Re: [lamps] I-D Action: draft-ietf-lamps-caa-issuemail-07.txt
Corey Bonnell <Corey.Bonnell@digicert.com> Thu, 10 August 2023 18:39 UTC
Return-Path: <Corey.Bonnell@digicert.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 396E1C17EB7A for <spasm@ietfa.amsl.com>; Thu, 10 Aug 2023 11:39:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=digicert.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RYYSXgp-YJp9 for <spasm@ietfa.amsl.com>; Thu, 10 Aug 2023 11:39:25 -0700 (PDT)
Received: from NAM12-MW2-obe.outbound.protection.outlook.com (mail-mw2nam12on2107.outbound.protection.outlook.com [40.107.244.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 93E9AC17D685 for <spasm@ietf.org>; Thu, 10 Aug 2023 11:39:25 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=FSGTkEVloLNkjRR6Y+hHBVIP50/g+lS97LVpYq36Mxd2+S5/mJU5bP1ardupeRtuw4h9MPU7gx6pZeHFFmY/MhFc9crGmaxLU2vGIEUYtOM53VbR7XH8QrM78uIb2iAKzZk/OPaLRTW680eDhgqmA7Smy4c3dwXcxGC3c75mFWotiOIyzZ1Jyi+z88ai61xIUMgrBHk5h7z0vMQHxh7BLXtbFB5csxbgvYm/OyoZXugoN65WuBEY8k1ABhTN0VdmDcjX3AOB2kvHLH33XXKrmpi34PzUGIvJpIWh6JRgTUcJ9/XQ6cJeJWpiYOJgKZ7akLWVbrV/oVJ13uZlOYts8A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=bQQyl+Z8fgEeHfNgUmyX7no1clZkjk3TaN20w1xpyK4=; b=Jmzg/wj77sCIf2jW5elczK6LbfSQGq6nYGxA413Iq/UKBGRsNVF28VKqeZ1BfmCBK3N2YdT2AV8Q46ieD0Ve8Vj5ohMCX/2c+eZgiqP0oxsUv9vybYy6GwNOdkKWHDNSADQC6Tq5rXdtPjIWbm0zcBl3hm3iIsJrknTPBKvlKp8nYN/9kTfrn+yqzHyNWEwROirbR/f9Paf+2pkoQNb27rc9IdclpoHS4TrqJ6VVkX1MLkRatR0s1p3V5ClXQF7XXIKcwXnGv0Rq1fBfsaw3BUsjHh4l4Vi9l9AuK6ZRACTgrvmnn/2JG7L9BjqX7x6OxgGVlhbxqgXl1vLIx7a3NQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=digicert.com; dmarc=pass action=none header.from=digicert.com; dkim=pass header.d=digicert.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bQQyl+Z8fgEeHfNgUmyX7no1clZkjk3TaN20w1xpyK4=; b=npHCzW+jWk2dSN4VPTwq0CIw8bz+QeTQ4BQMs6tNQNA8I+eIIpAMc6nH6WAoB0o/cTWNPO+yQdBqRy6fh+KWDicWhFVX8aJzQsV9vgoiCeP18WLdJETkVLS9hW1gD3LOUuk+JHd0/YAUBqUQ2w3dkpAkfzdn9w8iCSQEsDmMECtdxgqsEGiOgwrOqoIyHy/PnwMu+9rirqRuxml4bJNR7rYeXVsJsKCFyXh7ZEAqlT+C7QkLAl8QXtizhthqFDZPThjfxgGznLiz7KEbxEOcx3gFhscaas8Q40VzkKXHaTHggiH8baRp0ZHpQnQf2IIGWAslvsFikx16C36BS+sjYg==
Received: from DM6PR14MB2186.namprd14.prod.outlook.com (2603:10b6:5:b6::16) by DS0PR14MB6481.namprd14.prod.outlook.com (2603:10b6:8:151::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6652.30; Thu, 10 Aug 2023 18:39:22 +0000
Received: from DM6PR14MB2186.namprd14.prod.outlook.com ([fe80::8c48:2f88:b55b:cb1c]) by DM6PR14MB2186.namprd14.prod.outlook.com ([fe80::8c48:2f88:b55b:cb1c%7]) with mapi id 15.20.6652.026; Thu, 10 Aug 2023 18:39:22 +0000
From: Corey Bonnell <Corey.Bonnell@digicert.com>
To: "spasm@ietf.org" <spasm@ietf.org>
Thread-Topic: [lamps] I-D Action: draft-ietf-lamps-caa-issuemail-07.txt
Thread-Index: AQHZy7kxpks/WmVYiEKo90u4AVfS06/j3C7A
Date: Thu, 10 Aug 2023 18:39:21 +0000
Message-ID: <DM6PR14MB21867BCCB71A012F05C41AE99213A@DM6PR14MB2186.namprd14.prod.outlook.com>
References: <169169240942.35997.9663734997317616952@ietfa.amsl.com>
In-Reply-To: <169169240942.35997.9663734997317616952@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=digicert.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DM6PR14MB2186:EE_|DS0PR14MB6481:EE_
x-ms-office365-filtering-correlation-id: 73a1c614-2287-4b82-16c5-08db99d11d31
