IETF Logo Mail Archive

Re: [lamps] [Anima] /.well-known/brski reference to brski-registry

"Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com> Mon, 04 April 2022 14:49 UTC

Return-Path: <hendrik.brockhaus@siemens.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B533A3A0BD2 for <spasm@ietfa.amsl.com>; Mon, 4 Apr 2022 07:49:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=siemens.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J5zow_Tx36ez for <spasm@ietfa.amsl.com>; Mon, 4 Apr 2022 07:49:37 -0700 (PDT)
Received: from EUR03-AM5-obe.outbound.protection.outlook.com (mail-am5eur03on0605.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe08::605]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 109E83A0BD3 for <spasm@ietf.org>; Mon, 4 Apr 2022 07:49:36 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fkWhDiRmjWZsHkPw35glSoJbS2fSERXkx69aVpMGxqk6bscN1lzYhFP5jHJJh5f0Of2iT7Z1prLwvyish0igUf//KzzUIpkuxbvYKn8CuqtatIZ8enhF/7Z8EGLHNKps/DjNeMou4fcvXmeRhj0+OMIEMWCI3THSaBP3JlOSZgaLn4F0nQGq+OnjAk1EPZ2AcbOONCtqXlzi+HumUT5RGAw94bIJ4+ouNR6zVXdY0+tYBKPavwFMa/q7f2RbF9gwZkGqXg4FSPFoRukyKpZJCrfMJagfWmxSGBQwhcsWwU65pfleLkcNE1YLzJte543hKfwKFPdjPJgcLYKGc0bRqg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Xubj0xuXhSbIKfU3L5JhWCCn4XpKE0G/jtFjMpICpf0=; b=cE2Dh6SIdxKNvlE2sv/EYApbFoDcFlMq6CUEBre9aDtGvV1BXMXmBmUnPX6zMzgHELA055TbW2K70kH88QRASISZSOrnSX2ZXSTnbcUot2CxZJJ2d5jVtigzAk98/o+grL0r2LO/7Q1QrIS/Vf4CkjGD2ayWvaqZHvv+JRtZhdxq+yufqG7Pvps9dVfPjn7Z2FUOATRNZ2N5hjTz4q+aDRUOf2KgXZB97j3oJxBi3XUQYF9sgGYyY3yhfdbOZB07bWXrwvJh2/k0hNzT79CcIV+dKQeOOVnwA9Jj0hgbq4lPbsoSkjCXg0FPSnKmJmZItKDYq8LJKB01Bb3Tn3eaGw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Xubj0xuXhSbIKfU3L5JhWCCn4XpKE0G/jtFjMpICpf0=; b=SyM3ZNt3w8m+BWyGO/AnH2Zck+wyil1HwiDvND8H4sG7A83wOItlRqrgmvkeRt+58eu55tAfJwNix+svhbsqhonaw7PQA1q8Id3vTtr+QpOa21xP6bncBjs4JsL89jN1nh0hBaS+T6KotI9qTaIHbrpX5nd8/5+KVBry+1LM4WHRzvyJKB/qM8L91w9NpZlgOvd160j4KhiA/z0YRicakkVwepDR3Zw2tAaxUFoxmzpEmQOT6XqYKN7a2MlLl5NPlam0y8nXBELBTbS6HlJSM8NWJcmNIElBIrFU1BLaaAdWU3I1Ke01C0wsGMZjE9RCfwrLujo/lrbK00N4AG7t8A==
Received: from DB6PR1001MB1269.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:4:b1::18) by PAXPR10MB5120.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:102:21b::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5123.31; Mon, 4 Apr 2022 14:49:32 +0000
Received: from DB6PR1001MB1269.EURPRD10.PROD.OUTLOOK.COM ([fe80::11f8:5cc3:17b1:fbfd]) by DB6PR1001MB1269.EURPRD10.PROD.OUTLOOK.COM ([fe80::11f8:5cc3:17b1:fbfd%11]) with mapi id 15.20.5123.031; Mon, 4 Apr 2022 14:49:32 +0000
From: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>
To: Sean Turner <sean@sn3rd.com>
