Re: [lamps] CMP Update of CertificationRequest
"Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com> Tue, 25 May 2021 15:30 UTC
Return-Path: <hendrik.brockhaus@siemens.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5F7343A1078 for <spasm@ietfa.amsl.com>; Tue, 25 May 2021 08:30:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=siemens.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NZWeYuWASE8d for <spasm@ietfa.amsl.com>; Tue, 25 May 2021 08:30:03 -0700 (PDT)
Received: from EUR02-AM5-obe.outbound.protection.outlook.com (mail-eopbgr00047.outbound.protection.outlook.com [40.107.0.47]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F2AAE3A108E for <spasm@ietf.org>; Tue, 25 May 2021 08:30:02 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=k0CSit0+aucLwbxYe4r9P2UvRPmC6WSeDi35BJZRg2XIqRSNpJG/hk+ZuFvHg8xIKjYdOuJdqro31Q6ENA0QVql/m/CRcFld1H6k8VE9pNFljkr1YUjzhf9kHbk6yUbb5jiMpA67Xet/m32F/exXnXZ4wsjnEEx9RmpqH57A/umTG06l32fssUBQ0qYtKgdnyReYxL3hIxHBSmVznmkrHqDhl5CLUZKzDKboGnCJHTTqWIGIwo7ItgVzxz7h5+T8i2u8jVhn2B0qvDlK3XBH2gTIIkP1MQF9oe6hF8EHupq7xq07IdDjxgeyHaTSv6XfkEJcHpG5aoAFusMzghPLQA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=fX+Z2SDWSFU/sQkGZHWKfMvPFE964U4BRvwN7aJPA2c=; b=ScuP4zrdr4gc0WWWJ3MjT4NkDiCjiFyb/rHnW0ZLiuDeIYU2JQOG8iJc2ZAfqkrk+3p7I59Xbcj9qd94j8Hq21mkQOr+RibGijDDJMJfYNxL7S/nwSZqBrjmKg2YJXOr71nrk1NAu7VuVw0khGkI8KQbRC1GZZ4yLZvTJ+css18L+jzn8u9CugK6t0Y+vnEqsEZzeGRGdF+cHHGV4FPQJGUyB0xDehw/CqJlWTefn4ZsPN668TJkoNcbUHuBEEXCk2yljGBNOSwd79dyPjnjT1/Zo+iqsUTQ47jj78I4bwmhdqf9kCeCSxj1DO3c1izoqlQiOW9tkS9iE4ON2hmZjw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.onmicrosoft.com; s=selector1-siemens-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=fX+Z2SDWSFU/sQkGZHWKfMvPFE964U4BRvwN7aJPA2c=; b=d5Xn+YdosNg3rGBsNAXR2tQXH6CrKQRqkNL2MOG3AqFx74aAchD/6vvaOfGTX6OuA+wIYjcmvwYcV6j20p396SGmKN9cSopDh7psnjaWlxirWqvjPF1ONQsyztjkEO/GnWG21FYpxk0mYqBTG0pMcC8q9plCbBrw1E4ch+2nxlc=
Received: from AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:208:dd::17) by AM0PR10MB2595.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:208:130::27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4150.26; Tue, 25 May 2021 15:30:00 +0000
Received: from AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM ([fe80::8563:833c:2122:ae5c]) by AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM ([fe80::8563:833c:2122:ae5c%7]) with mapi id 15.20.4150.027; Tue, 25 May 2021 15:30:00 +0000
From: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>
To: Russ Housley <housley@vigilsec.com>
CC: LAMPS WG <spasm@ietf.org>
Thread-Topic: [lamps] CMP Update of CertificationRequest
Thread-Index: AQHXUAi0M5wR8FkyHU+zAT7w9uu3NqrzuDjggACKnoCAAAMnwIAAA/eAgAAHkoA=
Date: Tue, 25 May 2021 15:30:00 +0000
Message-ID: <AM0PR10MB2418992DF33BBC7D002558A3FE259@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM>
