From nobody Wed Oct 10 11:18:26 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 661451252B7 for ; Wed, 10 Oct 2018 11:18:24 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N7XiMOeUsJkX for ; Wed, 10 Oct 2018 11:18:22 -0700 (PDT) Received: from esa2.isaracorp.com (esa2.isaracorp.com [207.107.152.176]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B6BD8126DBF for ; Wed, 10 Oct 2018 11:18:21 -0700 (PDT) Received: from unknown (HELO V0501WEXGPR02.isaracorp.com) ([10.5.9.20]) by ip2.isaracorp.com with ESMTP; 10 Oct 2018 18:18:20 +0000 Received: from V0501WEXGPR01.isaracorp.com (10.5.8.20) by V0501WEXGPR02.isaracorp.com (10.5.9.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.1466.3; Wed, 10 Oct 2018 14:18:19 -0400 Received: from V0501WEXGPR01.isaracorp.com ([fe80::d802:5aec:db34:beba]) by V0501WEXGPR01.isaracorp.com ([fe80::d802:5aec:db34:beba%7]) with mapi id 15.01.1466.003; Wed, 10 Oct 2018 14:18:19 -0400 From: Daniel Van Geest To: SPASM Thread-Topic: New Version Notification for draft-vangeest-x509-hash-sigs-00.txt Thread-Index: AQHUYMUHdpxjfrA1dEW3V6hKK1/0vaUZLkUA Date: Wed, 10 Oct 2018 18:18:19 +0000 Message-ID: References: <153919524373.5861.7228296681722124369.idtracker@ietfa.amsl.com> In-Reply-To: <153919524373.5861.7228296681722124369.idtracker@ietfa.amsl.com> Accept-Language: en-CA, en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [172.31.5.52] Content-Type: multipart/alternative; boundary="_000_F16925E1F8F14069BF5A91CBCF98C7C9isaracom_" MIME-Version: 1.0 Archived-At: Subject: [lamps] FW: New Version Notification for draft-vangeest-x509-hash-sigs-00.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Oct 2018 18:18:25 -0000 --_000_F16925E1F8F14069BF5A91CBCF98C7C9isaracom_ Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 TXkgZW1wbG95ZXIgaGFzIHNlZW4gaW50ZXJlc3QgaW4gaGFzaC1iYXNlZCBzaWduYXR1cmVzIGZv ciBYLjUwOSBjZXJ0aWZpY2F0ZXMgYW5kIGlzIGltcGxlbWVudGluZyBzdXBwb3J0IGZvciB0aGVt LiAgVGhpcyBkcmFmdCBhZGRzIHNpZ25hdHVyZSBhbGdvcml0aG0gaWRlbnRpZmllcnMgZm9yIEhT UyAodGhlIGtleSBpZGVudGlmaWVyIGlzIGFscmVhZHkgZGVmaW5lZCBpbiBkcmFmdC1pZXRmLWxh bXBzLWNtcy1oYXNoLXNpZyksIGFuZCBrZXkgYW5kIHNpZ25hdHVyZSBhbGdvcml0aG0gaWRlbnRp ZmllcnMgZm9yIFhNU1MgYW5kIFhNU1NeTVQuDQoNCg0KDQpEdWUgdG8gdGhlaXIgc3RhdGVmdWxu ZXNzLCB0aGVzZSBoYXNoLWJhc2VkIHNpZ25hdHVyZXMgYXJlIG5vdCBhcHByb3ByaWF0ZSBmb3Ig RUUgY2VydHMgaW4gaW50ZXJhY3RpdmUgcHJvdG9jb2xzLCBidXQgYXJlIHVzZWZ1bCBpbiBDQSBj ZXJ0cyBhbmQgY29kZSBzaWduaW5nLiAgQmVjYXVzZSBvZiB0aGUgbG9uZyB0aW1lIG5lZWRlZCB0 byBkZXBsb3kgQ0EgY2VydHMsIHRoZSBwb3RlbnRpYWwgbG9uZyBsaWZlIG9mIHNpZ25lZCBjb2Rl LCBhbmQgdGhlIGZhY3QgdGhhdCBoYXNoLWJhc2VkIHNpZ25hdHVyZXMgYXJlIGFscmVhZHkgY29u c2lkZXJlZCB0byBiZSBzZWN1cmUsIGl0IGlzIHBydWRlbnQgdG8gZW5hYmxlIGRlcGxveW1lbnQg b2YgaGFzaC1iYXNlZCBjZXJ0aWZpY2F0ZXMgbm93IHJhdGhlciB0aGFuIHdhaXRpbmcgZm9yIHRo ZSBOSVNUIGNvbXBldGl0aW9uIHRvIHNlbGVjdCBhIFBRIHNpZ25hdHVyZSBzY2hlbWUuDQoNCg0K DQpUaGlzIGlzIGEgcmVsYXRpdmVseSBzaW1wbGUgZHJhZnQsIGJhc2ljYWxseSBqdXN0IGFzc2ln bm1lbnQgb2YgT0lEcy4gIElzIHRoZXJlIGludGVyZXN0IGluIHRoaXMgZ3JvdXAgZm9yIHRoaXMg ZHJhZnQ/ICBJZiBub3QsIHNob3VsZCBpdCBiZSBhbiBJbmRpdmlkdWFsIFN1Ym1pc3Npb24/ICBJ IGNhbiBwb3N0IHRoaXMgdG8gU2VjZGlzcGF0Y2ggZm9yIHRoZWlyIG9waW5pb24gdG9vLg0KDQoN Cg0KQSBmZXcgb3RoZXIgbm90ZXMgb24gdGhlIGRyYWZ0Og0KDQotIEl0IG5lZWRzIHRvIGFsaWdu IEtleVVzYWdlIHdpdGggZHJhZnQtaWV0Zi1sYW1wcy1jbXMtaGFzaC1zaWcgKHRoaXMgZHJhZnQg Y3VycmVudGx5IGhhcyBNVVNUcyBmb3IgdGhlIHZhbHVlcywgd2hpbGUgdGhlIG90aGVyIGhhcyBN QVlzKS4NCg0KLSBpZC1hbGctaHNzLWxtcy1oYXNoc2lnIGlzIHJlcGVhdGVkIGZyb20gaWV0Zi1s YW1wcy1jbXMtaGFzaC1zaWcuICBBbGwgb3RoZXIgT0lEcyBhcmUgYXNzaWduZWQgZnJvbSBJU0FS QeKAmXMgYXJjLiAgSWYgaW5zdGVhZCB0aGVyZSBpcyBhIHByZWZlcnJlZCBhcmMgdG8gcmVxdWVz dCBPSURzIGZyb20gd2UgY2FuIGxvb2sgaW50byB0aGF0Lg0KDQoNCg0KQW55IGZlZWRiYWNrIGZy b20gdGhlIGdyb3VwIHdvdWxkIGJlIGFwcHJlY2lhdGVkLg0KDQoNCg0KVGhhbmtzLA0KDQpEYW5p ZWwNCg0KDQoNCg0KT24gMjAxOC0xMC0xMCwgODoxNCBQTSwgImludGVybmV0LWRyYWZ0c0BpZXRm Lm9yZzxtYWlsdG86aW50ZXJuZXQtZHJhZnRzQGlldGYub3JnPiIgPGludGVybmV0LWRyYWZ0c0Bp ZXRmLm9yZzxtYWlsdG86aW50ZXJuZXQtZHJhZnRzQGlldGYub3JnPj4gd3JvdGU6DQoNCg0KQSBu ZXcgdmVyc2lvbiBvZiBJLUQsIGRyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzLTAwLnR4dA0K aGFzIGJlZW4gc3VjY2Vzc2Z1bGx5IHN1Ym1pdHRlZCBieSBEYW5pZWwgVmFuIEdlZXN0IGFuZCBw b3N0ZWQgdG8gdGhlDQpJRVRGIHJlcG9zaXRvcnkuDQoNCk5hbWU6ICAgICAgICAgICAgICAgICAg IGRyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzDQpSZXZpc2lvbjogICAgICAgICAgICAgIDAw DQpUaXRsZTogICAgICAgICAgICAgICAgICAgICAgQWxnb3JpdGhtIElkZW50aWZpZXJzIGZvciBI U1MgYW5kIFhNU1MgZm9yIFVzZSBpbiB0aGUgSW50ZXJuZXQgWC41MDkgUHVibGljIEtleSBJbmZy YXN0cnVjdHVyZQ0KRG9jdW1lbnQgZGF0ZTogICAgICAgICAgICAgICAgMjAxOC0xMC0xMA0KR3Jv dXA6ICAgICAgICAgICAgICAgICAgSW5kaXZpZHVhbCBTdWJtaXNzaW9uDQpQYWdlczogICAgICAg ICAgICAgICAgICAgMTMNClVSTDogICAgICAgICAgICBodHRwczovL3d3dy5pZXRmLm9yZy9pbnRl cm5ldC1kcmFmdHMvZHJhZnQtdmFuZ2Vlc3QteDUwOS1oYXNoLXNpZ3MtMDAudHh0DQpTdGF0dXM6 ICAgICAgICAgaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvZHJhZnQtdmFuZ2Vlc3Qt eDUwOS1oYXNoLXNpZ3MvDQpIdG1saXplZDogICAgICAgaHR0cHM6Ly90b29scy5pZXRmLm9yZy9o dG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzLTAwDQpIdG1saXplZDogICAgICAgaHR0 cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvaHRtbC9kcmFmdC12YW5nZWVzdC14NTA5LWhh c2gtc2lncw0KDQoNCkFic3RyYWN0Og0KICAgVGhpcyBkb2N1bWVudCBzcGVjaWZpZXMgYWxnb3Jp dGhtIGlkZW50aWZpZXJzIGFuZCBBU04uMSBlbmNvZGluZw0KICAgZm9ybWF0cyBmb3IgdGhlIEhp ZXJhcmNoaWNhbCBTaWduYXR1cmUgU3lzdGVtIChIU1MpLCBlWHRlbmRlZCBNZXJrbGUNCiAgIFNp Z25hdHVyZSBTY2hlbWUgKFhNU1MpLCBhbmQgWE1TU15NVCwgYSBtdWx0aS10cmVlIHZhcmlhbnQg b2YgWE1TUy4NCiAgIFRoaXMgc3BlY2lmaWNhdGlvbiBhcHBsaWVzIHRvIHRoZSBJbnRlcm5ldCBY LjUwOSBQdWJsaWMgS2V5DQogICBpbmZyYXN0cnVjdHVyZSAoUEtJKSB3aGVuIGRpZ2l0YWwgc2ln bmF0dXJlcyBhcmUgdXNlZCB0byBzaWduDQogICBjZXJ0aWZpY2F0ZXMgYW5kIGNlcnRpZmljYXRl IHJldm9jYXRpb24gbGlzdHMgKENSTHMpLg0KDQoNCg0KDQpQbGVhc2Ugbm90ZSB0aGF0IGl0IG1h eSB0YWtlIGEgY291cGxlIG9mIG1pbnV0ZXMgZnJvbSB0aGUgdGltZSBvZiBzdWJtaXNzaW9uDQp1 bnRpbCB0aGUgaHRtbGl6ZWQgdmVyc2lvbiBhbmQgZGlmZiBhcmUgYXZhaWxhYmxlIGF0IHRvb2xz LmlldGYub3JnLg0KDQpUaGUgSUVURiBTZWNyZXRhcmlhdA0KDQoNCg== --_000_F16925E1F8F14069BF5A91CBCF98C7C9isaracom_ Content-Type: text/html; charset="utf-8" Content-ID: <49DCF5442E824242BBC445181054D769@isara.com> Content-Transfer-Encoding: base64 PGh0bWwgeG1sbnM6bz0idXJuOnNjaGVtYXMtbWljcm9zb2Z0LWNvbTpvZmZpY2U6b2ZmaWNlIiB4 bWxuczp3PSJ1cm46c2NoZW1hcy1taWNyb3NvZnQtY29tOm9mZmljZTp3b3JkIiB4bWxuczptPSJo dHRwOi8vc2NoZW1hcy5taWNyb3NvZnQuY29tL29mZmljZS8yMDA0LzEyL29tbWwiIHhtbG5zPSJo dHRwOi8vd3d3LnczLm9yZy9UUi9SRUMtaHRtbDQwIj4NCjxoZWFkPg0KPG1ldGEgaHR0cC1lcXVp dj0iQ29udGVudC1UeXBlIiBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9dXRmLTgiPg0KPG1l dGEgbmFtZT0iR2VuZXJhdG9yIiBjb250ZW50PSJNaWNyb3NvZnQgV29yZCAxNSAoZmlsdGVyZWQg bWVkaXVtKSI+DQo8c3R5bGU+PCEtLQ0KLyogRm9udCBEZWZpbml0aW9ucyAqLw0KQGZvbnQtZmFj ZQ0KCXtmb250LWZhbWlseToiQ2FtYnJpYSBNYXRoIjsNCglwYW5vc2UtMToyIDQgNSAzIDUgNCA2 IDMgMiA0O30NCkBmb250LWZhY2UNCgl7Zm9udC1mYW1pbHk6Q2FsaWJyaTsNCglwYW5vc2UtMToy IDE1IDUgMiAyIDIgNCAzIDIgNDt9DQpAZm9udC1mYWNlDQoJe2ZvbnQtZmFtaWx5OkNvbnNvbGFz Ow0KCXBhbm9zZS0xOjIgMTEgNiA5IDIgMiA0IDMgMiA0O30NCi8qIFN0eWxlIERlZmluaXRpb25z ICovDQpwLk1zb05vcm1hbCwgbGkuTXNvTm9ybWFsLCBkaXYuTXNvTm9ybWFsDQoJe21hcmdpbjow Y207DQoJbWFyZ2luLWJvdHRvbTouMDAwMXB0Ow0KCWZvbnQtc2l6ZToxMS4wcHQ7DQoJZm9udC1m YW1pbHk6IkNhbGlicmkiLHNhbnMtc2VyaWY7fQ0KYTpsaW5rLCBzcGFuLk1zb0h5cGVybGluaw0K CXttc28tc3R5bGUtcHJpb3JpdHk6OTk7DQoJY29sb3I6Ymx1ZTsNCgl0ZXh0LWRlY29yYXRpb246 dW5kZXJsaW5lO30NCmE6dmlzaXRlZCwgc3Bhbi5Nc29IeXBlcmxpbmtGb2xsb3dlZA0KCXttc28t c3R5bGUtcHJpb3JpdHk6OTk7DQoJY29sb3I6cHVycGxlOw0KCXRleHQtZGVjb3JhdGlvbjp1bmRl cmxpbmU7fQ0KcC5Nc29QbGFpblRleHQsIGxpLk1zb1BsYWluVGV4dCwgZGl2Lk1zb1BsYWluVGV4 dA0KCXttc28tc3R5bGUtcHJpb3JpdHk6OTk7DQoJbXNvLXN0eWxlLWxpbms6IlBsYWluIFRleHQg Q2hhciI7DQoJbWFyZ2luOjBjbTsNCgltYXJnaW4tYm90dG9tOi4wMDAxcHQ7DQoJZm9udC1zaXpl OjExLjBwdDsNCglmb250LWZhbWlseToiQ2FsaWJyaSIsc2Fucy1zZXJpZjt9DQpwLm1zb25vcm1h bDAsIGxpLm1zb25vcm1hbDAsIGRpdi5tc29ub3JtYWwwDQoJe21zby1zdHlsZS1uYW1lOm1zb25v cm1hbDsNCgltc28tbWFyZ2luLXRvcC1hbHQ6YXV0bzsNCgltYXJnaW4tcmlnaHQ6MGNtOw0KCW1z by1tYXJnaW4tYm90dG9tLWFsdDphdXRvOw0KCW1hcmdpbi1sZWZ0OjBjbTsNCglmb250LXNpemU6 MTEuMHB0Ow0KCWZvbnQtZmFtaWx5OiJDYWxpYnJpIixzYW5zLXNlcmlmO30NCnNwYW4uYXBwbGUt dGFiLXNwYW4NCgl7bXNvLXN0eWxlLW5hbWU6YXBwbGUtdGFiLXNwYW47fQ0Kc3Bhbi5FbWFpbFN0 eWxlMTkNCgl7bXNvLXN0eWxlLXR5cGU6cGVyc29uYWwtcmVwbHk7DQoJZm9udC1mYW1pbHk6IkNh bGlicmkiLHNhbnMtc2VyaWY7fQ0Kc3Bhbi5QbGFpblRleHRDaGFyDQoJe21zby1zdHlsZS1uYW1l OiJQbGFpbiBUZXh0IENoYXIiOw0KCW1zby1zdHlsZS1wcmlvcml0eTo5OTsNCgltc28tc3R5bGUt bGluazoiUGxhaW4gVGV4dCI7DQoJZm9udC1mYW1pbHk6IkNhbGlicmkiLHNhbnMtc2VyaWY7fQ0K Lk1zb0NocERlZmF1bHQNCgl7bXNvLXN0eWxlLXR5cGU6ZXhwb3J0LW9ubHk7DQoJZm9udC1zaXpl OjEwLjBwdDt9DQpAcGFnZSBXb3JkU2VjdGlvbjENCgl7c2l6ZTo2MTIuMHB0IDc5Mi4wcHQ7DQoJ bWFyZ2luOjcyLjBwdCA3Mi4wcHQgNzIuMHB0IDcyLjBwdDt9DQpkaXYuV29yZFNlY3Rpb24xDQoJ e3BhZ2U6V29yZFNlY3Rpb24xO30NCi0tPjwvc3R5bGU+DQo8L2hlYWQ+DQo8Ym9keSBsYW5nPSJF Ti1DQSIgbGluaz0iYmx1ZSIgdmxpbms9InB1cnBsZSI+DQo8ZGl2IGNsYXNzPSJXb3JkU2VjdGlv bjEiPg0KPHAgY2xhc3M9Ik1zb1BsYWluVGV4dCI+TXkgZW1wbG95ZXIgaGFzIHNlZW4gaW50ZXJl c3QgaW4gaGFzaC1iYXNlZCBzaWduYXR1cmVzIGZvciBYLjUwOSBjZXJ0aWZpY2F0ZXMgYW5kIGlz IGltcGxlbWVudGluZyBzdXBwb3J0IGZvciB0aGVtLiZuYnNwOyBUaGlzIGRyYWZ0IGFkZHMgc2ln bmF0dXJlIGFsZ29yaXRobSBpZGVudGlmaWVycyBmb3IgSFNTICh0aGUga2V5IGlkZW50aWZpZXIg aXMgYWxyZWFkeSBkZWZpbmVkIGluIGRyYWZ0LWlldGYtbGFtcHMtY21zLWhhc2gtc2lnKSwNCiBh bmQga2V5IGFuZCBzaWduYXR1cmUgYWxnb3JpdGhtIGlkZW50aWZpZXJzIGZvciBYTVNTIGFuZCBY TVNTXk1ULjxvOnA+PC9vOnA+PC9wPg0KPHAgY2xhc3M9Ik1zb1BsYWluVGV4dCI+PG86cD4mbmJz cDs8L286cD48L3A+DQo8cCBjbGFzcz0iTXNvUGxhaW5UZXh0Ij5EdWUgdG8gdGhlaXIgc3RhdGVm dWxuZXNzLCB0aGVzZSBoYXNoLWJhc2VkIHNpZ25hdHVyZXMgYXJlIG5vdCBhcHByb3ByaWF0ZSBm b3IgRUUgY2VydHMgaW4gaW50ZXJhY3RpdmUgcHJvdG9jb2xzLCBidXQgYXJlIHVzZWZ1bCBpbiBD QSBjZXJ0cyBhbmQgY29kZSBzaWduaW5nLiZuYnNwOyBCZWNhdXNlIG9mIHRoZSBsb25nIHRpbWUg bmVlZGVkIHRvIGRlcGxveSBDQSBjZXJ0cywgdGhlIHBvdGVudGlhbCBsb25nIGxpZmUNCiBvZiBz aWduZWQgY29kZSwgYW5kIHRoZSBmYWN0IHRoYXQgaGFzaC1iYXNlZCBzaWduYXR1cmVzIGFyZSBh bHJlYWR5IGNvbnNpZGVyZWQgdG8gYmUgc2VjdXJlLCBpdCBpcyBwcnVkZW50IHRvIGVuYWJsZSBk ZXBsb3ltZW50IG9mIGhhc2gtYmFzZWQgY2VydGlmaWNhdGVzIG5vdyByYXRoZXIgdGhhbiB3YWl0 aW5nIGZvciB0aGUgTklTVCBjb21wZXRpdGlvbiB0byBzZWxlY3QgYSBQUSBzaWduYXR1cmUgc2No ZW1lLg0KPG86cD48L286cD48L3A+DQo8cCBjbGFzcz0iTXNvUGxhaW5UZXh0Ij48bzpwPiZuYnNw OzwvbzpwPjwvcD4NCjxwIGNsYXNzPSJNc29QbGFpblRleHQiPlRoaXMgaXMgYSByZWxhdGl2ZWx5 IHNpbXBsZSBkcmFmdCwgYmFzaWNhbGx5IGp1c3QgYXNzaWdubWVudCBvZiBPSURzLiZuYnNwOyBJ cyB0aGVyZSBpbnRlcmVzdCBpbiB0aGlzIGdyb3VwIGZvciB0aGlzIGRyYWZ0PyZuYnNwOyBJZiBu b3QsIHNob3VsZCBpdCBiZSBhbiBJbmRpdmlkdWFsIFN1Ym1pc3Npb24/Jm5ic3A7IEkgY2FuIHBv c3QgdGhpcyB0byBTZWNkaXNwYXRjaCBmb3IgdGhlaXIgb3BpbmlvbiB0b28uPG86cD48L286cD48 L3A+DQo8cCBjbGFzcz0iTXNvUGxhaW5UZXh0Ij48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjxwIGNs YXNzPSJNc29QbGFpblRleHQiPkEgZmV3IG90aGVyIG5vdGVzIG9uIHRoZSBkcmFmdDo8bzpwPjwv bzpwPjwvcD4NCjxwIGNsYXNzPSJNc29QbGFpblRleHQiPi0gSXQgbmVlZHMgdG8gYWxpZ24gS2V5 VXNhZ2Ugd2l0aCBkcmFmdC1pZXRmLWxhbXBzLWNtcy1oYXNoLXNpZyAodGhpcyBkcmFmdCBjdXJy ZW50bHkgaGFzIE1VU1RzIGZvciB0aGUgdmFsdWVzLCB3aGlsZSB0aGUgb3RoZXIgaGFzIE1BWXMp LjxvOnA+PC9vOnA+PC9wPg0KPHAgY2xhc3M9Ik1zb1BsYWluVGV4dCI+LSBpZC1hbGctaHNzLWxt cy1oYXNoc2lnIGlzIHJlcGVhdGVkIGZyb20gaWV0Zi1sYW1wcy1jbXMtaGFzaC1zaWcuJm5ic3A7 IEFsbCBvdGhlciBPSURzIGFyZSBhc3NpZ25lZCBmcm9tIElTQVJB4oCZcyBhcmMuJm5ic3A7IElm IGluc3RlYWQgdGhlcmUgaXMgYSBwcmVmZXJyZWQgYXJjIHRvIHJlcXVlc3QgT0lEcyBmcm9tIHdl IGNhbiBsb29rIGludG8gdGhhdC48bzpwPjwvbzpwPjwvcD4NCjxwIGNsYXNzPSJNc29QbGFpblRl eHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPHAgY2xhc3M9Ik1zb1BsYWluVGV4dCI+QW55IGZl ZWRiYWNrIGZyb20gdGhlIGdyb3VwIHdvdWxkIGJlIGFwcHJlY2lhdGVkLjxvOnA+PC9vOnA+PC9w Pg0KPHAgY2xhc3M9Ik1zb1BsYWluVGV4dCI+PG86cD4mbmJzcDs8L286cD48L3A+DQo8cCBjbGFz cz0iTXNvUGxhaW5UZXh0Ij5UaGFua3MsPG86cD48L286cD48L3A+DQo8cCBjbGFzcz0iTXNvUGxh aW5UZXh0Ij5EYW5pZWw8bzpwPjwvbzpwPjwvcD4NCjxwIGNsYXNzPSJNc29QbGFpblRleHQiPjxv OnA+Jm5ic3A7PC9vOnA+PC9wPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PG86cD4mbmJzcDs8L286 cD48L3A+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjxkaXY+ DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+ T24gMjAxOC0xMC0xMCwgODoxNCBQTSwgJnF1b3Q7PGEgaHJlZj0ibWFpbHRvOmludGVybmV0LWRy