IETF Logo Mail Archive

[lamps] Call for adoption of draft-housley-hash-of-root-key-cert-extn

Tim Hollebeek <tim.hollebeek@digicert.com> Sat, 14 July 2018 16:04 UTC

Return-Path: <tim.hollebeek@digicert.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE29F130DE2 for <spasm@ietfa.amsl.com>; Sat, 14 Jul 2018 09:04:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vCUosnrE_ZGd for <spasm@ietfa.amsl.com>; Sat, 14 Jul 2018 09:04:16 -0700 (PDT)
Received: from mail1.bemta24.messagelabs.com (mail1.bemta24.messagelabs.com [67.219.250.114]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9823B1277D2 for <spasm@ietf.org>; Sat, 14 Jul 2018 09:04:16 -0700 (PDT)
Received: from [67.219.250.196] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-3.bemta.az-b.us-west-2.aws.symcld.net id CC/71-01618-00F1A4B5; Sat, 14 Jul 2018 16:04:16 +0000
X-Brightmail-Tracker: H4sIAAAAAAAAA1WTe0hTURzHO/fe6c28eZ2av5b2WEnPu7akF/T 6o6chGRRhGXV1NzeY03ZnzSgIobW05bItSCrtQaXYWysCK0Zo2RJbaaWpmEallZVKRFHdu7Ne 94/D5/y+v+/vfDmcS5NKe6iKFmxWwWLmTeqQMOrZ2Ops7ufopA3a2wPj5xxvzliElp8+/ZVIQ esVRnN6tm2zwvC26gvKcayxfbz6mdqNilIKUBhNsftJKD/nI+WNknURUOS+psCbNgR7D9ShAj SUDmG10FxTR8gczargneOyxDQdxS6FXs8aXF4JJ0ueKjBroL9vMMAUmwCtxQ2kzAy7EZy+vsA YxI6AL/WVASbZWGjpLg0wsNHQ+ehBCOYYeNv1Q4H70+BYvzdYV4O3ZgBhjgd/aSGSMwNbTUDT QGFwEAcfPR4SczJcKsoncFMrgqdN/lAsTIE9nvdBgwnaz9YEOQ1qL9RRmEdDhbOTwuZbJDQ7G oJT46DS9y7IhxXQUjBKZiWrB3eFHFU2uEj42d4TaIqSrq7tyT6EOQ7evKhRuNCkkn+uoETykG wZgsHrrWRJ4M4i4f6Rbgo3rYfXN2oVmDm4eesOiXkMXH9/NMjTwN7xIMhT4cyJXolDJZ4HVXp cHQfuws5QzLPA3vAppAwNq0Cz0y3GTIM1izeaOJ1Wy+l0MzhdYiI3U6vhd3DpmlyR2y6IVm6G ht8uasS8rAyTXmMWrFeQ9AKHSN8N1ObVe9FImlDHMI+VSRuUw9Oz9XkGXjRssuSaBNGL4mhaD UxVvKRFWoRMwbbFaJKe8W8Z6HB1NPNNlhkxh88SjZlYqkcL6Q/lxcUkfbfdLa2NgfV7n6eYVF LmbLOgimUOyzZWthlyzX+G/v49/CheFcUgKaYyPEewZBmt/+s9KJZG6ijGKU8JN5qtf87ukWI RUiyNY4Ucy8r/lVS70Rjmmf+F0R6XcWz6qoTKvCEtCxqXfeZtuy42OZKbktemtBMnVkccmnDf vjPG9Hyuo2vRPd/GoQ+vJS4e1kgcTJ2/9ZUuOiJ2S8W2aZ7qvL1JEXucSz49z68/PnkquDt+r Cq/7U/NXzf8Yu/Bq6ca9qc5Iwd9g9aX5x9NDOu+dOW8a67rq5oSDbxuCmkR+V/NS722GQQAAA ==
X-Env-Sender: tim.hollebeek@digicert.com
X-Msg-Ref: server-30.tower-344.messagelabs.com!1531584254!1376302!1
X-Originating-IP: [216.32.181.111]
X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass
X-StarScan-Received:
X-StarScan-Version: 9.9.15; banners=-,-,-
X-VirusChecked: Checked
Received: (qmail 2818 invoked from network); 14 Jul 2018 16:04:15 -0000
Received: from mail-dm3nam05lp0111.outbound.protection.outlook.com (HELO NAM05-DM3-obe.outbound.protection.outlook.com) (216.32.181.111) by server-30.tower-344.messagelabs.com with AES256-GCM-SHA384 encrypted SMTP; 14 Jul 2018 16:04:15 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KVrD2him231D+a5zlPdAc1LfRHvxabY3sa9mTtLAD4M=; b=f39WD7UgSu0KFHJHuGBUf31cMSjupJhlhvtyaAdYVStIdQf4fSEF74cxQZIAyEp1n7cAAYWQ72VrgQksl/3CjClaSpnK1mSMhyMnWnFYJB86S27fD0eZno61g4BWPnOxS3VRFoC9vHvhZLvGDRL0n1S3u6oxHlpiD2nGJHOaVoA=
Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1283.namprd14.prod.outlook.com (10.173.162.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.952.20; Sat, 14 Jul 2018 16:04:12 +0000
Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::b914:e52:554d:c7bb]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::b914:e52:554d:c7bb%9]) with mapi id 15.20.0930.016; Sat, 14 Jul 2018 16:04:12 +0000
From: Tim Hollebeek <tim.hollebeek@digicert.com>
To: SPASM <spasm@ietf.org>
Thread-Topic: Call for adoption of draft-housley-hash-of-root-key-cert-extn
Thread-Index: AdQbjCs/bb7j0+7hQhSyHSg1NP059Q==
Date: Sat, 14 Jul 2018 16:04:12 +0000
