Re: draft-ietf-dnsext-dnssec-gost
Basil Dolmatov <dol@cryptocom.ru> Sat, 13 February 2010 17:10 UTC
Return-Path: <dol@cryptocom.ru>
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 334A43A770D for <ietf@core3.amsl.com>; Sat, 13 Feb 2010 09:10:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.568
X-Spam-Level: *
X-Spam-Status: No, score=1.568 tagged_above=-999 required=5 tests=[AWL=1.239, BAYES_00=-2.599, HELO_EQ_RU=0.595, HOST_EQ_RU=0.875, HTML_MESSAGE=0.001, MIME_HTML_ONLY=1.457]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yv0QbXS-Q8Pe for <ietf@core3.amsl.com>; Sat, 13 Feb 2010 09:10:30 -0800 (PST)
Received: from mx.cryptocom.ru (mx.cryptocom.ru [89.188.97.107]) by core3.amsl.com (Postfix) with ESMTP id 3D5F23A7708 for <ietf@ietf.org>; Sat, 13 Feb 2010 09:10:28 -0800 (PST)
Received: from [192.168.63.201] (ppp91-78-16-121.pppoe.mtu-net.ru [91.78.16.121]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx.cryptocom.ru (Postfix) with ESMTP id 5FF95465D9; Sat, 13 Feb 2010 20:11:45 +0300 (MSK)
Message-ID: <4B76DD50.5070404@cryptocom.ru>
Date: Sat, 13 Feb 2010 20:11:44 +0300
From: Basil Dolmatov <dol@cryptocom.ru>
User-Agent: Thunderbird 2.0.0.23 (X11/20090817)
MIME-Version: 1.0
To: mrex@sap.com
Subject: Re: draft-ietf-dnsext-dnssec-gost
References: <201002130251.o1D2pjGt012896@fs4113.wdf.sap.corp>
In-Reply-To: <201002130251.o1D2pjGt012896@fs4113.wdf.sap.corp>
Content-Type: text/html; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Cc: ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Feb 2010 17:10:38 -0000
Both statement are right.Basil Dolmatov wrote:Martin Rex пишет:Whether and how much the -1994 version is deprecated is also a complete mystery.It is written in the text of GOST -2001Which document are you refering to when you say "text of GOST -2001" ? This document: http://tools.ietf.org/html/draft-dolmatov-cryptocom-gost34102001-08" rel="nofollow">http://tools.ietf.org/html/draft-dolmatov-cryptocom-gost34102001-08 says section 1.1: 4. GOST R 34.10-2001 replaces GOST R 34.10-94. section 1,2: GOST R 34.10-2001 is developed to replace GOST R 34.10-94.
Why?2. GOST R 34.10-2001 was accepted and activated by the Act 380-st of12.09.2001 issued by the Russian federal committee for standards. ... 4. GOST R 34.10-2001 replaces GOST R 34.10-94. So, GOST -1994 for digital signature _is_ deprecated and replaced from 12.09.2001. The transition period is not stated explicitly because it is obvious from standard procedure of certification in Russia. No certificate can be issued for any hardware/software using -1994 algorithm after 12.09.2001 and the certification period is 3 years. So, after 12.09.2004 there can be no operating hardware/software using -1994 algorithm.That information OUGHT to have been added to rfc-4357 and it ought to be added to draft-dolmatov-cryptocom-gost34102001-08.
Now is 2010, and all implementations of -1994 standard have been completely phased out more than 5 years ago.
This statement was inserted following the advice of Russ Housley.I just found the following paragraph in the Copyright Notice of http://tools.ietf.org/html/draft-dolmatov-cryptocom-gost34102001-08" rel="nofollow">http://tools.ietf.org/html/draft-dolmatov-cryptocom-gost34102001-08 on the title page which irritates me: This document may not be modified, and derivative works of it may not be created, except to format it for publication as an RFC or to translate it into languages other than English. Is there a new trend to have the IETF rubber stamp documents as is? To me, this statement precludes editorial changes/corrections, which doesn't sound right. I boldly assumed the original name of the IETF documents "RFC" mean "Request For Comment", in the form that the community was asked for feedback (request for clarifications, correction or changes) before document was published. At least this is how I understand "The Tao of the IETFhttp://tools.ietf.org/html/rfc4677#section-8.1AlthoughtheIETFmaynothave" rel="nofollow">" http://tools.ietf.org/html/rfc4677#section-8.1 Although the IETF may not have "change control" for the technical contents described in informational document, a complete absence of change control of document structure, clarity, detail of explanation and editorial issues would come as a suprise to me...
