Re: [Trans] Martin Duke's No Objection on draft-ietf-trans-rfc6962-bis-39: (with COMMENT)

"Salz, Rich" <rsalz@akamai.com> Thu, 29 July 2021 22:45 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 355153A0C5B for <trans@ietfa.amsl.com>; Thu, 29 Jul 2021 15:45:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.447
X-Spam-Level:
X-Spam-Status: No, score=-2.447 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PDyb57bdWbog for <trans@ietfa.amsl.com>; Thu, 29 Jul 2021 15:44:59 -0700 (PDT)
Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9430D3A0C54 for <trans@ietf.org>; Thu, 29 Jul 2021 15:44:59 -0700 (PDT)
Received: from pps.filterd (m0050095.ppops.net [127.0.0.1]) by m0050095.ppops.net-00190b01. (8.16.0.43/8.16.0.43) with SMTP id 16TMd3r7003893; Thu, 29 Jul 2021 23:44:58 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=jan2016.eng; bh=7Z9/g1a+/ZtprBeBRSsOGrT2YEg3PTyTNmDgKRHS6fc=; b=is+Rs6hVLX9UTutU+o1zV6lVZVDargXKTzP6KFsS/ao5WQsEYhqNDXrLmO2Fah4o5PLt yZH7u9Z59STwWslc+plH0juTdyg8VDr1yZunkbpA0XYk5oAz+ANkuvl18IACq+ASKbz+ FcqvBYRfFmGJ6sH8zLmBh6dIf71SjcXDKOH/u8QAtfLCgf3JFWNPHRu8mgz/YRmse6yp DLJ3dA5lj/kXn/sHw8vDap+BiSTDs2jYg5O7oXSy3ytyJxYR4NwZIgFfsrseSeE0VPJg ME3JxYcuqUwyAn9AtnHv/7tEmjZ8nZMA4pl2MJkafE3cY5tAfA4EAZ8RZAjOlVf04I6o wA==
Received: from prod-mail-ppoint2 (prod-mail-ppoint2.akamai.com [184.51.33.19] (may be forged)) by m0050095.ppops.net-00190b01. with ESMTP id 3a4146qmx8-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 29 Jul 2021 23:44:58 +0100
Received: from pps.filterd (prod-mail-ppoint2.akamai.com [127.0.0.1]) by prod-mail-ppoint2.akamai.com (8.16.1.2/8.16.1.2) with SMTP id 16TMXfgS013348; Thu, 29 Jul 2021 18:44:56 -0400
Received: from email.msg.corp.akamai.com ([172.27.165.113]) by prod-mail-ppoint2.akamai.com with ESMTP id 3a36njmvvr-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Thu, 29 Jul 2021 18:44:56 -0400
Received: from USTX2EX-DAG1MB1.msg.corp.akamai.com (172.27.165.119) by ustx2ex-dag1mb6.msg.corp.akamai.com (172.27.165.124) with Microsoft SMTP Server (TLS) id 15.0.1497.23; Thu, 29 Jul 2021 17:44:55 -0500
Received: from USTX2EX-DAG1MB1.msg.corp.akamai.com ([172.27.165.119]) by ustx2ex-dag1mb1.msg.corp.akamai.com ([172.27.165.119]) with mapi id 15.00.1497.023; Thu, 29 Jul 2021 17:44:55 -0500
From: "Salz, Rich" <rsalz@akamai.com>
To: Martin Duke <martin.h.duke@gmail.com>, Alexey Melnikov <alexey.melnikov@isode.com>
CC: "trans@ietf.org" <trans@ietf.org>
Thread-Topic: [Trans] Martin Duke's No Objection on draft-ietf-trans-rfc6962-bis-39: (with COMMENT)
Thread-Index: AQHXhLiDkuM4I1WJH0S5dktI87YhrqtaxqqA//++bgCAAEjJAIAAAmAA///C8oCAAEpQgIAAADgA///ASIA=
Date: Thu, 29 Jul 2021 22:44:54 +0000
Message-ID: <CD233698-DCB1-46F6-8E68-42927404B575@akamai.com>
References: <97FC6C54-5642-4E0B-B6CB-F3231C58D7AF@akamai.com> <CAErg=HG3-TT++aU6mRQ7uyp_d0gLbUWU-3qVBzZ7fdAzHthtPA@mail.gmail.com> <C6F3ECDF-D16A-4BFC-BBF5-14F6577D26D2@akamai.com> <CAErg=HFo3AAV+=-C5wjvmcANF-PFvp+qzSupBJ-60VXsC-otcA@mail.gmail.com> <CAM4esxR_U6DNVnsjrY5B4v1zZRNQMjcz-fiK1iF+dL+3zrw0Rg@mail.gmail.com> <6846A60B-EAD5-4CF7-AFFB-FF9C7FA96895@akamai.com> <03314592-ed87-6b52-c6b2-6bfb06eb4fb6@isode.com> <CAM4esxSQyNQOK=_TuGqDZ7y-DOUUUBpWvJH416Q0WfoVimxNKg@mail.gmail.com>
In-Reply-To: <CAM4esxSQyNQOK=_TuGqDZ7y-DOUUUBpWvJH416Q0WfoVimxNKg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.51.21071101
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.27.164.43]
Content-Type: multipart/alternative; boundary="_000_CD233698DCB146F68E6842927404B575akamaicom_"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-07-29_17:2021-07-29, 2021-07-29 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 phishscore=0 suspectscore=0 adultscore=0 mlxscore=0 malwarescore=0 spamscore=0 bulkscore=0 mlxlogscore=999 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2107140000 definitions=main-2107290136
X-Proofpoint-GUID: Jl_0xH8QgbFgmvQ6SkjqxdFf9XOjC_17
X-Proofpoint-ORIG-GUID: Jl_0xH8QgbFgmvQ6SkjqxdFf9XOjC_17
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-07-29_17:2021-07-29, 2021-07-29 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 adultscore=0 priorityscore=1501 suspectscore=0 impostorscore=0 lowpriorityscore=0 mlxscore=0 malwarescore=0 phishscore=0 clxscore=1011 mlxlogscore=999 bulkscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2107140000 definitions=main-2107290137
X-Agari-Authentication-Results: mx.akamai.com; spf=${SPFResult} (sender IP is 184.51.33.19) smtp.mailfrom=rsalz@akamai.com smtp.helo=prod-mail-ppoint2
Archived-At: <https://mailarchive.ietf.org/arch/msg/trans/oEqAJtTHoMLcb2zLeILFEnwc7GI>
Subject: Re: [Trans] Martin Duke's No Objection on draft-ietf-trans-rfc6962-bis-39: (with COMMENT)
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Jul 2021 22:45:06 -0000

