RE: Comments draft-ietf-smime-rfc2633bis-07.txt
"Blake Ramsdell" <blake@brutesquadlabs.com> Fri, 26 March 2004 09:00 UTC
Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA08362 for <smime-archive@lists.ietf.org>; Fri, 26 Mar 2004 04:00:19 -0500 (EST)
Received: from above.proper.com (localhost.vpnc.org [127.0.0.1]) by above.proper.com (8.12.11/8.12.8) with ESMTP id i2Q8dkSA067355; Fri, 26 Mar 2004 00:39:46 -0800 (PST) (envelope-from owner-ietf-smime@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.11/8.12.9/Submit) id i2Q8dk3v067354; Fri, 26 Mar 2004 00:39:46 -0800 (PST)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-smime@mail.imc.org using -f
Received: from brutesquadlabs.com (gtec136-m.isomedia.com [207.115.67.136] (may be forged)) by above.proper.com (8.12.11/8.12.8) with ESMTP id i2Q8dj8w067322 for <ietf-smime@imc.org>; Fri, 26 Mar 2004 00:39:45 -0800 (PST) (envelope-from blake@brutesquadlabs.com)
Received: from DEXTER ([192.168.0.6]) by brutesquadlabs.com with ESMTP ; Fri, 26 Mar 2004 00:39:40 -0800
From: Blake Ramsdell <blake@brutesquadlabs.com>
To: jimsch@exmsft.com
Cc: 'Ietf-Smime' <ietf-smime@imc.org>
Subject: RE: Comments draft-ietf-smime-rfc2633bis-07.txt
Date: Fri, 26 Mar 2004 00:39:40 -0800
Message-ID: <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAARMPfbnbp50SwK3EZjypY2MKAAAAQAAAA93uhv8AqtESp/ARqz4qDFwEAAAAA@brutesquadlabs.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.2627
Importance: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
In-Reply-To: <20040326072118.A086A6DC85@smtp3.pacifier.net>
Sender: owner-ietf-smime@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-ID: <ietf-smime.imc.org>
List-Unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
Content-Transfer-Encoding: 7bit
> -----Original Message----- > From: Jim Schaad [mailto:jimsch@nwlink.com] > Sent: Thursday, March 25, 2004 11:26 PM > To: 'Blake Ramsdell' > Cc: 'Ietf-Smime' > Subject: RE: Comments draft-ietf-smime-rfc2633bis-07.txt > > -----Original Message----- > From: Blake Ramsdell [mailto:blake@brutesquadlabs.com] > Sent: Thursday, March 25, 2004 8:44 PM > To: jimsch@exmsft.com > Cc: 'Ietf-Smime' > Subject: RE: Comments draft-ietf-smime-rfc2633bis-07.txt > > > -----Original Message----- > > From: Jim Schaad [mailto:jimsch@nwlink.com] > > Sent: Monday, March 08, 2004 2:34 AM > > To: 'Blake Ramsdell' > > Cc: Ietf-Smime > > Subject: Comments draft-ietf-smime-rfc2633bis-07.txt > > > > > 3. Section 1.1, p 4: Should there be a > dependency/reference to CMSALG > > here as well? > > Dunno. "No" for now. > > [JLS] - OK -- I think there needs to be an equivalent > statement for [CMSALG] > for algorithm parameter encoding. I may not understand this. Are you saying that I need to recursively include all of the PKIX and CMS references? CMSALG is implicitly required by CMS in this case, I think. Maybe this paragraph just needs to go away, or I need to understand better why CMSALG (which is required by CMS) needs to be called out explicitly. > > 9. Section 3.2.2, p last: Suggest adding the text: "An > smime-type > > parameters is not intended to give indications of security layers > > applied in the event of multiple levels of wrapping." > > What do you see as the confusion here? Not done. > > [JLS] If you do a E(S(Receipt)) - The correct smime-type > under the current > rules is "enveloped-data" not "signed-receipt". I think this > makes it more > explicit what is done for multiple layered messages. There is existing guidance: It is explicitly intended that this field be a suitable hint for mail client applications to indicate whether a message is "signed" or "encrypted" without having to tunnel into the CMS payload. I think that this paragraph is sufficient as-is -- what would you modify? Should it be something like: It is explicitly intended that this field be a suitable hint for mail client applications to indicate the "essence" of the message without having to tunnel into the CMS payload. Or something like that? I need more help. > > 11: Section 3.4.3.2: The text > > "The SHA-256, SHA-384 and SHA-512 algorithms [FIPS180-2] are not > > currently supported in S/MIME, and are included here for > > completeness." > > Is only partially correct. They are supported, just not > required by > > this document. I would like to clean this up by saying this in a > > tighter fashion. > > Could use some language, but this may have been handled when > I fixed it for > someone else. > > [JLS] The SHA-256, SHA-384, and SHA-512 algorithms are defined in > [FIBS180-2][PKIX-RSA-PKALGS]. Support is not currently > required in S/MIME > and the micalg values are included here for completeness. "The SHA-256, SHA-384 and SHA-512 algorithms [FIPS180-2] are not currently recommended in S/MIME, and are included here for completeness." Is the language change I made for someone else. > > 16. Is a specification MUST/SHOULD (section 1.1, p4) or > the document > > (section 1.1, p3) (The same word is used, but in completely > different > > meanings. Would not be a problem but for the MUST in p4 > potentially > > wanting to force meaning into p3). > > No idea -- reword and I'll try and parse it again. > > [JLS] Change specification to document in p3 and I'll be happy. > > 'This specification also discusses' > 'MUST follow the specifications in this document' OK, next round. > > 20. Section 2.4.1, p1: s/in the envelopedData/in the EnvelopedData/ > > 18. > > [JLS] - NAK "Same as your #18 and fixed". > > 21. Section 2.4.2, p1: Should add "This content type does > not provide > > privacy." > > And also add "and does not provide compression"? Should we > just remove "does > not provide authentication" from the EnvelopedData section? > Not changed. > > [JLS] Works for me. Next round. > > 24. I heard this comment at the last IETF meeting from > somebody. As > > I have had the same problem in a number of cases (esp with doing > > interop matrixes) I am throwing it out for your consideration: > > > > The use of the words must, should and may in lower case causes some > > confusion dealing with the question of - did the author > just forget to > > uppercase this or is it really not a protocol statement. > > SHOULD examine all > > instances of these words to see if a different word works just as > > well. > > Ugh. MAY. > > [JLS] - Yes Ugh - SHOULD. MIGHT next round? Blake
- Comments draft-ietf-smime-rfc2633bis-07.txt Jim Schaad
- RE: Comments draft-ietf-smime-rfc2633bis-07.txt Blake Ramsdell
- RE: Comments draft-ietf-smime-rfc2633bis-07.txt Paul Hoffman / IMC
- RE: Comments draft-ietf-smime-rfc2633bis-07.txt Jim Schaad
- RE: Comments draft-ietf-smime-rfc2633bis-07.txt Blake Ramsdell
- RE: Comments draft-ietf-smime-rfc2633bis-07.txt Russ Housley