IETF Logo Mail Archive

Re: [lamps] S/MIME fix

Tim Hollebeek <tim.hollebeek@digicert.com> Wed, 16 May 2018 19:59 UTC

Return-Path: <tim.hollebeek@digicert.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 31F2512D957 for <spasm@ietfa.amsl.com>; Wed, 16 May 2018 12:59:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.599, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9aPCHzgmyq9N for <spasm@ietfa.amsl.com>; Wed, 16 May 2018 12:59:44 -0700 (PDT)
Received: from mail1.bemta8.messagelabs.com (mail1.bemta8.messagelabs.com [216.82.243.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 19FC912D88B for <SPASM@ietf.org>; Wed, 16 May 2018 12:59:43 -0700 (PDT)
Received: from [216.82.242.36] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-9.bemta-8.messagelabs.com id 24/7C-15733-FAD8CFA5; Wed, 16 May 2018 19:59:43 +0000
X-Brightmail-Tracker: H4sIAAAAAAAAA1WTaUwTQRTHO7vbdkFqhoXKs4JAg4liIHhjjEY TjajxAuNRCbrVhTb2wG5VNCZi4lmqglKlFSmi8QOKMQaDF0ZLvPC+MFE8UL6IGjBeWJDa7dTr y+Q3//97b96bzLA016PQsEKRXbBZeJNWEcncSz/CpZ3c1avL6HMPyizrOogyq1pWTKay7h//S mUdPfqDmkfp5EaL3lq0XG5oPn4JFX5cVHT1/gG6GNXkOFAky2AnDT86vZS04XApBc7m80qyeY Wgy9HJOFAEq8AZ0NJ4nZI4FmdBha9bIXEMToTGmlIl0ZPgTNMpuQOxQR4JX+8Ok2QGD4E7Dj+ SWIVzoe48KcnheeBt2BfSI/B8eLl/W6gMwgPge/OJ0FE0joNn7d4QA46Ftge3FITV8O5tn5zE 58Khz76wngRNOx6E4xPgobcESbMArqfA37glbKRBl8tFE+MygteB/QqpacCp0F0WjlkFNz5tV RKeCYHbe2jCg6F2VxtDuJ6GytoswvFQdvIAQ2q2yqGl6iwiU66E8lqpO8l4i6Dhi5shN6eBF4 93olKU6vlnUk8wjsZeBG1vKuWe0JVFw013O0OCdND7/YOCcCq46jrC+nA4dvg97QkOQeNhcO2 R9n9Z4glQ4b8STk2G8pI2JeEx8P7qJ1SN+tWioaJgWyvY0kaPTNfbjAUGu5k3mtJGZGSmmwVR 5AsEE68X01dYzadR8PFtksnQWfTu2FIfGshSWrVqd1+Pjuuvt65cb+BFwzLbGpMg+lA8y2pBV eLs1XHRNqFAKMo3moIv+LcNbJQ2VjVWslViIW8WjQXEakbj2db6vU6a9XWWB9e70soxFqtF0M SpCqUELCUY1lj+lPv9Jx6iBE2MCslkMi6qULCZjfb//Q4UxyJtjKpGqhJltNj/nNoRbIgKNoQ u90gN2fm/lqYYVTdUrRrF5SZaJ52eooyunP2EdS7snRhDJf5MbBqo7t7if5VXrM7XD81M6ajP 9ozLg6d7Li44N6du82p3xMYWV+u3zavLctzPz93IOzMtP5A07oL7Az13bYrTG60LJM9afGvmx qWBJet6Ih3qqOwZ07uo+Qnxd2ZMm+p/sb103ybXqA1aRjTwI1Jpm8j/AkzWYaEOBAAA
X-Env-Sender: tim.hollebeek@digicert.com
X-Msg-Ref: server-10.tower-94.messagelabs.com!1526500781!177578471!1
X-Originating-IP: [207.46.163.18]
X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass
X-StarScan-Received:
X-StarScan-Version: 9.9.15; banners=-,-,-
X-VirusChecked: Checked
Received: (qmail 44744 invoked from network); 16 May 2018 19:59:42 -0000
Received: from mail-dm3nam03lp0018.outbound.protection.outlook.com (HELO NAM03-DM3-obe.outbound.protection.outlook.com) (207.46.163.18) by server-10.tower-94.messagelabs.com with AES256-SHA256 encrypted SMTP; 16 May 2018 19:59:42 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=BdcJrCLQOnk8JQpgqJNwU1pPmY2yWNxa8p70VYnoAJ0=; b=CwDUM9Ue8l3ec8+baJqfqrz8AFz5JtzKDaM/PE4z3Tz7r1NzClMtWAxzDeWslUwTG2EO/5f8jYbMP38DDg60Y9d9cwYN/pmAhdpJjx8G7N8+fiJfMw2aKAriZ4GquKW8ERLjeOrV0d1VAKhpKrtQB9RkqCWFXnXSwinBxW943DI=
Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1604.namprd14.prod.outlook.com (10.171.175.150) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.776.11; Wed, 16 May 2018 19:59:40 +0000
Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::40d8:6bed:a1a5:de4e]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::40d8:6bed:a1a5:de4e%3]) with mapi id 15.20.0776.010; Wed, 16 May 2018 19:59:40 +0000
From: Tim Hollebeek <tim.hollebeek@digicert.com>
To: Phillip Hallam-Baker <phill@hallambaker.com>, SPASM <SPASM@ietf.org>
Thread-Topic: [lamps] S/MIME fix
Thread-Index: AQHT7SJdOmZQG8Umo0udkM2b+/ucJqQyxYkA
Date: Wed, 16 May 2018 19:59:40 +0000
