[stir] Re: Shepherd Review of draft-ietf-stir-certificates-shortlived-03
"Peterson, Jon" <Jon.Peterson@transunion.com> Sun, 02 November 2025 20:35 UTC
Return-Path: <Jon.Peterson@transunion.com>
X-Original-To: stir@mail2.ietf.org
Delivered-To: stir@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 9FC0780DAB27 for <stir@mail2.ietf.org>; Sun, 2 Nov 2025 12:35:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.795
X-Spam-Level:
X-Spam-Status: No, score=-2.795 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=transunion.com header.b="YrulaUr6"; dkim=pass (1024-bit key) header.d=transunion.onmicrosoft.com header.b="MmluCs/k"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tYMdj_ErIRA0 for <stir@mail2.ietf.org>; Sun, 2 Nov 2025 12:35:28 -0800 (PST)
Received: from mx0b-00030c01.pphosted.com (mx0b-00030c01.pphosted.com [67.231.153.155]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 2988680DAB15 for <stir@ietf.org>; Sun, 2 Nov 2025 12:35:27 -0800 (PST)
Received: from pps.filterd (m0216091.ppops.net [127.0.0.1]) by mx0a-00030c01.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 5A2Jvs5r023814; Sun, 2 Nov 2025 14:35:26 -0600
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=transunion.com; h=cc:content-type:date:from:in-reply-to:message-id:mime-version :references:subject:to; s=tuppdkim; bh=4k5PBRQIwff4SX4BVQkD8SiHu jpn8ZnVAd38UypMtUo=; b=YrulaUr6kjrfs//k6aHD+9cjXGQDDxhyyylZ0J+oy FtjNdVA2Dd1r4TxYMV74ld0x/jyrD4/QxOKumfUDkpjfyN4CfOXozx3beIkaB82v oPbdRcU2wmcSim0C5Cay7G3Ts4cSNbeErT+kwAyEIrbNpgxLJ0jJwDjcQBr/+kS2 8yTclBbSjGEU3f1yJDln9qL/+QgOpda6EIjL1y0aGXR+ngl7hIyd6+PlsIf3zoHQ AOiApNlvLaFIRwrIzr+AXYS9j/Ra1fSjsqqD2cXztdVK40zHuBuotjj8azMMPtms NmZ7ebR80xOQvGk69jzrsmvqxnMBZ83MRaNI3kGr/IWeA==
Received: from pps.reinject (localhost [127.0.0.1]) by mx0a-00030c01.pphosted.com (PPS) with ESMTPS id 4a603x9f6v-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Sun, 02 Nov 2025 14:35:26 -0600 (CST)
Received: from m0216091.ppops.net (m0216091.ppops.net [127.0.0.1]) by pps.reinject (8.18.1.12/8.18.0.8) with ESMTP id 5A2KZPsU026375; Sun, 2 Nov 2025 14:35:25 -0600
Received: from dm1pr04cu001.outbound.protection.outlook.com (mail-centralusazon11010022.outbound.protection.outlook.com [52.101.61.22]) by mx0a-00030c01.pphosted.com (PPS) with ESMTPS id 4a603x9f6u-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Sun, 02 Nov 2025 14:35:25 -0600 (CST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=grNQ7NmouXVjOoH8MFg0xTbDcN33z2MosoEbbbTHeK9xHxHD+2Lz4FYqdTjHqRa96IjynNZGslAHC0JwW/mj0vfx2FoVk2KMb7FMYbVA5/nfX6B8YZ+sx+1uKnso7nfphPxm2d+P++8wSZrXHu5mGCM6dPKkkVu5/Jrj2tpw0KwFGobk9qX/cW9S8+Z8OUplpdblkYD4fwvyAQ96qi9BoC/+pyZ2XfsL1oWzvUwX6Uu0DaPh7PNw/urV+8Pm7jKiLuqAD/mz8pYN2N0K3hgD3z+hzg7OCYH530lPysSfT3qFO2xVIV7+UEtcjSXiQFmazlyM0KXdgmYDFwgU7g/Ljw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=4k5PBRQIwff4SX4BVQkD8SiHujpn8ZnVAd38UypMtUo=; b=EYF2ZYF1iKQCcyRkUiYnilML1wWD2DZjKDVfM7zCEuSrx4T7sJZ+cMdkwyppTHYh31EeU+kvAn3pdb8CUrex1eL/bMRkN1AsTxBHH0XybcsLGPyEkDg2mSXwbHcYUjHnuhSHkkMTuX4jzOk2Y+3MKV8ciO50ibmnpM+dXxvTYj3NnkC14BCo+ToedAhb4QirTRx+YCPnKqIPi5+0wptUNJZbCWFK7Yfq7xgp4W45hZq6f/xF0B8NrNqIlv5/tNxS5lK0Dz8CTIyc303rFrR4LogN/3r3c1ZGoAqRdDX0VAE56alrVA3VO26umpg0H3qLoigXbD1MuBw6esg8xdu0eQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=transunion.com; dmarc=pass action=none header.from=transunion.com; dkim=pass header.d=transunion.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=transunion.onmicrosoft.com; s=selector2-transunion-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4k5PBRQIwff4SX4BVQkD8SiHujpn8ZnVAd38UypMtUo=; b=MmluCs/kbjIgcfhTqrRnEQBx1ggNChCvWIBDMU0NmDvTUu8yGANYSHs+MX58pvpaso3uVdSmZDyGyGupo8f+dv2gOOZ8uJ1/ZkDlWyK3aTJqg++kZ7TEW0dRlvJ/2rIKv3SAiyv2Pvqe1U8T8XdewdadG3naiyWjVFWa60aGBC8=
Received: from CO6PR17MB4978.namprd17.prod.outlook.com (2603:10b6:303:139::23) by SJ0PR17MB6429.namprd17.prod.outlook.com (2603:10b6:a03:4eb::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9298.6; Sun, 2 Nov 2025 20:35:23 +0000
Received: from CO6PR17MB4978.namprd17.prod.outlook.com ([fe80::75f3:2d23:490a:feed]) by CO6PR17MB4978.namprd17.prod.outlook.com ([fe80::75f3:2d23:490a:feed%6]) with mapi id 15.20.9298.006; Sun, 2 Nov 2025 20:35:23 +0000
From: "Peterson, Jon" <Jon.Peterson@transunion.com>
To: James Olorundare <olorundarek@gmail.com>
Thread-Topic: [stir] Re: Shepherd Review of draft-ietf-stir-certificates-shortlived-03
Thread-Index: AQHcPVPu53Q8DB4euEWhDk7oFdig1bTM7c85gBMFFACAAAJMKA==
Date: Sun, 02 Nov 2025 20:35:22 +0000
Message-ID: <CO6PR17MB49783A5DB7243F49EC2EAA13FDC6A@CO6PR17MB4978.namprd17.prod.outlook.com>
References: <EC2A249A-EFD0-407C-BCD0-EF3968E56D7F@nostrum.com> <CO6PR17MB49781F580E27D01D9EA06420FDF2A@CO6PR17MB4978.namprd17.prod.outlook.com> <CAD+v076Ch9uP8ZckXiUqrsfik+Bzr8cQYD=A+uqd-yVRWMMigg@mail.gmail.com>
In-Reply-To: <CAD+v076Ch9uP8ZckXiUqrsfik+Bzr8cQYD=A+uqd-yVRWMMigg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_1e9f7f0e-7d96-445a-9c75-e41e40dff102_Enabled=True;MSIP_Label_1e9f7f0e-7d96-445a-9c75-e41e40dff102_SiteId=0685d760-4332-4f24-b2ea-ffbbc2383f15;MSIP_Label_1e9f7f0e-7d96-445a-9c75-e41e40dff102_SetDate=2025-11-02T20:33:17.3404780Z;MSIP_Label_1e9f7f0e-7d96-445a-9c75-e41e40dff102_Name=TransUnion - Internal;MSIP_Label_1e9f7f0e-7d96-445a-9c75-e41e40dff102_ContentBits=0;MSIP_Label_1e9f7f0e-7d96-445a-9c75-e41e40dff102_Method=Standard
x-ms-reactions: allow