The main reason for that was that this text is a _translation_ of the text of official Russian state standard.
At the moment of its creation this text was thoroughly checked with authors of original standard for consistency.
Any editorial changes/corrections could diverge the translation from the original, which is undesirable.
I agreed with this Russ's reasoning.
I do understand that the structure and the style of these documents are unfamiliar to the significant part of community, but this is because of the fact it is _a_translation_ of official standard text.
It is not a retelliing or compilation, it is a _translation_.
And it is intended to exist as a reference to the origin, when creating further IETF documents, which will be pure IETF documents and will be commented and edited when necessary.
-Martin
dol@
- Re: draft-ietf-dnsext-dnssec-gost Paul Hoffman
- Re: draft-ietf-dnsext-dnssec-gost Olafur Gudmundsson
- draft-ietf-dnsext-dnssec-gost Stephen Kent
- Re: draft-ietf-dnsext-dnssec-gost Andrew Sullivan
- Re: draft-ietf-dnsext-dnssec-gost Paul Hoffman
- Re: draft-ietf-dnsext-dnssec-gost Richard L. Barnes
- Re: draft-ietf-dnsext-dnssec-gost Martin Rex
- Re: draft-ietf-dnsext-dnssec-gost Michael Dillon
- Re: draft-ietf-dnsext-dnssec-gost Sean Turner
- Re: draft-ietf-dnsext-dnssec-gost Martin Rex
- Re: draft-ietf-dnsext-dnssec-gost Sean Turner
- Re: draft-ietf-dnsext-dnssec-gost Basil Dolmatov
- Re: draft-ietf-dnsext-dnssec-gost Basil Dolmatov
- Re: draft-ietf-dnsext-dnssec-gost Stephen Farrell
- Re: draft-ietf-dnsext-dnssec-gost Andrew Sullivan
- Re: draft-ietf-dnsext-dnssec-gost Stephen Kent
- Re: draft-ietf-dnsext-dnssec-gost Martin Rex
- Re: draft-ietf-dnsext-dnssec-gost David Conrad
- Re: draft-ietf-dnsext-dnssec-gost Edward Lewis
- Re: draft-ietf-dnsext-dnssec-gost Sean Turner
- Re: draft-ietf-dnsext-dnssec-gost Olafur Gudmundsson
- Re: draft-ietf-dnsext-dnssec-gost Martin Rex
- Re: draft-ietf-dnsext-dnssec-gost Basil Dolmatov
- Re: draft-ietf-dnsext-dnssec-gost Basil Dolmatov
- Re: draft-ietf-dnsext-dnssec-gost ned+ietf
- Re: draft-ietf-dnsext-dnssec-gost Martin Rex
- Re: draft-ietf-dnsext-dnssec-gost Stephen Kent
- Re: draft-ietf-dnsext-dnssec-gost Stephen Kent
- RE: draft-ietf-dnsext-dnssec-gost Rex, Martin
- Re: draft-ietf-dnsext-dnssec-gost Spencer Dawkins
- Re: draft-ietf-dnsext-dnssec-gost Martin Rex
- Re: draft-ietf-dnsext-dnssec-gost Mark Andrews
- Re: draft-ietf-dnsext-dnssec-gost Martin Rex
- Re: draft-ietf-dnsext-dnssec-gost Olafur Gudmundsson
- Re: draft-ietf-dnsext-dnssec-gost Olafur Gudmundsson
- Re: draft-ietf-dnsext-dnssec-gost Basil Dolmatov
- Re: draft-ietf-dnsext-dnssec-gost Andrew Sullivan
- Re: draft-ietf-dnsext-dnssec-gost Martin Rex
- Re: draft-ietf-dnsext-dnssec-gost Ran Atkinson
- Re: draft-ietf-dnsext-dnssec-gost Phillip Hallam-baker
- Re: draft-ietf-dnsext-dnssec-gost Phillip Hallam-baker
- Re: draft-ietf-dnsext-dnssec-gost Olafur Gudmundsson