Re: [pkix] Simple Certificate Enrollment Protocol (SCEP)
Melinda Shore <melinda.shore@gmail.com> Tue, 14 October 2014 17:31 UTC
Return-Path: <melinda.shore@gmail.com>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3234C1A90C4 for <pkix@ietfa.amsl.com>; Tue, 14 Oct 2014 10:31:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rS8zVGUAJ0ED for <pkix@ietfa.amsl.com>; Tue, 14 Oct 2014 10:31:17 -0700 (PDT)
Received: from mail-pd0-x235.google.com (mail-pd0-x235.google.com [IPv6:2607:f8b0:400e:c02::235]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BC5B71A90C3 for <pkix@ietf.org>; Tue, 14 Oct 2014 10:31:17 -0700 (PDT)
Received: by mail-pd0-f181.google.com with SMTP id z10so7697954pdj.26 for <pkix@ietf.org>; Tue, 14 Oct 2014 10:31:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=hShtZddG2eG0/Ptz8tq2t4Gkv6nGw0zcKO/5mqBbvsM=; b=rgWDVjKXMPxnzg5ibhHpUILu2sbdxW7I3wXn2+7GaMx2JpK3Xw1dX/21k+TLSLtsI5 WkmL7+BajDrevDDYpDh/pluHXztqAePuQNdbaJG3GWGAe/VjYerp4zoe9m5+RW0P/jZ7 /aFDiyOKiAKZJrs/EsOVgLKgDGO2CeO65zgs+S5brHwNE9eta/WHmfOmvSPW5jZG9mZW sX9dciOunHVSU7C2npJSAOPEX68GxdX6wQc7918NnOFMZlhgid5Tn8qsvyxNk12+J7A3 JpHzd2J2MaLHHhfCMT8Hx6+H8jGDQExfdJzwMW7kJlJ8R97Y4g1am7FUx4x3SnddImwL lSAg==
X-Received: by 10.68.248.40 with SMTP id yj8mr6907178pbc.58.1413307877446; Tue, 14 Oct 2014 10:31:17 -0700 (PDT)
Received: from spandex.local (216-67-38-4-rb3.nwc.dsl.dynamic.acsalaska.net. [216.67.38.4]) by mx.google.com with ESMTPSA id j11sm14756766pdk.76.2014.10.14.10.31.16 for <pkix@ietf.org> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Tue, 14 Oct 2014 10:31:16 -0700 (PDT)
Message-ID: <543D5DE3.50507@gmail.com>
Date: Tue, 14 Oct 2014 09:31:15 -0800
From: Melinda Shore <melinda.shore@gmail.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:24.0) Gecko/20100101 Thunderbird/24.4.0
MIME-Version: 1.0
To: pkix@ietf.org
References: <9A043F3CF02CD34C8E74AC1594475C739B9CAF27@uxcn10-tdc05.UoA.auckland.ac.nz> <001001cfe7a0$52f31640$f8d942c0$@x500.eu> <10AA61E0-BC44-4515-822D-8C9885C9D7EE@vpnc.org> <543D4F5C.4010000@bbn.com>
In-Reply-To: <543D4F5C.4010000@bbn.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/pkix/7KJJVJ0CoW1OXbmldgwZ_md4Gyo
Subject: Re: [pkix] Simple Certificate Enrollment Protocol (SCEP)
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pkix/>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Oct 2014 17:31:19 -0000
On 10/14/14 8:29 AM, Stephen Kent wrote: >> Nice word, "lie". It indicates that everyone at Cisco has the same >> intent, and they are all instructed in what to say in public. >> Anyone working with the Cisco IPsec team at the time knows that >> such an assertion is demonstrably false, even though it makes for >> good drama here. > I agree that Cisco may not have coordinated the rationale we were > given for publishing SCEP, but we got the same story from multiple > individuals in a few different parts of the organization. As an > outsider, I think that "lie" is an appropriate characterization. I was at Cisco at the time. That is not correct. Interest in bring SCEP to the IETF waxed and waned and at different points different people showed different levels of interest in working on getting the spec through the IETF process. Nobody was ever instructed to lie - I'd be hard-pressed to say that anybody was instructed to do much of anything in terms of publishing SCEP. My understanding of the 3gpp situation was that someone at Cisco wanted to take SCEP to 3gpp and that's what motivated a renewed interest in publishing it as an informational document (within Cisco; whether the responsible IETF people were more interested in publishing it as an historic RFC is largely orthogonal to that). Without actually talking with the people involved all we can go on is what we see. It's a black box problem. Fabricating a narrative and making judgments based on that fabricated narrative strikes me as profoundly unhelpful. Melinda
- [pkix] Simple Certificate Enrollment Protocol (SC… Erik Andersen
- Re: [pkix] Simple Certificate Enrollment Protocol… Peter Gutmann
- Re: [pkix] Simple Certificate Enrollment Protocol… Michael Jenkins
- Re: [pkix] Simple Certificate Enrollment Protocol… Erik Andersen
- Re: [pkix] Simple Certificate Enrollment Protocol… Peter Gutmann
- Re: [pkix] Simple Certificate Enrollment Protocol… Anders Rundgren
- Re: [pkix] Simple Certificate Enrollment Protocol… Miller, Timothy J.