YWZ0c0BpZXRmLm9yZyI+aW50ZXJuZXQtZHJhZnRzQGlldGYub3JnPC9hPiZxdW90OyAmbHQ7PGEg aHJlZj0ibWFpbHRvOmludGVybmV0LWRyYWZ0c0BpZXRmLm9yZyI+aW50ZXJuZXQtZHJhZnRzQGll dGYub3JnPC9hPiZndDsgd3JvdGU6PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRp dj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+ Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5 bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+PG86cD4mbmJzcDs8L286cD48L3A+DQo8L2Rpdj4NCjxk aXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5BIG5l dyB2ZXJzaW9uIG9mIEktRCwgZHJhZnQtdmFuZ2Vlc3QteDUwOS1oYXNoLXNpZ3MtMDAudHh0PG86 cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0i bWFyZ2luLWxlZnQ6MzYuMHB0Ij5oYXMgYmVlbiBzdWNjZXNzZnVsbHkgc3VibWl0dGVkIGJ5IERh bmllbCBWYW4gR2Vlc3QgYW5kIHBvc3RlZCB0byB0aGU8bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0K PGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPklF VEYgcmVwb3NpdG9yeS48bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJN c29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9w Pg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0 OjM2LjBwdCI+TmFtZTo8c3BhbiBjbGFzcz0iYXBwbGUtdGFiLXNwYW4iPiZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOw0KPC9zcGFuPmRyYWZ0LXZhbmdl ZXN0LXg1MDktaGFzaC1zaWdzPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFz cz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5SZXZpc2lvbjo8c3BhbiBj bGFzcz0iYXBwbGUtdGFiLXNwYW4iPiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOw0KPC9zcGFuPjAwPG86 cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0i bWFyZ2luLWxlZnQ6MzYuMHB0Ij5UaXRsZTo8c3BhbiBjbGFzcz0iYXBwbGUtdGFiLXNwYW4iPiZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOw0KPC9zcGFuPkFsZ29yaXRobSBJZGVudGlmaWVycyBmb3IgSFNTIGFuZCBYTVNT IGZvciBVc2UgaW4gdGhlIEludGVybmV0IFguNTA5IFB1YmxpYyBLZXkgSW5mcmFzdHJ1Y3R1cmU8 bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxl PSJtYXJnaW4tbGVmdDozNi4wcHQiPkRvY3VtZW50IGRhdGU6PHNwYW4gY2xhc3M9ImFwcGxlLXRh Yi1zcGFuIj4mbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsNCjwvc3Bhbj4yMDE4LTEw LTEwPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5Hcm91cDo8c3BhbiBjbGFzcz0iYXBwbGUtdGFiLXNw YW4iPiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOw0KPC9zcGFu PkluZGl2aWR1YWwgU3VibWlzc2lvbjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAg Y2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+UGFnZXM6PHNwYW4g Y2xhc3M9ImFwcGxlLXRhYi1zcGFuIj4mbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsNCjwvc3Bhbj4xMzxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2 Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+VVJMOiZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOzxhIGhyZWY9Imh0dHBzOi8vd3d3LmlldGYub3JnL2ludGVybmV0LWRyYWZ0 cy9kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy0wMC50eHQiPmh0dHBzOi8vd3d3LmlldGYu b3JnL2ludGVybmV0LWRyYWZ0cy9kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy0wMC50eHQ8 L2E+PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5TdGF0dXM6Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7IDxhIGhyZWY9Imh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0 Zi5vcmcvZG9jL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzLyI+DQpodHRwczovL2RhdGF0 cmFja2VyLmlldGYub3JnL2RvYy9kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy88L2E+PG86 cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0i bWFyZ2luLWxlZnQ6MzYuMHB0Ij5IdG1saXplZDombmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsgPGEgaHJlZj0iaHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LXZhbmdl ZXN0LXg1MDktaGFzaC1zaWdzLTAwIj4NCmh0dHBzOi8vdG9vbHMuaWV0Zi5vcmcvaHRtbC9kcmFm dC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy0wMDwvYT48bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0K PGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPkh0 bWxpemVkOiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyA8YSBocmVmPSJodHRw czovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFz aC1zaWdzIj4NCmh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvZHJhZnQtdmFu Z2Vlc3QteDUwOS1oYXNoLXNpZ3M8L2E+PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8 cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNw OzwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJt YXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0K PHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+QWJzdHJhY3Q6 PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHls ZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDsmbmJzcDsgVGhpcyBkb2N1bWVudCBzcGVjaWZp ZXMgYWxnb3JpdGhtIGlkZW50aWZpZXJzIGFuZCBBU04uMSBlbmNvZGluZzxvOnA+PC9vOnA+PC9w Pg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0 OjM2LjBwdCI+Jm5ic3A7Jm5ic3A7IGZvcm1hdHMgZm9yIHRoZSBIaWVyYXJjaGljYWwgU2lnbmF0 dXJlIFN5c3RlbSAoSFNTKSwgZVh0ZW5kZWQgTWVya2xlPG86cD48L286cD48L3A+DQo8L2Rpdj4N CjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4m bmJzcDsmbmJzcDsgU2lnbmF0dXJlIFNjaGVtZSAoWE1TUyksIGFuZCBYTVNTXk1ULCBhIG11bHRp LXRyZWUgdmFyaWFudCBvZiBYTVNTLjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAg Y2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7Jm5ic3A7 IFRoaXMgc3BlY2lmaWNhdGlvbiBhcHBsaWVzIHRvIHRoZSBJbnRlcm5ldCBYLjUwOSBQdWJsaWMg S2V5PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDsmbmJzcDsgaW5mcmFzdHJ1Y3R1cmUgKFBL SSkgd2hlbiBkaWdpdGFsIHNpZ25hdHVyZXMgYXJlIHVzZWQgdG8gc2lnbjxvOnA+PC9vOnA+PC9w Pg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0 OjM2LjBwdCI+Jm5ic3A7Jm5ic3A7IGNlcnRpZmljYXRlcyBhbmQgY2VydGlmaWNhdGUgcmV2b2Nh dGlvbiBsaXN0cyAoQ1JMcykuPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFz cz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwvbzpw PjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4t bGVmdDozNi4wcHQiPiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOzxvOnA+PC9v OnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdp bi1sZWZ0OjM2LjBwdCI+PG86cD4mbmJzcDs8L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBj bGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwv bzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJn aW4tbGVmdDozNi4wcHQiPlBsZWFzZSBub3RlIHRoYXQgaXQgbWF5IHRha2UgYSBjb3VwbGUgb2Yg bWludXRlcyBmcm9tIHRoZSB0aW1lIG9mIHN1Ym1pc3Npb248bzpwPjwvbzpwPjwvcD4NCjwvZGl2 Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQi PnVudGlsIHRoZSBodG1saXplZCB2ZXJzaW9uIGFuZCBkaWZmIGFyZSBhdmFpbGFibGUgYXQgdG9v bHMuaWV0Zi5vcmcuPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNv Tm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwvbzpwPjwvcD4N CjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDoz Ni4wcHQiPlRoZSBJRVRGIFNlY3JldGFyaWF0PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+ DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZu YnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxl PSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rp dj4NCjwvYm9keT4NCjwvaHRtbD4NCg== --_000_F16925E1F8F14069BF5A91CBCF98C7C9isaracom_-- From nobody Wed Oct 10 13:19:38 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6CC131277C8 for ; Wed, 10 Oct 2018 13:19:36 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JU5KswjWVE2N for ; Wed, 10 Oct 2018 13:19:33 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F405128BAC for ; Wed, 10 Oct 2018 13:19:33 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 3CAA4300AA8 for ; Wed, 10 Oct 2018 16:19:31 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id GLGSa0Tt50Lm for ; Wed, 10 Oct 2018 16:19:29 -0400 (EDT) Received: from a860b60074bd.home (pool-71-127-50-4.washdc.fios.verizon.net [71.127.50.4]) by mail.smeinc.net (Postfix) with ESMTPSA id 3AAA03002C7; Wed, 10 Oct 2018 16:19:29 -0400 (EDT) From: Russ Housley Message-Id: <8B931581-1CCD-4C3B-841D-8C78531EDFA7@vigilsec.com> Content-Type: multipart/alternative; boundary="Apple-Mail=_20AA0984-DC0E-4F5D-B989-9E98BA32D0DD" Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) Date: Wed, 10 Oct 2018 16:19:29 -0400 In-Reply-To: Cc: SPASM To: Daniel Van Geest References: <153919524373.5861.7228296681722124369.idtracker@ietfa.amsl.com> X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: Re: [lamps] FW: New Version Notification for draft-vangeest-x509-hash-sigs-00.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Oct 2018 20:19:36 -0000 --Apple-Mail=_20AA0984-DC0E-4F5D-B989-9E98BA32D0DD Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 I suspect that this document will need to go through secdispatch in = order to get the LAMP WG charter updated. I skimmed the document, and it defines object identifiers for the = algorithms, put it should probably use SIGNATURE-ALGORITHM as defined in = RFC 5912. That way, it is clear that all 6 algorithm identifiers are = used without parameters. I would like to see certificates and CMS uses the same object = identifiers for the public keys and the signatures in all cases. We = need to do some coordination to make sure that happens. Russ > On Oct 10, 2018, at 2:18 PM, Daniel Van Geest = wrote: >=20 > My employer has seen interest in hash-based signatures for X.509 = certificates and is implementing support for them. This draft adds = signature algorithm identifiers for HSS (the key identifier is already = defined in draft-ietf-lamps-cms-hash-sig), and key and signature = algorithm identifiers for XMSS and XMSS^MT. > =20 > Due to their statefulness, these hash-based signatures are not = appropriate for EE certs in interactive protocols, but are useful in CA = certs and code signing. Because of the long time needed to deploy CA = certs, the potential long life of signed code, and the fact that = hash-based signatures are already considered to be secure, it is prudent = to enable deployment of hash-based certificates now rather than waiting = for the NIST competition to select a PQ signature scheme. > =20 > This is a relatively simple draft, basically just assignment of OIDs. = Is there interest in this group for this draft? If not, should it be an = Individual Submission? I can post this to Secdispatch for their opinion = too. > =20 > A few other notes on the draft: > - It needs to align KeyUsage with draft-ietf-lamps-cms-hash-sig (this = draft currently has MUSTs for the values, while the other has MAYs). > - id-alg-hss-lms-hashsig is repeated from ietf-lamps-cms-hash-sig. = All other OIDs are assigned from ISARA=E2=80=99s arc. If instead there = is a preferred arc to request OIDs from we can look into that. > =20 > Any feedback from the group would be appreciated. > =20 > Thanks, > Daniel > =20 > =20 > =20 > On 2018-10-10, 8:14 PM, "internet-drafts@ietf.org = " > wrote: > =20 > =20 > A new version of I-D, draft-vangeest-x509-hash-sigs-00.txt > has been successfully submitted by Daniel Van Geest and posted to the > IETF repository. > =20 > Name: draft-vangeest-x509-hash-sigs > Revision: 00 > Title: Algorithm Identifiers for HSS and XMSS for = Use in the Internet X.509 Public Key Infrastructure > Document date: 2018-10-10 > Group: Individual Submission > Pages: 13 > URL: = https://www.ietf.org/internet-drafts/draft-vangeest-x509-hash-sigs-00.txt = > Status: = https://datatracker.ietf.org/doc/draft-vangeest-x509-hash-sigs/ = > Htmlized: = https://tools.ietf.org/html/draft-vangeest-x509-hash-sigs-00 = > Htmlized: = https://datatracker.ietf.org/doc/html/draft-vangeest-x509-hash-sigs = > =20 > =20 > Abstract: > This document specifies algorithm identifiers and ASN.1 encoding > formats for the Hierarchical Signature System (HSS), eXtended = Merkle > Signature Scheme (XMSS), and XMSS^MT, a multi-tree variant of XMSS. > This specification applies to the Internet X.509 Public Key > infrastructure (PKI) when digital signatures are used to sign > certificates and certificate revocation lists (CRLs). > =20 > = =20 > =20 > =20 > Please note that it may take a couple of minutes from the time of = submission > until the htmlized version and diff are available at tools.ietf.org = . > =20 > The IETF Secretariat > =20 > =20 > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm = --Apple-Mail=_20AA0984-DC0E-4F5D-B989-9E98BA32D0DD Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 I = suspect that this document will need to go through secdispatch in order = to get the LAMP WG charter updated.

