Re: draft-ietf-dnsext-dnssec-gost

Mark Andrews <marka@isc.org> Mon, 15 February 2010 21:30 UTC

Return-Path: <marka@isc.org>
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D9D1128C1F1 for <ietf@core3.amsl.com>; Mon, 15 Feb 2010 13:30:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.527
X-Spam-Level:
X-Spam-Status: No, score=-2.527 tagged_above=-999 required=5 tests=[AWL=0.072, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RFLJYgOG6feO for <ietf@core3.amsl.com>; Mon, 15 Feb 2010 13:30:12 -0800 (PST)
Received: from farside.isc.org (farside.isc.org [IPv6:2001:4f8:3:bb::5]) by core3.amsl.com (Postfix) with ESMTP id BE45228C108 for <ietf@ietf.org>; Mon, 15 Feb 2010 13:30:11 -0800 (PST)
Received: from drugs.dv.isc.org (drugs.dv.isc.org [IPv6:2001:470:1f00:820:214:22ff:fed9:fbdc]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "drugs.dv.isc.org", Issuer "ISC CA" (not verified)) by farside.isc.org (Postfix) with ESMTP id B926BE601C; Mon, 15 Feb 2010 21:31:41 +0000 (UTC) (envelope-from marka@isc.org)
Received: from drugs.dv.isc.org (localhost [127.0.0.1]) by drugs.dv.isc.org (8.14.3/8.14.3) with ESMTP id o1FLVZNX096905; Tue, 16 Feb 2010 08:31:36 +1100 (EST) (envelope-from marka@drugs.dv.isc.org)
Message-Id: <201002152131.o1FLVZNX096905@drugs.dv.isc.org>
To: mrex@sap.com
From: Mark Andrews <marka@isc.org>
References: <201002151420.o1FEKCMx024227@fs4113.wdf.sap.corp>
Subject: Re: draft-ietf-dnsext-dnssec-gost
In-reply-to: Your message of "Mon, 15 Feb 2010 15:20:12 BST." <201002151420.o1FEKCMx024227@fs4113.wdf.sap.corp>
Date: Tue, 16 Feb 2010 08:31:35 +1100
Sender: marka@isc.org
Cc: ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Feb 2010 21:30:14 -0000

In message <201002151420.o1FEKCMx024227@fs4113.wdf.sap.corp>, Martin Rex writes
:
> OK, I'm sorry.  For the DNSsec GOST signature I-D, the default/prefered (?)
> parameter sets are explicitly listed in last paragraph of section 2
> of draft-ietf-dnsext-dnssec-gost-06.  However, it does _NOT_ say what to
> do if GOST R34.10-2001 signatures with other parameter sets are encountered.

Since each end adds the parameters and they are NOT transmitted this
can never happen.  If one end was to change the parameters then nothing
would validate.

Mark
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org