Re: [sidr] WGLC for draft-ietf-sidr-algorithm-agility-03

Danny McPherson <danny@tcb.net> Thu, 10 November 2011 03:01 UTC

Return-Path: <danny@tcb.net>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 22F8221F8437 for <sidr@ietfa.amsl.com>; Wed, 9 Nov 2011 19:01:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.432
X-Spam-Level:
X-Spam-Status: No, score=-102.432 tagged_above=-999 required=5 tests=[AWL=0.166, BAYES_00=-2.599, HTML_MESSAGE=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OWNJl5d7yixi for <sidr@ietfa.amsl.com>; Wed, 9 Nov 2011 19:01:26 -0800 (PST)
Received: from uu.ops-netman.net (morrowc-1-pt.tunnel.tserv13.ash1.ipv6.he.net [IPv6:2001:470:7:36e::2]) by ietfa.amsl.com (Postfix) with ESMTP id 080AA11E8086 for <sidr@ietf.org>; Wed, 9 Nov 2011 19:01:24 -0800 (PST)
Received: from mailserver.ops-netman.net (mailserver.ops-netman.net [208.76.12.119]) by uu.ops-netman.net (Postfix) with ESMTP id 020A61900AC; Thu, 10 Nov 2011 03:01:22 +0000 (UTC)
Received: from dul1dmcphers-m1.home (pool-98-118-240-226.clppva.fios.verizon.net [98.118.240.226]) (Authenticated sender: danny@OPS-NETMAN.NET) by mailserver.ops-netman.net (Postfix) with ESMTPSA id BF4BD320283; Thu, 10 Nov 2011 03:01:21 +0000 (UTC)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: multipart/alternative; boundary="Apple-Mail-6--1010501608"
From: Danny McPherson <danny@tcb.net>
In-Reply-To: <alpine.BSF.2.00.1111081447310.7079@fledge.watson.org>
Date: Wed, 09 Nov 2011 22:01:21 -0500
Message-Id: <F2903510-8BAC-48F5-A197-C79A43E22D10@tcb.net>
References: <Pine.WNT.4.64.1110201037470.4820@SMURPHY-LT.columbia.ads.sparta.com> <alpine.BSF.2.00.1111081447310.7079@fledge.watson.org>
To: Samuel Weiler <weiler@watson.org>
X-Mailer: Apple Mail (2.1084)
Cc: sidr@ietf.org
Subject: Re: [sidr] WGLC for draft-ietf-sidr-algorithm-agility-03
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Nov 2011 03:01:27 -0000

On Nov 8, 2011, at 2:49 PM, Samuel Weiler wrote:

> This document is basically ready for publication.  While it is
> painfully long, it is arguably one of the better written documents
> this WG has produced.  My thanks to the editors for their efforts.

Sam, 
So am I crazy for thinking that putting all this effort in place and then simply
saying "just use expired certificates, even after rollovers, and even from the 
algorithm that you just rolled over from, and even though they may have 
previously been in CRLs but aren't now because they're expired" is even 
remotely acceptable?

I don't see how we can publish this until that issue is resolved.

-danny