I skimmed the document, and it defines = object identifiers for the algorithms, put it should probably use = SIGNATURE-ALGORITHM as defined in RFC 5912.  That way, it is clear = that all 6 algorithm identifiers are used without parameters.

I would like to see = certificates and CMS uses the same object identifiers for the public = keys and the signatures in all cases.  We need to do some = coordination to make sure that happens.

Russ



On Oct = 10, 2018, at 2:18 PM, Daniel Van Geest <Daniel.VanGeest@isara.com> wrote:

My = employer has seen interest in hash-based signatures for X.509 = certificates and is implementing support for them.  This draft adds = signature algorithm identifiers for HSS (the key identifier is already = defined in draft-ietf-lamps-cms-hash-sig), and key and signature = algorithm identifiers for XMSS and XMSS^MT.
 
Due to = their statefulness, these hash-based signatures are not appropriate for = EE certs in interactive protocols, but are useful in CA certs and code = signing.  Because of the long time needed to deploy CA certs, the = potential long life of signed code, and the fact that hash-based = signatures are already considered to be secure, it is prudent to enable = deployment of hash-based certificates now rather than waiting for the = NIST competition to select a PQ signature scheme.
 
This is a = relatively simple draft, basically just assignment of OIDs.  Is = there interest in this group for this draft?  If not, should it be = an Individual Submission?  I can post this to Secdispatch for their = opinion too.
 
A few other notes on the draft:
- It needs to align KeyUsage with = draft-ietf-lamps-cms-hash-sig (this draft currently has MUSTs for the = values, while the other has MAYs).
- id-alg-hss-lms-hashsig is repeated = from ietf-lamps-cms-hash-sig.  All other OIDs are assigned from = ISARA=E2=80=99s arc.  If instead there is a preferred arc to = request OIDs from we can look into that.
 
Any feedback from the group would be = appreciated.
 
Thanks,
Daniel
 
 
 
On 2018-10-10, 8:14 PM, = "internet-drafts@ietf.org" = <internet-drafts@ietf.org> = wrote:
 
 
A new version of I-D, = draft-vangeest-x509-hash-sigs-00.txt
has been = successfully submitted by Daniel Van Geest and posted to the
IETF repository.
 
Name:        &= nbsp;          draft-vangeest-x509-ha= sh-sigs
Revision:        &= nbsp;     00
Title:        &= nbsp;           &nb= sp; Algorithm = Identifiers for HSS and XMSS for Use in the Internet X.509 Public Key = Infrastructure
Document date:        &= nbsp;       2018-10-10
Group:        &= nbsp;         Individual = Submission
Pages:        &= nbsp;          13
Htmlized:       https://datatracker.ietf.org/doc/html/draft-vangeest-x509-hash-= sigs
 
 
Abstract:
   This document specifies algorithm identifiers = and ASN.1 encoding
   formats for the = Hierarchical Signature System (HSS), eXtended Merkle
   Signature Scheme (XMSS), and XMSS^MT, a = multi-tree variant of XMSS.
   This = specification applies to the Internet X.509 Public Key
   infrastructure (PKI) when digital signatures are = used to sign
   certificates and = certificate revocation lists (CRLs).
 
          &nb= sp;            = ;            &= nbsp;           &nb= sp;            = ;            &= nbsp;         
 
 
Please note that it may take a couple of minutes = from the time of submission
until the htmlized version = and diff are available at tools.ietf.org.
 
