[sidr] [Technical Errata Reported] RFC6487 (3238)
RFC Errata System <rfc-editor@rfc-editor.org> Thu, 31 May 2012 14:56 UTC
Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D3E521F86CF for <sidr@ietfa.amsl.com>; Thu, 31 May 2012 07:56:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.473
X-Spam-Level:
X-Spam-Status: No, score=-102.473 tagged_above=-999 required=5 tests=[AWL=0.127, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0IYPMdc5VaNU for <sidr@ietfa.amsl.com>; Thu, 31 May 2012 07:56:26 -0700 (PDT)
Received: from rfc-editor.org (rfc-editor.org [IPv6:2001:1890:123a::1:2f]) by ietfa.amsl.com (Postfix) with ESMTP id 5EB0721F86BD for <sidr@ietf.org>; Thu, 31 May 2012 07:56:26 -0700 (PDT)
Received: by rfc-editor.org (Postfix, from userid 30) id F363272E004; Thu, 31 May 2012 07:55:43 -0700 (PDT)
To: gih@apnic.net, ggm@apnic.net, robertl@apnic.net, stbryant@cisco.com, adrian@olddog.co.uk, alexey.melnikov@isode.com, Sandra.Murphy@sparta.com, morrowc@ops-netman.net
From: RFC Errata System <rfc-editor@rfc-editor.org>
Message-Id: <20120531145543.F363272E004@rfc-editor.org>
Date: Thu, 31 May 2012 07:55:43 -0700
Cc: rfc-editor@rfc-editor.org, sidr@ietf.org
Subject: [sidr] [Technical Errata Reported] RFC6487 (3238)
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 31 May 2012 14:56:27 -0000
The following errata report has been submitted for RFC6487, "A Profile for X.509 PKIX Resource Certificates". -------------------------------------- You may review the report below and at: http://www.rfc-editor.org/errata_search.php?rfc=6487&eid=3238 -------------------------------------- Type: Technical Reported by: Stephen Kent <kent@bbn.com> Section: 6.3 Original Text ------------- ExtendedKeyUsage The CA MAY honor ExtendedKeyUsage extensions of keyCertSign and cRLSign if present, as long as this is consistent with the BasicConstraints SubjectType sub-field, when specified. Corrected Text -------------- ExtendedKeyUsage The CA MAY honor ExtendedKeyUsage extensions in requests for EE certificates that are issued to routers or other devices, consistent with values specified in Standards Track RFCs that adopt this profile and that identify application-specific requirements that motivate the use of such EKUs. Notes ----- The current text appears to be the result of a "cut and paste" error. It is essentially identical to the text for the Key Usage extension, and names two fields that appear in that extension, not in an EKU extension. The text I propose above parallels what appears in Section 4.8.5, which describes how an EKU MAY be used in RPKI certificates. Instructions: ------------- This errata is currently posted as "Reported". If necessary, please use "Reply All" to discuss whether it should be verified or rejected. When a decision is reached, the verifying party (IESG) can log in to change the status and edit the report, if necessary. -------------------------------------- RFC6487 (draft-ietf-sidr-res-certs-22) -------------------------------------- Title : A Profile for X.509 PKIX Resource Certificates Publication Date : February 2012 Author(s) : G. Huston, G. Michaelson, R. Loomans Category : PROPOSED STANDARD Source : Secure Inter-Domain Routing Area : Routing Stream : IETF Verifying Party : IESG
- [sidr] [Technical Errata Reported] RFC6487 (3238) RFC Errata System
- Re: [sidr] [Technical Errata Reported] RFC6487 (3… Roque Gagliano (rogaglia)
- Re: [sidr] [Technical Errata Reported] RFC6487 (3… Randy Bush
- Re: [sidr] [Technical Errata Reported] RFC6487 (3… Stephen Kent
- Re: [sidr] [Technical Errata Reported] RFC6487 (3… Randy Bush
- Re: [sidr] [Technical Errata Reported] RFC6487 (3… Stephen Kent
- Re: [sidr] [Technical Errata Reported] RFC6487 (3… Stewart Bryant
- Re: [sidr] [Technical Errata Reported] RFC6487 (3… Stephen Kent