[stir] comments on draft-rescorla-stir-fallback-02
Robert Sparks <rjsparks@nostrum.com> Fri, 16 June 2017 15:25 UTC
Return-Path: <rjsparks@nostrum.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 267001201F8 for <stir@ietfa.amsl.com>; Fri, 16 Jun 2017 08:25:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.881
X-Spam-Level:
X-Spam-Status: No, score=-1.881 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001, T_SPF_HELO_PERMERROR=0.01, T_SPF_PERMERROR=0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KdMrvAgpWXvC for <stir@ietfa.amsl.com>; Fri, 16 Jun 2017 08:25:43 -0700 (PDT)
Received: from nostrum.com (raven-v6.nostrum.com [IPv6:2001:470:d:1130::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4048F126E01 for <stir@ietf.org>; Fri, 16 Jun 2017 08:25:43 -0700 (PDT)
Received: from unescapeable.local ([47.186.26.91]) (authenticated bits=0) by nostrum.com (8.15.2/8.15.2) with ESMTPSA id v5GFPger049770 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for <stir@ietf.org>; Fri, 16 Jun 2017 10:25:42 -0500 (CDT) (envelope-from rjsparks@nostrum.com)
X-Authentication-Warning: raven.nostrum.com: Host [47.186.26.91] claimed to be unescapeable.local
To: stir@ietf.org
From: Robert Sparks <rjsparks@nostrum.com>
Message-ID: <8005efd1-b2ba-6a03-5914-e003f9aa38db@nostrum.com>
Date: Fri, 16 Jun 2017 10:25:42 -0500
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:52.0) Gecko/20100101 Thunderbird/52.2.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/CSVfF6EeIg4KzFxHAKqPP-fWKGc>
Subject: [stir] comments on draft-rescorla-stir-fallback-02
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Jun 2017 15:25:45 -0000
A thought and an observation: 1) At the point where you're speculating how the CPS might figure out what objects to return for a given query, it occurs to me that the publisher could _say_ what objects are associated, at least in some circumstances - div in particular. An agent making a diversion has possession of the original passport. Send it (or a hash of it) as part of the insertion request for the div passport. Then the CPS can bind it to the copy of the original it already has. 2) The treatment of multiple passports here further reinforces that the set of passports associated with a particular call is an unordered set (see my comment about the order of identity header field values in my comments on 'div')
- [stir] comments on draft-rescorla-stir-fallback-02 Robert Sparks