IETF Logo Mail Archive

Re: [lamps] Call for adoption for draft-ito-documentsigning-eku

Ryan Sleevi <ryan-ietf@sleevi.com> Thu, 29 July 2021 18:04 UTC

Return-Path: <ryan.sleevi@gmail.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 358A63A1310 for <spasm@ietfa.amsl.com>; Thu, 29 Jul 2021 11:04:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.646
X-Spam-Level:
X-Spam-Status: No, score=-1.646 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.249, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vM8LsmZtyEsw for <spasm@ietfa.amsl.com>; Thu, 29 Jul 2021 11:04:35 -0700 (PDT)
Received: from mail-pj1-f42.google.com (mail-pj1-f42.google.com [209.85.216.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F15D63A130F for <spasm@ietf.org>; Thu, 29 Jul 2021 11:04:34 -0700 (PDT)
Received: by mail-pj1-f42.google.com with SMTP id b6so11421564pji.4 for <spasm@ietf.org>; Thu, 29 Jul 2021 11:04:34 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=UXirCfX2odCtZRYxO3Lv9qX+qZAickVxJQy/FYENYdY=; b=q3nqViQBVZRPSajVNZxIF3sTqvd+4qR1YYvJ+rCptlJUZZvSgZIQw+I6Hycsoe9Ld3 HDi1xFAnh5DlaWgddF+zw2W5A+0e5ArsGOnxJU7jg38GEGao8+tpnQD+6s0+i7WBjuK0 zjCuWzz9LDMh6u0MYXTti+THyhibZeEYmjt1ybQuzI8CeV1iMJgKJfO1Zxry5tlHyq67 J1oDIQ5MgnZx10qKDw0Zf9592VvXYls1wNIGjxzyUTudF+StboB2S2udSuYVA7cdTLaR mFAiLs7Up9iw+YGg+2TdLfkGvs1mUX/Ty2NFPs6ajxuSo+zwN3uY/wzPxW3B9sITGA8g UdTA==
X-Gm-Message-State: AOAM532SzMGxpEtRJi/PTsQoTEYyM0YXxcVJq8RfWgwttLs2cfd2+6+I dfR9TTic5Rvxa+wwLkexiw42nyoXNxU=
X-Google-Smtp-Source: ABdhPJwG45PSZhgBgakZJeRuJ9OA+59Gg4/jeao1HvaehOi9WJbPZtds7f3tAPXG0s9n1ZgA8jJefw==
X-Received: by 2002:a05:6a00:1713:b029:332:7eca:41a1 with SMTP id h19-20020a056a001713b02903327eca41a1mr6332465pfc.26.1627581873971; Thu, 29 Jul 2021 11:04:33 -0700 (PDT)
Received: from mail-pl1-f173.google.com (mail-pl1-f173.google.com. [209.85.214.173]) by smtp.gmail.com with ESMTPSA id i25sm4366529pfo.20.2021.07.29.11.04.33 for <spasm@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 29 Jul 2021 11:04:33 -0700 (PDT)
Received: by mail-pl1-f173.google.com with SMTP id n10so7905666plf.4 for <spasm@ietf.org>; Thu, 29 Jul 2021 11:04:33 -0700 (PDT)
X-Received: by 2002:a17:90a:550a:: with SMTP id b10mr16371450pji.103.1627581873126; Thu, 29 Jul 2021 11:04:33 -0700 (PDT)
MIME-Version: 1.0
References: <CD589623-52EE-4958-80AB-73F0CFB3A36E@vigilsec.com> <CAErg=HF_hcXO=9=KJh5EBEov4ybS_8g4xF=cANL9+83UvP0zvQ@mail.gmail.com> <adf86f46-093f-756f-8292-9b5e088f4344@lear.ch> <CAErg=HEUFV2F8R8g8e6yCDKz_e6RebNyB5Zb2Lvgn4oc3BtE-w@mail.gmail.com> <CO6PR14MB4468A7A5EB138542CEBA5D9CEAE99@CO6PR14MB4468.namprd14.prod.outlook.com> <CAErg=HH4aDgju=8C7Neq_4H19EX8S2inNd9fMAMYH3h95S48Rg@mail.gmail.com> <CO6PR14MB44688BC4188063BCA54E80C4EAE99@CO6PR14MB4468.namprd14.prod.outlook.com> <CAErg=HGDA+16N4xhgMvuQz25DqD+_nkiFC+OuAJMkFzYYqFV0w@mail.gmail.com> <2550c1c3-1400-b380-c9ad-dad59286feee@lear.ch> <CAErg=HGnKMNNyaf-=w+DmqfXg7XYbKD2Ah-WUxf96xNN5Ecikg@mail.gmail.com> <CAErg=HFVx5JTog5_aWOrx3vAm5o=LxHfwxEqkVM8FifYCm2P+A@mail.gmail.com> <CAGgd1OdcLujCJQOaTGvS_Hkqg1=pUP-5Mu=06kqkrgFU3fVG5g@mail.gmail.com> <CAErg=HGL-s2v9=5J64GnaaFxWN4QYWMUnDRPcpC0DN5XgM1-yw@mail.gmail.com> <CAGgd1OemU0qX1Wsmx7YPMTiexKz9hmhKj3c89iT3BcrahiUP8A@mail.gmail.com> <7F1B7734-6CC2-4BDB-B4E9-67E846197387@ll.mit.edu>
In-Reply-To: <7F1B7734-6CC2-4BDB-B4E9-67E846197387@ll.mit.edu>
From: Ryan Sleevi <ryan-ietf@sleevi.com>
Date: Thu, 29 Jul 2021 14:04:22 -0400
X-Gmail-Original-Message-ID: <CAErg=HF4aXAf8R5hqxwmrHQo=Rs2szWiueRwx+g+DK-tRwQ=iw@mail.gmail.com>
Message-ID: <CAErg=HF4aXAf8R5hqxwmrHQo=Rs2szWiueRwx+g+DK-tRwQ=iw@mail.gmail.com>
To: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>
Cc: Deb Cooley <debcooley1@gmail.com>, Ryan Sleevi <ryan-ietf@sleevi.com>, LAMPS WG <spasm@ietf.org>, "Cooley, Dorothy E" <decoole@nsa.gov>
Content-Type: multipart/alternative; boundary="00000000000064036f05c846ef93"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/5dZNVZRhpUxYWPE8duFuZSD369w>
Subject: Re: [lamps] Call for adoption for draft-ito-documentsigning-eku
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Jul 2021 18:04:36 -0000

On Thu, Jul 29, 2021 at 11:54 AM Blumenthal, Uri - 0553 - MITLL <
uri@ll.mit.edu> wrote:

> “A bazillion of EKUs” is a *much* greater risk, in my opinion. Which I’d
> like to avoid *at all costs*.
>

Since the scenario here is largely hyperbolic, entirely unrealistic, and I
think reflects a misunderstanding of the proposal, perhaps you can clarify:

Do you share the same concerns regarding certificatePolicies?

v2.23.0 | Report a Bug | By Email