IETF Logo Mail Archive

RE: draft-santesson-tls-ume Last Call comment

Jeffrey Hutzelman <jhutz@cmu.edu> Wed, 05 April 2006 15:01 UTC

Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1FR9VK-0000F6-4j; Wed, 05 Apr 2006 11:01:06 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FR9VJ-0000F1-CK for ietf@ietf.org; Wed, 05 Apr 2006 11:01:05 -0400
Received: from crunchberry.srv.cs.cmu.edu ([128.2.203.75]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FR9VI-0001oK-4J for ietf@ietf.org; Wed, 05 Apr 2006 11:01:05 -0400
Received: from mariner.pc.cs.cmu.edu (IDENT:U2FsdGVkX1+mtAw1w72VuYOrOc+7EZqR9Df1da4O34o@MARINER.PC.CS.CMU.EDU [128.2.200.130]) (authenticated bits=0) by crunchberry.srv.cs.cmu.edu (8.13.6/8.13.6) with ESMTP id k35F113Q007115 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 5 Apr 2006 11:01:02 -0400 (EDT)
Date: Wed, 05 Apr 2006 11:01:01 -0400
From: Jeffrey Hutzelman <jhutz@cmu.edu>
To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>, Russ Housley <housley@vigilsec.com>
Message-ID: <2A06AF63F27DFF416657AB24@mariner.pc.cs.cmu.edu>
In-Reply-To: <7.0.1.0.0.20060326134935.036d6900@OpenLDAP.org>
References: <BF9309599A71984CAC5BAC5ECA6299440473B5F7@EUR-MSG-11.europe.corp. microsoft.com> <7.0.1.0.0.20060321111424.0356b1f8@OpenLDAP.org> <7.0.0.16.2.20060322010039.06099048@vigilsec.com> <7.0.1.0.0.20060322084616.03574628@OpenLDAP.org> <7.0.0.16.2.20060322110739.0593cc50@vigilsec.com> <7.0.1.0.0.20060326134935.036d6900@OpenLDAP.org>
Originator-Info: login-token=Mulberry:01+ZaecWP+E+VF4RbyLBTO4JAI1ZyAyhdmC8zWLxY=; token_authority=postmaster@andrew.cmu.edu
X-Mailer: Mulberry/3.1.6 (Linux/x86)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-Spam-Score: 0.0 (/)
X-Scan-Signature: bb8f917bb6b8da28fc948aeffb74aa17
Cc: ietf@ietf.org
Subject: RE: draft-santesson-tls-ume Last Call comment
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Errors-To: ietf-bounces@ietf.org


On Sunday, March 26, 2006 02:48:17 PM -0800 "Kurt D. Zeilenga" 
<Kurt@OpenLDAP.org> wrote:

> I note that SASLprep is case-insensitive and hence may not
> be appropriate for the user portion of a UPN.

I think this is a type.  SASLprep is case-preserving, and hence may
not be appropriate for the user portion of a UPN, if the latter are
intended to be case-insensitive.


> I also think it
> odd to allow both toUnicode and toASCII domain component
> forms on the wire.

So do I.



> (I recommend the latter).

Why?  The toASCII form was designed to allow IDN's to be encoded for use in 
protocol fields which are very restrictive about what octet strings they 
can carry; in particular, label fields in the DNS wire protocol.  Why do I 
keep seeing people who insist on using that inefficient encoding in 
protocol slots which are perfectly capable of carrying UTF-8?  That's very 
much like suggesting the use of base-32 encoding in an 8-bit-clean field.

Use of toASCII is appropriate for _existing_ IDN-unaware uses of domain 
names.  I wish someone would explain to me why so many people want to use 
it for IDN-aware uses in new protocols.

-- Jeff

_______________________________________________
Ietf mailing list
Ietf@ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email