IETF Logo Mail Archive

Re: [Trans] [pkix] a question of cert (and OCSP) extension syntax

"Salz, Rich" <rsalz@akamai.com> Sat, 28 March 2015 03:58 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 318E51A1B83 for <trans@ietfa.amsl.com>; Fri, 27 Mar 2015 20:58:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.61
X-Spam-Level:
X-Spam-Status: No, score=-2.61 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id igwuqyVElXTt for <trans@ietfa.amsl.com>; Fri, 27 Mar 2015 20:58:42 -0700 (PDT)
Received: from prod-mail-xrelay07.akamai.com (prod-mail-xrelay07.akamai.com [72.246.2.115]) by ietfa.amsl.com (Postfix) with ESMTP id 0D5CE1A1B7A for <trans@ietf.org>; Fri, 27 Mar 2015 20:58:41 -0700 (PDT)
Received: from prod-mail-xrelay07.akamai.com (localhost.localdomain [127.0.0.1]) by postfix.imss70 (Postfix) with ESMTP id 35B12477D7; Sat, 28 Mar 2015 03:58:41 +0000 (GMT)
Received: from prod-mail-relay07.akamai.com (prod-mail-relay07.akamai.com [172.17.121.112]) by prod-mail-xrelay07.akamai.com (Postfix) with ESMTP id 29897477D6; Sat, 28 Mar 2015 03:58:41 +0000 (GMT)
Received: from email.msg.corp.akamai.com (usma1ex-cas3.msg.corp.akamai.com [172.27.123.32]) by prod-mail-relay07.akamai.com (Postfix) with ESMTP id 2547780044; Sat, 28 Mar 2015 03:58:41 +0000 (GMT)
Received: from USMA1EX-DAG1MB2.msg.corp.akamai.com (172.27.123.102) by usma1ex-dag1mb4.msg.corp.akamai.com (172.27.123.104) with Microsoft SMTP Server (TLS) id 15.0.913.22; Fri, 27 Mar 2015 23:58:39 -0400
Received: from USMA1EX-DAG1MB2.msg.corp.akamai.com ([172.27.123.102]) by usma1ex-dag1mb2.msg.corp.akamai.com ([172.27.123.102]) with mapi id 15.00.0913.011; Fri, 27 Mar 2015 23:58:40 -0400
From: "Salz, Rich" <rsalz@akamai.com>
To: Massimiliano Pala <director@openca.org>, "trans@ietf.org" <trans@ietf.org>
Thread-Topic: [Trans] [pkix] a question of cert (and OCSP) extension syntax
Thread-Index: AQHQaOf6ve3CVsJiUk6+j2Vm8uDnCZ0xCVVw
Date: Sat, 28 Mar 2015 03:58:39 +0000
Message-ID: <2ebf955d99414800bfefd7a6edd814dd@usma1ex-dag1mb2.msg.corp.akamai.com>
References: <9A043F3CF02CD34C8E74AC1594475C73AAFB6418@uxcn10-5.UoA.auckland.ac.nz> <C961CE34-4F55-4B11-86D7-1566B701911D@seantek.com> <5512C9C7.70202@comodo.com> <55159714.1070902@openca.org> <5515EB25.2090206@openca.org>
In-Reply-To: <5515EB25.2090206@openca.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [172.19.58.0]
Content-Type: multipart/alternative; boundary="_000_2ebf955d99414800bfefd7a6edd814ddusma1exdag1mb2msgcorpak_"
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/trans/JWDhaZKUPCem65m-7caNm9sJTRU>
Subject: Re: [Trans] [pkix] a question of cert (and OCSP) extension syntax
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 28 Mar 2015 03:58:44 -0000

OID's are just distributed opaque identifiers.  Doesn't bother me, but if the WG wants to change OID's and break deployed software, go for it

It will might be hard to get a PKIX arc.  A Trans arc under IETF seems more feasible.

--
Senior Architect, Akamai Technologies
IM: richsalz@jabber.at Twitter: RichSalz

v2.23.0 | Report a Bug | By Email