IETF Logo Mail Archive

RE: Last Call summary for draft-ietf-pkix-cert-utf8

Russ Housley <housley@vigilsec.com> Thu, 13 April 2006 15:23 UTC

Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FU3fV-0004Ql-F2 for pkix-archive@lists.ietf.org; Thu, 13 Apr 2006 11:23:37 -0400
Received: from balder-227.proper.com ([192.245.12.227]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FU3fU-0000HV-Up for pkix-archive@lists.ietf.org; Thu, 13 Apr 2006 11:23:37 -0400
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k3DEWiks045701; Thu, 13 Apr 2006 07:32:44 -0700 (MST) (envelope-from owner-ietf-pkix@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id k3DEWiDg045700; Thu, 13 Apr 2006 07:32:44 -0700 (MST) (envelope-from owner-ietf-pkix@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-pkix@mail.imc.org using -f
Received: from woodstock.binhost.com (woodstock.binhost.com [144.202.243.4]) by balder-227.proper.com (8.13.5/8.13.5) with SMTP id k3DEWh4L045694 for <ietf-pkix@imc.org>; Thu, 13 Apr 2006 07:32:43 -0700 (MST) (envelope-from housley@vigilsec.com)
Received: (qmail 17937 invoked by uid 0); 13 Apr 2006 14:32:40 -0000
Received: from unknown (HELO THINKPADR52.vigilsec.com) (71.246.201.221) by woodstock.binhost.com with SMTP; 13 Apr 2006 14:32:40 -0000
Message-Id: <7.0.0.16.2.20060413102956.059d9560@vigilsec.com>
X-Mailer: QUALCOMM Windows Eudora Version 7.0.0.16
Date: Thu, 13 Apr 2006 10:32:39 -0400
To: ietf-pkix@imc.org
From: Russ Housley <housley@vigilsec.com>
Subject: RE: Last Call summary for draft-ietf-pkix-cert-utf8
Cc: iesg@ietf.org
In-Reply-To: <82D5657AE1F54347A734BDD33637C8790241A5B3@EXVS01.ex.dslextr eme.net>
References: <82D5657AE1F54347A734BDD33637C8790241A5B3@EXVS01.ex.dslextreme.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 52e1467c2184c31006318542db5614d5

I suggest the following.  I think it adds the concept of "similar looking."

    When strings are mapped from internal representations to visual 
representations,
    sometimes two different strings will have the same or similar 
visual representations.
    This can happen for many different reasons, including use of 
similar glyphs and
    multiple items being combined into a single glyph.  As a result 
of this situation,
    people doing visual comparisons between two different names may 
think they are
    the same when in fact they are not.  Also, people may mistake one 
string for
    another.  Issuers of certificates and relying parties both need 
to be aware of
    this situation.

This does not impose any untestable requirements.  Any concerns with this text?

Russ


At 07:36 AM 4/13/2006, Santosh Chokhani wrote:
>When strings are mapped from internal representations to visual
>representations, sometimes two different strings will have
>the same visual representations.  This can happen due to similar glyphs,
>multiple items being combined into a single glyph among other reasons.
>When
>this happens people doing visual comparisons between two different names
>may
>think they are the same when in fact they are not.  Also, people may
>mistake one string for another.  Issuers of certificates and relying
>parties both need to be aware of these facts.

v2.23.0 | Report a Bug | By Email