Message-ID: <BN6PR14MB11060B85F15AE1454EE5FFAC835F0@BN6PR14MB1106.namprd14.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [31.133.155.236]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BN6PR14MB1283; 7:6K0yNyfaAIA/jMfQ23FG++uDUyMrr/gODW3RZBibqPjvzawCzvtk9Nyamt68lsFXX4bNPGSpSivft/n092S0qZ8Fd3V6btPCAx3MF57c1cgWtB5dGlgW0SE2n5pjoioSWsIrS41WL2WfagJsfNg+JyL4rsmVfny2CknpRxGwXIbzherfYpquiYPheuLRqAO9/HGSWnTphUGihR+cEXHNLLXBr5XAwutsddSSi5xVhWDsgv3UPRPm0vt3Klxl7A1e
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 508ffe01-5518-4cf7-54f6-08d5e9a370c8
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989117)(5600053)(711020)(4534165)(4627221)(201703031133081)(201702281549075)(8990107)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1283;
x-ms-traffictypediagnostic: BN6PR14MB1283:
x-microsoft-antispam-prvs: <BN6PR14MB12835089DE686A628A5E3673835F0@BN6PR14MB1283.namprd14.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(100405760836317)(21748063052155);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(3231311)(944501410)(52105095)(93006095)(93001095)(10201501046)(3002001)(149027)(150027)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123562045)(20161123558120)(20161123564045)(6072148)(201708071742011)(7699016); SRVR:BN6PR14MB1283; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1283;
x-forefront-prvs: 07334CBCCD
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(136003)(396003)(376002)(346002)(39860400002)(199004)(189003)(44832011)(476003)(102836004)(186003)(2906002)(81166006)(81156014)(68736007)(6506007)(8676002)(486006)(26005)(5250100002)(2900100001)(7736002)(86362001)(74316002)(7696005)(256004)(66066001)(8936002)(99286004)(53936002)(6436002)(478600001)(5660300001)(99936001)(6916009)(33656002)(55016002)(9686003)(14454004)(106356001)(54896002)(6306002)(25786009)(316002)(97736004)(105586002)(790700001)(3846002)(6116002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1283; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: 9AOGceGoaHxM8f/iomD8X17AC7Y/dZt7SG8V3jf0NNueNIS1lulr1uoODotAK9TuRqdIyJZVMFKLiqzegjwUKJhpBTEqZj0HxYyupm0lnsYZvqQuytdzsJ/zmRwsUx1ZJcbjH1Dk5bQDIF91KLMmySEjMaPe0bo4nA6CTIYPrEhpDqN28ofCYsOxdw+Sp1g7GTVU1uOKfH0DtF3G0aKHeVPJNGCw8jyInwPh8Kcs8gOO1RF7YuFXzt44/r++H9fr5RCEdzbWLuN2qaQnPlIYPmMAshvyyWcgnxQKtcXdejU3Yi03b0FcJIhhFNK1B1+PM3TEiu7iZekBBdIQXIL8Y2kBOJGxv6XjFzr9S77p+3U=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="2.16.840.1.101.3.4.2.1"; boundary="----=_NextPart_000_0CCF_01D41B6A.BB5218B0"
MIME-Version: 1.0
X-OriginatorOrg: digicert.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 508ffe01-5518-4cf7-54f6-08d5e9a370c8
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Jul 2018 16:04:12.2480 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1283
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/IXFMj2xJ1QpgIR-7sL7LjhqIDFk>
Subject: [lamps] Call for adoption of draft-housley-hash-of-root-key-cert-extn
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Jul 2018 16:04:19 -0000

The recently approved LAMPS WG Charter adds this work item:

 

6. Specifies a certificate extension that is carried in a self-signed
certificate for a trust anchor, which is often called a Root Certification
Authority (CA) certificate, to identify the next public key that will be
used by the trust anchor.

 

It has been suggested that the WG adopt
draft-housley-hash-of-root-key-cert-extn as the starting point for this
work.  Since Russ Housley is the author of this draft, Tim Hollebeek will
judge consensus for this discussion.  Please voice your support or concerns
on the list.

v2.23.0 | Report a Bug | By Email