '90s.) Proposal: this draft should specify that the contents of the RDATA is a single public key, defined in Section 5.5.1.1 of RFC 4880. Are there common cases where this is not sufficient? --Paul Hoffman
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Warren Kumari
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Alexey Melnikov
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Warren Kumari
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… John Levine
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Brian Dickson
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Petr Spacek
- [dane] Start of WGLC for draft-ietf-dane-openpgpk… Warren Kumari
- Re: [dane] Start of WGLC for draft-ietf-dane-open… James Cloos
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Brian Dickson
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Brian Dickson
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Brian Dickson
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Jim Schaad
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Jim Schaad
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Warren Kumari
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Jim Schaad
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Jim Schaad
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Brian Dickson
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Rose, Scott W.
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Warren Kumari
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Warren Kumari
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Brian Dickson
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Viktor Dukhovni
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Brian Dickson
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Coyo
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Petr Spacek
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Petr Spacek
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Hoffman
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Hoffman
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Lyndon Nerenberg
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Jon Callas
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Warren Kumari
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Hoffman
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Alexey Melnikov
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters
- Re: [dane] Start of WGLC for draft-ietf-dane-open… James Cloos
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Rose, Scott W.
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Pieter Lexis
- Re: [dane] Start of WGLC for draft-ietf-dane-open… Paul Wouters