IETF Logo Mail Archive

Re: [Uta] WGLC for draft-ietf-uta-rfc6125bis-06

"Salz, Rich" <rsalz@akamai.com> Tue, 28 June 2022 17:12 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A780AC14CF01 for <uta@ietfa.amsl.com>; Tue, 28 Jun 2022 10:12:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.848
X-Spam-Level:
X-Spam-Status: No, score=-2.848 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zmEq_rUH6-5A for <uta@ietfa.amsl.com>; Tue, 28 Jun 2022 10:12:28 -0700 (PDT)
Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 61306C14F744 for <uta@ietf.org>; Tue, 28 Jun 2022 10:12:23 -0700 (PDT)
Received: from pps.filterd (m0122333.ppops.net [127.0.0.1]) by mx0a-00190b01.pphosted.com (8.17.1.5/8.17.1.5) with ESMTP id 25SGXXGL024174; Tue, 28 Jun 2022 18:12:18 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=jan2016.eng; bh=6A/Ombsyd1Of8MmVKXHEyFSrByxwTI6s8+7sAS/Eadw=; b=ASe73J0PKQo+z44hxWKxgCZk2olOD3XBxGpgIz25fmHv0V57RvlWmuRw3FGrQm8le/iY v6CAW3qLGTNgF4nonZGtl/i9vOHDh8HeVaSwirqPxzBdUZxausQHbfgPSkQXoSXo5yia Xm3+cEiWqcPf/7qZAfRoWV/+xBWd1dqOjggSdj5xcPtNrU9+5Qwn9W/4E1jq6ruExfrA Dl255y1HTDmH9X04/beQIfoHCob7r15Hfk0LHxqztXjCN2QdCyU1zjo1mBZRz09eaRHy ZuE6bcMwmS6yv7Xu22Hr40Puj5cbODlXlmcStqu4GMXEB0UdlCQEOZxaUB74+9UrgNHt Pg==
Received: from prod-mail-ppoint3 (a72-247-45-31.deploy.static.akamaitechnologies.com [72.247.45.31] (may be forged)) by mx0a-00190b01.pphosted.com (PPS) with ESMTPS id 3h02sng00c-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 28 Jun 2022 18:12:18 +0100
Received: from pps.filterd (prod-mail-ppoint3.akamai.com [127.0.0.1]) by prod-mail-ppoint3.akamai.com (8.17.1.5/8.17.1.5) with ESMTP id 25SDZTKL011830; Tue, 28 Jun 2022 13:12:17 -0400
Received: from email.msg.corp.akamai.com ([172.27.50.205]) by prod-mail-ppoint3.akamai.com (PPS) with ESMTPS id 3gy6pdg36y-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 28 Jun 2022 13:12:17 -0400
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) by ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.26; Tue, 28 Jun 2022 10:12:16 -0700
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) by ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) with mapi id 15.02.0986.026; Tue, 28 Jun 2022 10:12:16 -0700
From: "Salz, Rich" <rsalz@akamai.com>
To: Peter Saint-Andre <stpeter@stpeter.im>, "uta@ietf.org" <uta@ietf.org>, Viktor Dukhovni <ietf-dane@dukhovni.org>
Thread-Topic: [Uta] WGLC for draft-ietf-uta-rfc6125bis-06
Thread-Index: Adh+m/F5NsfNlikUQICzeXBktMWF+wJLnuSAABUVDQAAN+esAAAA/LkAAAMlHIAAZF45AAAD2baAAAAwlIAAJiNkAP//xIqA
Date: Tue, 28 Jun 2022 17:12:16 +0000
Message-ID: <B4F3A313-EF5B-4FFE-90C2-E939BF699068@akamai.com>
References: <002e01d87e9c$78a002e0$69e008a0$@smyslov.net> <032e01d8878f$c2e8f630$48bae290$@smyslov.net> <A7E6035E-7BCF-4BB3-BB87-D261ED98532D@gmail.com> <YrdXuGgMKMM+gKJn@straasha.imrryr.org> <DF17FC56-87DB-4002-B84F-A81B3AE99F83@gmail.com> <Yrdzc0bkQGMRXVGM@straasha.imrryr.org> <fb09d07d-57c3-aba3-f367-dc25a348a4cd@stpeter.im> <Yrou2Rx71cRq+5jT@straasha.imrryr.org> <d1b5f7f8-6f4f-9860-b284-89544ad036d9@stpeter.im> <4e89b9f3-dc73-ca8d-8517-a569b676136c@stpeter.im>
In-Reply-To: <4e89b9f3-dc73-ca8d-8517-a569b676136c@stpeter.im>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.61.22050700
x-originating-ip: [172.27.118.139]
Content-Type: text/plain; charset="utf-8"
Content-ID: <1973C6E596F1E24D965F5794B178D1B1@akamai.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.883,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-06-28_10,2022-06-28_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 adultscore=0 bulkscore=0 mlxscore=0 mlxlogscore=976 spamscore=0 phishscore=0 malwarescore=0 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2204290000 definitions=main-2206280068
X-Proofpoint-ORIG-GUID: D_GLaBcEWqcx8TyFS217g3t2EkUkmEeU
X-Proofpoint-GUID: D_GLaBcEWqcx8TyFS217g3t2EkUkmEeU
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.883,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-06-28_10,2022-06-28_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 impostorscore=0 bulkscore=0 malwarescore=0 adultscore=0 mlxlogscore=931 clxscore=1015 spamscore=0 priorityscore=1501 lowpriorityscore=0 mlxscore=0 phishscore=0 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2204290000 definitions=main-2206280068
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/sYl4V6k-seQuFiBzXWiFdwFELUQ>
Subject: Re: [Uta] WGLC for draft-ietf-uta-rfc6125bis-06
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jun 2022 17:12:33 -0000

>    With regard to PKIX certificates, the primary usage is in the
    context of the public key infrastructure described in {{5280}}.
    In addition, technologies such as DNS-Based Authentication
    of Named Entities (DANE) {{RFC6698}} sometimes use certificates based
    on PKIX (more precisely, certificates structured via {{X.509}} or
    specific encodings thereof such as {{X.690}}), at least in certain
    modes.  Alternatively, a TLS peer could issue delegated credentials
    that are based on a CA-issued certificate, as in {{TLS-SUBCERTS}}.
    In both of these cases, a TLS client could learn of a service identity
    through its inclusion in the relevant certificate.  The rules specified
    here are intended to apply whenever service identities are included in
    X.509 certificates or credentials that are derived from such certificates.

s/are intended to// :)
s/are derived from/are derived from, or used to derive/ (subverts is the latter)

v2.23.0 | Report a Bug | By Email