Re: [jose] Stephen Farrell's Discuss on draft-ietf-jose-json-web-key-33: (with DISCUSS and COMMENT)

Stephen Farrell <stephen.farrell@cs.tcd.ie> Mon, 06 October 2014 21:24 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC71A1A8A20; Mon, 6 Oct 2014 14:24:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.686
X-Spam-Level:
X-Spam-Status: No, score=-2.686 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.786] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X4-uUi2mrofd; Mon, 6 Oct 2014 14:24:27 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) by ietfa.amsl.com (Postfix) with ESMTP id 35FB11A6F52; Mon, 6 Oct 2014 14:24:27 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 4B16EBE09; Mon, 6 Oct 2014 22:24:26 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vlv6u1-WcVN1; Mon, 6 Oct 2014 22:24:24 +0100 (IST)
Received: from [10.87.48.8] (unknown [86.41.57.167]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id AD318BE07; Mon, 6 Oct 2014 22:24:24 +0100 (IST)
Message-ID: <54330888.4090605@cs.tcd.ie>
Date: Mon, 06 Oct 2014 22:24:24 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.1.2
MIME-Version: 1.0
To: Jim Schaad <ietf@augustcellars.com>, 'Ted Lemon' <Ted.Lemon@nominum.com>
References: <20141002111501.6046.52416.idtracker@ietfa.amsl.com> <4E1F6AAD24975D4BA5B16804296739439BAF0C1E@TK5EX14MBXC286.redmond.corp.microsoft.com> <00c601cfe1a4$15d32900$41797b00$@augustcellars.com> <7ABF79CB-61C8-490B-A727-465530222F0B@nominum.com> <00dd01cfe1aa$eba7db10$c2f79130$@augustcellars.com>
In-Reply-To: <00dd01cfe1aa$eba7db10$c2f79130$@augustcellars.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/jose/f5c-zlk4rIU0P5DNYtEJGzxGAgo
Cc: 'Mike Jones' <Michael.Jones@microsoft.com>, jose-chairs@tools.ietf.org, draft-ietf-jose-json-web-key@tools.ietf.org, 'The IESG' <iesg@ietf.org>, jose@ietf.org
Subject: Re: [jose] Stephen Farrell's Discuss on draft-ietf-jose-json-web-key-33: (with DISCUSS and COMMENT)
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Oct 2014 21:24:28 -0000


On 06/10/14 22:17, Jim Schaad wrote:
> 
> 
>> -----Original Message-----
>> From: Ted Lemon [mailto:Ted.Lemon@nominum.com]
>> Sent: Monday, October 06, 2014 1:34 PM
>> To: Jim Schaad
>> Cc: Mike Jones; Stephen Farrell; The IESG; jose-chairs@tools.ietf.org;
> draft-
>> ietf-jose-json-web-key@tools.ietf.org; jose@ietf.org
>> Subject: Re: [jose] Stephen Farrell's Discuss on
> draft-ietf-jose-json-web-key-
>> 33: (with DISCUSS and COMMENT)
>>
>> On Oct 6, 2014, at 4:28 PM, Jim Schaad <ietf@augustcellars.com> wrote:
>>> I worry that if we starting providing guidance to DNS names, then we
>>> need to worry about the I18N implications.  I don't remember if these
>>> are both case sensitive and easy to do the case conversion on.
>>
>> Isn't this a solved problem?   You convert to the unicode presentation and
>> then convert to the canonical case as defined in the unicode standard.
> The
>> worst case scenario is that you encounter some script where this rule
> doesn't
>> work, and that script is then in the position that all scripts are in now.
> 
> It may be it is, however this makes an assumption that clients are up on how
> to do this.  I.e. that JavaScript is going to do it right when I do a
> strlower function on a string.  I don't know that this is really the case.
> I would hope so but am unsure.

So we're talking about key ids here. In most case where those would
use DNS names, the code that creates the key id would know what its
doing and dumber code would be presented with the key id and would
not have to do the tolower().

So I would say its safe to add something like "When creating a key id,
if the code doing so is aware that it is dealing with a DNS name, then
that code should tolower() the DNS name before including those bytes
in the key id."

S.


> 
> _______________________________________________
> jose mailing list
> jose@ietf.org
> https://www.ietf.org/mailman/listinfo/jose
>