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CO6PR17MB4978:EE_|SJ0PR17MB6429:EE_
x-ms-office365-filtering-correlation-id: dc168a76-b4f2-4216-2771-08de1a4f58f0
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|376014|1800799024|4022899009|366016|38070700021|13003099007|8096899003|7053199007;
x-microsoft-antispam-message-info: pakbIQlaFMBBFVKJDqRezQP4VVNZ4NUQDmRWHyLwF1gAEKXSMFYcaxrg5qwBy9qoy26urpepsOwflrSZxdrIolOHKWe7coQlyH0p4Z5jN42btDaaBtwVvHBZNlt0A4fYx6tEOEGjpnBmY1KphQKy2AhVTY2uCM1tGtWGePVKLP7TIPobfpuvmGGM4uDFRs1o1/JkmqDoKngNVX6WoqjQUVi/BSL7YNL0TC7N87UJ2PZM9zEAYOvUULHY9bzVaXFHg/NsS/KK3kq6mWtY9UPnGyvjHiVRBsQrNhqIVU5U+S/T0fHlqm8wRu4kjCHlPQA+R+SZxJ2X9RphWmwjHOglRKpkWYvMz6P/EK7z5KZEEYbI9/PrWf9prwUT71DnW3331S2us6SJAaJ3tCWSu4ngaG70I7sUJYX6GUnfc5+TQbq9SG1WcdQTgOuZBuHWr4pL1FFrsdZtl1tahbrRjvWxvyLChoXrn342WTnhwrVVKkLhO12WQqKlRmPKPmLG8d1f6zqebSFvFplRCs91VW6KCh4+3YPJyuP4WsNknGAAp8l4pygLTXY+UyXpRS7ELGZ2uQsqjGZ1j3Ek0Ax6Wu46Sg9qetjV2skbl4h70WpuhPXioYObVgMf6PcqHZ2GMrMNXS7nr1UKxbkkSfkWiciSdO6io6l3yVQiTiDax7CTcKDzvuQuGr1Ny1Tz9ConPv8ysDYMyq6CTHUKlLFEG82UWd2KU6KCqwF2UvLZ6Q2l5/3sCzMSMIi+JhZV7Flfuccyk5BWdR3zEkhvfRaVwwEO33VhHCp/XCxyfMxWXYhjDE8x+zKC52omZ+sfUXT2ZEAUzJPYgyjN1TrKYuG5lEZ9KijPco/82HEEeymaftzdsEjPUdrTD/Jpyh6HHSFUdwA83nJclMiUNBZOLGkMmw6dfEUmcbwu0pyDFgbkJfxpbiz95CN01/qBtFU3j7+YXXoFe7nwerusUge0StOXBXOiVzFZPLDskMWobynIZbhb0T6LWxr4enkpcLP5m//a9Cmnjqf4DttBFtLbAFiZb7GXWhAchdptyBY43T8vNyypBu/lsPgtR+K2lIzDMuhAlNcRJ20HQWj3JmdRT6+yBsyzrfGWU+j1EWFy96JRtUkckX5tPgdZr/zi2sOCvU6ACu02c8yVbhd70wjSaajF9yInrpCsRt6S6Mkgx/vZJV2BPn/wuRLvzTfHSg9KZ0ChDkLCGWVyJ+eZ5tt8oXd7yQMUWECb3f42tpKE1HlwE14dW9Ez68J06itOu+CwJGoYVoqeNEkHMBBNmV7eFmEw7ngfKZeEmCrEU1pUSMmxtB4R8t07P+va4cdep8N+BLEHITH3C7OiUNOsg4qR8+u7C2hWgqckJmv7pMHszKrx3Q2jQbG4shwwtMaJ2xJC5tW8+7BsN5d6MsOUSY7yuPer0wA0HyC+2XWaycECcBQEH1N6YXlSD5spWk4jGqKu3j9vqqvK1DxLJ48i9PPk6mfkKZ6ivLg8drm9oBpDHdF+gvHk391xBG7vHT1ZrU1xkFrrLr2G
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:CO6PR17MB4978.namprd17.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(376014)(1800799024)(4022899009)(366016)(38070700021)(13003099007)(8096899003)(7053199007);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: jA09gCFwLmEH2qM1PlPdcQ/HxXDVnJWQZyCzkzYUsQuhtHBbc/EZisEp4K93alDYkohtLaqmnyKgCuiQu1k87JDadSAJr3ymPiZ5a9j+pHBEXQHsXi++iI/iwCt2F09qJP8ZlZI8GcT7ZBeljZCDmywkjRx9lRcC4EW6iHyGGPhcgACKT34wW6PZO9QwBCsViNoXDsV+AFfRnJxHMHE+MBe4Pc+HOraPRBGwWazixOYsawnHrRxhSWoo8cUwLKq4LOvhGHRNLmkHB3xapBheVZC0rh3jpXRYmzJHVOWSEkmIqoumZxa5zV1qVUB/ZcbNqN8u0p+d7fOwyvmPY7FOKg9lIyEusNaKZEHLKqUPxJCLFwZpWLylpMZX0xASfMD5ZkSW+GQxHcfrMhCkoW6Jg1+OshmGc7cvfLYs+9i/9Ym9ez8JXEuaThJGYWMtXDRDs2FSNdLzeGX5YO7ml3irzfoLg0hQP34UhqtBIRIFCDpK0VbN4DVrxQTl995LPFVTZyDNOnorR6