CC: "spasm@ietf.org" <spasm@ietf.org>, Russ Housley <housley@vigilsec.com>, Michael Richardson <mcr+ietf@sandelman.ca>, Mark Nottingham <mnot@mnot.net>, John Gray <John.Gray@entrust.com>, "david.von.oheimb@siemens.com" <david.von.oheimb@siemens.com>, "Fries, Steffen" <steffen.fries@siemens.com>
Thread-Topic: [lamps] [Anima] /.well-known/brski reference to brski-registry
Thread-Index: AQHYRRbzY8SMZTUrnkqG34qrYXpNj6zZqU6AgAAcy4CAANEN4IAEeB6AgADKmzA=
Date: Mon, 4 Apr 2022 14:49:31 +0000
Message-ID: <DB6PR1001MB126915EE4578A97161257972FEE59@DB6PR1001MB1269.EURPRD10.PROD.OUTLOOK.COM>
References: <30686.1648741661@localhost> <DB6PR1001MB12691C71E28CF3AEB4603368FEE19@DB6PR1001MB1269.EURPRD10.PROD.OUTLOOK.COM> <4ACC1227-F79D-42B8-B050-07FB0C2BC86A@vigilsec.com> <DB6PR1001MB1269630A63DBF8DF02BCCB6DFEE09@DB6PR1001MB1269.EURPRD10.PROD.OUTLOOK.COM> <E2286164-E5F8-4563-BC69-C34B6D18B687@sn3rd.com>
In-Reply-To: <E2286164-E5F8-4563-BC69-C34B6D18B687@sn3rd.com>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Enabled=true; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_SetDate=2022-04-04T14:49:28Z; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Method=Standard; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_Name=restricted-default; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_SiteId=38ae3bcd-9579-4fd4-adda-b42e1495d55a; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_ActionId=721ec165-5b93-418b-8017-9076167ac88d; MSIP_Label_a59b6cd5-d141-4a33-8bf1-0ca04484304f_ContentBits=0
document_confidentiality: Restricted
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=siemens.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: ffb66d12-bef5-4b03-0bfd-08da164a5412
x-ms-traffictypediagnostic: PAXPR10MB5120:EE_
x-ld-processed: 38ae3bcd-9579-4fd4-adda-b42e1495d55a,ExtAddr
x-microsoft-antispam-prvs: <PAXPR10MB512027F777720108F20F177BFEE59@PAXPR10MB5120.EURPRD10.PROD.OUTLOOK.COM>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB6PR1001MB1269.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(8676002)(66556008)(64756008)(66476007)(66446008)(26005)(186003)(4326008)(9686003)(122000001)(66946007)(508600001)(83380400001)(76116006)(82960400001)(55016003)(38100700002)(5660300002)(107886003)(7696005)(6506007)(53546011)(316002)(38070700005)(86362001)(33656002)(71200400001)(2906002)(8936002)(6916009)(52536014)(54906003); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: =?iso-8859-1?Q?hVoFKKHV0Q4wV0+USmzsfz9xHnKXC7l4daNH1UrsPI0YzaE4oHgmq3mT8C?= =?iso-8859-1?Q?J/N9MMQuA9A2GFhiNMeiUal59C+tdf9D1ZlyhFZJVXOMuSmZ4CVzJ0fq8P?= =?iso-8859-1?Q?KH8SCpg2AMjT8h7aNEwgf1ontjOd4DLPUdzPZ3okPtK1GP53+A8/AKR+Fa?= =?iso-8859-1?Q?C/9aGJ33vPfVVYK85MqDnOcrufenC+ToPpC6C7pCpKMyvt6Fl9vQOKCbij?