Re: [Uta] I-D Action: draft-ietf-uta-rfc6125bis-05.txt
"Salz, Rich" <rsalz@akamai.com> Mon, 02 May 2022 15:17 UTC
Return-Path: <rsalz@akamai.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 650F4C159A1F for <uta@ietfa.amsl.com>; Mon, 2 May 2022 08:17:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.668
X-Spam-Level:
X-Spam-Status: No, score=-2.668 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.575, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sfuk6ExEUHi9 for <uta@ietfa.amsl.com>; Mon, 2 May 2022 08:17:48 -0700 (PDT)
Received: from mx0b-00190b01.pphosted.com (mx0b-00190b01.pphosted.com [IPv6:2620:100:9005:57f::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE9F0C159A23 for <uta@ietf.org>; Mon, 2 May 2022 08:17:47 -0700 (PDT)
Received: from pps.filterd (m0050102.ppops.net [127.0.0.1]) by m0050102.ppops.net-00190b01. (8.17.1.5/8.17.1.5) with ESMTP id 242FEJkZ030558; Mon, 2 May 2022 16:17:45 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=jan2016.eng; bh=z7Vd0qtmWT4os2U/xYvM98hjlaOUNWNA5O0bkZ+wEO8=; b=AfqhO7iQMQVrFm8Eu8edFX2ba7zgPaD8gDqGOYqWjgHYByOGgkt+cV7tISduYfqpnZOb EA18R84fZafWE3BxOq8LeAu6/Ku7fJRNcoFhevgjz8QSGYiqTzihR7dI3ymOkSUJe4HF E31ba3jTCeum+5ZPQRQQeclNsKfs7IKQQKz/NH5kPWiN3cRMbYxcnHMbY7TZxg0WbT0x 1q5M94MacE0fuVrGZKdzibhHlaMQhPTBj7S8cS2KKsei+48bDAsGF1gwVlZAtg3pqwQS l+XF9V1v+fkLUVG/mE7XW05dtkAk1mzKstJhkmUDW6upLdwByezHM20ILOb3fS7JFhSI mg==
Received: from prod-mail-ppoint1 (prod-mail-ppoint1.akamai.com [184.51.33.18] (may be forged)) by m0050102.ppops.net-00190b01. (PPS) with ESMTPS id 3frt6gfvjp-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 02 May 2022 16:17:45 +0100
Received: from pps.filterd (prod-mail-ppoint1.akamai.com [127.0.0.1]) by prod-mail-ppoint1.akamai.com (8.16.1.2/8.16.1.2) with SMTP id 242F5oY3009440; Mon, 2 May 2022 11:17:44 -0400
Received: from email.msg.corp.akamai.com ([172.27.91.23]) by prod-mail-ppoint1.akamai.com with ESMTP id 3fs0eybs6w-2 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 02 May 2022 11:17:44 -0400
Received: from USMA1EX-DAG1MB3.msg.corp.akamai.com (172.27.123.103) by usma1ex-dag4mb8.msg.corp.akamai.com (172.27.91.27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.2.986.22; Mon, 2 May 2022 11:17:44 -0400
Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com (172.27.123.101) by usma1ex-dag1mb3.msg.corp.akamai.com (172.27.123.103) with Microsoft SMTP Server (TLS) id 15.0.1497.32; Mon, 2 May 2022 11:17:43 -0400
Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com ([172.27.123.101]) by usma1ex-dag1mb1.msg.corp.akamai.com ([172.27.123.101]) with mapi id 15.00.1497.033; Mon, 2 May 2022 11:17:43 -0400
From: "Salz, Rich" <rsalz@akamai.com>
To: "uta@ietf.org" <uta@ietf.org>
CC: Hal Murray <halmurray@sonic.net>
Thread-Topic: [Uta] I-D Action: draft-ietf-uta-rfc6125bis-05.txt
Thread-Index: AQHYXjZsYMDSFf34W0CmnKrt8qZYD60LsxwA
Date: Mon, 02 May 2022 15:17:43 +0000
Message-ID: <B8BF0799-87F8-4F89-A5E1-B5F62598ECD5@akamai.com>
References: <165150402031.48171.5807105220600399013@ietfa.amsl.com>
In-Reply-To: <165150402031.48171.5807105220600399013@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.60.22041000
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.27.164.43]
Content-Type: text/plain; charset="utf-8"
Content-ID: <D60925F407F44949AED51D3F01F353A0@akamai.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.486, 18.0.858 definitions=2022-05-02_04:2022-05-02, 2022-05-02 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 adultscore=0 suspectscore=0 mlxlogscore=999 phishscore=0 malwarescore=0 spamscore=0 mlxscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2202240000 definitions=main-2205020118
X-Proofpoint-GUID: gFoLSJndW3qHJaKYwSXpmwKc9ITP4NYz
X-Proofpoint-ORIG-GUID: gFoLSJndW3qHJaKYwSXpmwKc9ITP4NYz
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.858,Hydra:6.0.486,FMLib:17.11.64.514 definitions=2022-05-02_04,2022-05-02_03,2022-02-23_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 impostorscore=0 lowpriorityscore=0 clxscore=1015 mlxscore=0 adultscore=0 suspectscore=0 phishscore=0 mlxlogscore=942 priorityscore=1501 malwarescore=0 bulkscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2202240000 definitions=main-2205020120
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/y0QiyEc4PoQbU-_E07b1BCnDPMk>
Subject: Re: [Uta] I-D Action: draft-ietf-uta-rfc6125bis-05.txt
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 May 2022 15:17:52 -0000
This version has a handful of changes since the last draft. There are a handful of editorial improvements (courtesy Martin, Hal, Ryan, Peter, Olle, Viktor, Alexey; apologies if I missed anyone). Also the text on "multiple identifiers" was merged. There are now two open issues: some more examples to clear up a confusion from Hal, and text/maybe-restructuring around cross-protocol attacks raised by Martin. I really want to resolve these during this month, so we can start WGLC. On 5/2/22, 11:08 AM, "internet-drafts@ietf.org" <internet-drafts@ietf.org> wrote: A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Using TLS in Applications WG of the IETF. Title : Service Names in TLS Authors : Peter Saint-Andre Jeff Hodges Rich Salz Filename : draft-ietf-uta-rfc6125bis-05.txt Pages : 25 Date : 2022-05-02 Abstract: Many application technologies enable secure communication between two entities by means of Transport Layer Security (TLS) with Internet Public Key Infrastructure Using X.509 (PKIX) certificates. This document specifies procedures for representing and verifying the identity of application services in such interactions. This document obsoletes RFC 6125. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-uta-rfc6125bis/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-ietf-uta-rfc6125bis-05.html A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-uta-rfc6125bis-05 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
- [Uta] I-D Action: draft-ietf-uta-rfc6125bis-05.txt internet-drafts
- Re: [Uta] I-D Action: draft-ietf-uta-rfc6125bis-0… Salz, Rich