ryGEd08TQOJuH2/faAg/0vsmokesDuouCCWjnkSK0fXZhi/J0EvlgCxScejbZxmt5i3Jul/sX21oGFUiWrDViTqya+KlVKev/7h7cFZsIfrlgN6fOmDWXOYjvkniBaMUslWu+wHo+eYBo0Yc63SUteBGv7UWn9kpEPrnUiWZKfK1XwfT3uYaZGkLIk1dkmUcDOPKy3CmNu7JK+4HX6Mb0PZUMc0kdN2g17IEMBhSBP0WOd652EGnUWmsXqqEmMbcDFaZ9CavwAy+tCNun6ajJCHmdjUzGozWkug/GDrWXOHxFKpv3VbGRjiHfWLMi1OPy2O8RQw8zJTMIPATboZiEbZfy/XyzXHB2oNB9n0qDhYsoNF+CXFNalNasXQJEvLQOJCguK76mmZhTiJ0qmL6moQeIcvoTRGb5VasNo4QTpWdJBHc8bwzNgk9DXpMUfwOyy8R5He0MRETWg+qSr37bpwikQKgkXgIGpabwv6g3BZEEcgutNe6rm1kAVM7BgWveeJLVxT7BZcjLFr5BZi7cWiYHgIOOBLf0RZLieJTc5wSzWRVLSsB+ExwF6EO/T5N6PJ7BYYEk3EQKnfuTAivxrjD6v4EqEJssgDds90mtj1OrKgNIvLedxUqUMGcw4/dQFlQUQULiE7iFrjpRe6oePoLdpzZ1HqWRQboOTTFbGBfT0QCXXMdyAnORdHg9ELM2cbZDdeZq96CEjIPPHG3DwmWk8eUXmNoIpdxtxfZs7ch/ECbm2lfjYWX7ZLlJmsXwP9EubF1juS1lquQlAIFYICXARtL3rFRowXv5++DFv1z6SnS1rhjths8yP6WjT+Q/+kcyMSBYWDyL70xsr2hVCa74ZKGX5G58Z5TXBGPB+3P2JP03P1NFND6ONlo7nIOy/L1jLhdft16bUbOid9OT1swUquVBh3AfYWB8ZQYaraPB83zvYy4pl9EgfpcwDIg10MEUD2SgRUMG2N2T/KYinP4jCEDq6vIK57hsvtVesBeKJ+T52T3ruDF+eU51Jv2udZNJJ4a7zS47607at0g1jjDfv/MXyJVuKfEN9j5rLF3bZIWBuoXsuh+29tKph5zAs+ZD+Grje+TDlyOMLPWN91sGvvctLVP0=
Content-Type: multipart/alternative; boundary="_000_CO6PR17MB49783A5DB7243F49EC2EAA13FDC6ACO6PR17MB4978namp_"
MIME-Version: 1.0
X-OriginatorOrg: transunion.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO6PR17MB4978.namprd17.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: dc168a76-b4f2-4216-2771-08de1a4f58f0
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Nov 2025 20:35:22.9460 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0685d760-4332-4f24-b2ea-ffbbc2383f15
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: rE3dwgyhmLskN+aYe5UD6qI3YmxcfoocrVcG2BRkSy6DWpVyfXnajiUZoVveZk41z1f1nfpoZYaMY78JhlP7yclr+/z6PEewQxNA9I1bInU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR17MB6429
X-Proofpoint-GUID: Ae7TiHQ2EeCqy8EqrDiFjOwGUHf3lWPy
X-Proofpoint-ORIG-GUID: X_U6Hq1hXQbcl-MfxhJAHn1IbtEhmDB6
X-Authority-Analysis: v=2.4 cv=MvpfKmae c=1 sm=1 tr=0 ts=6907c08e cx=c_pps a=P7Y/ubs9jOqwJofkHNyo7w==:117 a=z/mQ4Ysz8XfWz/Q5cLBRGdckG28=:19 a=lCpzRmAYbLLaTzLvsPZ7Mbvzbb8=:19 a=xqWC_Br6kY4A:10 a=6UeiqGixMTsA:10 a=9QfKlLONOboA:10 a=VkNPw1HP01LnGYTKEx00:22 a=48vgC7mUAAAA:8 a=RpNjiQI2AAAA:8 a=pGLkceISAAAA:8 a=iHM-9WWUAAAA:8 a=Z80JlwQ0AAAA:8 a=tGX7uwomAAAA:8 a=dvsBi0UFUTjkelkTxq4A:9 a=lqcHg5cX4UMA:10 a=QEXdDO2ut3YA:10 a=tqdMzFhGG8mD8GCBlf4leDhY3gs=:19 a=_0KROgXPJbdUoUiR:21 a=_W_S_7VecoQA:10 a=YJwUl2ujW4Y_XnIir_F9:22 a=PGwaOy2xIbSZwurLKEiK:22 a=Zz-tw7mMPhxMdvFcggwQ:22 a=ZFOOzkjxzLGrPE5HuMia:22
