Re: [pkix] possible new pkix and/or smime work
Stephen Farrell <stephen.farrell@cs.tcd.ie> Thu, 24 March 2016 13:43 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B3AFB12D94B for <pkix@ietfa.amsl.com>; Thu, 24 Mar 2016 06:43:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.311
X-Spam-Level:
X-Spam-Status: No, score=-4.311 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5CqLUCehv2xO for <pkix@ietfa.amsl.com>; Thu, 24 Mar 2016 06:43:52 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7521312D70E for <pkix@ietf.org>; Thu, 24 Mar 2016 06:43:47 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id C6240BE3F; Thu, 24 Mar 2016 13:43:45 +0000 (GMT)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4nRKryZWm1SH; Thu, 24 Mar 2016 13:43:44 +0000 (GMT)
Received: from [10.87.49.100] (unknown [86.46.21.5]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id C3BC1BDF9; Thu, 24 Mar 2016 13:43:43 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1458827024; bh=0jiovRUgTnjlw2Pgz4wjjbziP3Er2p0QUj71rvNa6ek=; h=Subject:To:References:From:Date:In-Reply-To:From; b=QkBhfSKU1phOnOXq0rO/aIqPYiVX09IeTfUURdDmwgO4qNLw7hJnGYmy0D4A5v45R MeX44WjpjJxhH36yRRe7bOAAXeyhTKdUchCJZFj8PEuBbPU0+m7tppYLNOny55ymVz /7gb3xttHOHNVz1kCGGVfYjZJ297HarV3ftih3Fo=
To: Anders Rundgren <anders.rundgren.net@gmail.com>, pkix <pkix@ietf.org>
References: <56F2FE0D.6070607@cs.tcd.ie> <56F3E912.6000903@gmail.com> <56F3EA2A.1080406@cs.tcd.ie> <56F3EB83.80604@gmail.com>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Message-ID: <56F3EF0E.7020800@cs.tcd.ie>
Date: Thu, 24 Mar 2016 13:43:42 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.5.1
MIME-Version: 1.0
In-Reply-To: <56F3EB83.80604@gmail.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms020108090506040904020202"
Archived-At: <http://mailarchive.ietf.org/arch/msg/pkix/CV_eSPWLOetNo0StPxyH_IzTvFs>
Subject: Re: [pkix] possible new pkix and/or smime work
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pkix/>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Mar 2016 13:43:55 -0000
On 24/03/16 13:28, Anders Rundgren wrote: > > How do you anticipate that S/MIME certificates are distributed? Not via web browsers using TLS client auth. Changing the topic entirely and almost at random isn't useful. And in general, it's not useful for this discussion to wander (it's wandered enough). If you Anders want to propose some relevant new work, please write an I-D. (Same goes for anyone.) In case it isn't clear to you or the list - as an AD I will not be proposing to the IESG or IETF that we spin up a new WG to boil any oceans, not a PKI ocean, nor an SMIME ocean, nor any other. If there are specific bits of sensible work that folks are willing to make the effort on, and if those seem likely to be implemented and deployed then I'll be positive. But I am just not interested in helping with random discussion of principles, possibilities, all the things that are wrong with the world or angels on the head of pins. So to re-iterate (just in case more emphasis is needed:-) - if you want something substantively discussed, write an I-D that is relevant to the ex-PKIX or ex-SMIME WGs and come up with good-enough answers as to how your stuff is likely to get implemented and deployed. Cheers, S. > On smart cards? Well, then we are talking about a more scoped > scenario which (for example) eliminates Yahoo! from the plot.
- [pkix] possible new pkix and/or smime work Stephen Farrell
- Re: [pkix] possible new pkix and/or smime work Stephen Farrell
- Re: [pkix] possible new pkix and/or smime work Anders Rundgren
- Re: [pkix] possible new pkix and/or smime work Stephen Farrell
- Re: [pkix] possible new pkix and/or smime work Anders Rundgren
- Re: [pkix] possible new pkix and/or smime work Stephen Farrell