The IETF Secretariat
 
 
_______________________________________________
Spasm mailing list
Spasm@ietf.org
https://www.ietf.org/mailman/listinfo/spasm
= --Apple-Mail=_20AA0984-DC0E-4F5D-B989-9E98BA32D0DD-- From nobody Wed Oct 10 15:35:42 2018 Return-Path: X-Original-To: spasm@ietf.org Delivered-To: spasm@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id BBD191294D7; Wed, 10 Oct 2018 15:35:39 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: Cc: spasm@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 6.86.0 Auto-Submitted: auto-generated Precedence: bulk Reply-To: spasm@ietf.org Message-ID: <153921093972.5891.5187977916158303551@ietfa.amsl.com> Date: Wed, 10 Oct 2018 15:35:39 -0700 Archived-At: Subject: [lamps] I-D Action: draft-ietf-lamps-rfc6844bis-01.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Oct 2018 22:35:40 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Limited Additional Mechanisms for PKIX and SMIME WG of the IETF. Title : DNS Certification Authority Authorization (CAA) Resource Record Authors : Phillip Hallam-Baker Rob Stradling Jacob Hoffman-Andrews Filename : draft-ietf-lamps-rfc6844bis-01.txt Pages : 19 Date : 2018-10-10 Abstract: The Certification Authority Authorization (CAA) DNS Resource Record allows a DNS domain name holder to specify one or more Certification Authorities (CAs) authorized to issue certificates for that domain. CAA Resource Records allow a public Certification Authority to implement additional controls to reduce the risk of unintended certificate mis-issue. This document defines the syntax of the CAA record and rules for processing CAA records by certificate issuers. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-rfc6844bis/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-lamps-rfc6844bis-01 https://datatracker.ietf.org/doc/html/draft-ietf-lamps-rfc6844bis-01 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-lamps-rfc6844bis-01 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Wed Oct 10 15:40:51 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D4DD12958B for ; Wed, 10 Oct 2018 15:40:50 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -7.001 X-Spam-Level: X-Spam-Status: No, score=-7.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=eff.org Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M8Bay7mHPnJQ for ; Wed, 10 Oct 2018 15:40:48 -0700 (PDT) Received: from mail2.eff.org (mail2.eff.org [173.239.79.204]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 85EC51294D7 for ; Wed, 10 Oct 2018 15:40:48 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=eff.org; s=mail2; h=Content-Transfer-Encoding:Content-Type:MIME-Version:Date: Message-ID:Subject:From:To:Sender:Reply-To:Cc:Content-ID:Content-Description: Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID: In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=WYikiPGJtftw4+BDajwJ/tELsKfl9vITaI0nTwzEuZI=; b=rmo/uup+R4TjL+pa8/fzLmWzuj JbhgNgcpAQP3oeAjLQtOs7K8YWy8ducmsrWioUjsZEreBhKXsMExeKAZbR1Gyq9Od0tgcGAflvzrJ Gm82Ba9kdO2n1Hz4uzIf6nVAO4FscPc5zhvMlmpe0DJi3MOvuzpN4tU/O8iXUS6rUbeM=; Received: ; Wed, 10 Oct 2018 15:40:48 -0700 To: SPASM From: Jacob Hoffman-Andrews Message-ID: <5a0108c7-f256-89ae-9229-86ce3b9fe8c5@eff.org> Date: Wed, 10 Oct 2018 15:40:47 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US Archived-At: Subject: [lamps] RFC6844bis: Minor changes; Last Call? X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Oct 2018 22:40:50 -0000 I've uploaded a new revision of 6844bis. The changes since the last version are pretty minor. - Incorporated Ilari's whitespace fix to the ABNF (https://www.ietf.org/mail-archive/web/acme/current/msg02845.html). - Made it clear that if the issuevalue doesn't match the ABNF, that issue tag doesn't authorize issuance by anyone (and therefore, if it's the only issue tag in the resource record set, forbids issuance by everyone). https://tools.ietf.org/html/draft-ietf-lamps-rfc6844bis-01 The diff can be seen at https://github.com/jsha/caa-simplification/commit/65ac0373487733c834c58733963550a9b03fef92. I think this is ready for Last Call. Russ, what do you think? From nobody Thu Oct 11 00:44:30 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE634130E63 for ; Thu, 11 Oct 2018 00:44:20 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.898 X-Spam-Level: X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eWTRf_1eohLo for ; Thu, 11 Oct 2018 00:44:17 -0700 (PDT) Received: from esa2.isaracorp.com (esa2.isaracorp.com [207.107.152.176]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1887E130DE1 for ; Thu, 11 Oct 2018 00:44:16 -0700 (PDT) Received: from unknown (HELO V0501WEXGPR02.isaracorp.com) ([10.5.9.20]) by ip2.isaracorp.com with ESMTP; 11 Oct 2018 07:44:13 +0000 Received: from V0501WEXGPR01.isaracorp.com (10.5.8.20) by V0501WEXGPR02.isaracorp.com (10.5.9.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.1466.3; Thu, 11 Oct 2018 03:44:12 -0400 Received: from V0501WEXGPR01.isaracorp.com ([fe80::d802:5aec:db34:beba]) by V0501WEXGPR01.isaracorp.com ([fe80::d802:5aec:db34:beba%7]) with mapi id 15.01.1466.003; Thu, 11 Oct 2018 03:44:12 -0400 From: Daniel Van Geest To: Russ Housley CC: SPASM Thread-Topic: [lamps] FW: New Version Notification for draft-vangeest-x509-hash-sigs-00.txt Thread-Index: AQHUYMUHdpxjfrA1dEW3V6hKK1/0vaUZLkUAgAAAV4CAAODWAA== Date: Thu, 11 Oct 2018 07:44:12 +0000 Message-ID: <97CFF9D6-F445-4FD4-A0FF-4296F580C5DF@isara.com> References: <153919524373.5861.7228296681722124369.idtracker@ietfa.amsl.com> <8B931581-1CCD-4C3B-841D-8C78531EDFA7@vigilsec.com> In-Reply-To: <8B931581-1CCD-4C3B-841D-8C78531EDFA7@vigilsec.com> Accept-Language: en-CA, en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [172.31.5.52] Content-Type: multipart/alternative; boundary="_000_97CFF9D6F4454FD4A0FF4296F580C5DFisaracom_" MIME-Version: 1.0 Archived-At: Subject: Re: [lamps] FW: New Version Notification for draft-vangeest-x509-hash-sigs-00.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Oct 2018 07:44:30 -0000 --_000_97CFF9D6F4454FD4A0FF4296F580C5DFisaracom_ Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 DQoNCk9uIDIwMTgtMTAtMTAsIDEwOjE5IFBNLCAiUnVzcyBIb3VzbGV5IiA8aG91c2xleUB2aWdp bHNlYy5jb208bWFpbHRvOmhvdXNsZXlAdmlnaWxzZWMuY29tPj4gd3JvdGU6DQoNCkkgc3VzcGVj dCB0aGF0IHRoaXMgZG9jdW1lbnQgd2lsbCBuZWVkIHRvIGdvIHRocm91Z2ggc2VjZGlzcGF0Y2gg aW4gb3JkZXIgdG8gZ2V0IHRoZSBMQU1QIFdHIGNoYXJ0ZXIgdXBkYXRlZC4NCg0KT2ssIEkgd2ls bCBwb3N0IHRoaXMgZHJhZnQgdG8gc2VjZGlzcGF0Y2ggYXMgd2VsbCBhbmQgcmVxdWVzdCBhIHBy ZXNlbnRhdGlvbiBzbG90IGluIEJhbmdrb2suICBUaGVuIEkgc3VwcG9zZSBJIHNob3VsZCB3YWl0 IHVudGlsIE1hcmNoIHRvIHByZXNlbnQgdG8gTEFNUFMgZGVwZW5kaW5nIG9uIHRoZSBCYW5na29r IHJlc3VsdHMsIG9yIHNob3VsZCBJIHByZXNlbnQgdG8gTEFNUFMgaW4gQmFuZ2tvayB0b28/DQoN Ckkgc2tpbW1lZCB0aGUgZG9jdW1lbnQsIGFuZCBpdCBkZWZpbmVzIG9iamVjdCBpZGVudGlmaWVy cyBmb3IgdGhlIGFsZ29yaXRobXMsIHB1dCBpdCBzaG91bGQgcHJvYmFibHkgdXNlIFNJR05BVFVS RS1BTEdPUklUSE0gYXMgZGVmaW5lZCBpbiBSRkMgNTkxMi4gIFRoYXQgd2F5LCBpdCBpcyBjbGVh ciB0aGF0IGFsbCA2IGFsZ29yaXRobSBpZGVudGlmaWVycyBhcmUgdXNlZCB3aXRob3V0IHBhcmFt ZXRlcnMuDQoNCknigJlsbCBtYWtlIHRoaXMgY2hhbmdlIGluIHRoZSBuZXh0IHZlcnNpb24uDQoN CkkgdGhpbmsgaXTigJlzIHdvcnRoIGJyaW5naW5nIHVwIHNvbWV0aGluZyBhYm91dCB0aGUgcGFy YW1ldGVycyBvZiB0aGVzZSBzaWduYXR1cmUgc2NoZW1lcyBoZXJlLiAgWE1TUyheTVQpIG9ubHkg aGFzIGEgc2luZ2xlIHBhcmFtZXRlciBhbmQgaXTigJlzIGVuY29kZWQgYXMgdGhlIGZpcnN0IDQg Ynl0ZXMgb2YgdGhlIHB1YmxpYyBrZXksIHNvIGl04oCZcyBlYXN5IGZvciB0aGUgdmVyaWZpZXIg dG8gZGVjb2RlLiAgQnV0IEhTUyBpcyBtb3JlIGNvbXBsaWNhdGVkLiAgQW4gSFNTIHByaXZhdGUg a2V5IGhhcyBtdWx0aXBsZSBsZXZlbHMgb2YgTE1TIHRyZWVzLCBhbmQgZWFjaCBMTVMgdHJlZSBj YW4gaGF2ZSBkaWZmZXJlbnQgcGFyYW1ldGVycyAod2ludGVybml0eiBhbmQgaGVpZ2h0LCBhbmQg aW4gdGhlb3J5IGhhc2ggYWxnb3JpdGhtIGFuZCBwb3NzaWJseSB0cnVuY2F0ZWQgbGVuZ3RoLCBk ZXBlbmRpbmcgb24gd2hhdCBTY290dCBkb2VzIHdpdGggYSBmb2xsb3ctdXAgSFNTIGRyYWZ0KS4g IFRoZSBwdWJsaWMga2V5IG9ubHkgZW5jb2RlcyB0aGUgbnVtYmVyIG9mIGxldmVscyBhbmQgdGhl IHBhcmFtZXRlcnMgb2YgdGhlIGZpcnN0LWxldmVsIExNUyB0cmVlLiAgVGhlIHBhcmFtZXRlcnMg Zm9yIHRoZSBMTVMgdHJlZXMgaW4gdGhlIG90aGVyIGxldmVscyBhcmUgb25seSBlbmNvZGVkIGlu IHRoZSBzaWduYXR1cmUuDQoNCkkgZG9u4oCZdCB0aGluayB3ZSBzaG91bGQgbWFuZGF0ZSB0aGF0 IGFsbCBIU1MgY2VydGlmaWNhdGUgKGFuZCBDTVMpIHNpZ25pbmcga2V5cyB1c2UgdGhlIHNhbWUg cGFyYW1ldGVycyBmb3IgYWxsIGxldmVscyBiZWNhdXNlIHRoZXJl4oCZcyB2YWxpZCByZWFzb25z IHRvIHVzZSBhdCBsZWFzdCBkaWZmZXJlbnQgTE1TIHRyZWUgaGVpZ2h0cyBvbiBkaWZmZXJlbnQg bGV2ZWxzICh3aGljaCBTY290dCBoYXMganVzdGlmaWVkIGVsc2V3aGVyZSwgSSBjb3VsZCBkaWcg aXQgdXAgaWYgZGVzaXJlZCkuICBHaXZlbiB0aGF0LCBpcyB0aGVyZSBhIHJlYXNvbiB3aHkgYSB2 ZXJpZmllciB3b3VsZCBuZWVkIHRoZSBmdWxsIHBhcmFtZXRlcnMgc2V0IGZvciBhbGwgbGV2ZWxz IGJlZm9yZSB0aGV54oCZdmUgcmVjZWl2ZWQgdGhlIHNpZ25hdHVyZT8gIElmIHNvLCBhbmQgYXMg dWdseSBhcyBpdCB3b3VsZCBiZSwgd291bGQgd2UgaGF2ZSB0byBlbmNvZGUgYWxsIHRoZSBwYXJh bWV0ZXJzIGluIHRoZSBTSUdOQVRVUkUtQUxHT1JJVEhNPw0KDQpJIHdvdWxkIGxpa2UgdG8gc2Vl IGNlcnRpZmljYXRlcyBhbmQgQ01TIHVzZXMgdGhlIHNhbWUgb2JqZWN0IGlkZW50aWZpZXJzIGZv ciB0aGUgcHVibGljIGtleXMgYW5kIHRoZSBzaWduYXR1cmVzIGluIGFsbCBjYXNlcy4gIFdlIG5l ZWQgdG8gZG8gc29tZSBjb29yZGluYXRpb24gdG8gbWFrZSBzdXJlIHRoYXQgaGFwcGVucy4NCg0K QWgsIEkgZGlkbuKAmXQgcmVhbGl6ZSB0aGF0IHNpZ25hdHVyZUFsZ29yaXRobSBjb3VsZCBiZSBh biBhbGdvcml0aG0gSUQgdGhhdCBkb2VzbuKAmXQgaGF2ZSBhbiBhdHRhY2hlZCBkaWdlc3QgYWxn b3JpdGhtLCBvciBhbiBhbGdvcml0aG0gSUQgdGhhdCBoYXMgYW4gYXR0YWNoZWQgZGlnZXN0IGFs Z29yaXRobSwgd2l0aCB0aGUgZGlnZXN0IGFsZ29yaXRobSBiZWluZyBzZXQgaW4gZGlnZXN0QWxn b3JpdGhtIGF0IHRoZSBzYW1lIHRpbWUuICBNYWtlcyBzZW5zZSB0aGF0IHRoZSBPSURzIGZvciBD TVMgYW5kIGNlcnRpZmljYXRlcyBhcmUgdGhlIHNhbWUgaW4gdGhpcyBjYXNlLg0KDQpJ4oCZbSBh bHJlYWR5IHVzaW5nIHRoZSBIU1MgcHVibGljIGtleSBPSUQgZnJvbSB5b3VyIENNUyBkcmFmdCBz byBDTVMgYW5kIGNlcnRpZmljYXRlcyB3b3VsZCBiZSBhbGlnbmVkIGhlcmUuDQoNCg0KUnVzcw0K DQoNCg0KDQpPbiBPY3QgMTAsIDIwMTgsIGF0IDI6MTggUE0sIERhbmllbCBWYW4gR2Vlc3QgPERh bmllbC5WYW5HZWVzdEBpc2FyYS5jb208bWFpbHRvOkRhbmllbC5WYW5HZWVzdEBpc2FyYS5jb20+ PiB3cm90ZToNCg0KTXkgZW1wbG95ZXIgaGFzIHNlZW4gaW50ZXJlc3QgaW4gaGFzaC1iYXNlZCBz aWduYXR1cmVzIGZvciBYLjUwOSBjZXJ0aWZpY2F0ZXMgYW5kIGlzIGltcGxlbWVudGluZyBzdXBw b3J0IGZvciB0aGVtLiAgVGhpcyBkcmFmdCBhZGRzIHNpZ25hdHVyZSBhbGdvcml0aG0gaWRlbnRp ZmllcnMgZm9yIEhTUyAodGhlIGtleSBpZGVudGlmaWVyIGlzIGFscmVhZHkgZGVmaW5lZCBpbiBk cmFmdC1pZXRmLWxhbXBzLWNtcy1oYXNoLXNpZyksIGFuZCBrZXkgYW5kIHNpZ25hdHVyZSBhbGdv cml0aG0gaWRlbnRpZmllcnMgZm9yIFhNU1MgYW5kIFhNU1NeTVQuDQoNCkR1ZSB0byB0aGVpciBz dGF0ZWZ1bG5lc3MsIHRoZXNlIGhhc2gtYmFzZWQgc2lnbmF0dXJlcyBhcmUgbm90IGFwcHJvcHJp YXRlIGZvciBFRSBjZXJ0cyBpbiBpbnRlcmFjdGl2ZSBwcm90b2NvbHMsIGJ1dCBhcmUgdXNlZnVs IGluIENBIGNlcnRzIGFuZCBjb2RlIHNpZ25pbmcuICBCZWNhdXNlIG9mIHRoZSBsb25nIHRpbWUg bmVlZGVkIHRvIGRlcGxveSBDQSBjZXJ0cywgdGhlIHBvdGVudGlhbCBsb25nIGxpZmUgb2Ygc2ln bmVkIGNvZGUsIGFuZCB0aGUgZmFjdCB0aGF0IGhhc2gtYmFzZWQgc2lnbmF0dXJlcyBhcmUgYWxy ZWFkeSBjb25zaWRlcmVkIHRvIGJlIHNlY3VyZSwgaXQgaXMgcHJ1ZGVudCB0byBlbmFibGUgZGVw bG95bWVudCBvZiBoYXNoLWJhc2VkIGNlcnRpZmljYXRlcyBub3cgcmF0aGVyIHRoYW4gd2FpdGlu ZyBmb3IgdGhlIE5JU1QgY29tcGV0aXRpb24gdG8gc2VsZWN0IGEgUFEgc2lnbmF0dXJlIHNjaGVt ZS4NCg0KVGhpcyBpcyBhIHJlbGF0aXZlbHkgc2ltcGxlIGRyYWZ0LCBiYXNpY2FsbHkganVzdCBh c3NpZ25tZW50IG9mIE9JRHMuICBJcyB0aGVyZSBpbnRlcmVzdCBpbiB0aGlzIGdyb3VwIGZvciB0 aGlzIGRyYWZ0PyAgSWYgbm90LCBzaG91bGQgaXQgYmUgYW4gSW5kaXZpZHVhbCBTdWJtaXNzaW9u PyAgSSBjYW4gcG9zdCB0aGlzIHRvIFNlY2Rpc3BhdGNoIGZvciB0aGVpciBvcGluaW9uIHRvby4N Cg0KQSBmZXcgb3RoZXIgbm90ZXMgb24gdGhlIGRyYWZ0Og0KLSBJdCBuZWVkcyB0byBhbGlnbiBL ZXlVc2FnZSB3aXRoIGRyYWZ0LWlldGYtbGFtcHMtY21zLWhhc2gtc2lnICh0aGlzIGRyYWZ0IGN1 cnJlbnRseSBoYXMgTVVTVHMgZm9yIHRoZSB2YWx1ZXMsIHdoaWxlIHRoZSBvdGhlciBoYXMgTUFZ cykuDQotIGlkLWFsZy1oc3MtbG1zLWhhc2hzaWcgaXMgcmVwZWF0ZWQgZnJvbSBpZXRmLWxhbXBz LWNtcy1oYXNoLXNpZy4gIEFsbCBvdGhlciBPSURzIGFyZSBhc3NpZ25lZCBmcm9tIElTQVJB4oCZ cyBhcmMuICBJZiBpbnN0ZWFkIHRoZXJlIGlzIGEgcHJlZmVycmVkIGFyYyB0byByZXF1ZXN0IE9J RHMgZnJvbSB3ZSBjYW4gbG9vayBpbnRvIHRoYXQuDQoNCkFueSBmZWVkYmFjayBmcm9tIHRoZSBn cm91cCB3b3VsZCBiZSBhcHByZWNpYXRlZC4NCg0KVGhhbmtzLA0KRGFuaWVsDQoNCg0KDQpPbiAy MDE4LTEwLTEwLCA4OjE0IFBNLCAiaW50ZXJuZXQtZHJhZnRzQGlldGYub3JnPG1haWx0bzppbnRl cm5ldC1kcmFmdHNAaWV0Zi5vcmc+IiA8aW50ZXJuZXQtZHJhZnRzQGlldGYub3JnPG1haWx0bzpp bnRlcm5ldC1kcmFmdHNAaWV0Zi5vcmc+PiB3cm90ZToNCg0KDQpBIG5ldyB2ZXJzaW9uIG9mIEkt RCwgZHJhZnQtdmFuZ2Vlc3QteDUwOS1oYXNoLXNpZ3MtMDAudHh0DQpoYXMgYmVlbiBzdWNjZXNz ZnVsbHkgc3VibWl0dGVkIGJ5IERhbmllbCBWYW4gR2Vlc3QgYW5kIHBvc3RlZCB0byB0aGUNCklF VEYgcmVwb3NpdG9yeS4NCg0KTmFtZTogICAgICAgICAgICAgICAgICAgZHJhZnQtdmFuZ2Vlc3Qt eDUwOS1oYXNoLXNpZ3MNClJldmlzaW9uOiAgICAgICAgICAgICAgMDANClRpdGxlOiAgICAgICAg ICAgICAgICAgICAgICBBbGdvcml0aG0gSWRlbnRpZmllcnMgZm9yIEhTUyBhbmQgWE1TUyBmb3Ig VXNlIGluIHRoZSBJbnRlcm5ldCBYLjUwOSBQdWJsaWMgS2V5IEluZnJhc3RydWN0dXJlDQpEb2N1 bWVudCBkYXRlOiAgICAgICAgICAgICAgICAyMDE4LTEwLTEwDQpHcm91cDogICAgICAgICAgICAg ICAgICBJbmRpdmlkdWFsIFN1Ym1pc3Npb24NClBhZ2VzOiAgICAgICAgICAgICAgICAgICAxMw0K VVJMOiAgICAgICAgICAgIGh0dHBzOi8vd3d3LmlldGYub3JnL2ludGVybmV0LWRyYWZ0cy9kcmFm dC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy0wMC50eHQNClN0YXR1czogICAgICAgICBodHRwczov L2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy8N Ckh0bWxpemVkOiAgICAgICBodHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQtdmFuZ2Vl c3QteDUwOS1oYXNoLXNpZ3MtMDANCkh0bWxpemVkOiAgICAgICBodHRwczovL2RhdGF0cmFja2Vy LmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzDQoNCg0KQWJz dHJhY3Q6DQogICBUaGlzIGRvY3VtZW50IHNwZWNpZmllcyBhbGdvcml0aG0gaWRlbnRpZmllcnMg YW5kIEFTTi4xIGVuY29kaW5nDQogICBmb3JtYXRzIGZvciB0aGUgSGllcmFyY2hpY2FsIFNpZ25h dHVyZSBTeXN0ZW0gKEhTUyksIGVYdGVuZGVkIE1lcmtsZQ0KICAgU2lnbmF0dXJlIFNjaGVtZSAo WE1TUyksIGFuZCBYTVNTXk1ULCBhIG11bHRpLXRyZWUgdmFyaWFudCBvZiBYTVNTLg0KICAgVGhp cyBzcGVjaWZpY2F0aW9uIGFwcGxpZXMgdG8gdGhlIEludGVybmV0IFguNTA5IFB1YmxpYyBLZXkN CiAgIGluZnJhc3RydWN0dXJlIChQS0kpIHdoZW4gZGlnaXRhbCBzaWduYXR1cmVzIGFyZSB1c2Vk IHRvIHNpZ24NCiAgIGNlcnRpZmljYXRlcyBhbmQgY2VydGlmaWNhdGUgcmV2b2NhdGlvbiBsaXN0 cyAoQ1JMcykuDQoNCg0KDQoNClBsZWFzZSBub3RlIHRoYXQgaXQgbWF5IHRha2UgYSBjb3VwbGUg b2YgbWludXRlcyBmcm9tIHRoZSB0aW1lIG9mIHN1Ym1pc3Npb24NCnVudGlsIHRoZSBodG1saXpl ZCB2ZXJzaW9uIGFuZCBkaWZmIGFyZSBhdmFpbGFibGUgYXQgdG9vbHMuaWV0Zi5vcmc8aHR0cDov L3Rvb2xzLmlldGYub3JnLz4uDQoNClRoZSBJRVRGIFNlY3JldGFyaWF0DQoNCg0KX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18NClNwYXNtIG1haWxpbmcgbGlz dA0KU3Bhc21AaWV0Zi5vcmc8bWFpbHRvOlNwYXNtQGlldGYub3JnPg0KaHR0cHM6Ly93d3cuaWV0 Zi5vcmcvbWFpbG1hbi9saXN0aW5mby9zcGFzbQ0KDQo= --_000_97CFF9D6F4454FD4A0FF4296F580C5DFisaracom_ Content-Type: text/html; charset="utf-8" Content-ID: <68979B3C59971640A710C23B98FF2BD8@isara.com> Content-Transfer-Encoding: base64 PGh0bWwgeG1sbnM6bz0idXJuOnNjaGVtYXMtbWljcm9zb2Z0LWNvbTpvZmZpY2U6b2ZmaWNlIiB4 bWxuczp3PSJ1cm46c2NoZW1hcy1taWNyb3NvZnQtY29tOm9mZmljZTp3b3JkIiB4bWxuczptPSJo dHRwOi8vc2NoZW1hcy5taWNyb3NvZnQuY29tL29mZmljZS8yMDA0LzEyL29tbWwiIHhtbG5zPSJo dHRwOi8vd3d3LnczLm9yZy9UUi9SRUMtaHRtbDQwIj4NCjxoZWFkPg0KPG1ldGEgaHR0cC1lcXVp