IETF Logo Mail Archive

RE: Comments draft-ietf-smime-rfc2633bis-07.txt

Russ Housley <housley@vigilsec.com> Fri, 26 March 2004 15:11 UTC

Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA24317 for <smime-archive@lists.ietf.org>; Fri, 26 Mar 2004 10:11:50 -0500 (EST)
Received: from above.proper.com (localhost.vpnc.org [127.0.0.1]) by above.proper.com (8.12.11/8.12.8) with ESMTP id i2QElqr8016755; Fri, 26 Mar 2004 06:47:52 -0800 (PST) (envelope-from owner-ietf-smime@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.11/8.12.9/Submit) id i2QElqBi016754; Fri, 26 Mar 2004 06:47:52 -0800 (PST)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-smime@mail.imc.org using -f
Received: from woodstock.binhost.com (woodstock.binhost.com [144.202.240.3]) by above.proper.com (8.12.11/8.12.8) with SMTP id i2QElpCZ016748 for <ietf-smime@imc.org>; Fri, 26 Mar 2004 06:47:51 -0800 (PST) (envelope-from housley@vigilsec.com)
Received: (qmail 3339 invoked by uid 0); 26 Mar 2004 14:38:27 -0000
Received: from unknown (HELO Russ-Laptop.vigilsec.com) (141.156.220.30) by woodstock.binhost.com with SMTP; 26 Mar 2004 14:38:27 -0000
Message-Id: <5.2.0.9.2.20040326093225.03adc888@mail.binhost.com>
X-Sender: housley@mail.binhost.com
X-Mailer: QUALCOMM Windows Eudora Version 5.2.0.9
Date: Fri, 26 Mar 2004 09:47:27 -0500
To: Blake Ramsdell <blake@brutesquadlabs.com>
From: Russ Housley <housley@vigilsec.com>
Subject: RE: Comments draft-ietf-smime-rfc2633bis-07.txt
Cc: ietf-smime@imc.org, jimsch@exmsft.com
In-Reply-To: <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAARMPfbnbp50S wK3EZjypY2MKAAAAQAAAAR/p96J7N0E+uAoyEYCZkhAEAAAAA@brutesquadlabs.com>
References: <20040308102917.989E58ABD7@smtp2.pacifier.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Sender: owner-ietf-smime@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-ID: <ietf-smime.imc.org>
List-Unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>

Blake:

> > 1.  I just realized there is no abstract for this document.  Is one
> > required?
>
>Don't know -- someone comment.

There is supposed to be one.  RFC 2633 got through without one.  Today's 
IESG would not have let it happen.  I suggest:

This document defines S/MIME (Secure/Multipurpose Internet Mail Extensions) 
version 3.1.  S/MIME provides a consistent way to send and receive secure 
MIME data. Digital signatures provide authentication, message integrity and 
non-repudiation with proof of origin.  Encryption provides data 
confidentiality.

> > 2.  Section 2, p1:  s/[CMS] provides/[CMSALG] provides/
>
>Done.
>
> > 3.  Section 1.1, p 4: Should there be a dependency/reference
> > to CMSALG here
> > as well?
>
>Dunno. "No" for now.

I think it is a good idea to include the reference.

>[snip]
>
> > 18.  Section 2.4.1, p1:  s/signedData/SignedData/
> >       - also envelopedData vs EnvelopedData and compressedData vs
> > CompressedData.
> >       signedData does not actually exist in the CMS
> > documents.  The type
> > is SignedData or the concept is signed data.  I think we need
> > to clean this
> > up.
> >       Russ:  Please note there is one section in CMS that needs to be
> > cleaned up in the same way.

Thanks.  It will be fixed in rfc3369bis-02.

> > 21.  Section 2.4.2, p1: Should add "This content type does not provide
> > privacy."
>
>And also add "and does not provide compression"? Should we just remove
>"does not provide authentication" from the EnvelopedData section? Not
>changed.

I think we should be talking about "confidentiality" not "privacy."  See 
the definitions of these words in RFC 2828.

>[snip]

Russ

v2.23.0 | Report a Bug | By Email