IETF Logo Mail Archive

[precis] Review of draft-melnikov-precis-saslprepbis-03

"Matt Miller (mamille2)" <mamille2@cisco.com> Mon, 17 September 2012 18:09 UTC

Return-Path: <mamille2@cisco.com>
X-Original-To: precis@ietfa.amsl.com
Delivered-To: precis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 028C421F86DF for <precis@ietfa.amsl.com>; Mon, 17 Sep 2012 11:09:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PtBXYbso1nxW for <precis@ietfa.amsl.com>; Mon, 17 Sep 2012 11:09:35 -0700 (PDT)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) by ietfa.amsl.com (Postfix) with ESMTP id DD58921F86A7 for <precis@ietf.org>; Mon, 17 Sep 2012 11:09:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=8440; q=dns/txt; s=iport; t=1347905375; x=1349114975; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=Tw4PuEeJKECVFiBwwG9AvqeEsqUB8rM3jeEr/mdOnn8=; b=NKi0X6/MjBuuFgkEuljH+8ayEsG2BvpeyK/ZImLg5E2YnNwehTrir2rp f1AlmgPKk8+VEyAq2LMXlbyg3uw5p7NCDbvd40Yp4cDrmVevzdz1Anyry 2htrzHc3CL1kOC1jLgdCPBc5X9qb2ZvfiuZ/AP8CW5X/y9hQeZtqj75XT U=;
X-Files: smime.p7s, PGP.sig : 2214, 535
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av8EADhmV1CtJXG+/2dsb2JhbABEvCGBB4IgAQEBBAEBAQ8BWwsMBAIBGQMBAi8CJQsUCQgCBA4FCQUUh14Lmkefe4shhghgA45pgSCFWYEUigaDHoFpgmaCFw
X-IronPort-AV: E=Sophos; i="4.80,437,1344211200"; d="sig'?p7s'?scan'208"; a="122469451"
Received: from rcdn-core2-3.cisco.com ([173.37.113.190]) by rcdn-iport-4.cisco.com with ESMTP; 17 Sep 2012 18:09:34 +0000
Received: from xhc-rcd-x11.cisco.com (xhc-rcd-x11.cisco.com [173.37.183.85]) by rcdn-core2-3.cisco.com (8.14.5/8.14.5) with ESMTP id q8HI9YO2001024 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Mon, 17 Sep 2012 18:09:34 GMT
Received: from xmb-aln-x11.cisco.com ([169.254.6.219]) by xhc-rcd-x11.cisco.com ([173.37.183.85]) with mapi id 14.02.0318.001; Mon, 17 Sep 2012 13:09:34 -0500
From: "Matt Miller (mamille2)" <mamille2@cisco.com>
To: Peter Saint-Andre <stpeter@stpeter.im>
Thread-Topic: Review of draft-melnikov-precis-saslprepbis-03
Thread-Index: AQHNlP+WokQ1fNsRykSn+UGgjKzevw==
Date: Mon, 17 Sep 2012 18:09:33 +0000
Message-ID: <8FD6CBCE-60CD-4049-A0E6-B2388D6919DF@cisco.com>
References: <20120914162208.30845.65648.idtracker@ietfa.amsl.com> <50535A6B.8010702@stpeter.im>
In-Reply-To: <50535A6B.8010702@stpeter.im>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-pgp-agent: GPGMail 1.3.3
x-originating-ip: [64.101.72.40]
x-tm-as-product-ver: SMEX-10.2.0.1135-7.000.1014-19188.004
x-tm-as-result: No--43.680300-8.000000-31
x-tm-as-user-approved-sender: No
x-tm-as-user-blocked-sender: No
Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="pgp-sha1"; boundary="Apple-Mail-2-230986717"
MIME-Version: 1.0
Cc: "precis@ietf.org" <precis@ietf.org>
Subject: [precis] Review of draft-melnikov-precis-saslprepbis-03
X-BeenThere: precis@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Preparation and Comparison of Internationalized Strings <precis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/precis>, <mailto:precis-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/precis>
List-Post: <mailto:precis@ietf.org>
List-Help: <mailto:precis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/precis>, <mailto:precis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Sep 2012 18:09:36 -0000

This was started as a review of draft-melnikov-precis-saslprepbis-02.  -03 already addresses most of the questions and concerns I had with -02 (-:

regarding -03:

* 2.3 (Simple User Names - Migration) :: It would be tremendously helpful to have examples for each point raised.