Added this text:
+One way to get an OID arc, from which OIDs can be created, is to request
+a Private Enterprise Number from IANA, by completing the
+[registration form](https://pen.iana.org/pen/PenApplication.page).

At https://github.com/google/certificate-transparency-rfcs/pull/341


From: Martin Duke <martin.h.duke@gmail.com>
Date: Thursday, July 29, 2021 at 6:33 PM
To: Alexey Melnikov <alexey.melnikov@isode.com>
Cc: Rich Salz <rsalz@akamai.com>om>, "trans@ietf.org" <trans@ietf.org>
Subject: Re: [Trans] Martin Duke's No Objection on draft-ietf-trans-rfc6962-bis-39: (with COMMENT)

SGTM.

On Thu, Jul 29, 2021 at 3:32 PM Alexey Melnikov <alexey.melnikov@isode.com<mailto:alexey.melnikov@isode.com>> wrote:

On 29/07/2021 23:06, Salz, Rich wrote:


  *   So returning to my previous point, it seems rather heavyweight to update the IANA registry every time this happens, and it would arguably be efficient to assign a given operator a range so that these need not be deconflicted in perpetuity?

The registry is only for those organization that don’t have an OID arc of their own.  Getting one is pretty easy, one possibility is requesting it at https://pen.iana.org/pen/PenApplication.page<https://urldefense.com/v3/__https:/pen.iana.org/pen/PenApplication.page__;!!GjvTz_vk!HWyU0WX7goBE_4CUTk4VYHTqzjPMzA1bGSLCiBEEmLYytv5zZMbuiG29vSps$>
Which is First Come First Served registry, which is a rather low bar.
We could add that to the doc if you think it would be useful.  You get what’s called an “arc” and then you append .1, .2, .3.1, etc., as you want.
Indeed. Org arc only need to be allocated once and can be used for all sort of other protocols as well.