dj0iQ29udGVudC1UeXBlIiBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9dXRmLTgiPg0KPG1l dGEgbmFtZT0iR2VuZXJhdG9yIiBjb250ZW50PSJNaWNyb3NvZnQgV29yZCAxNSAoZmlsdGVyZWQg bWVkaXVtKSI+DQo8c3R5bGU+PCEtLQ0KLyogRm9udCBEZWZpbml0aW9ucyAqLw0KQGZvbnQtZmFj ZQ0KCXtmb250LWZhbWlseTpIZWx2ZXRpY2E7DQoJcGFub3NlLTE6MCAwIDAgMCAwIDAgMCAwIDAg MDt9DQpAZm9udC1mYWNlDQoJe2ZvbnQtZmFtaWx5OiJDYW1icmlhIE1hdGgiOw0KCXBhbm9zZS0x OjIgNCA1IDMgNSA0IDYgMyAyIDQ7fQ0KQGZvbnQtZmFjZQ0KCXtmb250LWZhbWlseTpDYWxpYnJp Ow0KCXBhbm9zZS0xOjIgMTUgNSAyIDIgMiA0IDMgMiA0O30NCi8qIFN0eWxlIERlZmluaXRpb25z ICovDQpwLk1zb05vcm1hbCwgbGkuTXNvTm9ybWFsLCBkaXYuTXNvTm9ybWFsDQoJe21hcmdpbjow Y207DQoJbWFyZ2luLWJvdHRvbTouMDAwMXB0Ow0KCWZvbnQtc2l6ZToxMS4wcHQ7DQoJZm9udC1m YW1pbHk6IkNhbGlicmkiLHNhbnMtc2VyaWY7fQ0KYTpsaW5rLCBzcGFuLk1zb0h5cGVybGluaw0K CXttc28tc3R5bGUtcHJpb3JpdHk6OTk7DQoJY29sb3I6Ymx1ZTsNCgl0ZXh0LWRlY29yYXRpb246 dW5kZXJsaW5lO30NCmE6dmlzaXRlZCwgc3Bhbi5Nc29IeXBlcmxpbmtGb2xsb3dlZA0KCXttc28t c3R5bGUtcHJpb3JpdHk6OTk7DQoJY29sb3I6cHVycGxlOw0KCXRleHQtZGVjb3JhdGlvbjp1bmRl cmxpbmU7fQ0KcC5tc29ub3JtYWwwLCBsaS5tc29ub3JtYWwwLCBkaXYubXNvbm9ybWFsMA0KCXtt c28tc3R5bGUtbmFtZTptc29ub3JtYWw7DQoJbXNvLW1hcmdpbi10b3AtYWx0OmF1dG87DQoJbWFy Z2luLXJpZ2h0OjBjbTsNCgltc28tbWFyZ2luLWJvdHRvbS1hbHQ6YXV0bzsNCgltYXJnaW4tbGVm dDowY207DQoJZm9udC1zaXplOjExLjBwdDsNCglmb250LWZhbWlseToiQ2FsaWJyaSIsc2Fucy1z ZXJpZjt9DQpzcGFuLmFwcGxlLXRhYi1zcGFuDQoJe21zby1zdHlsZS1uYW1lOmFwcGxlLXRhYi1z cGFuO30NCnNwYW4uYXBwbGUtY29udmVydGVkLXNwYWNlDQoJe21zby1zdHlsZS1uYW1lOmFwcGxl LWNvbnZlcnRlZC1zcGFjZTt9DQpzcGFuLkVtYWlsU3R5bGUyMA0KCXttc28tc3R5bGUtdHlwZTpw ZXJzb25hbC1yZXBseTsNCglmb250LWZhbWlseToiQ2FsaWJyaSIsc2Fucy1zZXJpZjt9DQouTXNv Q2hwRGVmYXVsdA0KCXttc28tc3R5bGUtdHlwZTpleHBvcnQtb25seTsNCglmb250LXNpemU6MTAu MHB0O30NCkBwYWdlIFdvcmRTZWN0aW9uMQ0KCXtzaXplOjYxMi4wcHQgNzkyLjBwdDsNCgltYXJn aW46NzIuMHB0IDcyLjBwdCA3Mi4wcHQgNzIuMHB0O30NCmRpdi5Xb3JkU2VjdGlvbjENCgl7cGFn ZTpXb3JkU2VjdGlvbjE7fQ0KLS0+PC9zdHlsZT4NCjwvaGVhZD4NCjxib2R5IGxhbmc9IkVOLUNB IiBsaW5rPSJibHVlIiB2bGluaz0icHVycGxlIj4NCjxkaXYgY2xhc3M9IldvcmRTZWN0aW9uMSI+ DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjxwIGNsYXNzPSJN c29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPGRpdj4NCjxkaXY+DQo8cCBjbGFzcz0i TXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5PbiAyMDE4LTEwLTEwLCAxMDox OSBQTSwgJnF1b3Q7UnVzcyBIb3VzbGV5JnF1b3Q7ICZsdDs8YSBocmVmPSJtYWlsdG86aG91c2xl eUB2aWdpbHNlYy5jb20iPmhvdXNsZXlAdmlnaWxzZWMuY29tPC9hPiZndDsgd3JvdGU6PG86cD48 L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0 eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8 cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5JIHN1c3BlY3Qg dGhhdCB0aGlzIGRvY3VtZW50IHdpbGwgbmVlZCB0byBnbyB0aHJvdWdoIHNlY2Rpc3BhdGNoIGlu IG9yZGVyIHRvIGdldCB0aGUgTEFNUCBXRyBjaGFydGVyIHVwZGF0ZWQuDQo8bzpwPjwvbzpwPjwv cD4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPHAgY2xhc3M9 Ik1zb05vcm1hbCI+T2ssIEkgd2lsbCBwb3N0IHRoaXMgZHJhZnQgdG8gc2VjZGlzcGF0Y2ggYXMg d2VsbCBhbmQgcmVxdWVzdCBhIHByZXNlbnRhdGlvbiBzbG90IGluIEJhbmdrb2suJm5ic3A7IFRo ZW4gSSBzdXBwb3NlIEkgc2hvdWxkIHdhaXQgdW50aWwgTWFyY2ggdG8gcHJlc2VudCB0byBMQU1Q UyBkZXBlbmRpbmcgb24gdGhlIEJhbmdrb2sgcmVzdWx0cywgb3Igc2hvdWxkIEkgcHJlc2VudCB0 byBMQU1QUyBpbiBCYW5na29rIHRvbz88bzpwPjwvbzpwPjwvcD4NCjxkaXY+DQo8cCBjbGFzcz0i TXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwvbzpwPjwv cD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVm dDozNi4wcHQiPkkgc2tpbW1lZCB0aGUgZG9jdW1lbnQsIGFuZCBpdCBkZWZpbmVzIG9iamVjdCBp ZGVudGlmaWVycyBmb3IgdGhlIGFsZ29yaXRobXMsIHB1dCBpdCBzaG91bGQgcHJvYmFibHkgdXNl IFNJR05BVFVSRS1BTEdPUklUSE0gYXMgZGVmaW5lZCBpbiBSRkMgNTkxMi4gJm5ic3A7VGhhdCB3 YXksIGl0IGlzIGNsZWFyIHRoYXQgYWxsIDYgYWxnb3JpdGhtIGlkZW50aWZpZXJzIGFyZQ0KIHVz ZWQgd2l0aG91dCBwYXJhbWV0ZXJzLjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAg Y2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+PG86cD4mbmJzcDs8 L286cD48L3A+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj5J4oCZbGwgbWFrZSB0aGlzIGNoYW5nZSBp biB0aGUgbmV4dCB2ZXJzaW9uLjxvOnA+PC9vOnA+PC9wPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+ PG86cD4mbmJzcDs8L286cD48L3A+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj5JIHRoaW5rIGl04oCZ cyB3b3J0aCBicmluZ2luZyB1cCBzb21ldGhpbmcgYWJvdXQgdGhlIHBhcmFtZXRlcnMgb2YgdGhl c2Ugc2lnbmF0dXJlIHNjaGVtZXMgaGVyZS4mbmJzcDsgWE1TUyheTVQpIG9ubHkgaGFzIGEgc2lu Z2xlIHBhcmFtZXRlciBhbmQgaXTigJlzIGVuY29kZWQgYXMgdGhlIGZpcnN0IDQgYnl0ZXMgb2Yg dGhlIHB1YmxpYyBrZXksIHNvIGl04oCZcyBlYXN5IGZvciB0aGUgdmVyaWZpZXIgdG8gZGVjb2Rl LiZuYnNwOyBCdXQNCiBIU1MgaXMgbW9yZSBjb21wbGljYXRlZC4mbmJzcDsgQW4gSFNTIHByaXZh dGUga2V5IGhhcyBtdWx0aXBsZSBsZXZlbHMgb2YgTE1TIHRyZWVzLCBhbmQgZWFjaCBMTVMgdHJl ZSBjYW4gaGF2ZSBkaWZmZXJlbnQgcGFyYW1ldGVycyAod2ludGVybml0eiBhbmQgaGVpZ2h0LCBh bmQgaW4gdGhlb3J5IGhhc2ggYWxnb3JpdGhtIGFuZCBwb3NzaWJseSB0cnVuY2F0ZWQgbGVuZ3Ro LCBkZXBlbmRpbmcgb24gd2hhdCBTY290dCBkb2VzIHdpdGggYSBmb2xsb3ctdXANCiBIU1MgZHJh ZnQpLiZuYnNwOyBUaGUgcHVibGljIGtleSBvbmx5IGVuY29kZXMgdGhlIG51bWJlciBvZiBsZXZl bHMgYW5kIHRoZSBwYXJhbWV0ZXJzIG9mIHRoZSBmaXJzdC1sZXZlbCBMTVMgdHJlZS4mbmJzcDsg VGhlIHBhcmFtZXRlcnMgZm9yIHRoZSBMTVMgdHJlZXMgaW4gdGhlIG90aGVyIGxldmVscyBhcmUg b25seSBlbmNvZGVkIGluIHRoZSBzaWduYXR1cmUuPG86cD48L286cD48L3A+DQo8cCBjbGFzcz0i TXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPkkg ZG9u4oCZdCB0aGluayB3ZSBzaG91bGQgbWFuZGF0ZSB0aGF0IGFsbCBIU1MgY2VydGlmaWNhdGUg KGFuZCBDTVMpIHNpZ25pbmcga2V5cyB1c2UgdGhlIHNhbWUgcGFyYW1ldGVycyBmb3IgYWxsIGxl dmVscyBiZWNhdXNlIHRoZXJl4oCZcyB2YWxpZCByZWFzb25zIHRvIHVzZSBhdCBsZWFzdCBkaWZm ZXJlbnQgTE1TIHRyZWUgaGVpZ2h0cyBvbiBkaWZmZXJlbnQgbGV2ZWxzICh3aGljaCBTY290dCBo YXMganVzdGlmaWVkDQogZWxzZXdoZXJlLCBJIGNvdWxkIGRpZyBpdCB1cCBpZiBkZXNpcmVkKS4m bmJzcDsgR2l2ZW4gdGhhdCwgaXMgdGhlcmUgYSByZWFzb24gd2h5IGEgdmVyaWZpZXIgd291bGQg bmVlZCB0aGUgZnVsbCBwYXJhbWV0ZXJzIHNldCBmb3IgYWxsIGxldmVscyBiZWZvcmUgdGhleeKA mXZlIHJlY2VpdmVkIHRoZSBzaWduYXR1cmU/Jm5ic3A7IElmIHNvLCBhbmQgYXMgdWdseSBhcyBp dCB3b3VsZCBiZSwgd291bGQgd2UgaGF2ZSB0byBlbmNvZGUgYWxsIHRoZSBwYXJhbWV0ZXJzDQog aW4gdGhlIFNJR05BVFVSRS1BTEdPUklUSE0/PG86cD48L286cD48L3A+DQo8cCBjbGFzcz0iTXNv Tm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJN c29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPkkgd291bGQgbGlrZSB0byBzZWUg Y2VydGlmaWNhdGVzIGFuZCBDTVMgdXNlcyB0aGUgc2FtZSBvYmplY3QgaWRlbnRpZmllcnMgZm9y IHRoZSBwdWJsaWMga2V5cyBhbmQgdGhlIHNpZ25hdHVyZXMgaW4gYWxsIGNhc2VzLiAmbmJzcDtX ZSBuZWVkIHRvIGRvIHNvbWUgY29vcmRpbmF0aW9uIHRvIG1ha2Ugc3VyZSB0aGF0IGhhcHBlbnMu PG86cD48L286cD48L3A+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwv cD4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPkFoLCBJIGRpZG7igJl0IHJlYWxpemUgdGhhdCBzaWdu YXR1cmVBbGdvcml0aG0gY291bGQgYmUgYW4gYWxnb3JpdGhtIElEIHRoYXQgZG9lc27igJl0IGhh dmUgYW4gYXR0YWNoZWQgZGlnZXN0IGFsZ29yaXRobSwgb3IgYW4gYWxnb3JpdGhtIElEIHRoYXQg aGFzIGFuIGF0dGFjaGVkIGRpZ2VzdCBhbGdvcml0aG0sIHdpdGggdGhlIGRpZ2VzdCBhbGdvcml0 aG0gYmVpbmcgc2V0IGluIGRpZ2VzdEFsZ29yaXRobSBhdCB0aGUNCiBzYW1lIHRpbWUuJm5ic3A7 IE1ha2VzIHNlbnNlIHRoYXQgdGhlIE9JRHMgZm9yIENNUyBhbmQgY2VydGlmaWNhdGVzIGFyZSB0 aGUgc2FtZSBpbiB0aGlzIGNhc2UuPG86cD48L286cD48L3A+DQo8cCBjbGFzcz0iTXNvTm9ybWFs Ij48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPknigJltIGFscmVh ZHkgdXNpbmcgdGhlIEhTUyBwdWJsaWMga2V5IE9JRCBmcm9tIHlvdXIgQ01TIGRyYWZ0IHNvIENN UyBhbmQgY2VydGlmaWNhdGVzIHdvdWxkIGJlIGFsaWduZWQgaGVyZS48bzpwPjwvbzpwPjwvcD4N CjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2 Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+PG86cD4m bmJzcDs8L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHls ZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5SdXNzPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+ DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZu YnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxl PSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPGRpdj4NCjxwIGNs YXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxicj4NCjxicj4NCjxv OnA+PC9vOnA+PC9wPg0KPGJsb2NrcXVvdGUgc3R5bGU9Im1hcmdpbi10b3A6NS4wcHQ7bWFyZ2lu LWJvdHRvbTo1LjBwdCI+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdp bi1sZWZ0OjM2LjBwdCI+T24gT2N0IDEwLCAyMDE4LCBhdCAyOjE4IFBNLCBEYW5pZWwgVmFuIEdl ZXN0ICZsdDs8YSBocmVmPSJtYWlsdG86RGFuaWVsLlZhbkdlZXN0QGlzYXJhLmNvbSI+RGFuaWVs LlZhbkdlZXN0QGlzYXJhLmNvbTwvYT4mZ3Q7IHdyb3RlOjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+ DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZu YnNwOzwvbzpwPjwvcD4NCjxkaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9 Im1hcmdpbi1sZWZ0OjM2LjBwdCI+TXkgZW1wbG95ZXIgaGFzIHNlZW4gaW50ZXJlc3QgaW4gaGFz aC1iYXNlZCBzaWduYXR1cmVzIGZvciBYLjUwOSBjZXJ0aWZpY2F0ZXMgYW5kIGlzIGltcGxlbWVu dGluZyBzdXBwb3J0IGZvciB0aGVtLiZuYnNwOyBUaGlzIGRyYWZ0IGFkZHMgc2lnbmF0dXJlIGFs Z29yaXRobSBpZGVudGlmaWVycyBmb3IgSFNTICh0aGUga2V5IGlkZW50aWZpZXIgaXMgYWxyZWFk eSBkZWZpbmVkDQogaW4gZHJhZnQtaWV0Zi1sYW1wcy1jbXMtaGFzaC1zaWcpLCBhbmQga2V5IGFu ZCBzaWduYXR1cmUgYWxnb3JpdGhtIGlkZW50aWZpZXJzIGZvciBYTVNTIGFuZCBYTVNTXk1ULjxv OnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9 Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+ DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5EdWUgdG8g dGhlaXIgc3RhdGVmdWxuZXNzLCB0aGVzZSBoYXNoLWJhc2VkIHNpZ25hdHVyZXMgYXJlIG5vdCBh cHByb3ByaWF0ZSBmb3IgRUUgY2VydHMgaW4gaW50ZXJhY3RpdmUgcHJvdG9jb2xzLCBidXQgYXJl IHVzZWZ1bCBpbiBDQSBjZXJ0cyBhbmQgY29kZSBzaWduaW5nLiZuYnNwOyBCZWNhdXNlIG9mIHRo ZSBsb25nIHRpbWUgbmVlZGVkIHRvIGRlcGxveSBDQSBjZXJ0cywNCiB0aGUgcG90ZW50aWFsIGxv bmcgbGlmZSBvZiBzaWduZWQgY29kZSwgYW5kIHRoZSBmYWN0IHRoYXQgaGFzaC1iYXNlZCBzaWdu YXR1cmVzIGFyZSBhbHJlYWR5IGNvbnNpZGVyZWQgdG8gYmUgc2VjdXJlLCBpdCBpcyBwcnVkZW50 IHRvIGVuYWJsZSBkZXBsb3ltZW50IG9mIGhhc2gtYmFzZWQgY2VydGlmaWNhdGVzIG5vdyByYXRo ZXIgdGhhbiB3YWl0aW5nIGZvciB0aGUgTklTVCBjb21wZXRpdGlvbiB0byBzZWxlY3QgYSBQUSBz aWduYXR1cmUgc2NoZW1lLjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9 Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7PG86cD48L286cD48 L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxl ZnQ6MzYuMHB0Ij5UaGlzIGlzIGEgcmVsYXRpdmVseSBzaW1wbGUgZHJhZnQsIGJhc2ljYWxseSBq dXN0IGFzc2lnbm1lbnQgb2YgT0lEcy4mbmJzcDsgSXMgdGhlcmUgaW50ZXJlc3QgaW4gdGhpcyBn cm91cCBmb3IgdGhpcyBkcmFmdD8mbmJzcDsgSWYgbm90LCBzaG91bGQgaXQgYmUgYW4gSW5kaXZp ZHVhbCBTdWJtaXNzaW9uPyZuYnNwOyBJIGNhbiBwb3N0IHRoaXMgdG8gU2VjZGlzcGF0Y2ggZm9y IHRoZWlyDQogb3BpbmlvbiB0b28uPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBj bGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDs8bzpwPjwv bzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJn aW4tbGVmdDozNi4wcHQiPkEgZmV3IG90aGVyIG5vdGVzIG9uIHRoZSBkcmFmdDo8bzpwPjwvbzpw PjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4t bGVmdDozNi4wcHQiPi0gSXQgbmVlZHMgdG8gYWxpZ24gS2V5VXNhZ2Ugd2l0aCBkcmFmdC1pZXRm LWxhbXBzLWNtcy1oYXNoLXNpZyAodGhpcyBkcmFmdCBjdXJyZW50bHkgaGFzIE1VU1RzIGZvciB0 aGUgdmFsdWVzLCB3aGlsZSB0aGUgb3RoZXIgaGFzIE1BWXMpLjxvOnA+PC9vOnA+PC9wPg0KPC9k aXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBw dCI+LSBpZC1hbGctaHNzLWxtcy1oYXNoc2lnIGlzIHJlcGVhdGVkIGZyb20gaWV0Zi1sYW1wcy1j bXMtaGFzaC1zaWcuJm5ic3A7IEFsbCBvdGhlciBPSURzIGFyZSBhc3NpZ25lZCBmcm9tIElTQVJB 4oCZcyBhcmMuJm5ic3A7IElmIGluc3RlYWQgdGhlcmUgaXMgYSBwcmVmZXJyZWQgYXJjIHRvIHJl cXVlc3QgT0lEcyBmcm9tIHdlIGNhbiBsb29rIGludG8gdGhhdC48bzpwPjwvbzpwPjwvcD4NCjwv ZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4w cHQiPiZuYnNwOzxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05v cm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+QW55IGZlZWRiYWNrIGZyb20gdGhlIGdy b3VwIHdvdWxkIGJlIGFwcHJlY2lhdGVkLjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0K PHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7PG86 cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0i bWFyZ2luLWxlZnQ6MzYuMHB0Ij5UaGFua3MsPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+ DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5EYW5pZWw8 bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxl PSJtYXJnaW4tbGVmdDozNi4wcHQiPiZuYnNwOzxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2 Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7 PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHls ZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDs8bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRp dj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPg0KPHAgY2xhc3M9Ik1z b05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+T24gMjAxOC0xMC0xMCwgODoxNCBQ TSwgJnF1b3Q7PGEgaHJlZj0ibWFpbHRvOmludGVybmV0LWRyYWZ0c0BpZXRmLm9yZyI+PHNwYW4g c3R5bGU9ImNvbG9yOnB1cnBsZSI+aW50ZXJuZXQtZHJhZnRzQGlldGYub3JnPC9zcGFuPjwvYT4m cXVvdDsgJmx0OzxhIGhyZWY9Im1haWx0bzppbnRlcm5ldC1kcmFmdHNAaWV0Zi5vcmciPjxzcGFu IHN0eWxlPSJjb2xvcjpwdXJwbGUiPmludGVybmV0LWRyYWZ0c0BpZXRmLm9yZzwvc3Bhbj48L2E+ Jmd0Ow0KIHdyb3RlOjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRp dj4NCjxkaXYgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFs IiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDs8bzpwPjwvbzpwPjwvcD4NCjwvZGl2 Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNs YXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPiZuYnNwOzxvOnA+PC9v OnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJtYXJnaW4tbGVmdDoz Ni4wcHQiPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+ QSBuZXcgdmVyc2lvbiBvZiBJLUQsIGRyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzLTAwLnR4 dDxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJtYXJn aW4tbGVmdDozNi4wcHQiPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0 OjM2LjBwdCI+aGFzIGJlZW4gc3VjY2Vzc2Z1bGx5IHN1Ym1pdHRlZCBieSBEYW5pZWwgVmFuIEdl ZXN0IGFuZCBwb3N0ZWQgdG8gdGhlPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRp dj4NCjxkaXYgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFs IiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5JRVRGIHJlcG9zaXRvcnkuPG86cD48L286cD48 L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXYgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBw dCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJz cDs8bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFy Z2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVm dDozNi4wcHQiPk5hbWU6PHNwYW4gY2xhc3M9ImFwcGxlLXRhYi1zcGFuIj4mbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDs8L3NwYW4+PHNwYW4gY2xhc3M9 ImFwcGxlLWNvbnZlcnRlZC1zcGFjZSI+Jm5ic3A7PC9zcGFuPmRyYWZ0LXZhbmdlZXN0LXg1MDkt aGFzaC1zaWdzPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXYgc3R5 bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFy Z2luLWxlZnQ6MzYuMHB0Ij5SZXZpc2lvbjo8c3BhbiBjbGFzcz0iYXBwbGUtdGFiLXNwYW4iPiZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOzwvc3Bhbj48c3BhbiBjbGFzcz0iYXBwbGUtY29udmVydGVkLXNw YWNlIj4mbmJzcDs8L3NwYW4+MDA8bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2 Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNsYXNzPSJNc29Ob3JtYWwi IHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPlRpdGxlOjxzcGFuIGNsYXNzPSJhcHBsZS10YWIt c3BhbiI+Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7PC9zcGFuPjxzcGFuIGNsYXNzPSJhcHBsZS1jb252ZXJ0ZWQtc3Bh Y2UiPiZuYnNwOzwvc3Bhbj5BbGdvcml0aG0gSWRlbnRpZmllcnMgZm9yIEhTUyBhbmQgWE1TUyBm