IETF Logo Mail Archive

Re: consisten use of top-level oid branch name joint-iso-itu-t(2)

John Larmouth <j.larmouth@btinternet.com> Wed, 17 June 2009 08:57 UTC

Return-Path: <owner-ietf-pkix@mail.imc.org>
X-Original-To: ietfarch-pkix-archive@core3.amsl.com
Delivered-To: ietfarch-pkix-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 07E243A6813 for <ietfarch-pkix-archive@core3.amsl.com>; Wed, 17 Jun 2009 01:57:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, J_CHICKENPOX_13=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6MPMlBn8JXQB for <ietfarch-pkix-archive@core3.amsl.com>; Wed, 17 Jun 2009 01:57:45 -0700 (PDT)
Received: from balder-227.proper.com (properopus-pt.tunnel.tserv3.fmt2.ipv6.he.net [IPv6:2001:470:1f04:392::2]) by core3.amsl.com (Postfix) with ESMTP id 6E4313A6811 for <pkix-archive@ietf.org>; Wed, 17 Jun 2009 01:57:44 -0700 (PDT)
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id n5H8LaO5084482 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 17 Jun 2009 01:21:36 -0700 (MST) (envelope-from owner-ietf-pkix@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id n5H8LaKb084481; Wed, 17 Jun 2009 01:21:36 -0700 (MST) (envelope-from owner-ietf-pkix@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-pkix@mail.imc.org using -f
Received: from smtp823.mail.ird.yahoo.com (smtp823.mail.ird.yahoo.com [217.146.188.233]) by balder-227.proper.com (8.14.2/8.14.2) with SMTP id n5H8LNHJ084452 for <ietf-pkix@imc.org>; Wed, 17 Jun 2009 01:21:34 -0700 (MST) (envelope-from j.larmouth@btinternet.com)
Received: (qmail 40920 invoked from network); 17 Jun 2009 08:21:22 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=btinternet.com; h=Received:X-Yahoo-SMTP:X-YMail-OSG:X-Yahoo-Newman-Property:Message-ID:Date:From:Reply-To:User-Agent:X-Accept-Language:MIME-Version:To:CC:Subject:References:In-Reply-To:Content-Type:Content-Transfer-Encoding; b=whtjOnvO+KllR9QjU80hQUvUMb7GgkC14Q2IaWFfVqeaSd3PeWKj9vDMJN67lsdIvFi+sP2HXfSpz6Zd/yBgw2O7XFiVpqqobWVM1Q0kPIbAE7ztn+5Cw07p+NShEpeq/1PfF8bUzB6sRatrBzoWFNefvNs07JsXhezwVOnkUl0= ;
Received: from unknown (HELO ?192.168.1.67?) (j.larmouth@86.146.115.249 with plain) by smtp823.mail.ird.yahoo.com with SMTP; 17 Jun 2009 08:21:22 -0000
X-Yahoo-SMTP: wkRZlpKswBD4hYA5WOvxKyA0utS_ehUG.AZgJb2EFBo2v2XeQHg-
X-YMail-OSG: Uk1E6FQVM1lUcS4Phus9WRIeXS6LVCXeFi0p3TcdMIuTwMWLcekhIHQQpEEWZv4BHaNXsVgUkYCYFnKvB1SSfcIMMRN3wr2QcZhR0wMcIrEeco3AWxNNbbAiJDGxqKAJ_rXLF4suHgmGoX8TEHtxnbDjxaGdrFXHLiWXqVzEE7aURkH9bG6VcnBweRQ8iNDeBd7PMprJnlhKmWdqrn2fupezOBcpTvDL3vcV4MPBr0Mf4rv1HwjD47t2Cegli75g3Azs5zMSzOwxesJhmWgsU2HUlWLJKb2kqgtPJMcytEzfU.pLI8GliAhKybkhT0GEELcDZSpRWVQ.0hfUv6g-
X-Yahoo-Newman-Property: ymail-3
Message-ID: <4A38A77D.5040708@btinternet.com>
Date: Wed, 17 Jun 2009 09:21:17 +0100
From: John Larmouth <j.larmouth@btinternet.com>
Reply-To: j.larmouth@btinternet.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.2) Gecko/20040804 Netscape/7.2 (ax)
X-Accept-Language: en, en-us
MIME-Version: 1.0
To: Tom Gindin <tgindin@us.ibm.com>
CC: Alfred � <ah@tr-sys.de>, ietf-pkix@imc.org, ietf-smime@imc.org, turners@ieca.com
Subject: Re: consisten use of top-level oid branch name joint-iso-itu-t(2)
References: <OF99D18E02.950E129D-ON85257527.0078F4B0-85257529.0069C502@us.ibm.com>
In-Reply-To: <OF99D18E02.950E129D-ON85257527.0078F4B0-85257529.0069C502@us.ibm.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>

Tom,

I am not sure what draft you are referring to, but we spent a lot of time at the 
last Tokyo meeting to ensure that an additional Unicode label could be added to 
a high-level arc without requiring any changes to zone files for nodes beneath 
the affected node.  This is acheivable by use of a combination of CNAME and 
DNAME records in the DNS.  Use of those records for this purpose will be fully 
described either in the main Standard or as an Implementors Guide.

