Re: [stir] I-D Action: draft-ietf-stir-certificates-17.txt
Paul Kyzivat <pkyzivat@alum.mit.edu> Thu, 14 December 2017 22:03 UTC
Return-Path: <pkyzivat@alum.mit.edu>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 39B2A126B7E for <stir@ietfa.amsl.com>; Thu, 14 Dec 2017 14:03:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fu6Xpf7H6nqr for <stir@ietfa.amsl.com>; Thu, 14 Dec 2017 14:03:27 -0800 (PST)
Received: from alum-mailsec-scanner-6.mit.edu (alum-mailsec-scanner-6.mit.edu [18.7.68.18]) by ietfa.amsl.com (Postfix) with ESMTP id B9016126DEE for <stir@ietf.org>; Thu, 14 Dec 2017 14:03:26 -0800 (PST)
X-AuditID: 12074412-1fdff7000000748d-71-5a32f52d1ca3
Received: from outgoing-alum.mit.edu (OUTGOING-ALUM.MIT.EDU [18.7.68.33]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by alum-mailsec-scanner-6.mit.edu (Symantec Messaging Gateway) with SMTP id D3.DF.29837.D25F23A5; Thu, 14 Dec 2017 17:03:26 -0500 (EST)
Received: from PaulKyzivatsMBP.localdomain (c-24-62-227-142.hsd1.ma.comcast.net [24.62.227.142]) (authenticated bits=0) (User authenticated as pkyzivat@ALUM.MIT.EDU) by outgoing-alum.mit.edu (8.13.8/8.12.4) with ESMTP id vBEM3P0k027359 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT) for <stir@ietf.org>; Thu, 14 Dec 2017 17:03:25 -0500
To: stir@ietf.org
References: <151326691971.6099.4107849780973461328@ietfa.amsl.com> <7E30739D-C21C-466E-8C3A-8395171C253D@sn3rd.com> <CABkgnnXCizOyLkJzSR-MHo97O2feOiGXfOVFZeQPoNzj4m452g@mail.gmail.com> <07AB7CB1-E5A2-45EE-B90E-B11E6A04C018@sn3rd.com> <1AF855C9-7129-4098-A137-2CF6099A3A1C@vigilsec.com>
From: Paul Kyzivat <pkyzivat@alum.mit.edu>
Message-ID: <c03d5092-5646-0807-3e16-864aeeb3e413@alum.mit.edu>
Date: Thu, 14 Dec 2017 17:03:25 -0500
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:52.0) Gecko/20100101 Thunderbird/52.5.0
MIME-Version: 1.0
In-Reply-To: <1AF855C9-7129-4098-A137-2CF6099A3A1C@vigilsec.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrNIsWRmVeSWpSXmKPExsUixO6iqKv31SjK4MpCQYvla7cxOTB6LFny kymAMYrLJiU1J7MstUjfLoEr42bfHpaCjRwVP/csZWxgvMzWxcjJISFgIjH3bydjFyMXh5DA DiaJL5ufskI4X5kkWk/PYwSpEhZwlrjc3ckOYosICErcm3GaCaJoKZPEivu/mUESbAJaEnMO /WfpYuTg4BWwl1h8IRokzCKgKvH21nkWEFtUIE1iz4UOMJsXaM7JmU/AbE4BB4l7p/ewgtjM AmYS8zY/ZIawxSVuPZnPBGHLSzRvnc08gZF/FpL2WUhaZiFpmYWkZQEjyypGucSc0lzd3MTM nOLUZN3i5MS8vNQiXTO93MwSvdSU0k2MkLAU2sG4/qTcIUYBDkYlHl6LNqMoIdbEsuLK3EOM khxMSqK8JZuAQnxJ+SmVGYnFGfFFpTmpxYcYJTiYlUR4r7QC5XhTEiurUovyYVLSHCxK4rw/ F6v7CQmkJ5akZqemFqQWwWRlODiUJHgvfgFqFCxKTU+tSMvMKUFIM3FwggznARp+G6SGt7gg Mbc4Mx0if4rRkqOn58YfJo5nM183MHP0zPrRwizEkpeflyolzssI0iAA0pBRmgc3E5ZmXjGK A70ozMsCUsUDTFFwU18BLWQCWvi8RR9kYUkiQkqqgZHnxsad+3sjjU8efquj39vy6lm/Xht/ nOHVv/E1b08uOPrQoWfuVrOdMu67q5LKiv8skFaKyTpo5LBzX+Xy7d25kxK9gwOvzJy/qu7T mjOK1bvefm3I6NTSXy9/pCpwwnWxBatfpS7ndjrCVHh5x0Y3pbrVfbKzjoWWykhbzfN+tNL/ oecWCy4lluKMREMt5qLiRAD0HdssDgMAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/f-FPQg3QxBlGzE07YfFvReKM7C0>
Subject: Re: [stir] I-D Action: draft-ietf-stir-certificates-17.txt
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Dec 2017 22:03:29 -0000
On 12/14/17 4:19 PM, Russ Housley wrote: > >> On Dec 14, 2017, at 12:59 PM, Sean Turner <sean@sn3rd.com> wrote: >> >> Bit to quick in my response, to address the 2nd point: >> >>> On Dec 14, 2017, at 11:42, Martin Thomson <martin.thomson@gmail.com> wrote: >>> >>> "123"+900 is now equivalent to "123"+876, which means that you have >>> two ways to represent the same thing. Don't we try to avoid that in >>> certificates? (I mean otherwise we'd use BER...) >> >> As far encoding something the same way: I’d be worried if “123”+900 and “123”+876 resulted in the same DER code, but it doesn’t. > > No, this bits on the wire are different, but they specify the same block of telephone numbers. Why do we want more than one way to specify the same block of numbers? I agree that "123"+900 seems like a bad idea. But even without that there are multiple ways to specify the same range of numbers: a single range, two or more smaller ranges that collectively cover the range, or a complete list of individual numbers. Thanks, Paul
- [stir] I-D Action: draft-ietf-stir-certificates-1… internet-drafts
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Sean Turner
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Martin Thomson
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Sean Turner
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Sean Turner
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Martin Thomson
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Russ Housley
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Paul Kyzivat
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Russ Housley
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Martin Thomson
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Russ Housley
- Re: [stir] I-D Action: draft-ietf-stir-certificat… Russ Housley