IETF Logo Mail Archive

Re: [Trans] Tracking implementations

Rob Stradling <rob.stradling@comodo.com> Wed, 03 June 2015 18:57 UTC

Return-Path: <rob.stradling@comodo.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2CCD31B2850 for <trans@ietfa.amsl.com>; Wed, 3 Jun 2015 11:57:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OmCt4-6F3Jbw for <trans@ietfa.amsl.com>; Wed, 3 Jun 2015 11:57:08 -0700 (PDT)
Received: from mmextmx1.mcr.colo.comodoca.net (mmextmx1.mcr.colo.comodoca.net [IPv6:2a02:1788:402:c00::c0a8:9cd5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 921DC1AD37C for <trans@ietf.org>; Wed, 3 Jun 2015 11:57:07 -0700 (PDT)
Received: (qmail 16774 invoked by uid 1004); 3 Jun 2015 18:57:06 -0000
Received: from ian.brad.office.comodo.net (HELO ian.brad.office.comodo.net) (192.168.0.202) by mmextmx1.mcr.colo.comodoca.net (qpsmtpd/0.84) with ESMTP; Wed, 03 Jun 2015 19:57:06 +0100
Received: (qmail 3873 invoked by uid 1000); 3 Jun 2015 18:57:06 -0000
Received: from and0004.comodo.net (HELO [192.168.0.58]) (192.168.0.58) (smtp-auth username rob, mechanism plain) by ian.brad.office.comodo.net (qpsmtpd/0.40) with (AES128-SHA encrypted) ESMTPSA; Wed, 03 Jun 2015 19:57:06 +0100
Message-ID: <556F4E01.6030204@comodo.com>
Date: Wed, 03 Jun 2015 19:57:05 +0100
From: Rob Stradling <rob.stradling@comodo.com>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
MIME-Version: 1.0
To: Tim Wicinski <tjw.ietf@gmail.com>
References: <53D9600C.6040805@gmail.com> <556F0EB1.1060400@comodo.com> <556F3C0F.9020607@gmail.com>
In-Reply-To: <556F3C0F.9020607@gmail.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/trans/2p64RuTsm3ni1bj5OwsBx5mR6bk>
Cc: trans@ietf.org
Subject: Re: [Trans] Tracking implementations
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jun 2015 18:57:10 -0000

Thanks Tim.  :-)

On 03/06/15 18:40, Tim Wicinski wrote:
> Thanks Rob.  The security folks at my employer already found a domain
> that was set up by some marketing folks that has a less than optimal
> cert, and the domain appears to be in someone's personal account, and
> they are no longer with the company.  Of course the domain is active.
>
> sigh
>
> tim
>
>
> On 6/3/15 7:26 AM, Rob Stradling wrote:
>> https://crt.sh
>>
>> Pronounced "search".  :-)
>>
>> It's a web interface that lets you search for certs that have been
>> logged by the publicly known RFC6962 logs.
>>
>> Right now it's half a Monitor.  It fetches all new entries soon after
>> they're added to the logs, but it doesn't (yet) verify STH signatures.
>>
>> No current plans to release source code.
>>
>> Feel free to mention this on the wiki page.
>>
>> On 30/07/14 22:13, Melinda Shore wrote:
>>> During the session last week I was a bit surprised by the number of
>>> people saying that they were doing implementations, and I think it
>>> might be useful to get a better handle on that.  If nothing else, it
>>> helps quite a bit during the publication process if it's known
>>> that there are interoperable implementations and that we know a little
>>> bit about them.
>>>
>>> So, I'd be grateful if people who've are working on implementations
>>> and who can discuss them publicly could speak up, let us know the
>>> status and whether or not you'll be releasing source, and provide a
>>> pointer to a repo or other documentation if you're able.  Also let
>>> me know whether or not you'd be willing to have your implementation
>>> mentioned on a wiki page listing implementations.
>>>
>>> Thanks again,
>>>
>>> Melinda
>>
>
> _______________________________________________
> Trans mailing list
> Trans@ietf.org
> https://www.ietf.org/mailman/listinfo/trans
>

-- 
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
Office Tel: +44.(0)1274.730505
Office Fax: +44.(0)1274.730909
www.comodo.com

COMODO CA Limited, Registered in England No. 04058690
Registered Office:
   3rd Floor, 26 Office Village, Exchange Quay,
   Trafford Road, Salford, Manchester M5 3EQ

This e-mail and any files transmitted with it are confidential and 
intended solely for the use of the individual or entity to whom they are 
addressed.  If you have received this email in error please notify the 
sender by replying to the e-mail containing this attachment. Replies to 
this email may be monitored by COMODO for operational or business 
reasons. Whilst every endeavour is taken to ensure that e-mails are free 
from viruses, no liability can be accepted and the recipient is 
requested to use their own virus checking software.

v2.23.0 | Report a Bug | By Email