Re: [KEYPROV] SASL stringprep Was: FW: New Version Notification - draft-ietf-keyprov-dskpp-13.txt
Phillip Hallam-Baker <hallam@gmail.com> Wed, 08 September 2010 02:04 UTC
Return-Path: <hallam@gmail.com>
X-Original-To: keyprov@core3.amsl.com
Delivered-To: keyprov@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id ABFCB3A6AF6 for <keyprov@core3.amsl.com>; Tue, 7 Sep 2010 19:04:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.667
X-Spam-Level:
X-Spam-Status: No, score=-1.667 tagged_above=-999 required=5 tests=[AWL=-0.068, BAYES_00=-2.599, J_BACKHAIR_11=1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dyhs-asJnF13 for <keyprov@core3.amsl.com>; Tue, 7 Sep 2010 19:04:40 -0700 (PDT)
Received: from mail-iw0-f172.google.com (mail-iw0-f172.google.com [209.85.214.172]) by core3.amsl.com (Postfix) with ESMTP id 56F493A6995 for <keyprov@ietf.org>; Tue, 7 Sep 2010 19:04:40 -0700 (PDT)
Received: by iwn3 with SMTP id 3so6730600iwn.31 for <keyprov@ietf.org>; Tue, 07 Sep 2010 19:05:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=3NjT+mIHnsslClN0QXtY30zEdOEfnJMgdCDgIMQWpoE=; b=NfDYC0HXzWSWjWV8mav1CBLcEOFWfMS3HYDCmHaCQy9eqr7w/N3co8/yGR3fSNTj65 SUQQaqzYfALKvCw8G2J9lkncAI5WKXx9AVBIUv6pWcWgF5/leAtpg7SGgpX9BujIM8dR 1/BYT7fuR3akHkHNdQNGnHtyW0sJkVxxCRM1k=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=o88S10qoSWDjmR1qElHBVWVmfpql/wkLSfkvTGKLj/PvxOKXZ/18NZKID71WbQX6ry g2Ys3dHNeNYzqlc9jygErp0FAGS+L5NKWfx8uF8CZWl25eRs5TErCsSJsieouJf5uGKO KlOzYf2uF49HlYSGZo0UvnkgObfc5vJL86owQ=
MIME-Version: 1.0
Received: by 10.231.152.143 with SMTP id g15mr8816731ibw.76.1283911508343; Tue, 07 Sep 2010 19:05:08 -0700 (PDT)
Received: by 10.231.35.70 with HTTP; Tue, 7 Sep 2010 19:05:08 -0700 (PDT)
In-Reply-To: <4C868587.1040202@telia.com>
References: <9ED76AB595E4944BB33D8998DE448D110A9611C5@CORPUSMX10B.corp.emc.com> <AANLkTin6qnLGKkHd0sM2Sd0UpBF4fRx4b4-AORN+_PWe@mail.gmail.com> <4C8469D6.4030004@telia.com> <AANLkTikGjyzzSgY=PKSTLYHZB567pbQP9gXcUw800KNK@mail.gmail.com> <4C868587.1040202@telia.com>
Date: Tue, 07 Sep 2010 22:05:08 -0400
Message-ID: <AANLkTimCwC=if_P9LHCjcunkp8QrcDe4t1VdCMSk6MYf@mail.gmail.com>
From: Phillip Hallam-Baker <hallam@gmail.com>
To: Anders Rundgren <anders.rundgren@telia.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: keyprov@ietf.org
Subject: Re: [KEYPROV] SASL stringprep Was: FW: New Version Notification - draft-ietf-keyprov-dskpp-13.txt
X-BeenThere: keyprov@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Provisioning of Symmetric Keys \(keyprov\)" <keyprov.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/keyprov>, <mailto:keyprov-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/keyprov>
List-Post: <mailto:keyprov@ietf.org>
List-Help: <mailto:keyprov-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/keyprov>, <mailto:keyprov-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Sep 2010 02:04:41 -0000
