IETF Logo Mail Archive

Re: [stir] current draft charter

"Peterson, Jon" <jon.peterson@neustar.biz> Thu, 13 June 2013 17:25 UTC

Return-Path: <jon.peterson@neustar.biz>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19ECB21F999C for <stir@ietfa.amsl.com>; Thu, 13 Jun 2013 10:25:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.502
X-Spam-Level:
X-Spam-Status: No, score=-106.502 tagged_above=-999 required=5 tests=[AWL=0.097, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lFraO7PYAg2e for <stir@ietfa.amsl.com>; Thu, 13 Jun 2013 10:25:36 -0700 (PDT)
Received: from neustar.com (smartmail.neustar.com [156.154.25.104]) by ietfa.amsl.com (Postfix) with ESMTP id 0645F21F999B for <stir@ietf.org>; Thu, 13 Jun 2013 10:25:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=neustar.biz; s=neustarbiz; t=1371144278; x=1685861982; q=dns/txt; h=From:Subject:Date:Message-ID:Content-Language: Content-Type:Content-ID:Content-Transfer-Encoding; bh=HUU689DaNb IxDV+OX3t/sE+hKe2Sq/XqLlJw78KbCms=; b=HMnv5XWWZ48zYp/tv0jy6kZdkY t34PNMAyX2FCUsKfzYs+XBrHUAsZwyvr6K2QB8tEujHEIJGMyUZMtaYQQnWQ==
Received: from ([10.31.58.70]) by chihiron2.nc.neustar.com with ESMTP with TLS id J041123125.20930347; Thu, 13 Jun 2013 13:24:37 -0400
Received: from STNTEXCHCASHT05.cis.neustar.com (10.31.15.157) by stntexhc11.cis.neustar.com (10.31.58.70) with Microsoft SMTP Server (TLS) id 14.2.342.3; Thu, 13 Jun 2013 13:25:29 -0400
Received: from stntexmb12.cis.neustar.com ([169.254.2.76]) by STNTEXCHCASHT05.cis.neustar.com ([::1]) with mapi id 14.02.0247.003; Thu, 13 Jun 2013 13:25:27 -0400
From: "Peterson, Jon" <jon.peterson@neustar.biz>
To: "dcrocker@bbiw.net" <dcrocker@bbiw.net>
Thread-Topic: [stir] current draft charter
Thread-Index: AQHOZwiVGT8OWD09JUqSfli80C7Gm5kxkloA//+WdYCAAPljAIAAcu6AgAADDoD//5sjgIAAm7yAgAAQaYCAAADrAP//j/IAABs/tYAADWnTgA==
Date: Thu, 13 Jun 2013 17:25:27 +0000
Message-ID: <CDDF4CE7.1F7EE%jon.peterson@neustar.biz>
In-Reply-To: <51B94411.3090502@dcrocker.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.3.4.130416
x-originating-ip: [192.168.128.117]
x-ems-proccessed: R64IxjzeHPwwd+efoj3ZcA==
x-ems-stamp: lDAyuFLI/Nmb6W7OA1JSlQ==
Content-Type: text/plain; charset="us-ascii"
Content-ID: <9750AC34C6AE424F8379287696E250BC@neustar.biz>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "stir@ietf.org" <stir@ietf.org>
Subject: Re: [stir] current draft charter
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/stir>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jun 2013 17:25:40 -0000

On 6/12/13 9:01 PM, "Dave Crocker" <dhc2@dcrocker.net> wrote:

>On 6/12/2013 3:01 PM, Peterson, Jon wrote:
>> But we don't even have to be asking ourselves about the relevance of
>> public ENUM to the proposed work here in STIR unless we want to try to
>> base everything on keying in the public DNS for telephone numbers. There
>> are other models for this that don't have the liabilities I described
>> above, anyway. Keying in private DNS is more viable, for example. I
>>think
>> a PKI is more viable.
>
>
>Other models?

I just meant for example private DNS, or PKI, as it says up there.

>Is there a written description of the integrated query service that you
>folks are considering, in terms of design, administration and operation?

I wasn't talking about some kind of integrated query service, I was
talking about where the keys should live. So, written descriptions would
be CP/CPS sorts of things, if that's what you mean here?

>It would help to also hear where such a design has already been
>successfully deployed.

Do you think that is an issue for CAs/PKIs? Certainly they have some rough
edges, which is why we see the DNS (through DANE) potentially playing a
role in their future. Or maybe it will be more like the SSL Observatory or
any of several other private cert verification initiatives going around. I
don't think I'm ready to give up entirely on the future of issuing certs -
yet anyway.

Jon Peterson
Neustar, Inc.

>As the Enum experience showed, schemes can be intelligent and appealing
>but not succeed.  So for any new deployment, any analysis needs to start
>with skepticism and work its way up with pragmatics.
>
>d/
>
>-- 
>Dave Crocker
>Brandenburg InternetWorking
>bbiw.net

v2.23.0 | Report a Bug | By Email