Re: [lamps] Starting work to CAA and SHAKE
Phillip Hallam-Baker <phill@hallambaker.com> Sun, 17 September 2017 22:26 UTC
Return-Path: <hallam@gmail.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 781E41330B2 for <spasm@ietfa.amsl.com>; Sun, 17 Sep 2017 15:26:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.398
X-Spam-Level:
X-Spam-Status: No, score=-2.398 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.199, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id feI3EooB70i0 for <spasm@ietfa.amsl.com>; Sun, 17 Sep 2017 15:26:22 -0700 (PDT)
Received: from mail-io0-x22d.google.com (mail-io0-x22d.google.com [IPv6:2607:f8b0:4001:c06::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5597A13304D for <spasm@ietf.org>; Sun, 17 Sep 2017 15:26:22 -0700 (PDT)
Received: by mail-io0-x22d.google.com with SMTP id e189so14904869ioa.4 for <spasm@ietf.org>; Sun, 17 Sep 2017 15:26:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=mJRezggiT5KjMWLld1Ec6+lI63cd1q8RUmE0Vme/dI0=; b=GzXd9J43sWR52GM2RKKjG9VO2Ry1YvnMaWYTKZRX6VDUBMZVDbzuxQKjUJqm29Fs3P e7OwQgBipctxx2QEGZB51evWpew76J+VSdKJ2+epQ6/WMF8zYwELpo4NPRlrjYgq8dn0 XbUNLifExS8ZnpVzNMGXTlKjC9TkUHQ1/ErJWfFCrfl93vlvZq/waqIiy7U8GBuCD+kT hVjZjpyvzxvbwsgZq2GmkQcEi1qTsvKEqiTEEKThHZ/exaOfFYH2l8Sn9ZkQw/VxMBqr JDjTaAo7PrkGGwxrPllz5u8Ce3LqpkzheHVY+pEa30WVZofTOOh8eRX9yNfq60bhokt2 Ik7A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=mJRezggiT5KjMWLld1Ec6+lI63cd1q8RUmE0Vme/dI0=; b=alqo0du7tGTohEv5/Ifw8KMxCEI3UMfK2ZLyiRJ1Svpmsp5djyvnazrIcsZ0qHnu+0 HUpnNn+Lfse52bdnk9tv5LEDKwInPIe0je5Oo1BbcrjmN3KGNvrht4KecgewCgcMyfWt c24M5ATlZId75Ahxa1KTcFO6n/rZmxt674NH7ejRL1m217IYlc5AdSucw9QiZZLcjDi+ KN86iguAHxITZMT8aSwPB/kJ1BGE73FB1EbP/IxNvsZmjwIR+qiN+Wkl2jKeqcOBibnT Ynptls1kHi7CnXPt3gZbg2FJKREEsvl3f6DfLRDa3sWb8GhpPnWk2tYv9YE0SFdyEco+ 63mQ==
X-Gm-Message-State: AHPjjUiuFZfaWZjVEAm/Hcm3JiyEZmZ3KMOX7rP7Ofcjww3KeOHRgyK6 4jHoVVN/hx79dW/e3XMwYKCyeDipBUbQXdQlHNs=
X-Google-Smtp-Source: AOwi7QDMebbwoAYGHdd85g3gIYemBdn/Eri+J8/o01AdJJVXA9i3UFWMdLrazkKg3ufMwyPG3I3g0WeW+SmlFLROhvE=
X-Received: by 10.202.79.68 with SMTP id d65mr36311124oib.246.1505687181514; Sun, 17 Sep 2017 15:26:21 -0700 (PDT)
MIME-Version: 1.0
Sender: hallam@gmail.com
Received: by 10.157.46.177 with HTTP; Sun, 17 Sep 2017 15:26:20 -0700 (PDT)
In-Reply-To: <71E706DD-F33D-4689-B1E4-65B4ED579027@akamai.com>
References: <D774A9B1-F765-4BDA-9D78-D584B4B0EFF8@vigilsec.com> <BB336464-9936-450E-9463-0B18F588BAC4@akamai.com> <80086CAE-8B03-4E3B-8715-07DDD1B00A0D@vigilsec.com> <CAMm+LwidOWtFqba=MGsvYtUeg+ggW-KjzTU5WjXzwr3G2j-DfQ@mail.gmail.com> <71E706DD-F33D-4689-B1E4-65B4ED579027@akamai.com>
From: Phillip Hallam-Baker <phill@hallambaker.com>
Date: Sun, 17 Sep 2017 18:26:20 -0400
X-Google-Sender-Auth: yp7-XrVpQY74oFxjsGeVyVNO5Fc
Message-ID: <CAMm+LwgfJu90a4126=Gj-DLkvC7FnDrFWHH-A88yME4HMRarNA@mail.gmail.com>
To: "Salz, Rich" <rsalz@akamai.com>
Cc: Russ Housley <housley@vigilsec.com>, "spasm@ietf.org" <spasm@ietf.org>
Content-Type: multipart/alternative; boundary="001a113d707698dc7e05596a1dcd"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/GIr8SQz0-GuP7kDKvQDtfo_SAB4>
Subject: Re: [lamps] Starting work to CAA and SHAKE
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 17 Sep 2017 22:26:26 -0000
Thinking about the issue a bit more. What I think we probably need is a substantial appendix or a separate section setting out all the curlicues and complications of the discovery algorithm. It is not just the CNAME issue that is causing problems, it is also the DNSSEC part. And in particular it is the fact that DNSSEC causes DNAMEs to appear on the wire as CNAMEs. On Sun, Sep 17, 2017 at 5:57 PM, Salz, Rich <rsalz@akamai.com> wrote: > I’m will get DNS folks to help with whatever we do on CAA. I think a > brand new doc might be better than still working the errata. Phill would > be a fine editor. > > >
- [lamps] Starting work to CAA and SHAKE Russ Housley
- Re: [lamps] Starting work to CAA and SHAKE Salz, Rich
- Re: [lamps] Starting work to CAA and SHAKE Dr. Pala
- Re: [lamps] Starting work to CAA and SHAKE Russ Housley
- Re: [lamps] Starting work to CAA and SHAKE Russ Housley
- Re: [lamps] Starting work to CAA and SHAKE Phillip Hallam-Baker
- Re: [lamps] Starting work to CAA and SHAKE Salz, Rich
- Re: [lamps] Starting work to CAA and SHAKE Phillip Hallam-Baker
- Re: [lamps] Starting work to CAA and SHAKE Dang, Quynh (Fed)
- Re: [lamps] Starting work to CAA and SHAKE Panos Kampanakis (pkampana)
- [lamps] CMS with SHAKE128 and SHAKE256 draft. Dang, Quynh (Fed)