b3IgVXNlIGluIHRoZSBJbnRlcm5ldCBYLjUwOSBQdWJsaWMgS2V5IEluZnJhc3RydWN0dXJlPG86 cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXYgc3R5bGU9Im1hcmdpbi1s ZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYu MHB0Ij5Eb2N1bWVudCBkYXRlOjxzcGFuIGNsYXNzPSJhcHBsZS10YWItc3BhbiI+Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7PC9zcGFuPjxzcGFuIGNsYXNzPSJhcHBsZS1jb252ZXJ0 ZWQtc3BhY2UiPiZuYnNwOzwvc3Bhbj4yMDE4LTEwLTEwPG86cD48L286cD48L3A+DQo8L2Rpdj4N CjwvZGl2Pg0KPGRpdj4NCjxkaXYgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFz cz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5Hcm91cDo8c3BhbiBjbGFz cz0iYXBwbGUtdGFiLXNwYW4iPiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOzwvc3Bhbj48c3BhbiBjbGFzcz0iYXBwbGUtY29udmVydGVkLXNwYWNlIj4mbmJzcDs8 L3NwYW4+SW5kaXZpZHVhbCBTdWJtaXNzaW9uPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2 Pg0KPGRpdj4NCjxkaXYgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNv Tm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5QYWdlczo8c3BhbiBjbGFzcz0iYXBw bGUtdGFiLXNwYW4iPiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOzwvc3Bhbj48c3BhbiBjbGFzcz0iYXBwbGUtY29udmVydGVkLXNwYWNlIj4mbmJzcDs8 L3NwYW4+MTM8bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHls ZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJn aW4tbGVmdDozNi4wcHQiPlVSTDombmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDs8YSBocmVmPSJodHRwczovL3d3dy5p ZXRmLm9yZy9pbnRlcm5ldC1kcmFmdHMvZHJhZnQtdmFuZ2Vlc3QteDUwOS1oYXNoLXNpZ3MtMDAu dHh0Ij48c3BhbiBzdHlsZT0iY29sb3I6cHVycGxlIj5odHRwczovL3d3dy5pZXRmLm9yZy9pbnRl cm5ldC1kcmFmdHMvZHJhZnQtdmFuZ2Vlc3QteDUwOS1oYXNoLXNpZ3MtMDAudHh0PC9zcGFuPjwv YT48bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFy Z2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVm dDozNi4wcHQiPlN0YXR1czombmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDs8c3BhbiBjbGFzcz0iYXBwbGUtY29udmVydGVkLXNwYWNlIj4mbmJzcDs8L3NwYW4+ PGEgaHJlZj0iaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvZHJhZnQtdmFuZ2Vlc3Qt eDUwOS1oYXNoLXNpZ3MvIj48c3BhbiBzdHlsZT0iY29sb3I6cHVycGxlIj5odHRwczovL2RhdGF0 cmFja2VyLmlldGYub3JnL2RvYy9kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy88L3NwYW4+ PC9hPjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJt YXJnaW4tbGVmdDozNi4wcHQiPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1s ZWZ0OjM2LjBwdCI+SHRtbGl6ZWQ6Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 PHNwYW4gY2xhc3M9ImFwcGxlLWNvbnZlcnRlZC1zcGFjZSI+Jm5ic3A7PC9zcGFuPjxhIGhyZWY9 Imh0dHBzOi8vdG9vbHMuaWV0Zi5vcmcvaHRtbC9kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2ln cy0wMCI+PHNwYW4gc3R5bGU9ImNvbG9yOnB1cnBsZSI+aHR0cHM6Ly90b29scy5pZXRmLm9yZy9o dG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzLTAwPC9zcGFuPjwvYT48bzpwPjwvbzpw PjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYu MHB0Ij4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPkh0 bWxpemVkOiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOzxzcGFuIGNsYXNzPSJh cHBsZS1jb252ZXJ0ZWQtc3BhY2UiPiZuYnNwOzwvc3Bhbj48YSBocmVmPSJodHRwczovL2RhdGF0 cmFja2VyLmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzIj48 c3BhbiBzdHlsZT0iY29sb3I6cHVycGxlIj5odHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2Rv Yy9odG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzPC9zcGFuPjwvYT48bzpwPjwvbzpw PjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYu MHB0Ij4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPiZu YnNwOzxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJt YXJnaW4tbGVmdDozNi4wcHQiPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1s ZWZ0OjM2LjBwdCI+Jm5ic3A7PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4N CjxkaXYgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5BYnN0cmFjdDo8bzpwPjwvbzpwPjwvcD4NCjwvZGl2 Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNs YXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPiZuYnNwOyZuYnNwOyBU aGlzIGRvY3VtZW50IHNwZWNpZmllcyBhbGdvcml0aG0gaWRlbnRpZmllcnMgYW5kIEFTTi4xIGVu Y29kaW5nPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXYgc3R5bGU9 Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2lu LWxlZnQ6MzYuMHB0Ij4mbmJzcDsmbmJzcDsgZm9ybWF0cyBmb3IgdGhlIEhpZXJhcmNoaWNhbCBT aWduYXR1cmUgU3lzdGVtIChIU1MpLCBlWHRlbmRlZCBNZXJrbGU8bzpwPjwvbzpwPjwvcD4NCjwv ZGl2Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4NCjxw IGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPiZuYnNwOyZuYnNw OyBTaWduYXR1cmUgU2NoZW1lIChYTVNTKSwgYW5kIFhNU1NeTVQsIGEgbXVsdGktdHJlZSB2YXJp YW50IG9mIFhNU1MuPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXYg c3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0i bWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDsmbmJzcDsgVGhpcyBzcGVjaWZpY2F0aW9uIGFwcGxp ZXMgdG8gdGhlIEludGVybmV0IFguNTA5IFB1YmxpYyBLZXk8bzpwPjwvbzpwPjwvcD4NCjwvZGl2 Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNs YXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPiZuYnNwOyZuYnNwOyBp bmZyYXN0cnVjdHVyZSAoUEtJKSB3aGVuIGRpZ2l0YWwgc2lnbmF0dXJlcyBhcmUgdXNlZCB0byBz aWduPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXYgc3R5bGU9Im1h cmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxl ZnQ6MzYuMHB0Ij4mbmJzcDsmbmJzcDsgY2VydGlmaWNhdGVzIGFuZCBjZXJ0aWZpY2F0ZSByZXZv Y2F0aW9uIGxpc3RzIChDUkxzKS48bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2 Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNsYXNzPSJNc29Ob3JtYWwi IHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPiZuYnNwOzxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+ DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPg0KPHAgY2xh c3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRp dj4NCjxkaXYgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFs IiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDs8bzpwPjwvbzpwPjwvcD4NCjwvZGl2 Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4NCjxwIGNs YXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPiZuYnNwOzxvOnA+PC9v OnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJtYXJnaW4tbGVmdDoz Ni4wcHQiPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+ UGxlYXNlIG5vdGUgdGhhdCBpdCBtYXkgdGFrZSBhIGNvdXBsZSBvZiBtaW51dGVzIGZyb20gdGhl IHRpbWUgb2Ygc3VibWlzc2lvbjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+ DQo8ZGl2IHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIg c3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+dW50aWwgdGhlIGh0bWxpemVkIHZlcnNpb24gYW5k IGRpZmYgYXJlIGF2YWlsYWJsZSBhdDxzcGFuIGNsYXNzPSJhcHBsZS1jb252ZXJ0ZWQtc3BhY2Ui PiZuYnNwOzwvc3Bhbj48YSBocmVmPSJodHRwOi8vdG9vbHMuaWV0Zi5vcmcvIj48c3BhbiBzdHls ZT0iY29sb3I6cHVycGxlIj50b29scy5pZXRmLm9yZzwvc3Bhbj48L2E+LjxvOnA+PC9vOnA+PC9w Pg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQi Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7 PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXYgc3R5bGU9Im1hcmdp bi1sZWZ0OjM2LjBwdCI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6 MzYuMHB0Ij5UaGUgSUVURiBTZWNyZXRhcmlhdDxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rp dj4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPg0KPHAgY2xhc3M9Ik1z b05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7PG86cD48L286cD48L3A+ DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXYgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+ DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDs8 bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHls ZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOjkuMHB0O2ZvbnQt ZmFtaWx5OkhlbHZldGljYSI+X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX188YnI+DQpTcGFzbSBtYWlsaW5nIGxpc3Q8YnI+DQo8L3NwYW4+PGEgaHJlZj0ibWFp bHRvOlNwYXNtQGlldGYub3JnIj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjkuMHB0O2ZvbnQtZmFt aWx5OkhlbHZldGljYTtjb2xvcjpwdXJwbGUiPlNwYXNtQGlldGYub3JnPC9zcGFuPjwvYT48c3Bh biBzdHlsZT0iZm9udC1zaXplOjkuMHB0O2ZvbnQtZmFtaWx5OkhlbHZldGljYSI+PGJyPg0KPC9z cGFuPjxhIGhyZWY9Imh0dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4vbGlzdGluZm8vc3Bhc20i PjxzcGFuIHN0eWxlPSJmb250LXNpemU6OS4wcHQ7Zm9udC1mYW1pbHk6SGVsdmV0aWNhO2NvbG9y OnB1cnBsZSI+aHR0cHM6Ly93d3cuaWV0Zi5vcmcvbWFpbG1hbi9saXN0aW5mby9zcGFzbTwvc3Bh bj48L2E+PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjwvYmxvY2txdW90ZT4NCjwvZGl2Pg0KPHAg Y2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+PG86cD4mbmJzcDs8 L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPC9ib2R5Pg0KPC9odG1sPg0K --_000_97CFF9D6F4454FD4A0FF4296F580C5DFisaracom_-- From nobody Thu Oct 11 09:08:10 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9B7A130EB9 for ; Thu, 11 Oct 2018 09:08:09 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.898 X-Spam-Level: X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vsimDlpaQ21B for ; Thu, 11 Oct 2018 09:08:07 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 37259130EAC for ; Thu, 11 Oct 2018 09:08:07 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id E36FA300AA8 for ; Thu, 11 Oct 2018 12:08:04 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id gh2Q_6NY-Yd4 for ; Thu, 11 Oct 2018 12:08:00 -0400 (EDT) Received: from new-host-5.home (pool-71-127-50-4.washdc.fios.verizon.net [71.127.50.4]) by mail.smeinc.net (Postfix) with ESMTPSA id 4D13D300288; Thu, 11 Oct 2018 12:08:00 -0400 (EDT) From: Russ Housley Message-Id: <1333B758-3C46-414D-9EB5-F2BB615D4ED5@vigilsec.com> Content-Type: multipart/alternative; boundary="Apple-Mail=_EE0060AA-CDE8-4362-9406-45D805FB2935" Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) Date: Thu, 11 Oct 2018 12:08:00 -0400 In-Reply-To: <97CFF9D6-F445-4FD4-A0FF-4296F580C5DF@isara.com> Cc: SPASM To: Daniel Van Geest References: <153919524373.5861.7228296681722124369.idtracker@ietfa.amsl.com> <8B931581-1CCD-4C3B-841D-8C78531EDFA7@vigilsec.com> <97CFF9D6-F445-4FD4-A0FF-4296F580C5DF@isara.com> X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: Re: [lamps] FW: New Version Notification for draft-vangeest-x509-hash-sigs-00.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Oct 2018 16:08:10 -0000 --Apple-Mail=_EE0060AA-CDE8-4362-9406-45D805FB2935 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 > On Oct 11, 2018, at 3:44 AM, Daniel Van Geest = wrote: >=20 > =20 > =20 > On 2018-10-10, 10:19 PM, "Russ Housley" > wrote: > =20 > I suspect that this document will need to go through secdispatch in = order to get the LAMP WG charter updated. > =20 > Ok, I will post this draft to secdispatch as well and request a = presentation slot in Bangkok. Then I suppose I should wait until March = to present to LAMPS depending on the Bangkok results, or should I = present to LAMPS in Bangkok too? I do not mind putting this on the agenda at the end with the = understanding that chartered work must take priority. That way, if the = work is added to the charter, the WG will be up to speed. And, you = might get useful comments too. > =20 > I skimmed the document, and it defines object identifiers for the = algorithms, put it should probably use SIGNATURE-ALGORITHM as defined in = RFC 5912. That way, it is clear that all 6 algorithm identifiers are = used without parameters. > =20 > I=E2=80=99ll make this change in the next version. > =20 > I think it=E2=80=99s worth bringing up something about the parameters = of these signature schemes here. XMSS(^MT) only has a single parameter = and it=E2=80=99s encoded as the first 4 bytes of the public key, so = it=E2=80=99s easy for the verifier to decode. But HSS is more = complicated. An HSS private key has multiple levels of LMS trees, and = each LMS tree can have different parameters (winternitz and height, and = in theory hash algorithm and possibly truncated length, depending on = what Scott does with a follow-up HSS draft). The public key only = encodes the number of levels and the parameters of the first-level LMS = tree. The parameters for the LMS trees in the other levels are only = encoded in the signature. > =20 > I don=E2=80=99t think we should mandate that all HSS certificate (and = CMS) signing keys use the same parameters for all levels because = there=E2=80=99s valid reasons to use at least different LMS tree heights = on different levels (which Scott has justified elsewhere, I could dig it = up if desired). Given that, is there a reason why a verifier would need = the full parameters set for all levels before they=E2=80=99ve received = the signature? If so, and as ugly as it would be, would we have to = encode all the parameters in the SIGNATURE-ALGORITHM? I think the approach taken is fine. The point is that the ASN.1 = AlgorithmIdentifier does not carry any parameters. All of the = information that the verifier needs is encoded in the signature value, = except the hash algorithm that is used to hash the TBScertificate. That = hash algorithm is part of the object identifier itself. So, I was expecting something like this (picking just one of the = hash-based signature algorithms, not all six): id-alg-hss-lms-hashsig OBJECT IDENTIFIER ::=3D { iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs9(9) smime(16) alg(3) 17 } id-alg-hss-lms-hashsig-with-sha256 OBJECT IDENTIFIER ::=3D { = iso(1) TBD1 } id-alg-hss-lms-hashsig-with-sha512 OBJECT IDENTIFIER ::=3D { = iso(1) TBD2 } pk-HSS-LMS-HashSig PUBLIC-KEY ::=3D { IDENTIFIER id-alg-hss-lms-hashsig KEY HSS-LMS-HashSig-PublicKey PARAMS ARE absent CERT-KEY-USAGE { digitalSignature, nonRepudiation, keyCertSign, cRLSign } = } HSS-LMS-HashSig-PublicKey ::=3D OCTET STRING sa-HSS-LMS-HashSig-with-SHA256 SIGNATURE-ALGORITHM ::=3D { IDENTIFIER id-alg-hss-lms-hashsig-with-sha256 PARAMS ARE absent HASHES { mda-sha256 } PUBLIC-KEYS { pk-HSS-LMS-HashSig } SMIME-CAPS { IDENTIFIED BY id-alg-hss-lms-hashsig-with-sha256 } = } } sa-HSS-LMS-HashSig-with-SHA512 SIGNATURE-ALGORITHM ::=3D { IDENTIFIER id-alg-hss-lms-hashsig-with-sha512 PARAMS ARE absent HASHES { mda-sha512 } PUBLIC-KEYS { pk-HSS-LMS-HashSig } SMIME-CAPS { IDENTIFIED BY id-alg-hss-lms-hashsig-with-sha512 } = } } > =20 > I would like to see certificates and CMS uses the same object = identifiers for the public keys and the signatures in all cases. We = need to do some coordination to make sure that happens. > =20 > Ah, I didn=E2=80=99t realize that signatureAlgorithm could be an = algorithm ID that doesn=E2=80=99t have an attached digest algorithm, or = an algorithm ID that has an attached digest algorithm, with the digest = algorithm being set in digestAlgorithm at the same time. Makes sense = that the OIDs for CMS and certificates are the same in this case. > =20 > I=E2=80=99m already using the HSS public key OID from your CMS draft = so CMS and certificates would be aligned here. Not completely. sa-HSS-LMS-HashSig-with-SHA256 as defined above is the same as = sa-HSS-LMS-HashSig in my draft. We need to use one or the other. Russ --Apple-Mail=_EE0060AA-CDE8-4362-9406-45D805FB2935 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8