It was not my request. It was a request from the IESG that is changed with worrying about consistency across the specs. It does seem better to me to have one mechanism in use than two different ones for different specs. But it is a material change so I thought I should notify the group to see if anyone had a reason to do it differently. On Tue, Sep 7, 2010 at 2:33 PM, Anders Rundgren <anders.rundgren@telia.com> wrote: > Phil, > > It seems that your request for SASL stringrep was honored in DSKPP > so this is not a topic anymore. > >> You know of a token where you can input unicode sequences direct? > > In SKS/KeyGen2 all string data is assumed to be in UTF-8 which can be > inputted from any computer and which has a defined byte-representation. > > So yes, SKS tokens *do* Unicode although they do not really know > what Unicode is. > > If UTF-8 doesn't work with Chinese, Arabic, or Japanese without an > extra layer of interpretation it IMO means tha "XML failed" since it > by default is supposed to be coded in UTF-8. > > Anders > > >> >> >> >> On Mon, Sep 6, 2010 at 12:11 AM, Anders Rundgren >> <anders.rundgren@telia.com> wrote: >>> >>> Thanx Philip! >>> >>> I had never heard about this before. There is always something new to >>> learn :-) >>> >>> http://www.ietf.org/rfc/rfc4013.txt >>> >>> Personally I would reject a scheme where a password in UTF-8 like >>> >>> I<U+00AD>X >>> >>> is supposed to be translated to >>> >>> IX >>> >>> The motives may be good but I think it creates more problems >>> than it solves. For KeyGen2/SKS I will absolutely not adopt this, >>> that's for sure. For encrypted passwords it would mean that the >>> token would do this translation (?) and that's a really horrible idea. >>> >>> Anders >>> >>> >>> >>> >>> On 2010-09-05 23:40, Phillip Hallam-Baker wrote: >>>> >>>> Thanks for doing this Andrea. >>>> >>>> One substantive change to the protocol that should be noted is that >>>> SASL stringprep is now used for UNICODE passwords. I know we discussed >>>> this but I cannot remember if anyone cared. >>>> >>>> Some members of the IESG did care, they thought that consistency was >>>> important and in the absence of an actual reason not to use SASL >>>> stringprep, I agree. >>>> >>>> Is there anyone who thinks this is an issue? >>>> >>>> >>>> On Fri, Sep 3, 2010 at 1:56 PM, <andrea.doherty@rsa.com> wrote: >>>>> >>>>> -----Original Message----- >>>>> From: Internet-Draft@ietf.org [mailto:Internet-Draft@ietf.org] >>>>> Sent: Friday, September 03, 2010 1:45 PM >>>>> To: keyprov-chairs@tools.ietf.org; >>>>> draft-ietf-keyprov-dskpp@tools.ietf.org; tim.polk@nist.gov; >>>>> alexey.melnikov@isode.com >>>>> Subject: New Version Notification - draft-ietf-keyprov-dskpp-13.txt >>>>> >>>>> New version (-13) has been submitted for >>>>> draft-ietf-keyprov-dskpp-13.txt. >>>>> http://www.ietf.org/internet-drafts/draft-ietf-keyprov-dskpp-13.txt >>>>> >>>>> >>>>> Diff from previous version: >>>>> http://tools.ietf.org/rfcdiff?url2=draft-ietf-keyprov-dskpp-13 >>>>> >>>>> IETF Secretariat. >>>>> >>>>> _______________________________________________ >>>>> KEYPROV mailing list >>>>> KEYPROV@ietf.org >>>>> https://www.ietf.org/mailman/listinfo/keyprov >>>>> >>>> >>> _______________________________________________ >>> KEYPROV mailing list >>> KEYPROV@ietf.org >>> https://www.ietf.org/mailman/listinfo/keyprov >>> >> >> >> > > -- Website: http://hallambaker.com/
- [KEYPROV] FW: New Version Notification - draft-ie… andrea.doherty
- Re: [KEYPROV] FW: New Version Notification - draf… Phillip Hallam-Baker
- [KEYPROV] SASL stringprep Was: FW: New Version No… Anders Rundgren
- Re: [KEYPROV] SASL stringprep Was: FW: New Versio… Phillip Hallam-Baker
- Re: [KEYPROV] SASL stringprep Was: FW: New Versio… Anders Rundgren
- Re: [KEYPROV] SASL stringprep Was: FW: New Versio… Phillip Hallam-Baker