IETF Logo Mail Archive

Re: [dane] Fwd: Second WGLC draft-ietf-dane-smime

"Garfinkel, Simson L. (Fed)" <simson.garfinkel@nist.gov> Sun, 27 November 2016 15:57 UTC

Return-Path: <simson.garfinkel@nist.gov>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D187129410 for <dane@ietfa.amsl.com>; Sun, 27 Nov 2016 07:57:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nistgov.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nowR8X6P3tLR for <dane@ietfa.amsl.com>; Sun, 27 Nov 2016 07:57:08 -0800 (PST)
Received: from gcc01-CY1-obe.outbound.protection.outlook.com (mail-cy1gcc01on0095.outbound.protection.outlook.com [23.103.200.95]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1BB4E12951E for <dane@ietf.org>; Sun, 27 Nov 2016 07:57:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nistgov.onmicrosoft.com; s=selector1-nist-gov; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=wfhWlrkVKOoFrNHOWfFhIwDDkLxmMcwLm25AvJt4erc=; b=mq6DiGla9swZSxsbPMDysGl76qx35Znom3JN5QxlUTTIbs3Vg1PoDsJ/ofgKoKOVsTpHiYp/481AtWZ3uvbhijq7amzzGaOZRvDBE+3FWwJNEwcU88OnKu0f/liqWMvBQiIWK0TG26hQkXc/Abv6WXmqH93XkqOKCM+hcUPmU/k=
Received: from DM2PR09MB0576.namprd09.prod.outlook.com (10.161.252.22) by DM2PR09MB0576.namprd09.prod.outlook.com (10.161.252.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.747.13; Sun, 27 Nov 2016 15:57:06 +0000
Received: from DM2PR09MB0576.namprd09.prod.outlook.com ([10.161.252.22]) by DM2PR09MB0576.namprd09.prod.outlook.com ([10.161.252.22]) with mapi id 15.01.0747.015; Sun, 27 Nov 2016 15:57:06 +0000
From: "Garfinkel, Simson L. (Fed)" <simson.garfinkel@nist.gov>
To: Olafur Gudmundsson <ogud@ogud.com>, dane WG list <dane@ietf.org>
Thread-Topic: [dane] Fwd: Second WGLC draft-ietf-dane-smime
Thread-Index: AQHSRkReVhFnJwfkn0mHVoa+bUU6WqDsrXGA
Date: Sun, 27 Nov 2016 15:57:06 +0000
Message-ID: <13928650-83B3-4D48-AA87-510382B26D04@nist.gov>
References: <1479102464.995918272@apps.rackspace.com> <CDADEC07-02F3-441C-B1A3-66720D4AC60E@ogud.com>
In-Reply-To: <CDADEC07-02F3-441C-B1A3-66720D4AC60E@ogud.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=simson.garfinkel@nist.gov;
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [68.33.77.56]
x-ms-office365-filtering-correlation-id: cc8b3f13-31b7-4e86-440a-08d416de099e
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:(22001);SRVR:DM2PR09MB0576;
x-microsoft-exchange-diagnostics: 1; DM2PR09MB0576; 7:HNpWXUFXBgpRbM0H+cBVPBWGMT2eAG5K7d9nbyDrxvXkqpX779CBYF4Xllv3aEA8JBNQ+bPdq0y0OYAyc0kSEgA0WPNAfsWPCCC45CmJ387WkPOgWH+S+fZK+DVA77aK8xNNgheOtzXJnhLYASHIZzBh1vCrglIVInRSW5AIvMnRAaViR0uM7Dlwr36PMjMaq0dx8I0T/B3ZlMrDlRl6dHCBKgQPnSK/2BECUgfc644UAuNI8YmbHNJiIw1oFXo3RyGxjZH8wi9arxvHRithz0tW33sPoGz57j0duYNu1YSMsdrlY2v+RhAnQ2wTspKMu3KWr7yoh+E1DSqFPf0K1tMvXcgI5qmFQcioXVCAox+zz5tbbtOenRrPTnDbAmRNJWd1W9s8EyvXY29jbRkayzh/BG2bWZB5lAUAvABl8JUmwrBEWWCGIqDC8NwPfnfdpgyX0hn3sbW2LCuYMgYigA==
x-microsoft-antispam-prvs: <DM2PR09MB0576219D1270F7781448BAA0F68B0@DM2PR09MB0576.namprd09.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6060326)(6040361)(6045199)(601004)(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026)(6061324)(6041248)(20161123560025)(20161123564025)(20161123562025)(20161123555025)(20161123558021)(6072148); SRVR:DM2PR09MB0576; BCL:0; PCL:0; RULEID:; SRVR:DM2PR09MB0576;
x-forefront-prvs: 0139052FDB
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(7916002)(51444003)(199003)(189002)(122556002)(68736007)(102836003)(6116002)(3846002)(3280700002)(3660700001)(81156014)(8676002)(33656002)(81166006)(8936002)(76176999)(50986999)(54356999)(101416001)(230783001)(36756003)(2906002)(6486002)(77096006)(39450400002)(105586002)(99286002)(106356001)(106116001)(39410400001)(229853002)(2900100001)(39380400001)(39400400001)(6506003)(6512003)(38730400001)(5660300001)(7736002)(7846002)(2950100002)(107886002)(97736004)(92566002)(5001770100001)(189998001)(83716003)(86362001)(66066001)(82746002)(14444003)(104396002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM2PR09MB0576; H:DM2PR09MB0576.namprd09.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: nist.gov does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_1392865083B34D48AA87510382B26D04nistgov_"
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Nov 2016 15:57:06.3228 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR09MB0576
Archived-At: <https://mailarchive.ietf.org/arch/msg/dane/smFS0CeLIeYV253H7OKOsZ64ZV4>
Subject: Re: [dane] Fwd: Second WGLC draft-ietf-dane-smime
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 27 Nov 2016 15:57:10 -0000

I would like to express my full support for the DRAFT-IETF-DANE-SMIME document to advance and become an experimental RFC.

There are several organizations using S/MIME, and it would be useful for them to explore the use of this technology as a certification distribution tool. Having this document as an experimental RFC, rather than as a draft, would help this process.

NIST recently published a Special Publication on trustworthy email (SP 800-177), and it would have been useful to quote an official IETF document regarding the use of DANE for S/MIME.  Publishing DRAFT-IETF-DANE-SMIME as an experimental RFC will enable discussion of the technology by having a firm document that we are all quoting from.

As an experimental RFC, there will be no obligation for others to implement this technology.

Also, given that the RFC 7929, “ DNS-Based Authentication of Named Entities (DANE) Bindings for OpenPGP,” has been published, not publishing this RFC would seem to imply that the DANE WG is preferring OpenPGP over S/MIME.  I think that it would be misleading and not useful to give that impression.

Simson Garfinkel

v2.23.0 | Report a Bug | By Email