References: <25C71A2D-CA3E-44F4-B8C6-00049DB2C097@vigilsec.com> <AM0PR10MB2418FFBED75094786AE58E91FE259@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM> <1FF43785-E271-4C28-970D-59CCE0FD089C@vigilsec.com> <AM0PR10MB2418393BAC64A50ADBDA1B17FE259@AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM> <29E5B8AD-F177-4574-B1F6-9902596434D8@vigilsec.com>
In-Reply-To: <29E5B8AD-F177-4574-B1F6-9902596434D8@vigilsec.com>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Enabled=true; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_SetDate=2021-05-25T15:29:59Z; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Method=Standard; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Name=restricted-default; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_SiteId=38ae3bcd-9579-4fd4-adda-b42e1495d55a; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_ActionId=2f126041-eb8b-4154-b520-ca1788ff5e05; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_ContentBits=0
document_confidentiality: Restricted
authentication-results: vigilsec.com; dkim=none (message not signed) header.d=none;vigilsec.com; dmarc=none action=none header.from=siemens.com;
x-originating-ip: [147.161.169.19]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: c08a780f-fa9a-4635-8822-08d91f91f5e3
x-ms-traffictypediagnostic: AM0PR10MB2595:
x-microsoft-antispam-prvs: <AM0PR10MB25950BA74967562F0C8E85F3FE259@AM0PR10MB2595.EURPRD10.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(4636009)(346002)(376002)(396003)(136003)(39860400002)(366004)(6916009)(33656002)(76116006)(26005)(186003)(9686003)(2906002)(8936002)(55016002)(5660300002)(6506007)(53546011)(122000001)(4326008)(8676002)(83380400001)(38100700002)(15650500001)(316002)(66556008)(52536014)(478600001)(66946007)(66476007)(66446008)(64756008)(7696005)(86362001)(71200400001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: yDKq7L0a8B5ifCqrHh5YBZITuk7vJbsF1By85Ca2exohSqj9rdH3I9uFbf12NV1n1WeC82SpRVzFgfHK+eGsOlzR00bPxVJCWDKQJyqLZEDu9nrMHBDwS5M44Hkpg2xMFAsA3oJtfm6BXfgiiD92dm37Xb9lZ4nuLTJwKKyIX/O+ebDkB2MtwnycCTcvRKY1Mui2Cs0FvyEzriB6BMv7PM8zBqPpyYmsHj0wSmBRf98VyKG59sbJxye7ypdxMCIeiKm29ykq1knt3+VFdNtMfGklE3hESVnYGa1LRJrDs1yxT4K5NGjZIpzpkL2nH/oNdMkdwryccFSzzXne/SYiDetVbEbTEGaaQrI1HzhVxAv712L/zmPRbcVvNrk5EBUYMPOa+XTdlUw/SI3t3DRtI0yzwm624mzXqkOSWQt05jdM/kXciiVH/J2BKMTmpifHYuGjw/mS8YbguaP6J/IrgXNVjnVHOzK/9paMMXNJOSXBMfT8hakQXNBh8Jcye5xzLpZq82DBy2o8mgxzvU4OtJPXdlVpAM7FwUl71KeBA2Ai54ENpnba4/z4z7wvVACuK0ZDVnFOIkGWxIJuHmBoWFsopkG2daB/WXgOyGZpoJgkO8fVbCulBxn/aIumpRMAyHWjmuRtl455mVxTPr3GswLsTFmXDhu06SxxZdoTCrIAxfFC2/qmXCzO/QeQjZb6Tlfhy82DF3V/IOTSkXEvkRX/flJo2Ujb1F0oMdZAm8M/+Q1teMZS8CYIDwXBuEcTr9+M1M9uCf54LIRlYolddge6bbRIu8qrnZ9rmiLmXugeUsy9WTy6b0BBvkuFUJgmHQN+wroSSUi+F2gN9KJYIrdSt3t/Z1tbYImmcYG6gAhEDKCe5BmZEE7bSjJir+iPygf2Mps0nZc1rCdXYLfn1lNYq76+vkNveWe5byKgnD+W+vZPazjxZ6FtjqS9Hga0ZJRgJvr6RHhN/vZv3cNht8tD42Dpw/SpUCY7VjVJ5IF+RiGEeMVEo+QTRF7Te+XEBsPi9pVUUuINubuTayjGmM/I1EVCfO3vTvjgGineKYw/box7o1KkZqh+9erpdya4wdX1BLD0gjLgkCpyEQdbHnplqKaBy57lKcPbFxFLyy5YttcYbSBL5/QN45r6Di2OnqSv/ria/ndE9q4pIkaFxeD/PTNIsKfAwJyHr1mJKyOBcbKoVe9c7XnuzDau2Fn9I6i656aw8B5n80a23IZ1i9Bfcvl4NhvjUK8F6WnRiRzO5sWrXGNY46MN1/v1WckMhtw553zvWqrPWcdFzqEqzMhlhGuNijeL4+x/KuvWKeTiqUl1roYIQSbYWJXcweeb
