IETF Logo Mail Archive

Re: [dane] Reusing TLSA

Miek Gieben <miek@miek.nl> Mon, 24 September 2012 17:12 UTC

Return-Path: <miekg@atoom.net>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4758D21F8821 for <dane@ietfa.amsl.com>; Mon, 24 Sep 2012 10:12:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.513
X-Spam-Level:
X-Spam-Status: No, score=-2.513 tagged_above=-999 required=5 tests=[AWL=0.086, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 37il3YRRf8Yy for <dane@ietfa.amsl.com>; Mon, 24 Sep 2012 10:12:48 -0700 (PDT)
Received: from elektron.atoom.net (elektron.atoom.net [85.223.71.124]) by ietfa.amsl.com (Postfix) with ESMTP id 764D221F8829 for <dane@ietf.org>; Mon, 24 Sep 2012 10:12:48 -0700 (PDT)
Received: by elektron.atoom.net (Postfix, from userid 1000) id 01C6A3FFE7; Mon, 24 Sep 2012 19:12:46 +0200 (CEST)
Date: Mon, 24 Sep 2012 19:12:46 +0200
From: Miek Gieben <miek@miek.nl>
To: dane@ietf.org
Message-ID: <20120924171246.GB7802@miek.nl>
Mail-Followup-To: dane@ietf.org
References: <FE6C9DF2-E86E-4CEF-A537-D68C5952B602@vpnc.org> <91558793-B9DC-4FB4-8717-078F0A64430B@cisco.com>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="O5XBE6gyVG5Rl6Rj"
Content-Disposition: inline
In-Reply-To: <91558793-B9DC-4FB4-8717-078F0A64430B@cisco.com>
User-Agent: Vim/Mutt/Linux
X-Home: http://www.miek.nl
Subject: Re: [dane] Reusing TLSA
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Sep 2012 17:12:49 -0000

[ Quoting <mamille2@cisco.com> in "Re: [dane] Reusing TLSA..." ]
> > The question becomes what the registration of an RRtype "means". If it means the bits on the wire of the *response* and their semantics, then I think the S/MIME document can use the TLSA RRtype. If an RRtype also means the bits on the wire of the request and response, we can't.
> > 
> > Personally, I think that the RRtype is defined just by the bits in the response, so we could reuse, but others might disagree.
> > 
> 
> In my naivete, I've interpreted the RRType to define the bits in the response.  Which explains why I've been confused why draft-hoffman-dane-smime can't re-use TLSA.

The question does not even have the rdata part.

To me it looks if we are in violent agreement: re-use TLSA in dane-smime.

 Regards,

-- 
    Miek Gieben                                                   http://miek.nl

v2.23.0 | Report a Bug | By Email