- Re: [pkix] Simple Certificate Enrollment Protocol… Peter Gutmann
- [pkix] SCEP Stephen Kent
- Re: [pkix] Simple Certificate Enrollment Protocol… Miller, Timothy J.
- Re: [pkix] Simple Certificate Enrollment Protocol… Jeffrey Walton
- Re: [pkix] Simple Certificate Enrollment Protocol… Paul Hoffman
- Re: [pkix] Simple Certificate Enrollment Protocol… Sill, Alan
- Re: [pkix] Simple Certificate Enrollment Protocol… Stephen Kent
- Re: [pkix] Simple Certificate Enrollment Protocol… Melinda Shore
- Re: [pkix] Simple Certificate Enrollment Protocol… Peter Gutmann
- Re: [pkix] Simple Certificate Enrollment Protocol… Stephen Kent
- Re: [pkix] Simple Certificate Enrollment Protocol… Paul Hoffman
- Re: [pkix] Simple Certificate Enrollment Protocol… Stephen Kent
- Re: [pkix] Simple Certificate Enrollment Protocol… Peter Gutmann
- Re: [pkix] Simple Certificate Enrollment Protocol… Anders Rundgren
- Re: [pkix] Simple Certificate Enrollment Protocol… Max Pritikin (pritikin)
- Re: [pkix] Simple Certificate Enrollment Protocol… Anders Rundgren
- Re: [pkix] Simple Certificate Enrollment Protocol… Jeffrey Walton
- Re: [pkix] Simple Certificate Enrollment Protocol… Anders Rundgren
- Re: [pkix] Simple Certificate Enrollment Protocol… Dr. Massimiliano Pala
- Re: [pkix] Simple Certificate Enrollment Protocol… Anders Rundgren
- Re: [pkix] Simple Certificate Enrollment Protocol… Max Pritikin (pritikin)
- Re: [pkix] Simple Certificate Enrollment Protocol… Dr. Massimiliano Pala
- [pkix] Derived Credentials. Was: Simple Certifica… Anders Rundgren
- Re: [pkix] Simple Certificate Enrollment Protocol… Peter Gutmann
- Re: [pkix] Simple Certificate Enrollment Protocol… Max Pritikin (pritikin)
- Re: [pkix] Simple Certificate Enrollment Protocol… Max Pritikin (pritikin)
- Re: [pkix] Derived Credentials. Was: Simple Certi… Anders Rundgren
- Re: [pkix] Derived Credentials. Was: Simple Certi… Max Pritikin (pritikin)
- [pkix] New Microsoft Enrollment system. Was: Simp… Anders Rundgren
- Re: [pkix] Derived Credentials. Was: Simple Certi… Johannes Merkle
- Re: [pkix] Derived Credentials. Was: Simple Certi… Johannes Merkle
- Re: [pkix] Derived Credentials. Was: Simple Certi… Anders Rundgren
- Re: [pkix] Derived Credentials. Was: Simple Certi… Anders Rundgren
- Re: [pkix] Derived Credentials. Was: Simple Certi… Anders Rundgren