IETF Logo Mail Archive

Re: [pkix] Agenda requests for Paris

Anders Rundgren <anders.rundgren@telia.com> Sun, 18 March 2012 09:37 UTC

Return-Path: <anders.rundgren@telia.com>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5678F21F85C2 for <pkix@ietfa.amsl.com>; Sun, 18 Mar 2012 02:37:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.382
X-Spam-Level:
X-Spam-Status: No, score=-3.382 tagged_above=-999 required=5 tests=[AWL=0.217, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9m+Z69X0-Bl7 for <pkix@ietfa.amsl.com>; Sun, 18 Mar 2012 02:37:53 -0700 (PDT)
Received: from smtp-out12.han.skanova.net (smtp-out12.han.skanova.net [195.67.226.212]) by ietfa.amsl.com (Postfix) with ESMTP id 250A721F85B5 for <pkix@ietf.org>; Sun, 18 Mar 2012 02:37:53 -0700 (PDT)
Received: from [192.168.0.207] (213.66.133.125) by smtp-out12.han.skanova.net (8.5.133) (authenticated as u36408181) id 4F5CB81D001DFF0E; Sun, 18 Mar 2012 10:37:51 +0100
Message-ID: <4F65ACE3.1050307@telia.com>
Date: Sun, 18 Mar 2012 10:37:39 +0100
From: Anders Rundgren <anders.rundgren@telia.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:10.0.2) Gecko/20120216 Thunderbird/10.0.2
MIME-Version: 1.0
To: Stefan Santesson <stefan@aaa-sec.com>
References: <CB8AECC6.369C0%stefan@aaa-sec.com>
In-Reply-To: <CB8AECC6.369C0%stefan@aaa-sec.com>
X-Enigmail-Version: 1.4
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Cc: pkix@ietf.org
Subject: Re: [pkix] Agenda requests for Paris
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pkix>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 18 Mar 2012 09:37:59 -0000

On 2012-03-18 01:45, Stefan Santesson wrote:
> Anders,
> 
> You are missing the point.

Not really, I'm just looking at things from a different angle.

IMHO, "relevance" has become an overarching issue for SDOs due to the
fact that the IT-landscape has changed tremendously the last ten years:

- Continuously shorter product cycles
- Vendors that single-handedly define complete and globally operating ecosystems, from devices to services
- Open source as a means to reduce costs and improve interoperability

Since "my" issue (affecting billions of other humans) obviously is not
of any interest to you or Steve, PKIX's future probably is about managing
the PKI core documents (Certificates, CRL and OCSP).

Thar said, new efforts in the more application-oriented part of the PKI
universe, like the recent EST work-item seems much less likely to pan out
since these require alien elements like strategy, marketing, and gap analysis.

OTOH, deployment given the current SCVP/OCSP discussions doesn't seem to
be a major issue.  In my world deployment and relevance are synonymous.
Yes, I know this is a minority view :-)