X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUxMTAyMDAzNCBTYWx0ZWRfX1fLBgxS/xdBM mZuomGZkL6CSYDvgDVZCWLy9xVu4/tV/NhOH7SxsWSzFMLnEwEPKE0w4JVs5APf7GyHCEqmK3J1 ZWChFKpQg7pexwtbiSaSERA5HVUNhrhiVtOIN7ooN7b/o2d8lh0fqGiJN3v1gjAvOtCRHx40AE5 OD+BTV0EIXCsSjNft2DTEgfyKxMoQIsfFKRWuh0vhUeaCGOyG3XHgPg0TmV4XKSE/bInlbXi+pq 5r9ipLgcTCmq5UJTZcghRZ+4a8tFfMYQpQHPurEUvWVMia1moK1H6y2F2Q+qaFe3iXk8bissOQo awQBjERFXhit6X9vYM4HDNryPKjrf4D7yJzWaUtZDM04KY9Pu8uLDfgCrNWgJxK6X8gdiIvd+jx xYzjqB871JSexqOdEtO7eiLU4TdMeQ==
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1121,Hydra:6.1.9,FMLib:17.12.100.49 definitions=2025-11-02_02,2025-10-29_03,2025-10-01_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 clxscore=1015 priorityscore=1501 impostorscore=0 lowpriorityscore=0 bulkscore=0 suspectscore=0 adultscore=0 malwarescore=0 spamscore=0 phishscore=0 classifier=typeunknown authscore=0 authtc= authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.19.0-2510240000 definitions=main-2511020034
Message-ID-Hash: CSUXNPNHRNFY4FW4A5Z3ALQ4UBWL5XAT
X-Message-ID-Hash: CSUXNPNHRNFY4FW4A5Z3ALQ4UBWL5XAT
X-MailFrom: Jon.Peterson@transunion.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-stir.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Ben Campbell <ben@nostrum.com>, Russ Housley <housley@vigilsec.com>, "stir@ietf.org" <stir@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [stir] Re: Shepherd Review of draft-ietf-stir-certificates-shortlived-03
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/Flql7MKaoqBY97kEbxbg1OESCCE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Owner: <mailto:stir-owner@ietf.org>
List-Post: <mailto:stir@ietf.org>
List-Subscribe: <mailto:stir-join@ietf.org>
List-Unsubscribe: <mailto:stir-leave@ietf.org>
It is Wednesday (November 5) afternoon at 16:00 Eastern (GMT -5), per: https://datatracker.ietf.org/meeting/124/agenda Jon Peterson TransUnion From: James Olorundare <olorundarek@gmail.com> Date: Sunday, November 2, 2025 at 3:25 PM To: Peterson, Jon <Jon.Peterson@transunion.com> Cc: Ben Campbell <ben@nostrum.com>, Russ Housley <housley@vigilsec.com>, stir@ietf.org <stir@ietf.org> Subject: Re: [stir] Re: Shepherd Review of draft-ietf-stir-certificates-shortlived-03 This Message is from a New Sender This message was sent from a sender with whom you have not previously corresponded. Report Suspicious<https://us-phishalarm-ewt.proofpoint.com/EWT/v1/GX53klZ1TQ0!Y2Oq2O_af5QFZUGjwSeAjK62IWPeXr7fpTC1PVsGqwvfEiZzwKL1IYYlCYm1DLYpCqIzavZDusDoZHqAjqGp8Sa24HJwwuMeD3WDk5CFOMkz3RpuLejsULd9xLfroNGB$> Please when is the stir meeting in the ongoing IETF124? Thank you. Sent from Gmail Mobile of Ojk On Sun, 2 Nov 2025 at 15:06, Peterson, Jon <Jon.Peterson=40transunion.com@dmarc.ietf.org<mailto:40transunion.com@dmarc.ietf.org>> wrote: Thank Ben, some responses below: ##Standard