Re: [stir] I-D Action: draft-ietf-stir-certificates-17.txt
Martin Thomson <martin.thomson@gmail.com> Thu, 14 December 2017 16:42 UTC
Return-Path: <martin.thomson@gmail.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2B351127F0E for <stir@ietfa.amsl.com>; Thu, 14 Dec 2017 08:42:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lr-QcwQ_grCG for <stir@ietfa.amsl.com>; Thu, 14 Dec 2017 08:42:25 -0800 (PST)
Received: from mail-ot0-x230.google.com (mail-ot0-x230.google.com [IPv6:2607:f8b0:4003:c0f::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 188741273B1 for <stir@ietf.org>; Thu, 14 Dec 2017 08:42:24 -0800 (PST)
Received: by mail-ot0-x230.google.com with SMTP id e74so5439428ote.7 for <stir@ietf.org>; Thu, 14 Dec 2017 08:42:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=4TYY6svVso70cMXTcNlO3/4pz+HsRA5wQlYBA4k3yQc=; b=FdqzFPH+TzARPR0O00XF31FfvCjAB/X0w4b0PLU4moya60YldOD5CJviUPOIqlBfO3 ikiyYzI/wq9Ns1ec74ezACwke6xlpALDv+AypFLxQq30i96vQcBtOasOkNPlKJVp8zQX n7VeKsBd6mqkmYtspWei3+723Ixvya4uF6alvQpdaeWl26/ECxxNIjpyn1qEth+jW680 72hrgdb+17gkeS6M9Goyjsd9tbTJNQsoJ8+IWeb3By79GrtT4KunVTtMQ1i6SpsxnvDv XAwS/FnB4RA6NEUaTx8TqKCZ0/Zt7Qop7+ZriyPiSECkMqGA65OZ4uFwdCLy4YeoGjzs YtRw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=4TYY6svVso70cMXTcNlO3/4pz+HsRA5wQlYBA4k3yQc=; b=UFbd0gj6v6wMlI3jg6l9bBEUdV9aj0V4qpgfVVdh/ZJDd0wvZWBonMr08NfatceVBL dsyqIKr1wfrQG/j0UdeYAxbHVRpwGX/EJPOptN686J+q7xUUfhmaXJcFG3LP2227mOTB 2/+VfhvNNH7nrHahbWLrlPMJYZIlwInbAEpuHqfZIQ+8G6bSM/dwqMtQb+CjrmBZVg6y d2kHEkjufl7o0L8o7acEdr3k8iLmcTxd8d98zIiogk/Uopu6oIAD2mxCePI2QBJP/aFi 0qY6FnPGj4N6A/xFfmhKYjS5hGmx+GYZhE3HbjfxC0f+FknxqPjMyVX6I8zEVSvIkDMV UGHw==
X-Gm-Message-State: AKGB3mLQ1z03HtWRB3QkWvEQgw765d1H2GCCFzeCVUocsEJNKaalX4Ae r7UwJYAPAbUoNAaH0mgXV5IksUzWs1CNkp4gkfNGNw==
X-Google-Smtp-Source: ACJfBovnk6Yz463xbkblkOvPgpP49WdxdTb08VA71khcwBq1XKJoJzt2frfWmR1LDRZGVMRCft+qJnNJvoTh2goW4WM=
X-Received: by 10.157.67.146 with SMTP id t18mr5537581ote.103.1513269744331; Thu, 14 Dec 2017 08:42:24 -0800 (PST)
MIME-Version: 1.0
Received: by 10.157.8.11 with HTTP; Thu, 14 Dec 2017 08:42:23 -0800 (PST)
In-Reply-To: <7E30739D-C21C-466E-8C3A-8395171C253D@sn3rd.com>
References: <151326691971.6099.4107849780973461328@ietfa.amsl.com> <7E30739D-C21C-466E-8C3A-8395171C253D@sn3rd.com>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Thu, 14 Dec 2017 10:42:23 -0600
Message-ID: <CABkgnnXCizOyLkJzSR-MHo97O2feOiGXfOVFZeQPoNzj4m452g@mail.gmail.com>
To: Sean Turner <sean@sn3rd.com>
Cc: IETF STIR Mail List <stir@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/WINhhTF6VyD_plCkavUknxVOvEc>
Subject: Re: [stir] I-D Action: draft-ietf-stir-certificates-17.txt
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Dec 2017 16:42:27 -0000
Hey Sean, why did you choose to allow capped ranges rather than making them invalid? "123"+900 is now equivalent to "123"+876, which means that you have two ways to represent the same thing. Don't we try to avoid that in certificates? (I mean otherwise we'd use BER...) On Thu, Dec 14, 2017 at 9:57 AM, Sean Turner <sean@sn3rd.com> wrote: > This version addresses ekr’s discuss and IANA’s request to include additional fields (which I forgot). > > spt > >> On Dec 14, 2017, at 10:55, internet-drafts@ietf.org wrote: >> >> >> A New Internet-Draft is available from the on-line Internet-Drafts directories. >> This draft is a work item of the Secure Telephone Identity Revisited WG of the IETF. >> >> Title : Secure Telephone Identity Credentials: Certificates >> Authors : Jon Peterson >> Sean Turner >> Filename : draft-ietf-stir-certificates-17.txt >> Pages : 22 >> Date : 2017-12-14 >> >> Abstract: >> In order to prevent the impersonation of telephone numbers on the >> Internet, some kind of credential system needs to exist that >> cryptographically asserts authority over telephone numbers. This >> document describes the use of certificates in establishing authority >> over telephone numbers, as a component of a broader architecture for >> managing telephone numbers as identities in protocols like SIP. >> >> >> The IETF datatracker status page for this draft is: >> https://datatracker.ietf.org/doc/draft-ietf-stir-certificates/ >> >> There are also htmlized versions available at: >> https://tools.ietf.org/html/draft-ietf-stir-certificates-17 >> https://datatracker.ietf.org/doc/html/draft-ietf-stir-certificates-17 >> >> A diff from the previous version is available at: >> https://www.ietf.org/rfcdiff?url2=draft-ietf-stir-certificates-17 >> >> >> Please note that it may take a couple of minutes from the time of submission >> until the htmlized version and diff are available at tools.ietf.org. >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> _______________________________________________ >> stir mailing list >> stir@ietf.org >> https://www.ietf.org/mailman/listinfo/stir > > _______________________________________________ > stir mailing list > stir@ietf.org > https://www.ietf.org/mailman/listinfo/stir
- [stir] I-D Action: draft-ietf-stir-certificates-1… internet-drafts
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Sean Turner
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Martin Thomson
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Sean Turner
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Sean Turner
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Martin Thomson
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Russ Housley
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Paul Kyzivat
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Russ Housley
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Martin Thomson
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Russ Housley
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Russ Housley