[websec] lower-casing in the idna-canonicalized host name
Chris Weber <chris@lookout.net> Mon, 18 July 2011 22:17 UTC
Return-Path: <chris@lookout.net>
X-Original-To: websec@ietfa.amsl.com
Delivered-To: websec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EB3DE21F880C for <websec@ietfa.amsl.com>; Mon, 18 Jul 2011 15:17:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.525
X-Spam-Level:
X-Spam-Status: No, score=-2.525 tagged_above=-999 required=5 tests=[AWL=-1.267, BAYES_20=-0.74, DNS_FROM_RFC_BOGUSMX=1.482, GB_I_LETTER=-2]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7fXnnCJkGOJp for <websec@ietfa.amsl.com>; Mon, 18 Jul 2011 15:17:48 -0700 (PDT)
Received: from cl02.gs02.gridserver.com (cl02.gs02.gridserver.com [64.13.232.11]) by ietfa.amsl.com (Postfix) with ESMTP id 8B3B821F863E for <websec@ietf.org>; Mon, 18 Jul 2011 15:17:48 -0700 (PDT)
Received: from c-71-231-104-2.hsd1.wa.comcast.net ([71.231.104.2]:53249 helo=[192.168.1.192]) by cl02.gs02.gridserver.com with esmtpsa (TLS-1.0:DHE_RSA_AES_256_CBC_SHA:32) (Exim 4.69) (envelope-from <chris@lookout.net>) id 1Qiw8J-0002sU-5f for websec@ietf.org; Mon, 18 Jul 2011 15:17:48 -0700
Message-ID: <4E24B10A.1070000@lookout.net>
Date: Mon, 18 Jul 2011 15:17:46 -0700
From: Chris Weber <chris@lookout.net>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:5.0) Gecko/20110624 Thunderbird/5.0
MIME-Version: 1.0
To: websec@ietf.org
References: <4E248B9C.1070701@gondrom.org>
In-Reply-To: <4E248B9C.1070701@gondrom.org>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Authenticated-User: 17546 chris@lookout.net
Subject: [websec] lower-casing in the idna-canonicalized host name
X-BeenThere: websec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Web Application Security Minus Authentication and Transport <websec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/websec>, <mailto:websec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/websec>
List-Post: <mailto:websec@ietf.org>
List-Help: <mailto:websec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/websec>, <mailto:websec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Jul 2011 22:17:49 -0000
Under the definition of an "idna-canonicalized" host name in section 2.3, step 2 - is it known that the reader will handle NR-LDH and A-labels as locale-insensitive ASCII, or should it be explicitly stated that the lower-case conversion in step "2" should be locale-insensitive, or use English as the locale? Otherwise even with ASCII input a lower-case operation could result in a U+0049 LATIN CAPITAL LETTER I becoming U+0131 LATIN SMALL LETTER DOTLESS I under the Turkish "tr-TR" locale. Best regards, Chris
- [websec] WG Last Call on draft-ietf-websec-origin… Tobias Gondrom
- [websec] lower-casing in the idna-canonicalized h… Chris Weber
- Re: [websec] lower-casing in the idna-canonicaliz… Adam Barth
- Re: [websec] WG Last Call on draft-ietf-websec-or… Adam Barth
- Re: [websec] WG Last Call on draft-ietf-websec-or… Alexey Melnikov
- Re: [websec] WG Last Call on draft-ietf-websec-or… Adam Barth
- Re: [websec] WG Last Call on draft-ietf-websec-or… Alexey Melnikov
- Re: [websec] WG Last Call on draft-ietf-websec-or… Adam Barth
- Re: [websec] WG Last Call on draft-ietf-websec-or… Gervase Markham
- Re: [websec] WG Last Call on draft-ietf-websec-or… Adam Barth
- Re: [websec] LC nits on draft-ietf-websec-origin-… Julian Reschke
- Re: [websec] LC nits on draft-ietf-websec-origin-… Adam Barth
- Re: [websec] LC nits on draft-ietf-websec-origin-… Julian Reschke
- Re: [websec] LC nits on draft-ietf-websec-origin-… Adam Barth