= =?iso-8859-1?Q?FZIXNrqoCfGXHlD5VFvtnWFpRuOy69IzUJKxxmXV79pOgbLPMPnIByxmBB?= =?iso-8859-1?Q?rFxs13UtWeFbDySN9M6nf+DU0sSQw8AI/CN3b27EAW8UsPjam5AQrB4smi?= =?iso-8859-1?Q?bhJxGSN/kqlz9aOVF7Sc0QAswySpf2tuxbOpY18hBambOYkBCF0aH1wlUK?= =?iso-8859-1?Q?Gk5olHd+QyxhATTIzRy3mg6qvTerVucIRrFH7kihlRJULJvNayXALwcOug?= =?iso-8859-1?Q?z7sHEOqX2HNYQCFPqMcAXYfods5+vfmPMnNpRkarI8QQHNikyQCn1Dn8Ea?= =?iso-8859-1?Q?e373xHhJZoQphfjzpSVizUzI1gRTGkskmmJdSR7C+GWWw19LZFpXgtRvAO?= =?iso-8859-1?Q?meWWyIMuGG9oAoaLSHN3Wur+9cuNMkRU5m8iDCjJlwaUygqTK7x9Lm1AYw?= =?iso-8859-1?Q?Jvm8CLvXUyCPG8roRlfVhooJtuQ9+A3pgWJp87F4GoqNc/OGah0VQRX+lh?= =?iso-8859-1?Q?HqbBShXKhyt2LN3x6jzJLCNL1xwwNzcmkqrZZPD1xM20EsM/6R8JzC/haG?= =?iso-8859-1?Q?7HwoCcCU5sTIpFj1rZK+81DVe68or3FSlsemL6nShtlLbJ3NRXmu5jWiJQ?= =?iso-8859-1?Q?qT0emVxiWD+0s8a/XRFUQ9J4JGkLfGTDgfbJJIl/2UI2wCs1wMiSjnKM09?= =?iso-8859-1?Q?4kkmXdApuHpjA+2at0y7TW3c1Y/ez1P0C6ZpS/sfJsZ5d3f0NL3Q+U/uEX?= =?iso-8859-1?Q?ti/VWS41yb80qCySXw08brGIJ/RRmcZL45+E1ZDtTuF14ltL/oUU/HH7eb?= =?iso-8859-1?Q?/1OS4pMw8+3gBYL0U7FZM5jL24+zih4QsO1bgVpwOmwMtG89/sWYWrc2lA?= =?iso-8859-1?Q?ffH1BxjzC9KbGWwzrILfPEDhP5ZpswMoOy2FyC+esjnnnSajg71G9u3qp+?= =?iso-8859-1?Q?xMVffkUI8bbydSKbKfFjP7pQ8c5fN39Sv+MoV0lFPkpeslyPMc0fl+MPH3?= =?iso-8859-1?Q?aLvc//aQA0TExvW8NytM45fZrJFH8yT3lFwRAyDDF/GOYb82wGAZ77l4MM?= =?iso-8859-1?Q?njjUxqc2H7SU0ULZ9h0E8JIZRVzqdk+PU2L762Y1M5j+M4JTBWQO5Tt8Yf?= =?iso-8859-1?Q?ZylniQC+iFyGuKpyTofF4U6VPs9QZO234MwyjtsFLRIu+0e8CiOIYKnYag?= =?iso-8859-1?Q?QlwB55vd5VUaepOP7y0bqOqkvMvX5iOdeMyW+onKJSlusQ5u4DKUP95+RL?= =?iso-8859-1?Q?ZGAjCDF0ShFAA540zSf050ox4DtrEqbF11AuNdZgAkHiGAZExzcBsWDSAD?= =?iso-8859-1?Q?GHnL2sQDEhNgx3KmVv4oG0QfClDz4sSQ9DUcMEvHjr2DQ4RcIyBdCzwbM8?= =?iso-8859-1?Q?PtXFOkrkkYojHN9acpi1Btn+10/TxBC2hYdIc2TC1hyL5VfUn6OvKihcxi?= =?iso-8859-1?Q?c0mcyuP+A7zQp6xV2cly/f0VKyR/8HlVKSC88w3TSmfZGzVnd63Q7PtU4n?= =?iso-8859-1?Q?+VWIocvSAhVpy+IiQ9oEU6vJXHsLZ9NFqb3bfc8UwIfMWDQpCIAd0phHjM?= =?iso-8859-1?Q?U5fCj9iga3Jh8kTjo+aU+emtudFbupnZtQ5ZBUEf+pFZW7ZWU1Teu1KO4x?= =?iso-8859-1?Q?kRsKun5DiAjFdsD1JqIpFW4afZG85r4=3D?=
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DB6PR1001MB1269.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: ffb66d12-bef5-4b03-0bfd-08da164a5412
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Apr 2022 14:49:31.9425 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: GvzsX8pwD9aIwaMDkday1o3J+BImPmbj5BSCyPthwFOP9xefW75kzMP8VPBupeKw7paF4yy72yy9145/wGHd9y2zkOdQlpVUSQ88FUVI96c=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PAXPR10MB5120
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/Llnjekqk0fTGYOJXhSQRxkOfKFc>
Subject: Re: [lamps] [Anima] /.well-known/brski reference to brski-registry
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Apr 2022 14:49:42 -0000