On Oct 11, 2018, at 3:44 AM, Daniel Van Geest <Daniel.VanGeest@isara.com> wrote:

 
 
On 2018-10-10, 10:19 PM, "Russ Housley" = <housley@vigilsec.com> = wrote:
 
I suspect that this document will need to go through = secdispatch in order to get the LAMP WG charter updated.
 
Ok, I = will post this draft to secdispatch as well and request a presentation = slot in Bangkok.  Then I suppose I should wait until March to = present to LAMPS depending on the Bangkok results, or should I present = to LAMPS in Bangkok too?

I do not mind putting this on the agenda at the end = with the understanding that chartered work must take priority. =  That way, if the work is added to the charter, the WG will be up = to speed.  And, you might get useful comments too.

 
I skimmed the document, and it defines object = identifiers for the algorithms, put it should probably use = SIGNATURE-ALGORITHM as defined in RFC 5912.  That way, it is clear = that all 6 algorithm identifiers are used without parameters.
 
I=E2=80=99ll make this change in the next version.
 
I think = it=E2=80=99s worth bringing up something about the parameters of these = signature schemes here.  XMSS(^MT) only has a single parameter and = it=E2=80=99s encoded as the first 4 bytes of the public key, so it=E2=80=99= s easy for the verifier to decode.  But HSS is more = complicated.  An HSS private key has multiple levels of LMS trees, = and each LMS tree can have different parameters (winternitz and height, = and in theory hash algorithm and possibly truncated length, depending on = what Scott does with a follow-up HSS draft).  The public key only = encodes the number of levels and the parameters of the first-level LMS = tree.  The parameters for the LMS trees in the other levels are = only encoded in the signature.
 
I don=E2=80=99t think we should mandate = that all HSS certificate (and CMS) signing keys use the same parameters = for all levels because there=E2=80=99s valid reasons to use at least = different LMS tree heights on different levels (which Scott has = justified elsewhere, I could dig it up if desired).  Given that, is = there a reason why a verifier would need the full parameters set for all = levels before they=E2=80=99ve received the signature?  If so, and = as ugly as it would be, would we have to encode all the parameters in = the SIGNATURE-ALGORITHM?

I think the approach taken is fine.  The point is = that the ASN.1 AlgorithmIdentifier does not carry any parameters. =  All of the information that the verifier needs is encoded in the = signature value, except the hash algorithm that is used to hash the = TBScertificate.  That hash algorithm is part of the object = identifier itself.

So, I was = expecting something like this (picking just one of the hash-based = signature algorithms, not all six):

      id-alg-hss-lms-hashsig =  OBJECT IDENTIFIER ::=3D { iso(1)
      =       member-body(2) us(840) rsadsi(113549) pkcs(1) = pkcs9(9)
            smime(16) = alg(3) 17 }

      = id-alg-hss-lms-hashsig-with-sha256  OBJECT IDENTIFIER ::=3D { = iso(1)
            TBD1 = }

      = id-alg-hss-lms-hashsig-with-sha512  OBJECT IDENTIFIER ::=3D { = iso(1)
            TBD2 = }

      = pk-HSS-LMS-HashSig PUBLIC-KEY ::=3D {
      =     IDENTIFIER id-alg-hss-lms-hashsig
    =       KEY HSS-LMS-HashSig-PublicKey
  =         PARAMS ARE absent
    =       CERT-KEY-USAGE
      =         { digitalSignature, nonRepudiation, = keyCertSign, cRLSign } }

  =     HSS-LMS-HashSig-PublicKey ::=3D OCTET STRING

  =  sa-HSS-LMS-HashSig-with-SHA256 SIGNATURE-ALGORITHM ::=3D = {
        IDENTIFIER = id-alg-hss-lms-hashsig-with-sha256
        = PARAMS ARE absent
        HASHES { = mda-sha256 }
        PUBLIC-KEYS { = pk-HSS-LMS-HashSig }
        SMIME-CAPS { = IDENTIFIED BY id-alg-hss-lms-hashsig-with-sha256 } = }
    }

  =  sa-HSS-LMS-HashSig-with-SHA512 SIGNATURE-ALGORITHM ::=3D = {
        IDENTIFIER = id-alg-hss-lms-hashsig-with-sha512
        = PARAMS ARE absent
        HASHES { = mda-sha512 }
        PUBLIC-KEYS { = pk-HSS-LMS-HashSig }
        SMIME-CAPS { = IDENTIFIED BY id-alg-hss-lms-hashsig-with-sha512 } = }
    }


 
I would like to see certificates and CMS uses = the same object identifiers for the public keys and the signatures in = all cases.  We need to do some coordination to make sure that = happens.
 
Ah, I didn=E2=80=99t realize that signatureAlgorithm could be = an algorithm ID that doesn=E2=80=99t have an attached digest algorithm, = or an algorithm ID that has an attached digest algorithm, with the = digest algorithm being set in digestAlgorithm at the same time.  = Makes sense that the OIDs for CMS and certificates are the same in this = case.
 
