Re: [Trans] [ct-policy] Re: Certificate Transparency Mirrors (experimental)
Eran Messeri <eranm@google.com> Wed, 16 November 2016 01:55 UTC
Return-Path: <eranm@google.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B57B1295C9 for <trans@ietfa.amsl.com>; Tue, 15 Nov 2016 17:55:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.197
X-Spam-Level:
X-Spam-Status: No, score=-4.197 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-1.497, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ndeU_RlwO94I for <trans@ietfa.amsl.com>; Tue, 15 Nov 2016 17:55:05 -0800 (PST)
Received: from mail-wm0-x232.google.com (mail-wm0-x232.google.com [IPv6:2a00:1450:400c:c09::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B51141295FC for <trans@ietf.org>; Tue, 15 Nov 2016 17:54:59 -0800 (PST)
Received: by mail-wm0-x232.google.com with SMTP id f82so39693387wmf.1 for <trans@ietf.org>; Tue, 15 Nov 2016 17:54:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=Qz4ry2C4gJQji0HfkKyS8xLyPTcGhP1TVhRynMAn6sg=; b=bxjHDOu4P2+RBPGOv00X6JtyQUx+3NH1Lw6iqBua7LjwkCEKjoVJuqu3+xgBynXvPI TyKBIpVb1MXflY2tETTfGsBoaOBDDIz/zV5vGaA66kR/dPlycv619ICmaHswi2V5tulF FjikuHYH2HxRn0PYiCRStITevnbklCHeoh7DoF30j+TxCyQrBF+Ox7tR4Akd078mWcKk ZbFvprUz6OoaJ8++pfbonLZc/46t3epVhoqJKiklxKLdhIuHmrHn83sVgUp2B8p6ttX7 EF1Emzl5uG4Zv9cBgE0jGli2ppTsml9vfQMsmN6Y5/tnwBIvmfSJjmaNaCziA6cFKIrC u+SA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=Qz4ry2C4gJQji0HfkKyS8xLyPTcGhP1TVhRynMAn6sg=; b=IDm1vwPqy8iC107tBmBCYxWBTG2jmbrPxs4hRpAf+6X5S+uhYDQxUGSjqQ0wQi+OjO B0jlBtp95tIjoVgVAZXybbR6rwKRaK4MTC9s1m8Kj6iRUFlFAEpErxx+nl5vM49veP7O mI5nZshksd7l/KMYxSwabugUudJFtnTe2cLHSg16lHZ9ap19v+BTX2PhRDIF4lfQqiGQ a0Ca+bwE2LVDxA9YvxNNotS0fYjbyfBGcn3aNy+reKSRk8vZGwyh3MwcCEZfIQslHWRP CLKm5Powbhil6maRcYHVFlmbvmdXABWF/SU6UVVDNF7sPObgD77KPJ863tQhzf6e4CZz c60g==
X-Gm-Message-State: ABUngvf5fcH6S1EDwFIAe7kTZdeWmOxWFIdwZDYo0u86kGAGLhxJhRwIYOUBtFKXlUjk5D0uhEeTh8roaWiUY+Wf
X-Received: by 10.194.142.243 with SMTP id rz19mr186016wjb.132.1479261297817; Tue, 15 Nov 2016 17:54:57 -0800 (PST)
MIME-Version: 1.0
Received: by 10.28.31.21 with HTTP; Tue, 15 Nov 2016 17:54:57 -0800 (PST)
In-Reply-To: <75df4d95-c923-00bd-4eee-0027d7dbfd8b@comodo.com>
References: <CAP9QY5ZYa6_-=5-DOz3O8PJYi-48sqyBvx2XbyV+3euWKjcavQ@mail.gmail.com> <8229e7fa-9763-41b7-b08b-ce1286dcb389@chromium.org> <CAKMqHLg41YkNT=N-kq6Lbtp2A4s6SD040H2cFRvDenZVbgc5_A@mail.gmail.com> <CAKMP+kdESqbM-DQ-9egZQzM7kgbzV=affU6uwYRHizmTJC_=hg@mail.gmail.com> <CAGDCdM4c5V9Csx1x-u5m9gYVOf5o0k1_e5pz3ithCWwSc3+EtQ@mail.gmail.com> <75df4d95-c923-00bd-4eee-0027d7dbfd8b@comodo.com>
From: Eran Messeri <eranm@google.com>
Date: Wed, 16 Nov 2016 10:54:57 +0900
Message-ID: <CALzYgEcQckSE+zdcJbvmG_HJ9FdkeDn5qPWqj1cFKJ-0xorOSA@mail.gmail.com>
To: Rob Stradling <rob.stradling@comodo.com>
Content-Type: multipart/alternative; boundary="089e0112be48306c9e0541615c0d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/trans/4lwIcOXWEjOJ-YvwlFn6VxEhTWg>