Message-ID: <BN6PR14MB1106A2890EE8B9243B4EA08C83920@BN6PR14MB1106.namprd14.prod.outlook.com>
References: <CAMm+Lwj=VTBHYxH-iOaqEUHxALpBfSXWG3p0+xxUnY+o4CmGvA@mail.gmail.com>
In-Reply-To: <CAMm+Lwj=VTBHYxH-iOaqEUHxALpBfSXWG3p0+xxUnY+o4CmGvA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [98.111.202.5]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BN6PR14MB1604; 7:cnQeC/gjx9aAAzRwqQZ9rm7zYyAKzWfLHi8iIRamz3xWPMz2IExWQJ41JF+LwrwkxYBweVrHLKexrKTPpJll5LLwx8jsQjsiRCBjxiBVtvW7HDQvG2ISTFcKwdAQ0hLIsKkzpsrvwN4YIF51KSJBYef+rgEmTvYpBlMIfnCKQxBpIbmpsx7syz/tDzHExn4yV0PAOew0sQRoCRWagihrUaW/aL9wgjw15NQfVTUVwCmaqM06Eok4/+eHubKIXu8w
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1604;
x-ms-traffictypediagnostic: BN6PR14MB1604:
x-microsoft-antispam-prvs: <BN6PR14MB1604BDC4092A85A7B6F5B5BE83920@BN6PR14MB1604.namprd14.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(21748063052155);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(5005006)(8121501046)(93006095)(93001095)(3231254)(944501410)(52105095)(10201501046)(3002001)(149027)(150027)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123564045)(20161123562045)(20161123560045)(6072148)(201708071742011); SRVR:BN6PR14MB1604; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1604;
x-forefront-prvs: 0674DC6DD3
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(346002)(376002)(39860400002)(366004)(39380400002)(189003)(199004)(3280700002)(476003)(3846002)(44832011)(790700001)(66066001)(99286004)(486006)(33656002)(3660700001)(11346002)(446003)(8676002)(186003)(8936002)(81166006)(6506007)(81156014)(2900100001)(76176011)(7696005)(7736002)(26005)(102836004)(2906002)(478600001)(6116002)(54896002)(14454004)(6306002)(9686003)(5660300001)(5250100002)(110136005)(55016002)(6436002)(74316002)(99936001)(97736004)(68736007)(53936002)(106356001)(229853002)(25786009)(105586002)(6246003)(316002)(86362001); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1604; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: XjQ0oe1saSgkhwguxos6t1qBTNkONODfKZUfTPiudwnUwaXKzwvtrq/3Zpldju74uc/b1kvCx3VUbxlcxiUggzgB6rmrJH5qsIr5+Lf32bRJriplkJUZ50MNrVr+3VhW7xmN9PMbElmXxbKqGWUkEmeSAtIAn6YLhtYqcYYcqgvETEGv6349oqoqxjCYdGl6
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="2.16.840.1.101.3.4.2.1"; boundary="----=_NextPart_000_081A_01D3ED2E.DFA0C410"
MIME-Version: 1.0
X-MS-Office365-Filtering-Correlation-Id: 89689194-a358-43be-0014-08d5bb678f85
X-OriginatorOrg: digicert.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 89689194-a358-43be-0014-08d5bb678f85
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 May 2018 19:59:40.5586 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1604
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/LK8rSeccdiA6j__FpMsb7TINDQ4>
Subject: Re: [lamps] S/MIME fix
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 May 2018 19:59:47 -0000

It’s not necessarily an either / or thing.  After July 3, we’ll have a S/MIME group at CABF and from talking privately to some people it sounds like we will have good participation.  But that will mostly be a policy discussion.

 

It would be nice to have IETF RFCs to point to for all the persnickety technical details about how things like ACME and CAA work with email.  I’m sure there’s plenty of nuances we haven’t thought of yet.  There certainly were for the web.

 

Draining the email swamp is actually very high on my priority list for this year.

 

-Tim

 

I am not necessarily thinking of this as a LAMPS thing because we also need to get CAs, probably CABForum involved and maybe the OpenPGP folk.

v2.23.0 | Report a Bug | By Email