Anders

> 
> You are free to discuss any issues that are related to the charter of this
> WG.
> If you want to discuss things with other IETFers, it is a great
> opportunity to come to the conference and talk to people.
> 
> Just don't expect people to spend time discussing your issues at the
> meeting unless you are prepared to come and ask for a timeslot.
> 
> /Stefan
> 
> 
> 
> On 12-03-17 2:09 PM, "Anders Rundgren" <anders.rundgren@telia.com> wrote:
> 
>> On 2012-03-17 13:32, Stefan Santesson wrote:
>>> Anders,
>>>
>>> It does not work that way, no matter how interesting your issue might
>>> be.
>>
>> You mean that IETF statutes doesn't permit discussing possible future
>> work-items without a proposer actually being physically present?
>>
>> Anyway, your college in the Swedish EID2-project Leif Johansson,
>> indeed mentioned the very same issue "as highly problematic" in
>> a panel session in the IDTrust/NSTIC event that we both attended
>> this week in Washington DC.
>>
>> Somewhat related: From what I can see the rationale for EST haven't
>> been discussed at all on this list. I don't think even Cisco in the
>> end will support EST since it doesn't add functional improvements.
>> Even the target "Simple PKI client" seems to be left to the reader
>> to guess what it could possibly be.  Do YOU know?
>>
>> Anders
>>
>>>
>>> If you want to raise an issue at the meeting, then you need to ask for a
>>> slot and show up at the meeting.
>>> If you can't be bothered, convince someone that will be present to do it
>>> for you.
>>>
>>> If you can't do that even, then discuss it on the list.
>>>
>>> /Stefan
>>>
>>> On 12-03-17 9:56 AM, "Anders Rundgren" <anders.rundgren@telia.com>
>>> wrote:
>>>
>>>> Stefan,
>>>> I will unfortunately not be able to attend.
>>>>
>>>> May I suggest that the crowd spends some 10 minutes on discussing how
>>>> PKIX
>>>> intends to deal with the fact that mobile devices with embedded
>>>> credentials
>>>> will most likely constitute of the bulk of the client-side of PKI?
>>>>
>>>> Even the US government have realized (it took some time...) that
>>>> "Derived Credentials" is probably a better solution than
>>>> "putting PIV on a string":
>>>>
>>>>
>>>> http://csrc.nist.gov/groups/SMA/ispab/documents/minutes/2012-02/feb1_nis
>>>> t-
>>>> 800-63-1_overview_enewton.pdf
>>>>
>>>> It is (at least to me) obvious that ambitious efforts such as President
>>>> Obama's NSTIC program won't go particularly far without having secure,
>>>> convenient, and interoperable enrollment solutions.
>>>>
>>>> However, then we enter the minefield known as "Token Provisioning"
>>>> which
>>>> currently only is covered by proprietary solutions like the Google
>>>> Wallet.
>>>>
>>>> Giving in to Google may though be the best for the market since a
>>>> leading
>>>> vendor can (as Microsoft did in the past) indirectly enforce the
>>>> necessary
>>>> "compliance" on the other parties.
>>>>
>>>> The opportunity for a standard addressing 5-10 BILLION of connected
>>>> devices
>>>> won't exist 3 years from now, at least if we are talking about a *used*
>>>> ditto.
>>>>
>>>> If you are the daring type you might even perform a straw poll on the
>>>> topic :-)
>>>>
>>>> Anders
>>>>
>>>>
>>>>
>>>> On 2012-03-16 17:19, Stefan Santesson wrote:
>>>>> I have posted a preliminary agenda at:
>>>>> http://www.ietf.org/proceedings/83/agenda/agenda-83-pkix.txt
>>>>>
>>>>> I do lack presentations on current ongoing drafts.
>>>>> If you are currently editing a PKIX WG draft, please notify me and
>>>>> Steve
>>>>> if you need an agenda slot or not
>>>>>
>>>>>
>>>>> /Stefan
>>>>>
>>>>>
>>>>> On 12-02-28 11:49 PM, "Stephen Kent" <kent@bbn.com> wrote:
>>>>>
>>>>>> Folks,
>>>>>>
>>>>>> I have already sent a message noting our meeting day/time/room.
>>>>>>
>>>>>> Please let Stefan and me know if you want a slot on the agenda.
>>>>>>
>>>>>> Thanks,
>>>>>>
>>>>>> Steve
>>>>>> _______________________________________________
>>>>>> pkix mailing list
>>>>>> pkix@ietf.org
>>>>>> https://www.ietf.org/mailman/listinfo/pkix
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> pkix mailing list
>>>>> pkix@ietf.org
>>>>> https://www.ietf.org/mailman/listinfo/pkix
>>>>>
>>>>
>>>> _______________________________________________
>>>> pkix mailing list
>>>> pkix@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/pkix
>>>
>>>
>>>
>>
> 
> 
>

v2.23.0 | Report a Bug | By Email