What you are missing is "long arcs".  A long arc can go from the root to any 
lower-level node.  It does not have a number, only one or more Unicode labels 
(unambiguous among all arcs from the root - long or normal).  It "expands" into 
a sequence of normal arcs to the same node, identified in canonical (numerical) 
form.

So as far as the DNS is concerned, there are arcs from the root in addition to 
the three you are talking about, and the root zone files point directly to the 
servers associated with those lower level nodes (assuming the administrations of 
those nodes choose to run a DNS server, otherwise you just get information about 
children).

The ORS work is not yet complete, and there are some dangling threads, in 
particular xase-folded matching and the use of %encoding or punycode for 
non-Ascii characters, and the handling of case sensitivity for Ascii characters. 
  This will likely be resolved at the Geneva September meeting.

The second Internet Draft for the requested IRI "oid:" scheme will be produced 
as soon as these remaining issues in the ORS (OID Resolution System) are sorted.

John L

Tom Gindin wrote:
>         John:
> 
>         This draft is interesting and useful for some purposes, but I 
> don't see how it addresses the case where a high-level arc (beyond the 
> control of the development organization) is renamed.  Since that's 
> precisely the case we are discussing here (although the change took place 
> quite a while ago and it's reasonable to expect people to adjust), it 
> doesn't actually seem to help us.  Am I missing something?
>         Also, unless I have missed something, there are only three 
> top-level arcs defined for OID's and they all now have names.
> 
>                 Tom Gindin
> 
> 
> 
> 
> John Larmouth <j.larmouth@btinternet.com> 
> Sent by: owner-ietf-pkix@mail.imc.org
> 12/22/2008 10:48 AM
> Please respond to
> j.larmouth@btinternet.com
> 
> 
> To
> Alfred � <ah@tr-sys.de>
> cc
> turners@ieca.com, ietf-pkix@imc.org, ietf-smime@imc.org
> Subject
> Re: consisten use of top-level oid branch name joint-iso-itu-t(2)
> 
> 
> 
> 
> 
> 
> Alfred,
> 
> The synonyms were introduced some time ago, and, indeed, the names are 
> non-normative, and may not even be unambiguous.  Only the numbers matter 
> in an OID in an encoding.
> 
> However, the recent introduction of Unicode labels, as normative and 
> unambigous names gives a new naming scheme to the (same) OID tree that 
> enables names (Unicode labels) to be used in machine communication if 
> desired.  The ASN.1 type is called OID_IRI and provides for node 
> identification using Unicode labels.  Unicode labels with names similar to 
> the old ASCII names have been assigned for many of the top-level arcs, and 
> more will be added over time.
> 
> The OID_IRI type  is related to (but not dependent on) the application for 
> an "oid" IRI scheme,  but for consistency this is desired.  See I-D 
> draft-larmouth-oid-iri-00.
> 
> John L
> 
> Alfred � wrote: 
> Folks / to whom it concerns,
> 
> during recent reviews of active I-Ds containing ASN.1 related
> to the X.500 framework, I found that a couple of these do not
> consistently employ the revised name of the top-level OID branch
> 
>     joint-iso-itu-t(2) ,
> 
> but instead use the outdated/legacy name
> 
>     joint-iso-ccitt(2) .
> 
> Some drafts use a mix of both names.
> 
> I suggest that the modern version  joint-iso-itu-t(2)  be used
> consistently within all new drafts / draft versions, unless
> intentionally and explicitely for historical evidence reference
> has to be made to the old name.
> 
> Kind regards,
>   Alfred.
> 
>  
> 

-- 
    Prof John Larmouth
    Larmouth T&PDS Ltd
    (Training and Protocol Design Services Ltd)
    1 Blueberry Road
    Bowdon                               j.larmouth@btinternet.com
    Altrincham
    Cheshire
    WA14 3LS
    England
    Tel: +44 161 928 1605

v2.23.0 | Report a Bug | By Email