> Von: Sean Turner <sean@sn3rd.com>
> Gesendet: Montag, 4. April 2022 04:36
> 
> > On Apr 1, 2022, at 02:25, Brockhaus, Hendrik
> <hendrik.brockhaus@siemens.com> wrote:
> >
> >
> >> Von: Russ Housley <housley@vigilsec.com>
> >> Gesendet: Donnerstag, 31. März 2022 19:53
> >>
> >>> On Mar 31, 2022, at 12:20 PM, Brockhaus, Hendrik
> >> <hendrik.brockhaus@siemens.com> wrote:
> >>>
> >>> Thank you Michael for rising the questions.
> >>>
> >>>> Von: Anima <anima-bounces@ietf.org> Im Auftrag von Michael
> >>>> Richardson
> >>>> Gesendet: Donnerstag, 31. März 2022 17:48
> >>>>
> >>>>
> >>>> We were discussing the /.well-known/cmp that is in being proposed
> >>>> in
> >>>> draft-ietf- lamps-cmp-updates, We were comparing it to
> >>>> /.well-known/brski and /.well- known/est.
> >>>>
> >>>> Question 2)
> >>>>  Should the CMP document be establishing a registry or not?
> >>>>
> >>> As discussed during IETF 113 I plan to do these things in CMP
> >>> Updates
> >>> - register 'cmp' in the "Well-Known URIs" registry
> >>> - define a protocol registry group "Certificate Management Protocol (CMP)"
> >>> - define a registry for "CMP Well-Known Arbitrary Label URI Segments"
> >> defining 'p' to be followed by a <profileLabel>.
> >>> In addition I would define a registry for "CMP Well-Known Operation
> >>> Label URI
> >> Segments" in Lightweight CMP Profile containing the path segments
> >> defined three for http and coap use.
> >>>
> >>> Does this makes sense?
> >>
> >> Hendrik:
> >>
> >> That is consistent with the discussion lat week.
> >>
> >> Russ
> >
> > Would it also be sufficient to have only one additional registry "CMP Well-
> Known URI Path Segments" containing the arbitrary label 'p' and the operation
> labels?
> >
> > Hendrik
> 
> When the /.well-known/est/ was registered we only did the top level, i.e., /est/.
> There are no registries for the /.well-known/est/*this part*.  It's not clear to me
> that you need to do anything more than get /.well-known/cmp.

The goal of registering the 'p' as well as the operation labels defined in Lightweight CMP Profile is to prevent competing definitions in other standards and to implement FCFS.

> 
> What will be the registration policy [0] for the 'p' values? I assume FCFS (first
> come first served)?

Yes


Hendrik

v2.8.7 | Report a Bug | By Email