Questions - Are you aware of any IPR that needs to be declared? <JFP> I am not aware of any IPR. - Do you still want your name on the resulting RFC? <JFP> Yes. ## Substantive Comments ### Section 1 - “… this document revises the guidance of [RFC8224]…”: Should this draft formally update that RFC? If not, then maybe this should be reworded, otherwise there is a risk of the IESG getting wrapped around this axle. <JFP> I don’t think it really needs to update RFC8224, as it is only compliance with this specification that makes support for “x5c” mandatory. I can rephrase to remove that implication. ### Section 4 - 2nd paragraph, “… this specification permits the conveyance”: IIUC, this specification _requires_ that conveyance for short-lived certs following this specification. <JFP> It does indeed, will fix. - Last paragraph: We are not actually allowing that alternative approach to x5c, right? I think this sentence will cause confusion during the IESG review. Is it actually needed? <JFP> Um, the last paragraph says a couple of things. Making “x5c” mandatory does not preclude allowing “x5u” to also be present for backwards compatibility reasons. I think I’d like to keep that. And the x5c URL could use cid: or something to point to a MIME body, if we wanted it to, without running afoul of anything else discussed in this spec I think. The fact that MIME doesn’t work as well for OOB doesn’t mean this could never work as an approach. If it seems super confusing maybe it could go in an appendix or something? <JFP> I’ll address the nits below, they seem fine. ## Minor Comments and Nits ### Section 1 - Paragraph 1: “… the implementation of credentials which identify…”: s/which/that - “… this document revises the guidance of [RFC8224] to REQUIRE”: I’m guessing REQUIRE should not be capitalized, since this is a statement of fact, not an authoritative normative statement. ### Section 4: - Example PassPORT: Has this been verified mechanically ### Normative References - It seems like several of these could be informative and save people the problem of checking against the downref registry - Are [ATIS-0300251] and [DSS] actually cited in the document somewhere? If so, I missed it. Jon Peterson TransUnion _______________________________________________ stir mailing list -- stir@ietf.org<mailto:stir@ietf.org> To unsubscribe send an email to stir-leave@ietf.org<mailto:stir-leave@ietf.org>
- [stir] Shepherd Review of draft-ietf-stir-certifi… Ben Campbell
- [stir] Re: Shepherd Review of draft-ietf-stir-cer… Peterson, Jon
- [stir] Re: Shepherd Review of draft-ietf-stir-cer… James Olorundare
- [stir] Re: Shepherd Review of draft-ietf-stir-cer… Peterson, Jon