[Gen-art] Re: Gen-ART review of draft-ietf-ltans-ers-13.txt
Brian E Carpenter <brian.e.carpenter@gmail.com> Fri, 01 June 2007 09:35 UTC
Return-path: <gen-art-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1Hu3Y3-0007km-Ls; Fri, 01 Jun 2007 05:35:55 -0400
Received: from gen-art by megatron.ietf.org with local (Exim 4.43) id 1Hu3QR-000382-Se for gen-art-confirm+ok@megatron.ietf.org; Fri, 01 Jun 2007 05:28:03 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1Hu3QR-000373-Cu for gen-art@ietf.org; Fri, 01 Jun 2007 05:28:03 -0400
Received: from wx-out-0506.google.com ([66.249.82.226]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1Hu3QR-0001Pk-36 for gen-art@ietf.org; Fri, 01 Jun 2007 05:28:03 -0400
Received: by wx-out-0506.google.com with SMTP id t5so409867wxc for <gen-art@ietf.org>; Fri, 01 Jun 2007 02:28:02 -0700 (PDT)
DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; b=TwmOq+dZcdT0KF9vVNO+6J7VNs3E5947fLb3TTACp+J1LvcVNm7JCcgnj3FZflSbXfTzb7Pgqt2lgkNN5M2t8XiDOox2U75LXDNrNXv/HhULuJvkHP1LqVowtleruQCR4oAknbGwNZmJiC3oGeIpw4zcOx3L10D7+jnsPBZ416w=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; b=l+4C6a1LrBwJ27HVeaTiHrFwuTedwlL3tCeSLPWUAVDIDi8WQYt1yscoIVUM7BHsdNV8pl1NlOcvbRRm1zbqyaKNT8PG7BJDULKd3t1Et3BtBImdvMys6nhYZBZ2DKO1JbyvhMi0mhyAJZL/LOlPH3aodM1CwOLWfVp8Z7KIfmE=
Received: by 10.82.112.3 with SMTP id k3mr862003buc.1180690081606; Fri, 01 Jun 2007 02:28:01 -0700 (PDT)
Received: from ?10.10.50.1? ( [213.3.13.1]) by mx.google.com with ESMTP id i5sm1898580mue.2007.06.01.02.27.59; Fri, 01 Jun 2007 02:28:00 -0700 (PDT)
Message-ID: <465FE6A2.3030008@gmail.com>
Date: Fri, 01 Jun 2007 11:28:02 +0200
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
User-Agent: Thunderbird 1.5.0.10 (Windows/20070221)
MIME-Version: 1.0
To: Carl Wallace <CWallace@cygnacom.com>
References: <886F5D4C78AFB14D87261206BFB9612E1D06059E@scygmxs1.cygnacom.com>
In-Reply-To: <886F5D4C78AFB14D87261206BFB9612E1D06059E@scygmxs1.cygnacom.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: 0.0 (/)
X-Scan-Signature: c1c65599517f9ac32519d043c37c5336
Cc: ralf.brandner@intercomponentware.com, General Area Review Team <gen-art@ietf.org>, Tobias Gondrom <tgondrom@opentext.com>, ulrich.pordesch@zv.fraunhofer.de, Tim Polk <wpolk@nist.gov>
Subject: [Gen-art] Re: Gen-ART review of draft-ietf-ltans-ers-13.txt
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/gen-art>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
Errors-To: gen-art-bounces@ietf.org
Triggered by seeing -14 come out: On 2007-05-21 20:44, Carl Wallace wrote: >>> 1. At the end of section 4.2: >>> >>> The data (e.g. certificates, CRLs or OCSP-Responses) >> needed to verify >>> the timestamp SHOULD be stored in the timestamp itself or MUST be >>> preserved otherwise. >>> >>> I find this insufficiently clear. When would it be >> acceptable not to >>> store these data in the timestamp, and if not done so, how >> would the >>> retriever know where to look? >> [tg]: There are three main reasons why we did intentionally >> write this up in this level of detail: >> At first, most of the verification of a RFC3161-timestamp has >> been documented very well in the timestamp and CMS >> specifications. Second, ERS is open for other timestamps as >> well (e.g. ISO-18014-x) and they may (and do) require other >> verification data than RFC3161, plus these other formats may >> not be able to store all the necessary information for >> verification inside their data structures. >> And third, as some of the verification data may be dependent >> on the use case and country where it is verified, the WG >> works on the I-D >> http://www.ietf.org/internet-drafts/draft-ietf-ltans-validate- >> 01.txt to describe the verification and the required data in >> more detail. > > In addition to the above, the "SHOULD be stored in the timestamp" > recommendation is present in the spec because this is the easiest option. > If the timestamp contains all of the verification data, then there is less > work for the verifier to perform. However, this also freezes the > verification context (if this is the only means of preserving verification > data). There is a companion specification that defines how to use SCVP and > ERS to preserve certificates and CRLs independent of a data item that is > archived. This has a few benefits, including decreasing the storage burden > on the archive and avoiding freezing the validation context. > I'm still a little unhappy about the SHOULD. How does an implementor know that it's OK to ignore the SHOULD? If the data is not stored in the timestamp, shouldn't you say that a pointer to the data MUST be stored in the timestamp? Brian _______________________________________________ Gen-art mailing list Gen-art@ietf.org https://www1.ietf.org/mailman/listinfo/gen-art
- [Gen-art] Gen-ART review of draft-ietf-ltans-ers-… Brian E Carpenter
- [Gen-art] Gen-ART review of draft-ietf-ltans-ers-… Brian E Carpenter
- [Gen-art] RE: Gen-ART review of draft-ietf-ltans-… Tobias Gondrom
- Re: [Gen-art] RE: Gen-ART review of draft-ietf-lt… Russ Housley
- [Gen-art] RE: Gen-ART review of draft-ietf-ltans-… Carl Wallace
- [Gen-art] Re: Gen-ART review of draft-ietf-ltans-… Brian E Carpenter
- RE: [Gen-art] RE: Gen-ART review of draft-ietf-lt… Tobias Gondrom
- [Gen-art] Re: Gen-ART review of draft-ietf-ltans-… Brian E Carpenter
- [Gen-art] RE: Gen-ART review of draft-ietf-ltans-… Tobias Gondrom
- [Gen-art] Re: Gen-ART review of draft-ietf-ltans-… Brian E Carpenter
- [Gen-art] RE: Gen-ART review of draft-ietf-ltans-… Tobias Gondrom
- [Gen-art] Re: Gen-ART review of draft-ietf-ltans-… Brian E Carpenter
- [Gen-art] RE: Gen-ART review of draft-ietf-ltans-… Tobias Gondrom
- [Gen-art] RE: Gen-ART review of draft-ietf-ltans-… Carl Wallace
- [Gen-art] RE: Gen-ART review of draft-ietf-ltans-… Tobias Gondrom