Re: [ire] New versions of data escrow drafts

Francisco Obispo <fobispo@isc.org> Thu, 04 April 2013 20:33 UTC

Return-Path: <fobispo@isc.org>
X-Original-To: ire@ietfa.amsl.com
Delivered-To: ire@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5689221F8BA6 for <ire@ietfa.amsl.com>; Thu, 4 Apr 2013 13:33:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nmxT6m0Z-rbW for <ire@ietfa.amsl.com>; Thu, 4 Apr 2013 13:33:54 -0700 (PDT)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) by ietfa.amsl.com (Postfix) with ESMTP id CE1E521F8B98 for <ire@ietf.org>; Thu, 4 Apr 2013 13:33:54 -0700 (PDT)
Received: from mx.pao1.isc.org (localhost [127.0.0.1]) by mx.pao1.isc.org (Postfix) with ESMTP id 4B2EEC94DE; Thu, 4 Apr 2013 20:33:49 +0000 (UTC) (envelope-from fobispo@isc.org)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=isc.org; s=dkim2012; t=1365107634; bh=bLmACkx5Y9QYmpldipKrHiYI9GUoryVKTZH2LkdkIJI=; h=Subject:From:In-Reply-To:Date:Cc:References:To; b=S+wUoWmBmIF+IrrggWa7PsV0VC7/ec+RdwCWPaTzWFlOt8zX2E0+P0xwRnNqTlTeY a0/pBzeJydJ/DknLFzm+QulvFoCPp7M0wYizvzyEDTdlGKhg6uNPYWS6s5YILhgy6O Q8ege6f3YpD7duG8QcZHtT7gP49wgWli06Lm2gL4=
Received: from bikeshed.isc.org (bikeshed.isc.org [IPv6:2001:4f8:3:d::19]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "mail.isc.org", Issuer "RapidSSL CA" (not verified)) by mx.pao1.isc.org (Postfix) with ESMTPS; Thu, 4 Apr 2013 20:33:49 +0000 (UTC) (envelope-from fobispo@isc.org)
Received: from [IPv6:2001:4f8:3:64:744c:6cae:7881:3c84] (unknown [IPv6:2001:4f8:3:64:744c:6cae:7881:3c84]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (Client did not present a certificate) by bikeshed.isc.org (Postfix) with ESMTPSA id 3F7DB216C43; Thu, 4 Apr 2013 20:33:49 +0000 (UTC) (envelope-from fobispo@isc.org)
Content-Type: text/plain; charset=windows-1252
Mime-Version: 1.0 (Mac OS X Mail 6.3 \(1503\))
From: Francisco Obispo <fobispo@isc.org>
In-Reply-To: <CD832052.F908%gustavo.lozano@icann.org>
Date: Thu, 4 Apr 2013 13:33:48 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <612A863C-536F-4B1D-BB02-6727E1A9D517@isc.org>
References: <CD832052.F908%gustavo.lozano@icann.org>
To: Gustavo Lozano <gustavo.lozano@icann.org>
X-Mailer: Apple Mail (2.1503)
X-DCC--Metrics: post.isc.org; whitelist
Cc: "ire@ietf.org" <ire@ietf.org>
Subject: Re: [ire] New versions of data escrow drafts
X-BeenThere: ire@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Internet Registration Escrow discussion list." <ire.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ire>, <mailto:ire-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ire>
List-Post: <mailto:ire@ietf.org>
List-Help: <mailto:ire-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ire>, <mailto:ire-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Apr 2013 20:33:55 -0000

Why do you want to put it in a tarball?

GPG will encrypt+compress the data, leaving you with a .ryde file that already meets the criteria:

Example:

-rw-r--r-- 1 fobispo fobispo   490 Mar 21 05:05 FOO_2013-03-20_full_S1_R0.asc
-rw-r--r-- 1 fobispo fobispo  3050 Mar 21 05:03 FOO_2013-03-20_full_S1_R0.ryde
-rw-r--r-- 1 fobispo fobispo 13379 Mar 20 01:21 FOO_2013-03-20_full_S1_R0.xml

Now, we could have a tarball with the .ryde and the .asc files to avoid transferring the two files, or, we could encrypt+sign+compress the same file, thus combining the signature with the content.

Francisco




On Apr 4, 2013, at 12:19 PM, Gustavo Lozano <gustavo.lozano@icann.org>; wrote:

> gustavolozano$ ls -lh example_2009-08-02_full_S1_R0.xml
> 15M example_2009-08-02_full_S1_R0.xml
>  
> gustavolozano$ tar -tvf example_2009-08-02_full_S1_R0.tar
> example_2009-08-02_full_S1_R0.xml
>  
> The tarball is encrypted and optionally compressed by an OpenPGP utility that conforms to RFC4880:
>  
> gustavolozano$ gpg --recipient dataescrowagent --output example_2009-08-02_full_S1_R0.ryde --encrypt example_2009-08-02_full_S1_R0.tar
>  
> gustavolozano$ ls -lh example_2009-08-02_full_S1_R0.ryde
> 16K example_2009-08-02_full_S1_R0.ryde
>  
> A signature file for the .ryde file is generated:
>  
> gustavolozano$ gpg --output example_2009-08-02_full_S1_R0.sig --detach-sig example_2009-08-02_full_S1_R0.ryde
>  

Francisco Obispo 
Director of Applications and Services - ISC
email: fobispo@isc.org
Phone: +1 650 423 1374 || INOC-DBA *3557* NOC
PGP KeyID = B38DB1BE