IETF Logo Mail Archive

Re: [dane] Payment association records

"Wiley, Glen" <gwiley@verisign.com> Fri, 13 March 2015 15:09 UTC

Return-Path: <gwiley@verisign.com>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 45ECE1A8A6A for <dane@ietfa.amsl.com>; Fri, 13 Mar 2015 08:09:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3ZRE6585Mq0O for <dane@ietfa.amsl.com>; Fri, 13 Mar 2015 08:09:00 -0700 (PDT)
Received: from mail-oi0-f98.google.com (mail-oi0-f98.google.com [209.85.218.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EA6901A1B14 for <dane@ietf.org>; Fri, 13 Mar 2015 08:08:49 -0700 (PDT)
Received: by oiba3 with SMTP id a3so1053833oib.2 for <dane@ietf.org>; Fri, 13 Mar 2015 08:08:49 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:subject:thread-topic:thread-index:date :message-id:references:in-reply-to:accept-language:content-language :content-type:mime-version; bh=1dhVF+vf45GCh+OJMmkP3vQuUvlOm0Pnuldf9BueulE=; b=nJs0P5CRQhkURNXtY+lwa/Z1x/3yn4gP0pF5HaoAOYazTFkWNPrUXDMI7T2LoW04fz Uhqgyd0krLedQImvhDYYAlytGXkCew+AV4bC/xFvH497TEcpGP/TqTEECPcR0hfbny56 AGmCc+eqM28dsLBzREpR7qtQDAl1eTT9qgo0aS6N58o357ZnKiFHUwj3vTZVl2utNwty t4qiuCEs/KXxrk8pK1Nmf1X/lxub1fmbMLZDOY1wDExvCxuQy2/nV25j+50MMHJBNjKh GcAT7Y8VxI+Sy0avY5gAmDsqnVBxEk6r5RlWNVp6tWaRl1J0uxClJjfASNSCd62h437Z bHxA==
X-Gm-Message-State: ALoCoQnt0+7shjEgN8mLwd0gKUDnBLs8Uy2xjXxAjbJbFpdVyl3qavkcbIdBTb1aRIl016NOpJLRj2UzQLE55gzs/XgjUSwBdQ==
X-Received: by 10.55.23.220 with SMTP id 89mr8396103qkx.56.1426259329348; Fri, 13 Mar 2015 08:08:49 -0700 (PDT)
Received: from brn1lxmailout02.verisign.com (brn1lxmailout02.verisign.com. [72.13.63.42]) by mx.google.com with ESMTPS id jy4sm645515qcb.0.2015.03.13.08.08.49 (version=TLSv1 cipher=RC4-SHA bits=128/128); Fri, 13 Mar 2015 08:08:49 -0700 (PDT)
X-Relaying-Domain: verisign.com
Received: from BRN1WNEXCHM01.vcorp.ad.vrsn.com (brn1wnexchm01 [10.173.152.255]) by brn1lxmailout02.verisign.com (8.13.8/8.13.8) with ESMTP id t2DF8mxB015750 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Fri, 13 Mar 2015 11:08:48 -0400
Received: from BRN1WNEXMBX01.vcorp.ad.vrsn.com ([::1]) by BRN1WNEXCHM01.vcorp.ad.vrsn.com ([::1]) with mapi id 14.03.0174.001; Fri, 13 Mar 2015 11:08:48 -0400
From: "Wiley, Glen" <gwiley@verisign.com>
To: Falcon Darkstar Momot <falcon@iridiumlinux.org>, "dane@ietf.org" <dane@ietf.org>
Thread-Topic: [dane] Payment association records
Thread-Index: AQHQW4ClIQaNAKPSFUqV1JxlK/mNZJ0XJ/mAgANc0fk=
Date: Fri, 13 Mar 2015 15:08:19 +0000
Message-ID: <641EE49757824F4BBE5F863B22FDDBF23C454AB0@BRN1WNEXMBX01.vcorp.ad.vrsn.com>
References: <D124E6D8.72BF%gwiley@verisign.com>, <54FFF047.5010303@iridiumlinux.org>
In-Reply-To: <54FFF047.5010303@iridiumlinux.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.173.152.4]
Content-Type: multipart/alternative; boundary="_000_641EE49757824F4BBE5F863B22FDDBF23C454AB0BRN1WNEXMBX01vc_"
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/dane/v0PbRkjsnNQXnQb0eUbLYbWrUhk>
Subject: Re: [dane] Payment association records
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Mar 2015 15:09:03 -0000

I took a quick look at the eastlake draft from 2001 and although I wasn't watching those discussions here are my observations:

- This was prior to the supporting work of DNSSEC and DANE which provide an established trust anchor and chain of trust.  This looks as though it was an idea before its time :)

- Their proposal used the DNS hierarchy rooted in a single TLD to locate the records.  There are significant advantages to following the more familiar model in the DNS of expecting RR sets within the domain associated with the target entity (I go to google.com to find records related to google) rather than capturing application usages within a TLD.

- Their security considerations beg the question of DNSSEC and the work being done in DPRIV!

- I suspect that some of the work in the eastlake draft may be relevant to this proposal and I want to digest it more completely to see what we might leverage.

I'd love to hear relevant thoughts form the discussions in 2001 if any of those folks are on the list.

thanks
Glen

________________________________
From: dane [dane-bounces@ietf.org] on behalf of Falcon Darkstar Momot [falcon@iridiumlinux.org]
Sent: Wednesday, March 11, 2015 3:35 AM
To: dane@ietf.org
Subject: Re: [dane] Payment association records

I lightly draw attention to an ancient failed internet draft for storing substantive payment processing information in the DNS: https://tools.ietf.org/html/draft-eastlake-card-map-08

I also draw attention for a different reason to the yet-reserved HTTP status code 402 (https://tools.ietf.org/html/rfc7231#page-59).

--Falcon Darkstar Momot
--Shadytel

On 10/03/2015 15:21, Wiley, Glen wrote:
A few of us have put some work into an 00 draft describing a DANE like RR that would provide an association for payment information via the DNS. The abstract from the draft reads:

There is no standard, interoperable method for associating Internet service identifiers with payment information.  This document  specifies a means for retrieving information sufficient for a party to render payment using various payment networks given the recipient's email address by leveraging the DNS to securely publish payment information in a payment association record.  A payment association record associates an Internet service identifier such as an email address with payment information such as an account number or Bitcoin address.

Our draft is in the tracker:
  https://tools.ietf.org/html/draft-wiley-paymentassoc-00
And I’d like to get some feedback from folks on this to see what we can do to make this an effective tool.

There are a number of elements that need to be fleshed out and we have more content in the works to address specific use cases.

Looking forward to hearing from folks.
--
Glen Wiley
Principal Engineer
Verisign, Inc.
(571) 230-7917

A5E5 E373 3C75 5B3E 2E24
6A0F DC65 2354 9946 C63A



_______________________________________________
dane mailing list
dane@ietf.org<mailto:dane@ietf.org>
https://www.ietf.org/mailman/listinfo/dane

v2.23.0 | Report a Bug | By Email