Re: PEM/mailer integration via MIME
John Linn 10-Nov-1992 1555 <linn@albeit.enet.dec.com> Tue, 10 November 1992 21:03 UTC
Received: from ietf.nri.reston.va.us by IETF.CNRI.Reston.VA.US id aa12221; 10 Nov 92 16:03 EST
Received: from CNRI.RESTON.VA.US by IETF.CNRI.Reston.VA.US id aa12214; 10 Nov 92 16:03 EST
Received: from TIS.COM by CNRI.Reston.VA.US id aa18306; 10 Nov 92 16:04 EST
Received: by TIS.COM (4.1/SUN-5.64) id AA00474; Tue, 10 Nov 92 15:56:06 EST
Received: from inet-gw-2.pa.dec.com by TIS.COM (4.1/SUN-5.64) id AA00466; Tue, 10 Nov 92 15:55:57 EST
Received: by inet-gw-2.pa.dec.com; id AA06222; Tue, 10 Nov 92 12:55:53 -0800
Received: by us1rmc.bb.dec.com; id AA17049; Tue, 10 Nov 92 15:53:20 -0500
Message-Id: <9211102053.AA17049@us1rmc.bb.dec.com>
Received: from albeit.enet; by us1rmc.enet; Tue, 10 Nov 92 15:53:24 EST
Date: Tue, 10 Nov 1992 15:53:24 -0500
Sender: ietf-archive-request@IETF.CNRI.Reston.VA.US
From: John Linn 10-Nov-1992 1555 <linn@albeit.enet.dec.com>
To: ned@sigurd.innosoft.com, pem-dev@tis.com, nsb@thumper.bellcore.com, owens@cookiemonster.cc.buffalo.edu
Cc: linn@albeit.enet.dec.com
Apparently-To: pem-dev@tis.com, owens@cookiemonster.cc.buffalo.edu, nsb@thumper.bellcore.com, ned@sigurd.innosoft.com
Subject: Re: PEM/mailer integration via MIME
X-Orig-Sender: pem-dev-relay@tis.com
If the question is "how to transport PEM, unambiguously and with minimal perturbation to existing protocols, within a MIME-oriented mail system", then I believe the title of the answer should be "Procedures for use of PEM within a MIME environment", or some such, likely in the form of a small standalone document analogous to other recently announced Internet-Drafts concerning mapping and downgrading procedures applicable at different interfaces between mail system components. Per Ned Freed's message, such an answer's content probably includes two headers: MIME-Version: Content-Type: <application/pem> or <message/pem> As far as I understand MIME, this approach would be workable if what followed were a PEM message with structure as defined in draft-ietf-pem-msgproc-02. I recall resistance to this approach in earlier discussion, since this could result in data which was already encoded for PEM being re-encoded in the course of MIME processing, a result perceived as not only inefficient (which would be the case, but would be manifested only in certain environments) but also Intolerably Evil (which seems an overstatement). There was also discussion of the idea that PEM should consume MIME's message framing mechanism rather than continuing to employ its own framing convention; unfortunately, PEM requires a closing message delimiter in order to compute a message integrity check, and MIME doesn't provide one except as a side effect of enclosure within a multipart message. There was also debate about whether <application/pem> or <message/pem> would be the best answer, with (as I recall) returns from some precincts suggesting different answers for the cases of encrypted vs. signed-only messages. I think that converging these divergent opinions into a agreed means for representing PEM within MIME would certainly be a Good Thing, and one that should certainly be simpler than defining the reverse encapsulation; could anyone not live with something as simple and crude as the two MIME headers being followed by a PEM message as defined, yielding: MIME-Version: Content-Type: application/pem -----BEGIN PRIVACY-ENHANCED MESSAGE----- <PEM encapsulated header> <blank line> <PEM encapsulated text> -----END PRIVACY-ENHANCED MESSAGE----- to follow all of the message's enclosing RFC-822 headers? Ned states that "Practically every mail user agent in widespread use either already supports MIME or work is underway to make it support MIME in a future release. This is also true of many gateway packages." These are exciting statements, suggesting that MIME capabilities will become available to large prospective user communities in the not-too-distant future. Even so, I won't personally postpone respiration pending the flag day which eradicates the last non-MIME mail component from the super-Internet presently enjoying RFC-822 mail connectivity. I suspect that 822-level gateways (even more likely than UAs to be one-offs, locally built or tweaked for requirements of particular administrations, and perhaps supported only in a sketchy fashion) will be especially persistent. Clearly, the messages this installed base emits won't bear MIME-Version: headers, and the new MIME-sentient components as introduced must continue to be able to transport the old-style messages without difficulty (unless the introduction of MIME-sentient intermediaries intrinsically breaks existing connectivity, which I hope and presume isn't the case). I don't understand, therefore, why it's critical that all PEM messages must bear MIME-Version: headers, even if the environment in which a PEM UA operates doesn't otherwise support MIME. --jl
- PEM/mailer integration via MIME Bill Owens
- Re: PEM/mailer integration via MIME Steve Kent
- Re: PEM/mailer integration via MIME Ned Freed
- Re: PEM/mailer integration via MIME Vinton G. Cerf
- Re: PEM/mailer integration via MIME John Linn 10-Nov-1992 1555
- Re: PEM/mailer integration via MIME Ned Freed
- Re: PEM/mailer integration via MIME Ned Freed
- PEM/mailer integration via MIME Mark Grand
- Re: PEM/mailer integration via MIME John Linn 11-Nov-1992 0919
- Re: PEM/mailer integration via MIME Ned Freed
- PEM/mailer integration via MIME Mark Grand
- Re: PEM/mailer integration via MIME Ned Freed
- PEM/mailer integration via MIME Mark Grand
- Re: PEM/mailer integration via MIME Ned Freed
- Re: PEM/mailer integration via MIME Vinton G. Cerf
- Re: PEM/mailer integration via MIME Derek Atkins
- PEM/mailer integration via MIME Steve Dusse