Re: [Trans] Policy for adding to IANA registries requested in 6962-bis

Rob Stradling <> Tue, 13 December 2016 00:53 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 191B9129FD5 for <>; Mon, 12 Dec 2016 16:53:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id JfE82SiAFnnm for <>; Mon, 12 Dec 2016 16:53:28 -0800 (PST)
Received: from ( [IPv6:2a02:1788:402:c00::c0a8:9cd6]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 3F36F129FAD for <>; Mon, 12 Dec 2016 16:53:28 -0800 (PST)
Received: (qmail 31485 invoked by uid 1004); 13 Dec 2016 00:53:26 -0000
Received: from (HELO ( by (qpsmtpd/0.84) with ESMTP; Tue, 13 Dec 2016 00:53:26 +0000
Received: (qmail 3341 invoked by uid 1000); 13 Dec 2016 00:53:26 -0000
Received: from (HELO []) ( (smtp-auth username rob, mechanism plain) by (qpsmtpd/0.40) with (AES128-SHA encrypted) ESMTPSA; Tue, 13 Dec 2016 00:53:26 +0000
To: Eran Messeri <>, "" <>
References: <> <>
From: Rob Stradling <>
Message-ID: <>
Date: Tue, 13 Dec 2016 00:53:25 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.5.1
MIME-Version: 1.0
In-Reply-To: <>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <>
Subject: Re: [Trans] Policy for adding to IANA registries requested in 6962-bis
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Public Notary Transparency working group discussion list <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 13 Dec 2016 00:53:32 -0000

On 12/12/16 15:54, Eran Messeri wrote:
> Some background as to why I propose each of the policies:
> * Expert Review for Hash algorithm and Signature algorithm: The
> algorithm selection does not affect the behaviour of the protocol.
> However, an expect should make sure proposed additions are suitable (for
> example, that a proposed hash algorithm does not suffer from known
> preimage attacks). section 4.1 says (emphasis mine):
   "Expert Review (or Designated Expert) - approval by a Designated
          Expert is required.  The *required documentation* and review
          criteria for use by the Designated Expert should be provided
          when defining the registry."

So I think we should specify both Expert Review and Specification 
Required, just as (for example) 
section 7.2 does:
   "Addition of tag identifiers requires a public specification and
    Expert Review as set out in..."

Separately, should we reserve some values in either or both of these 
registries for Private Use or for Experimental Use?

> * Specification requirement for SCT & STH extensions: new values for
> these extensions are meaningless without specifying what they do - how
> should clients behave when encountering them.

+1 (and for the VersionedTransType registry we just added too)

Separately, should we reserve some values in any of these registries for 
Private Use or for Experimental Use?

> * First-come-first-served for Log IDs: I can't see how an expect review
> could be meaningful, given log operators requesting those IDs can't
> really prove competence to "own" log IDs, so requiring a "minimal amount
> of clerical information" seems enough.


> Eran
> On Mon, Dec 12, 2016 at 3:44 PM, Eran Messeri <
> <>> wrote:
>     No policy has been specified in 6962-bis for adding values to the
>     IANA registries requested.
>     In
>     <> I
>     propose the following policies, all based on definitions in RFC5226:
>     * Hash algorithms and Signature algorithms: Expert Review
>     * SCT extensions and STH extensions: Specification Required
>     * Log ID 1, Log ID 2: First Come First Served.
>     Feedback welcome, since, as far as I recall, this topic was not
>     discussed on the list previously.
>     Eran
> _______________________________________________
> Trans mailing list

Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
Office Tel: +44.(0)1274.730505
Office Fax: +44.(0)1274.730909

COMODO CA Limited, Registered in England No. 04058690
Registered Office:
   3rd Floor, 26 Office Village, Exchange Quay,
   Trafford Road, Salford, Manchester M5 3EQ

This e-mail and any files transmitted with it are confidential and 
intended solely for the use of the individual or entity to whom they are 
addressed.  If you have received this email in error please notify the 
sender by replying to the e-mail containing this attachment. Replies to 
this email may be monitored by COMODO for operational or business 
reasons. Whilst every endeavour is taken to ensure that e-mails are free 
from viruses, no liability can be accepted and the recipient is 
requested to use their own virus checking software.