Re: [Hipsec] I-D Action:draft-ietf-hip-cert-04.txt
Samu Varjonen <samu.varjonen@hiit.fi> Thu, 23 September 2010 11:00 UTC
Return-Path: <samu.varjonen@hiit.fi>
X-Original-To: hipsec@core3.amsl.com
Delivered-To: hipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E59F63A6ADA for <hipsec@core3.amsl.com>; Thu, 23 Sep 2010 04:00:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ubL+4TveS2jt for <hipsec@core3.amsl.com>; Thu, 23 Sep 2010 04:00:49 -0700 (PDT)
Received: from argo.otaverkko.fi (argo.otaverkko.fi [212.68.0.2]) by core3.amsl.com (Postfix) with ESMTP id 9D6B73A6959 for <hipsec@ietf.org>; Thu, 23 Sep 2010 04:00:48 -0700 (PDT)
Received: from [192.168.0.15] (cs181123051.pp.htv.fi [82.181.123.51]) by argo.otaverkko.fi (Postfix) with ESMTP id 5CAF325ED1D for <hipsec@ietf.org>; Thu, 23 Sep 2010 14:01:17 +0300 (EEST)
Message-ID: <4C9B337D.4000904@hiit.fi>
Date: Thu, 23 Sep 2010 14:01:17 +0300
From: Samu Varjonen <samu.varjonen@hiit.fi>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.12) Gecko/20100915 Thunderbird/3.0.8
MIME-Version: 1.0
To: hipsec@ietf.org
References: <20100923104502.A5CA73A6951@core3.amsl.com>
In-Reply-To: <20100923104502.A5CA73A6951@core3.amsl.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: Re: [Hipsec] I-D Action:draft-ietf-hip-cert-04.txt
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hipsec>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Sep 2010 11:00:50 -0000
Hi,
This is the updated version of the cert draft.
Changes from version 03 to 04:
o Added the non-HIP aware use case to the Section 3.
o Clarified that the HITs are not always required in the
certificates.
o Rewrote the signaling section.
o LDAP URL to LDAP DN in Section 2 last paragraph.
o CERT is always covered by a signature as it's type number requires
o New example certificates
o Style and language clean-ups
o Changed IANA considerations
o Revised the type numbers
o RFC 2119 keywords
o Updated the IANA considerations section
o Rewrote the abstract
Comments are appreciated.
BR,
Samu
On 09/23/2010 01:45 PM, Internet-Drafts@ietf.org wrote:
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the Host Identity Protocol Working Group of the IETF.
>
>
> Title : HIP Certificates
> Author(s) : T. Heer, S. Varjonen
> Filename : draft-ietf-hip-cert-04.txt
> Pages : 13
> Date : 2010-09-23
>
> The CERT parameter is a container for X.509.v3 certificates and
> Simple Public Key Infrastructure (SPKI) certificates. It is used for
> carrying these certificates in HIP control packets. This document
> only specifies the certificate parameter and the error signaling in
> case of a failed verification. The use of certificates including how
> certificates are obtained, requested, and which actions are taken
> upon successful or failed verification are to be defined in the
> documents that use the certificate parameter. Additionally, this
> document specifies the representations of Host Identity Tags in
> X.509.v3 and SPKI certificates.
>
> A URL for this Internet-Draft is:
> http://www.ietf.org/internet-drafts/draft-ietf-hip-cert-04.txt
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> Below is the data which will enable a MIME compliant mail reader
> implementation to automatically retrieve the ASCII version of the
> Internet-Draft.
>
>
>
> _______________________________________________
> Hipsec mailing list
> Hipsec@ietf.org
> https://www.ietf.org/mailman/listinfo/hipsec
- [Hipsec] I-D Action:draft-ietf-hip-cert-04.txt Internet-Drafts
- Re: [Hipsec] I-D Action:draft-ietf-hip-cert-04.txt Samu Varjonen
- [Hipsec] draft-ietf-hip-cert-04 review Ari Keranen
- Re: [Hipsec] draft-ietf-hip-cert-04 review Samu Varjonen
- Re: [Hipsec] I-D Action:draft-ietf-hip-cert-04.txt René Hummen
- Re: [Hipsec] draft-ietf-hip-cert-04 review Ari Keranen
- Re: [Hipsec] draft-ietf-hip-cert-04 review Samu Varjonen
- Re: [Hipsec] draft-ietf-hip-cert-04 review Ari Keranen
- Re: [Hipsec] draft-ietf-hip-cert-04 review Samu Varjonen
- Re: [Hipsec] draft-ietf-hip-cert-04 review Samu Varjonen
- Re: [Hipsec] draft-ietf-hip-cert-04 review Ari Keranen