Cc: Pierre Phaneuf <pphaneuf@google.com>, "trans@ietf.org" <trans@ietf.org>, certificate-transparency <certificate-transparency@googlegroups.com>, Florian MAURY <florian.maury@gmail.com>, Certificate Transparency Policy <ct-policy@chromium.org>, Paul Hadfield <hadfieldp@google.com>
Subject: Re: [Trans] [ct-policy] Re: Certificate Transparency Mirrors (experimental)
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Nov 2016 01:55:07 -0000
Regarding the ability to get a consistency proof between any two arbitrary tree sizes, I agree it's useful for this scenario. Note it is not essential for correct operation of the protocol - for correct operation of the protocol only consistency proofs between STHs issued by the log are needed (so, for simplicity of log implementation, the standard does not require logs to provide consistency proofs between arbitrary tree sizes). Regarding Rob Stradling's suggested get-sths, the consensus at the trans WG meeting yesterday seemed to be that this belongs in the monitoring API document rather than 6962-bis. On Mon, Nov 7, 2016 at 8:15 PM, Rob Stradling <rob.stradling@comodo.com> wrote: > On 07/11/16 10:54, Paul Hadfield wrote: > <snip> > > Hi Florian, > > > > there's been some recent discussion on [trans] about adding a new > endpoint > > for v2 that permits a client to retrieve historic STHs. It sounds like > > what you are interested in is quite similar. > > > > Rob Stradling has taken the proposal for this and created a pull request > on > > the RFC repo: > > https://github.com/google/certificate-transparency-rfcs/pull/200 > > > > Perhaps you could comment there? > > A few days ago Melinda wrote: > "6962-bis has completed working group last call. Minor editorial > changes are fine, but let's try to avoid major changes that would > require yet another WGLC." > > I don't yet know if the Chairs consider a new endpoint to be a "major > change". > > -- > Rob Stradling > Senior Research & Development Scientist > COMODO - Creating Trust Online > > -- > You received this message because you are subscribed to the Google Groups > "Certificate Transparency Policy" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to ct-policy+unsubscribe@chromium.org. > To post to this group, send email to ct-policy@chromium.org. > To view this discussion on the web visit https://groups.google.com/a/ > chromium.org/d/msgid/ct-policy/75df4d95-c923-00bd- > 4eee-0027d7dbfd8b%40comodo.com. >
- [Trans] Certificate Transparency Mirrors (experim… Adam Eijdenberg
- Re: [Trans] [ct-policy] Re: Certificate Transpare… Pierre Phaneuf
- Re: [Trans] Certificate Transparency Mirrors (exp… Florian M.
- Re: [Trans] [ct-policy] Re: Certificate Transpare… Florian MAURY
- Re: [Trans] [ct-policy] Re: Certificate Transpare… Paul Hadfield
- Re: [Trans] [ct-policy] Re: Certificate Transpare… Rob Stradling
- Re: [Trans] [ct-policy] Re: Certificate Transpare… Eran Messeri