Re: [Trans] path validation
Kyle Hamilton <aerowolf@gmail.com> Tue, 30 September 2014 05:18 UTC
Return-Path: <aerowolf@gmail.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E5AF1A0164 for <trans@ietfa.amsl.com>; Mon, 29 Sep 2014 22:18:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XhCeDfEH14at for <trans@ietfa.amsl.com>; Mon, 29 Sep 2014 22:18:43 -0700 (PDT)
Received: from mail-pd0-x22c.google.com (mail-pd0-x22c.google.com [IPv6:2607:f8b0:400e:c02::22c]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3AEE41A015B for <trans@ietf.org>; Mon, 29 Sep 2014 22:18:43 -0700 (PDT)
Received: by mail-pd0-f172.google.com with SMTP id p10so2173501pdj.17 for <trans@ietf.org>; Mon, 29 Sep 2014 22:18:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=user-agent:in-reply-to:references:mime-version:content-type :content-transfer-encoding:subject:from:date:to:message-id; bh=2mz+XHzm9fbjaBPRSXPRkQVLqb37Xvlb0mkzIc1B7qY=; b=Dr1hrhjKH3/mBJssM6EhHwmrHE5/F4E1di4diQNOYYGKlXx791aiPTlnuaNSb/+eJ0 Hzht8AyKLK+1Tc8HSSdfVkF9s9MDE/IsyFN2ZXsJK6Bw1JvZiICNUYHNkDRhOnyZc3NT aOt+Uma/R5gFfe0SPQNDB44/Z8CnNc6qr7hyKv3tGMUE8mdeD4LtBt5Ghldew6sqmOHG nJI4aCJn/g931YnZm2Q+uprA/0KEGD7aTifk2Ljl0VN2vutFDD4+qiQnHTc30/QOzaxi 9hUW4LaIFptioaHklqUk/J0lGje77qTUfm1VGKwIDRDMmrwKpy0gGSKuqU6iLekr72VC ZehQ==
X-Received: by 10.68.221.102 with SMTP id qd6mr66158854pbc.123.1412054322940; Mon, 29 Sep 2014 22:18:42 -0700 (PDT)
Received: from [192.168.254.11] (ip70-173-74-50.lv.lv.cox.net. [70.173.74.50]) by mx.google.com with ESMTPSA id fm15sm13947037pdb.58.2014.09.29.22.18.39 for <multiple recipients> (version=TLSv1.2 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Mon, 29 Sep 2014 22:18:41 -0700 (PDT)
User-Agent: K-9 Mail for Android
In-Reply-To: <20140930005524.GP16215@hezmatt.org>
References: <54296FB2.1060109@bbn.com> <4262AC0DB9856847A2D00EF817E81139233695@scygexch10.cygnacom.com> <544B0DD62A64C1448B2DA253C011414607D1629838@TUS1XCHEVSPIN33.SYMC.SYMANTEC.COM> <4262AC0DB9856847A2D00EF817E8113923370C@scygexch10.cygnacom.com> <544B0DD62A64C1448B2DA253C011414607D162989C@TUS1XCHEVSPIN33.SYMC.SYMANTEC.COM> <20140930005524.GP16215@hezmatt.org>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----IHFBXKWLIBJK5I4B4IPKXI4F6BVR83"
Content-Transfer-Encoding: 8bit
From: Kyle Hamilton <aerowolf@gmail.com>
Date: Mon, 29 Sep 2014 22:18:27 -0700
To: Matt Palmer <mpalmer@hezmatt.org>, trans@ietf.org
Message-ID: <F1A29F34-124A-4C7A-BED2-71F1762B7001@gmail.com>
Archived-At: http://mailarchive.ietf.org/arch/msg/trans/nEOGE3gIglj6qJc-fRQ8-XfzLfc
Subject: Re: [Trans] path validation
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Sep 2014 05:18:45 -0000
So, the CA is the executive, and the log is the public records clerk? -Kyke H On September 29, 2014 5:55:24 PM PDT, Matt Palmer <mpalmer@hezmatt.org> wrote: >On Mon, Sep 29, 2014 at 12:26:47PM -0700, Rick Andrews wrote: >> Since it's not an absolute requirement at this point (either from >CABF or >> from individual browsers' policies) I suggest that log servers cannot >> enforce the use of technical constraints in intermediate CAs. > >Logs shouldn't be enforcing *anything*. A log isn't a judge, it's a >record. >The only constraints on what should be rejected from being accepted by >a >log should be those things which prevent abuse sufficient to render a >log >unusable. > >- Matt > >_______________________________________________ >Trans mailing list >Trans@ietf.org >https://www.ietf.org/mailman/listinfo/trans -- Sent from my Android device with K-9 Mail. Please excuse my brevity.
- [Trans] path validation Stephen Kent
- Re: [Trans] path validation Santosh Chokhani
- Re: [Trans] path validation Rick Andrews
- Re: [Trans] path validation Santosh Chokhani
- Re: [Trans] path validation Rick Andrews
- Re: [Trans] path validation David Leon Gil
- Re: [Trans] path validation Santosh Chokhani
- Re: [Trans] path validation Rick Andrews
- Re: [Trans] path validation Melinda Shore
- Re: [Trans] path validation Matt Palmer
- Re: [Trans] path validation Jeremy Rowley
- Re: [Trans] path validation Melinda Shore
- Re: [Trans] path validation Kyle Hamilton
- Re: [Trans] path validation Stephen Kent
- Re: [Trans] path validation Stephen Kent
- Re: [Trans] path validation Stephen Kent
- Re: [Trans] path validation David Leon Gil
- Re: [Trans] path validation Carl Wallace
- Re: [Trans] path validation Stephen Farrell
- Re: [Trans] path validation Rob Stradling
- Re: [Trans] path validation Stephen Kent
- Re: [Trans] path validation Stephen Kent
- Re: [Trans] path validation Stephen Kent
- Re: [Trans] path validation Russ Housley
- Re: [Trans] path validation David Leon Gil
- Re: [Trans] path validation Stephen Kent