* 3.2 (Passwords - Preparation) :: I do wonder about the rationale for step 2) (map all non-ASCII space to ASCII space).  I myself have not run into conditions where this would matter, but I mostly deal with US-based consumers with passwords almost exclusively in the ASCII range.  On the surface, it seems a bit contradictory in principle to the "no bidi rule" rationale that is included. I'm not advocating for retention or removal of step 2), but rather for providing a rationale (one way or the other).

* 3.3 (Passwords - Migration) :: It would be tremendously helpful to have examples for each point raised.

* I wonder if each migration section ought to be merged into something larger.  I do think that more needs to be said about the migration not just of the data upon which the software operates on, but also of the software itself.  It is not common for client- and server-based software to be updated in lockstep, and I can see questions coming up about it.


- m&m

Matt Miller - <mamille2@cisco.com>
Cisco Systems, Inc.

On Sep 14, 2012, at 10:25, Peter Saint-Andre wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Sorry, in -02 we had neglected to update the spec regarding Pete
> Resnick's feedback about bidirectionality of passwords. Alexey and I
> have addressed that now, thus the quick -03 release (changing one
> paragraph at the end of Section 3.2).
> 
> Peter
> 
> - -------- Original Message --------
> Subject: I-D Action: draft-melnikov-precis-saslprepbis-03.txt
> Date: Fri, 14 Sep 2012 09:22:08 -0700
> From: internet-drafts@ietf.org
> Reply-To: internet-drafts@ietf.org
> To: i-d-announce@ietf.org
> 
> 
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> 
> 
> 	Title           : Preparation and Comparison of Internationalized
> Strings Representing Simple User Names and Passwords
> 	Author(s)       : Peter Saint-Andre
>                          Alexey Melnikov
> 	Filename        : draft-melnikov-precis-saslprepbis-03.txt
> 	Pages           : 11
> 	Date            : 2012-09-14
> 
> Abstract:
>   This document describes how to handle Unicode strings representing
>   simple user names and passwords, primarily for purposes of
>   comparison.  This profile is intended to be used by Simple
>   Authentication and Security Layer (SASL) mechanisms (such as PLAIN
>   and SCRAM-SHA-1), as well as other protocols that exchange simple
>   user names or passwords.  This document obsoletes RFC 4013.
> 
> 
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-melnikov-precis-saslprepbis
> 
> There's also a htmlized version available at:
> http://tools.ietf.org/html/draft-melnikov-precis-saslprepbis-03
> 
> A diff from the previous version is available at:
> http://www.ietf.org/rfcdiff?url2=draft-melnikov-precis-saslprepbis-03
> 
> 
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> 
> _______________________________________________
> I-D-Announce mailing list
> I-D-Announce@ietf.org
> https://www.ietf.org/mailman/listinfo/i-d-announce
> Internet-Draft directories: http://www.ietf.org/shadow.html
> or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
> 
> 
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2.0.18 (Darwin)
> Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
> 
> iEYEARECAAYFAlBTWmsACgkQNL8k5A2w/vzKAgCfcJVptes7qR3TrlAtixpNkhNy
> Y7kAoIH4CTjhL/9qBqPwVo/r/bWq55Xr
> =F64+
> -----END PGP SIGNATURE-----
> _______________________________________________
> precis mailing list
> precis@ietf.org
> https://www.ietf.org/mailman/listinfo/precis

v2.23.0 | Report a Bug | By Email