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR10MB2418.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: c08a780f-fa9a-4635-8822-08d91f91f5e3
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 May 2021 15:30:00.4904 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: l4u1r/sx0ZeZW6Ay3thFKWWfs6LfqE0IBOUWnRnrzA2y0tCtJn/uRiNUANzOZGZUEjdHSxipFBw95B6aG26ExoikdhynZzjuvIlSA8WUIrc=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR10MB2595
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/76lgYD4nR-PFCs9UkdsfRC2qKuo>
Subject: Re: [lamps] CMP Update of CertificationRequest
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 May 2021 15:30:08 -0000
Russ I am still a little confused... Sorry I am uncertain what you mean by new and old ASN.1 syntax. > Von: Russ Housley <housley@vigilsec.com> > > > On May 25, 2021, at 10:45 AM, Brockhaus, Hendrik > <hendrik.brockhaus@siemens.com> wrote: > > > > Russ > > > >> Von: Russ Housley <housley@vigilsec.com> > >> > >> However, RFC 6402 did choose to locally define CertificationRequest. > >> I believe this was done because there was a place to IMPORT for the > >> newer ASN.1 syntax, but not the older. That way, the two modules are > >> defining exactly the same things, even though the newer syntax could > IMPORT it from RFC 2986. > >> > >> Maybe we should continue to IMPORT from RFC 2986 in the newer ASN.1 > >> syntax, and define locally in the older ASN.1 syntax, with a comment > >> that this structure matches the one defined in RFC 2986. This > >> definition can be lifted from RFC 6402, where Jim Schaad already did that > work. > > > > Do you think we should change this and directly add the new syntax from RFC > 6402 to modules in CMP Updates? > > Suggestion: > > New ASN.1 syntax: IMPORT from RFC 2986 Do you refer to CMP Updates Appendix A.2 here and should I change the import of CertificationRequest from RFC 5912 to the one in RFC 2986 ?-) > > Old ASN.1 syntax: IMPORT from RFC 6402 Do you refer to CMP Updates Appendix A.1 here and should I exchange the import of CertificationRequest from RFC 2986 to the definition from RFC 6402 Appendix A.1. Hendrik
- [lamps] CMP Update of CertificationRequest Russ Housley
- Re: [lamps] CMP Update of CertificationRequest Brockhaus, Hendrik
- Re: [lamps] CMP Update of CertificationRequest Russ Housley
- Re: [lamps] CMP Update of CertificationRequest Brockhaus, Hendrik
- Re: [lamps] CMP Update of CertificationRequest Russ Housley
- Re: [lamps] CMP Update of CertificationRequest Brockhaus, Hendrik
- Re: [lamps] CMP Update of CertificationRequest Russ Housley
- Re: [lamps] CMP Update of CertificationRequest Brockhaus, Hendrik
- Re: [lamps] CMP Update of CertificationRequest Russ Housley
- Re: [lamps] CMP Update of CertificationRequest Brockhaus, Hendrik