Re: [secdir] Review of draft-turner-deviceowner-attribute
Alan DeKok <aland@deployingradius.com> Thu, 29 October 2009 10:44 UTC
Return-Path: <aland@deployingradius.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 213423A6889 for <secdir@core3.amsl.com>; Thu, 29 Oct 2009 03:44:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.485
X-Spam-Level:
X-Spam-Status: No, score=0.485 tagged_above=-999 required=5 tests=[AWL=0.505, BAYES_00=-2.599, RCVD_IN_BL_SPAMCOP_NET=1.96, RCVD_IN_SORBS_WEB=0.619]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mIGHP68dkDVE for <secdir@core3.amsl.com>; Thu, 29 Oct 2009 03:44:55 -0700 (PDT)
Received: from liberty.deployingradius.com (liberty.deployingradius.com [88.191.76.128]) by core3.amsl.com (Postfix) with ESMTP id 557C83A6878 for <secdir@ietf.org>; Thu, 29 Oct 2009 03:44:55 -0700 (PDT)
Received: from Thor.local (unknown [74.198.12.3]) by liberty.deployingradius.com (Postfix) with ESMTPSA id 2E735123432F; Thu, 29 Oct 2009 11:45:10 +0100 (CET)
Message-ID: <4AE97235.2070300@deployingradius.com>
Date: Thu, 29 Oct 2009 06:45:09 -0400
From: Alan DeKok <aland@deployingradius.com>
User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812)
MIME-Version: 1.0
To: Jeffrey Hutzelman <jhutz@cmu.edu>
References: <2086_1256743076_n9SFHt4Y012009_4AE8609A.8060202@deployingradius.com> <B03BB7AAD83DD8E6F8C87D0D@atlantis.pc.cs.cmu.edu>
In-Reply-To: <B03BB7AAD83DD8E6F8C87D0D@atlantis.pc.cs.cmu.edu>
X-Enigmail-Version: 0.96.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Cc: draft-turner-deviceowner-attribute@tools.ietf.org, secdir@ietf.org
Subject: Re: [secdir] Review of draft-turner-deviceowner-attribute
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Oct 2009 10:44:56 -0000
Jeffrey Hutzelman wrote: > This makes no sense to me. ASN.1 is a syntax notation, not a protocol. It affects "ASN.1 based protocols". > The abstract is entirely unclear on what protocol this document extends, > though the introduction seems to suggest it extends PKIX and does not > extend LDAP. It's not clear to me that it has any bearing on other > ASN.1-using protocols, such as SNMP or Kerberos. The document covers security implications of its suggested use in PKIX. For other uses, the attribute would appear to be informational, and not introduce any new security issues. Alan DeKok.
- [secdir] Review of draft-turner-deviceowner-attri… Alan DeKok
- Re: [secdir] Review of draft-turner-deviceowner-a… Jeffrey Hutzelman
- Re: [secdir] Review of draft-turner-deviceowner-a… Alan DeKok
- Re: [secdir] Review of draft-turner-deviceowner-a… Sean Turner