Re: [MMUSIC] WGLC on draft-ietf-mmusic-dtls-sdp-06.txt - altSubjectName
Christer Holmberg <christer.holmberg@ericsson.com> Thu, 25 February 2016 09:38 UTC
Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9763F1A88FA for <mmusic@ietfa.amsl.com>; Thu, 25 Feb 2016 01:38:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.601
X-Spam-Level:
X-Spam-Status: No, score=-3.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_111=0.6, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D3HUGQSyqWy2 for <mmusic@ietfa.amsl.com>; Thu, 25 Feb 2016 01:38:36 -0800 (PST)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1380A1A889F for <mmusic@ietf.org>; Thu, 25 Feb 2016 01:38:35 -0800 (PST)
X-AuditID: c1b4fb25-f794e6d000003d15-c9-56cecb9a6dcf
Received: from ESESSHC021.ericsson.se (Unknown_Domain [153.88.183.81]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id 2A.79.15637.A9BCEC65; Thu, 25 Feb 2016 10:38:34 +0100 (CET)
Received: from ESESSMB209.ericsson.se ([169.254.9.73]) by ESESSHC021.ericsson.se ([153.88.183.81]) with mapi id 14.03.0248.002; Thu, 25 Feb 2016 10:38:33 +0100
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Martin Thomson <martin.thomson@gmail.com>
Thread-Topic: [MMUSIC] WGLC on draft-ietf-mmusic-dtls-sdp-06.txt - altSubjectName
Thread-Index: AdFvrzAFSQUZkavrSmmyb2DxIrHQUg==
Date: Thu, 25 Feb 2016 09:38:33 +0000
Message-ID: <7594FB04B1934943A5C02806D1A2204B37E4116F@ESESSMB209.ericsson.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.148]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprEIsWRmVeSWpSXmKPExsUyM2J7oO6s0+fCDP79ELRY8focu8X+xeeZ LbZOFbK4duYfo8XU5Y9ZLFZsOMDqwObx9/0HJo+ds+6yeyzYVOqxZMlPJo/Jj9uYPdqe3WEP YIvisklJzcksSy3St0vgypi14TJ7wQXOikefVzE2MG7g7GLk5JAQMJG4e28qK4QtJnHh3nq2 LkYuDiGBw4wSXY1/mSGcxYwSJ+9sYOli5OBgE7CQ6P6nDdIgIqArsejsA3aQGmaBx4wS79fc BasRFgiSeN9fCmKKCARLPH2sA1GuJzG1eQY7SJhFQFViyuQckDCvgK9Ew93TYCcwAp3w/dQa JhCbWUBc4taT+UwQpwlILNlznhnCFpV4+fgf1MlKEo1LnrCCjGQW0JRYv0sfolVRYkr3Q3aI 8YISJ2c+YZnAKDILydRZCB2zkHTMQtKxgJFlFaNocWpxUm66kbFealFmcnFxfp5eXmrJJkZg TB3c8lt1B+PlN46HGAU4GJV4eDf8PRsmxJpYVlyZe4hRgoNZSYTXcu+5MCHelMTKqtSi/Pii 0pzU4kOM0hwsSuK8a5zXhwkJpCeWpGanphakFsFkmTg4pRoYYy9cqfVqbr2o9PpTr/vRm43t YX4tky7e0Ni1543oWY0kz//nTxoYX5b8GnvyyQH21CZFrbXLf9lMCOG7mhpxmOf/0mm3QrQ+ fT0kyHzbKM5za3eIw41n2YzXV26bZ+EpxP1ifsSL7j1rdsXGvuWfl2qRcuOkJuP/ngWHc2cK 1gtJ6T/+pLfZSImlOCPRUIu5qDgRAGx8sYClAgAA
Archived-At: <http://mailarchive.ietf.org/arch/msg/mmusic/Qly27hSyL0pDz590uJ2OXIp7TYc>
Cc: Jonathan Lennox <jonathan@vidyo.com>, "mmusic@ietf.org" <mmusic@ietf.org>, Paul Kyzivat <pkyzivat@alum.mit.edu>
Subject: Re: [MMUSIC] WGLC on draft-ietf-mmusic-dtls-sdp-06.txt - altSubjectName
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Feb 2016 09:38:37 -0000
Hi Martin, >>> I also see: >>> >>> The subjectAltName is not an important component of the certificate >>> verification. >>> >>> the text can simply say that the certificate is only a receptacle for a public key and authentication is >>>tied to an a=fingerprint line in the SDP. >> >> Could you suggest the exact text change? > > See above. Could we simply remove the sentence? The sentence before says pretty much what you suggest, doesn't it? "If self-signed certificates are used, the content of the subjectAltName attribute inside the certificate MAY use the uniform resource identifier (URI) of the user. This is useful for debugging purposes only and is not required to bind the certificate to one of the communication endpoints. The integrity of the certificate is ensured through the fingerprint attribute in the SDP." Regards, Christer
- Re: [MMUSIC] WGLC on draft-ietf-mmusic-dtls-sdp-0… Christer Holmberg
- Re: [MMUSIC] WGLC on draft-ietf-mmusic-dtls-sdp-0… Martin Thomson