IETF Logo Mail Archive

Re: Last Call: 'TLS User Mapping Extension' to Proposed Standard

Jeffrey Hutzelman <jhutz@cmu.edu> Tue, 04 April 2006 18:26 UTC

Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1FQqE7-0001HU-4b; Tue, 04 Apr 2006 14:26:03 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FQqE5-0001GV-PA for ietf@ietf.org; Tue, 04 Apr 2006 14:26:01 -0400
Received: from crunchberry.srv.cs.cmu.edu ([128.2.203.75]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FQqE4-0002dF-GU for ietf@ietf.org; Tue, 04 Apr 2006 14:26:01 -0400
Received: from mariner.pc.cs.cmu.edu (IDENT:U2FsdGVkX1/pI6qD4JnVgOOn5/LyIiBvomcU8BygMv8@MARINER.PC.CS.CMU.EDU [128.2.200.130]) (authenticated bits=0) by crunchberry.srv.cs.cmu.edu (8.13.6/8.13.6) with ESMTP id k34IPfOM006206 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 4 Apr 2006 14:25:47 -0400 (EDT)
Date: Tue, 04 Apr 2006 14:25:38 -0400
From: Jeffrey Hutzelman <jhutz@cmu.edu>
To: Simon Josefsson <jas@extundo.com>, ietf@ietf.org
Message-ID: <8612257137558CFC942143D5@mariner.pc.cs.cmu.edu>
In-Reply-To: <877j6borbv.fsf@latte.josefsson.org>
References: <E1FOykl-00006J-6s@stiedprstage1.ietf.org> <877j6borbv.fsf@latte.josefsson.org>
Originator-Info: login-token=Mulberry:01X0T/MsmsdKarj3ezksIvofa2Nl3meHjMuS2XlcQ=; token_authority=postmaster@andrew.cmu.edu
X-Mailer: Mulberry/3.1.6 (Linux/x86)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-Spam-Score: 0.0 (/)
X-Scan-Signature: ea4ac80f790299f943f0a53be7e1a21a
Cc:
Subject: Re: Last Call: 'TLS User Mapping Extension' to Proposed Standard
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Errors-To: ietf-bounces@ietf.org


On Thursday, March 30, 2006 06:00:36 PM +0200 Simon Josefsson 
<jas@extundo.com> wrote:

> http://www.ietf.org/internet-drafts/draft-santesson-tls-ume-04.txt says:
>
>    This document does not specify how the server stores the
>    user_principal_name, or how exactly it might be used to locate a
>    certificate.  For instance, it might be appropriate to do a case-
>    insensitive lookup.  It is RECOMMENDED that the server processes the
>    user_principal_name with a stringprep profile [N7] appropriate for
>    the identity in question, such as Nameprep [N8] for the portion
>    domain portion of UPN, SASLprep [N9] for the user portion of the UPN
>    and stringprep appendix B.3 [N7] as mapping table for case folding.
>
> Given that the first and second sentence make it clear that the use of
> StringPrep is not required, I suggest using MAY instead of RECOMMENDED
> in the third sentence.  RECOMMENDED is the same as SHOULD according to
> RFC 2119, and is a fairly strong recommendation.  Its use seem
> misplaced here.

Right.  RECOMMENDED does not mean "we think this is a good idea".  It means 
something more like "you have to do this or have a good reason not to".


> It may be better to avoid RFC 2119 language completely here, because
> the entire paragraph is merely an example of what you can do.

Agree.  RFC2119 language has no place in a "for instance".

_______________________________________________
Ietf mailing list
Ietf@ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email