IETF Logo Mail Archive

Re: [eppext] Working Group Last call for draft-ietf-eppext-tmch-smd

"Hollenbeck, Scott" <shollenbeck@verisign.com> Tue, 21 July 2015 13:20 UTC

Return-Path: <shollenbeck@verisign.com>
X-Original-To: eppext@ietfa.amsl.com
Delivered-To: eppext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B15D1A7034 for <eppext@ietfa.amsl.com>; Tue, 21 Jul 2015 06:20:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mLRORsJ45IlB for <eppext@ietfa.amsl.com>; Tue, 21 Jul 2015 06:20:19 -0700 (PDT)
Received: from mail-oi0-f100.google.com (mail-oi0-f100.google.com [209.85.218.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 378D81B2BA6 for <eppext@ietf.org>; Tue, 21 Jul 2015 06:20:19 -0700 (PDT)
Received: by oibw187 with SMTP id w187so9816804oib.1 for <eppext@ietf.org>; Tue, 21 Jul 2015 06:20:18 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:subject:thread-topic:thread-index:date :message-id:references:in-reply-to:accept-language:content-language :content-type:content-transfer-encoding:mime-version; bh=YjePQCHqvQg6vXFhLTLjrfwD/+AdbaIV8QSRDWz7D98=; b=Qz+HmAqOJRP8V8cSMgnrFUaUuPqbDufZRPyIPR00ho2hJPJsEPPgizVhvlht6gtrxI rnN3eYnahmEJhCzz9UoqFBmXpKmoldVLsVnHOUHn/owF7kNS5jkLNDJEz3VhmCUvwrhl W8nS1Gzk6IyrKHv+Lu0OoVnjmEMlcPBq9jG9138DF6huV+GCbG7jf9m3tChMVIlFcsS7 SYLmiZ1cVZgei43c3m6G18/oE8WK5++ApLhCNOz/E6gqY3+5wqIJAKUzrnHkw0N0aGlT OutwvRuhkjdVIL2gv1FrK0HWPcCPoGUtgSf/5S42DhKywnqwTqUJr2BeWTNEmtUCedgY RIcg==
X-Gm-Message-State: ALoCoQmf7pnNxib5QNV5gOhQWlRb8BXPlsh9WQ+u1kKxVpEOxlBQmyzy7zFBEAMS9KEj/9NMLh8I6tn+bi0/b8RXpVSGFwGbRQ==
X-Received: by 10.140.237.70 with SMTP id i67mr49830698qhc.44.1437484818545; Tue, 21 Jul 2015 06:20:18 -0700 (PDT)
Received: from brn1lxmailout02.verisign.com (brn1lxmailout02.verisign.com. [72.13.63.42]) by smtp-relay.gmail.com with ESMTPS id r102sm1421687qkh.0.2015.07.21.06.20.18 (version=TLSv1 cipher=RC4-SHA bits=128/128); Tue, 21 Jul 2015 06:20:18 -0700 (PDT)
X-Relaying-Domain: verisign.com
Received: from brn1wnexcas01.vcorp.ad.vrsn.com (brn1wnexcas01 [10.173.152.205]) by brn1lxmailout02.verisign.com (8.13.8/8.13.8) with ESMTP id t6LDKHat026275 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 21 Jul 2015 09:20:17 -0400
Received: from BRN1WNEXMBX01.vcorp.ad.vrsn.com ([::1]) by brn1wnexcas01.vcorp.ad.vrsn.com ([::1]) with mapi id 14.03.0174.001; Tue, 21 Jul 2015 09:20:17 -0400
From: "Hollenbeck, Scott" <shollenbeck@verisign.com>
To: Antoin Verschuren <ietf@antoin.nl>, "eppext@ietf.org" <eppext@ietf.org>
Thread-Topic: [eppext] Working Group Last call for draft-ietf-eppext-tmch-smd
Thread-Index: AQHQwycR9xf2TTopRUqdVNZmCaStqZ3l4dJg
Date: Tue, 21 Jul 2015 13:20:15 +0000
Message-ID: <831693C2CDA2E849A7D7A712B24E257F4A022D92@BRN1WNEXMBX01.vcorp.ad.vrsn.com>
References: <7369519F-6887-4ECB-9525-DA02EC5BFBBA@antoin.nl>
In-Reply-To: <7369519F-6887-4ECB-9525-DA02EC5BFBBA@antoin.nl>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.173.152.4]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/eppext/MeUxUvJyvNFUPJkfD8bld3yybYo>
Subject: Re: [eppext] Working Group Last call for draft-ietf-eppext-tmch-smd
X-BeenThere: eppext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: EPPEXT <eppext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/eppext>, <mailto:eppext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/eppext/>
List-Post: <mailto:eppext@ietf.org>
List-Help: <mailto:eppext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/eppext>, <mailto:eppext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jul 2015 13:20:26 -0000

> -----Original Message-----
> From: EppExt [mailto:eppext-bounces@ietf.org] On Behalf Of Antoin
> Verschuren
> Sent: Monday, July 20, 2015 4:03 PM
> To: eppext@ietf.org
> Subject: [eppext] Working Group Last call for draft-ietf-eppext-tmch-
> smd
> 
> Greetings,
> 
> This is the starting of the WGLC on the Mark and Signed Mark Objects
> Mapping.
> We believe this document is ready for WGLC.
> The current version of this document can be found here:
> 
>   https://www.ietf.org/id/draft-ietf-eppext-tmch-smd-01.txt

I have reviewed this document. Comments:

Section 1: Please expand the ICANN acronym and include a normative reference for the "Trademark Clearinghouse". I'm asking for a normative reference because this document describes the format of structures that are "defined" by the TMCH. One really has to understand the TMCH to understand why these formats are needed.

Section 2.3: RFC 3275 (a draft standard) is probably a better normative reference for an IETF document than a URI to a W3C document.

A question: is this still good advice from a security perspective?

"SHA256/RSA-SHA256 SHOULD be used for digesting and signing. The size of the RSA key SHOULD be at least 2048 bits."

Section 7: The IANA Consideration section should include a subsection to register this extension in the EPP extensions registry. Templates should also be added to register the two schemas. There's an example of schema registration in RFC 5731.

Section 8: I have to disagree with the "The object mapping described in this document does not provide any security services or introduce any additional considerations" statement. For example, more text might be needed here to address considerations associated with the algorithm recommendations made in Section 2.3.

Scott

v2.23.0 | Report a Bug | By Email