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR14MB2186.namprd14.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(136003)(376002)(366004)(396003)(346002)(39860400002)(1800799006)(186006)(451199021)(66556008)(66946007)(76116006)(66476007)(41300700001)(9686003)(966005)(71200400001)(7696005)(64756008)(6916009)(66446008)(52536014)(5660300002)(8676002)(8936002)(316002)(19627235002)(478600001)(55016003)(2906002)(122000001)(38100700002)(83380400001)(26005)(33656002)(66574015)(38070700005)(99936003)(86362001)(6506007)(53546011); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="2.16.840.1.101.3.4.2.1"; boundary="----=_NextPart_000_029F_01D9CB98.6B750940"
MIME-Version: 1.0
X-OriginatorOrg: digicert.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR14MB2186.namprd14.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 73a1c614-2287-4b82-16c5-08db99d11d31
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Aug 2023 18:39:21.9854 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: +S4yc5i7CGX6jpDVGG1B4os8XXQK0mrHhUNa/wqhr2NYzyO0GSMqsZpEc5Q1GEqNxpz3znu/mqdPb0SyeHC6GL+ji79TvpcKWVOHCPF/PzE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DS0PR14MB6481
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/WDQLtPtRmy8_q3VY3L95r94auVg>
Subject: Re: [lamps] I-D Action: draft-ietf-lamps-caa-issuemail-07.txt
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: This is the mail list for the LAMPS Working Group <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Aug 2023 18:39:29 -0000
Hello, -07 addresses the non-blocking comments/nits received during the official reviews; no major changes were made. Thanks, Corey -----Original Message----- From: Spasm <spasm-bounces@ietf.org> On Behalf Of internet-drafts@ietf.org Sent: Thursday, August 10, 2023 2:33 PM To: i-d-announce@ietf.org Cc: spasm@ietf.org Subject: [lamps] I-D Action: draft-ietf-lamps-caa-issuemail-07.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This Internet-Draft is a work item of the Limited Additional Mechanisms for PKIX and SMIME (LAMPS) WG of the IETF. Title : Certification Authority Authorization (CAA) Processing for Email Addresses Author : Corey Bonnell Filename : draft-ietf-lamps-caa-issuemail-07.txt Pages : 9 Date : 2023-08-10 Abstract: The Certification Authority Authorization (CAA) DNS resource record (RR) provides a mechanism for domains to express the allowed set of Certification Authorities (CAs) that are authorized to issue certificates for the domain. RFC 8659 contains the core CAA specification, where Property Tags that restrict the issuance of certificates which certify domain names are defined. This specification defines a Property Tag that grants authorization to CAs to issue certificates which contain the id-kp-emailProtection key purpose in the extendedKeyUsage extension and one or more rfc822Name or otherName of type id-on-SmtpUTF8Mailbox that include the domain name in the subjectAltName extension. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-caa-issuemail/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-ietf-lamps-caa-issuemail-07.html A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-ietf-lamps-caa-issuemail-07 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts _______________________________________________ Spasm mailing list Spasm@ietf.org https://www.ietf.org/mailman/listinfo/spasm
- [lamps] I-D Action: draft-ietf-lamps-caa-issuemai… internet-drafts
- Re: [lamps] I-D Action: draft-ietf-lamps-caa-issu… Corey Bonnell