I=E2=80=99m= already using the HSS public key OID from your CMS draft so CMS and = certificates would be aligned = here.

Not = completely.

sa-HSS-LMS-HashSig-with-SHA256 as defined above is = the same as sa-HSS-LMS-HashSig in my draft.  We need to use = one or the other.

Russ

= --Apple-Mail=_EE0060AA-CDE8-4362-9406-45D805FB2935-- From nobody Thu Oct 11 11:01:38 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F51B130ECC for ; Thu, 11 Oct 2018 11:01:37 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 44b89fWaZoh8 for ; Thu, 11 Oct 2018 11:01:35 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AD6F7130EB9 for ; Thu, 11 Oct 2018 11:01:29 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 8E90E300AAB for ; Thu, 11 Oct 2018 14:01:27 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id l8y5UzcZZS-V for ; Thu, 11 Oct 2018 14:01:26 -0400 (EDT) Received: from new-host-5.home (pool-71-127-50-4.washdc.fios.verizon.net [71.127.50.4]) by mail.smeinc.net (Postfix) with ESMTPSA id 94B2D300A0C for ; Thu, 11 Oct 2018 14:01:26 -0400 (EDT) From: Russ Housley Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) Message-Id: Date: Thu, 11 Oct 2018 14:01:27 -0400 To: SPASM X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Oct 2018 18:01:37 -0000 This is the LAMPS WG Last Call for "DNS Certification Authority = Authorization (CAA) Resource Record" . =20 Please review the document and send your comments to the list by 22 = October 2018. =20 If no concerns are raised, the document will be forwarded to the IESG = with a request for publication as Proposed Standard. Russ & Tim= From nobody Thu Oct 11 12:25:41 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B6323126DBF for ; Thu, 11 Oct 2018 12:25:38 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.457 X-Spam-Level: X-Spam-Status: No, score=-2.457 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.456, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2H0CN8N7-YXv for ; Thu, 11 Oct 2018 12:25:36 -0700 (PDT) Received: from mail1.bemta23.messagelabs.com (mail1.bemta23.messagelabs.com [67.219.246.210]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C8D0B12008A for ; Thu, 11 Oct 2018 12:25:35 -0700 (PDT) Received: from [67.219.247.52] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-3.bemta.az-d.us-east-1.aws.symcld.net id 59/6F-08437-EA3AFBB5; Thu, 11 Oct 2018 19:25:34 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA1WSW0wTQRSGme52uyDVpdyODaA28QWztSVqMGo gMRqiMfqgL6LRhS5tk1JqdxH0CU24KEooAaIogkpEC6jRImq4iTdE4wUNAnJVIIoRqxjQBIy7 Hbw9zOSb/z/nzJnJoQnNW0pL85ki77RzNh0VQHYv9mxjL59vSTTcdAXHjr/vUcWe6UqOVyRUV f1QJLj7vim3KXYqrfaktMy9SstHzxXKMbo+8/uJUlUW+hJ/FAXQJHOMgCfVHlI+aBiXAnIbxp T4MIig7uWU5PjTFGOArqaHCplDmDgoKslTyRws6UNPB0msG6G76cIcx8BIzywlM8kshZnyfqX MamY3tDZflpiWLogDb81GWfZn4uHuZL+vPGLCYLqj1scEEw69IxU+BiYEhl88pjCHwod3P31l gFkCPfUsliOhsyIfye0D06KC632Fc7kseEtKCMxb4J0nm8RBnQga2kdJbETD/SufVbioDb6ei sbyGjhSN6bEHAXu48Nzue0ENObeIHF8BAxUi1h3UTBQftWXoGFMUOxuo/DDdkH5pMxyUCEB7o IpVIiiy/55aJnkEUwlgtxjLmWZ78OC4NHJERIHsXC7uZXAvAgaPp2WWCXxWvCYsLoEivOHVZh XQc7TL1Qlot1oZZLTaraIqZzVxhoNBtZojJEWa9BzB1mTPl1geU4QWaOeyxD0woHUZJtJb+fF a0iaMZNjnt9N1HjO3IYW0gpdqPreppZEzfykNNMBCydY9jjTbbzQhiJoWgfq7nOSF+TkzXxmi tUmDepvG+hAXYh6h2yrBQeXKljN2OpAq+mCN9knCDpn9LW058m7hrSn2XltuLpWTmDkBEu6/U +536PfiSK1wWrk5+enCXTwzlSr+L8/jsJppAtWD8lVAq128c+t41JDCqmhju2NckMi99fSZqG qfpIr9s6ryzo1+DIsLPZxii7R8ynO8WFT/sNnjoK4Zu3keOGzJ72rc4refnbuq1lDbvYmuHpL W1sqkt9PiIuIfHqi7jl6cNK7f+vYnYyR+pScRu/MxaiIQ00rD599tW5ZUMywYcH8rul9jNkwt KH91vK7K6YqLPVRswO3LiVlKxp0pGDhjNGEU+B+AfOs58z1AwAA X-Env-Sender: tim.hollebeek@digicert.com X-Msg-Ref: server-19.tower-424.messagelabs.com!1539285933!173051!1 X-Originating-IP: [216.32.180.80] X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass X-StarScan-Received: X-StarScan-Version: 9.14.24; banners=-,-,- X-VirusChecked: Checked Received: (qmail 4200 invoked from network); 11 Oct 2018 19:25:34 -0000 Received: from mail-sn1nam04lp0080.outbound.protection.outlook.com (HELO NAM04-SN1-obe.outbound.protection.outlook.com) (216.32.180.80) by server-19.tower-424.messagelabs.com with AES256-SHA256 encrypted SMTP; 11 Oct 2018 19:25:34 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4C5QkwQiifP4/M/tYFmw5Mb5Xof7ietfzwwkVFnRS2Q=; b=qTnV6GPhRoyXV/7DF1WpybdSx+J7gyarQTMF/I1hgQP3Ym1zgvB1HYEDSLQoKwTfwbt4vCBW95AQJzok36H1stwhQR8OZ2CWJcehxRSR6B6OD1vD0i5+6nOb0iKV83JdiePEpSfP316ljx+K0D9bedLon9+mRrwRYlIZL+u615o= Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1556.namprd14.prod.outlook.com (10.172.152.140) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1228.24; Thu, 11 Oct 2018 19:25:31 +0000 Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::14a4:c8e1:5979:3ae1]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::14a4:c8e1:5979:3ae1%2]) with mapi id 15.20.1228.020; Thu, 11 Oct 2018 19:25:31 +0000 From: Tim Hollebeek To: Russ Housley , SPASM Thread-Topic: [lamps] WG Last Call for rfc6844bis Thread-Index: AQHUYYx49OvVTNXTEUG4xpwbXU/0E6Uaadrg Date: Thu, 11 Oct 2018 19:25:30 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [98.111.253.32] x-ms-publictraffictype: Email x-microsoft-exchange-diagnostics: 1; BN6PR14MB1556; 6:HW/3dxzlTpAPxLQHXl7OsLqJmn9Ub/L8Bsxb6GF2LwtM2rqQVOIWmsLkMf7L53p9Y5F8YaUkDDNJHna7PsasIVJZs9gam1yiQygqnXLv5h8/ngpNW39+5iQx/p0kJs840hZdigye/7wImfn50N7LmcvEhp7XRAB3nKeCHSk64RJ+ReFqI+OHYwU/sSiPGW/3/dtdWavyTN3vHqMfpqj1I8C741nOjIDkTnYrY99xlCZVK/qqRRzm5XQhB7Pq5p7/64j9m5o1Yr1np0yUf2eiWzX6TmGbx5PFKGAdpi71qrbT7gUARhwp1eVjeC4ffhfbpfcpCvyNp22UCPzN2OOZen/FTagq+Cfc+hXe+F6AeNY2FLcAv/jM2aQ3/yZj28aJvtrYmwUoRQUr6Va/CDBZ/j+IFj04Ei3SFFQxmNg6e7VG2Yj/H2t3tJqVBvDzaACcCcca5EF44s3Hb/mBCx4HGA==; 5:ntHFEBLLkrk8weAjlBhSbWvwM3GJi1xnS0LbmOi3SgbGBa72O0zcydVKAkkZztwk6By1a/E/y1ZHq8truJFFeg3+IDPXpnbl7rNPm5yCnxn58g0Qt2z3oKjZHgB7wSnfjmu8a4ZJAxKS/OLozQ7ThrGGPalvnqSC1M+K2lTL8DA=; 7:VV853DUaB4BC4D6/UiiC57dpUgHO5uUEVEmO6UkhwobpJM3BAT8lPm6TBegoHgxTtf6ccTsiMF2cFyTbvozItzP3sNeW1zUjbImu4MBaO1Jz4ysu6/1Wxenl9GalMtTaHOlEwHBdCxr7GBtTODoD6H26rJKpTDqvg38wlknqfhHoXBampKKS+WIT8AOXG/jbEPREI0057l1QWyR2NiHm1iNbqUdcWC4x35eW4jzIZpPaHVJkOquSg2sd+cMNWC5t x-ms-exchange-antispam-srfa-diagnostics: SOS; x-ms-office365-filtering-correlation-id: e19309d4-670e-4084-b28b-08d62faf4f13 x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1556; x-ms-traffictypediagnostic: BN6PR14MB1556: x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(269456686620040); x-ms-exchange-senderadcheck: 1 x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(3002001)(3231355)(944501410)(4983020)(52105095)(10201501046)(93006095)(93001095)(149066)(150057)(6041310)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123564045)(20161123562045)(201708071742011)(7699051)(76991060); SRVR:BN6PR14MB1556; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1556; x-forefront-prvs: 08220FA8D6 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(136003)(39860400002)(376002)(396003)(346002)(199004)(189003)(13464003)(229853002)(68736007)(6246003)(33656002)(105586002)(106356001)(97736004)(316002)(8936002)(81156014)(66066001)(99936001)(81166006)(8676002)(2900100001)(71200400001)(5660300001)(71190400001)(9686003)(256004)(6116002)(53546011)(6506007)(14444005)(102836004)(6346003)(26005)(186003)(44832011)(86362001)(305945005)(74316002)(446003)(476003)(7736002)(11346002)(110136005)(14454004)(2906002)(486006)(966005)(66574009)(478600001)(25786009)(5250100002)(7696005)(6436002)(76176011)(53936002)(99286004)(6306002)(55016002)(3846002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1556; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1; received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts) x-microsoft-antispam-message-info: 2Br6f72tcEeLhZiv5V6UpsnTYq2G5FopYGRmghcSwCU4kyRT/SYMC5wThagvr5dck7I3Grw/Twp3BnnCfbnQJQIDJWrf9OSbO+AEm9jgRUJWIOPe4d7gMbVnmGhbQ09u3Um73fevdglIwwyMrN9ZPGdxHl3OfJYneJInD+lstEbdEelcIn7u3Cq1SFg3xTjPaUqOr3QlKSB0iFPZUfj0LeVBX+HPo74mRm4S/u1I5aPYjOeb+iAcqlGvDRQhc+Yn3USWogzBB4I2SKyV1LfIBd4DZG1qEQxwElVAHCF7KC+Py05CKzliXsohqIYdAOmW/6ayqdFYHPOyK7iRNhSE1u/pSx+o6oHxOYDVjKSf9GM= spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=2.16.840.1.101.3.4.2.1; boundary="----=_NextPart_000_067A_01D46176.98D2BD10" MIME-Version: 1.0 X-OriginatorOrg: digicert.com X-MS-Exchange-CrossTenant-Network-Message-Id: e19309d4-670e-4084-b28b-08d62faf4f13 X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Oct 2018 19:25:31.0846 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1556 Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Oct 2018 19:25:39 -0000 ------=_NextPart_000_067A_01D46176.98D2BD10 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit LAMPS chair hat off; CABF Validation Subcommittee (formerly, Validation Working Group) hat on. Recently at the CA/Browser Forum, allowing customers to use CAA to limit the validation methods that can be used for a domain has been identified as one of the Forum's highest priorities. I started a thread on the idea back in December: https://mailarchive.ietf.org/arch/msg/spasm/Jse-FslACq3wair2B2_YSwpViNs While CAs can potentially unilaterally implement this on their own outside the Forum with parameters (as in the acme-caa draft), uniformity throughout the industry would be desirable. The Forum also has the ability to mandate implementation by a specific date. This was discussed on this morning's Validation Subcommittee call, and it was suggested we ask the group if there is interest in including this in RFC 6844-bis, or whether it would be preferable to handle it as a separate draft. -Tim > -----Original Message----- > From: Spasm On Behalf Of Russ Housley > Sent: Thursday, October 11, 2018 2:01 PM > To: SPASM > Subject: [lamps] WG Last Call for rfc6844bis > > This is the LAMPS WG Last Call for "DNS Certification Authority Authorization > (CAA) Resource Record" . > > Please review the document and send your comments to the list by 22 > October 2018. > > If no concerns are raised, the document will be forwarded to the IESG with a > request for publication as Proposed Standard. > > Russ & Tim > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm ------=_NextPart_000_067A_01D46176.98D2BD10 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCD0sw ggO3MIICn6ADAgECAhAM5+DlF9hG/o/lYPwb8DA5MA0GCSqGSIb3DQEBBQUAMGUxCzAJBgNVBAYT AlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5jb20xJDAi BgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTEx MTAwMDAwMDBaMGUxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsT EHd3dy5kaWdpY2VydC5jb20xJDAiBgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK0OFc7kQ4BcsYfzt2D5cRKlrtwmlIiq9M71 IDkoWGAM+IDaqRWVMmE8tbEohIqK3J8KDIMXeo+QrIrneVNcMYQq9g+YMjZ2zN7dPKii72r7IfJS Yd+fINcf4rHZ/hhk0hJbX/lYGDW8R82hNvlrf9SwOD7BG8OMM9nYLxj+KA+zp4PWw25EwGE1lhb+ WZyLdm3X8aJLDSv/C3LanmDQjpA1xnhVhyChz+VtCshJfDGYM2wi6YfQMlqiuhOCEe05F52ZOnKh 5vqk2dUXMXWuhX0irj8BRob2KHnIsdrkVxfEfhwOsLSSplazvbKX7aqn8LfFqD+VFtD/oZbrCF8Y d08CAwEAAaNjMGEwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFEXr oq/0ksuCMS1Ri6enIZ3zbcgPMB8GA1UdIwQYMBaAFEXroq/0ksuCMS1Ri6enIZ3zbcgPMA0GCSqG SIb3DQEBBQUAA4IBAQCiDrzf4u3w43JzemSUv/dyZtgy5EJ1Yq6H6/LV2d5Ws5/MzhQouQ2XYFwS TFjk0z2DSUVYlzVpGqhH6lbGeasS2GeBhN9/CTyU5rgmLCC9PbMoifdf/yLil4Qf6WXvh+DfwWdJ s13rsgkq6ybteL59PyvztyY1bV+JAbZJW58BBZurPSXBzLZ/wvFvhsb6ZGjrgS2U60K3+owe3WLx vlBnt2y98/Efaww2BxZ/N3ypW2168RJGYIPXJwS+S86XvsNnKmgR34DnDDNmvxMNFG7zfx9jEB76 jRslbWyPpbdhAbHSoyahEHGdreLD+cOZUbcrBwjOLuZQsqf6CkUvovDyMIIFOjCCBCKgAwIBAgIQ Di7WjgxCjxTrYbReNHesEzANBgkqhkiG9w0BAQsFADBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMM RGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2Vy dCBTSEEyIEFzc3VyZWQgSUQgQ0EwHhcNMTcxMTI4MDAwMDAwWhcNMjIwMjI1MTIwMDAwWjBWMQsw CQYDVQQGEwJVUzENMAsGA1UECBMEVXRhaDENMAsGA1UEBxMETGVoaTERMA8GA1UEChMIRGlnaUNl cnQxFjAUBgNVBAMTDVRpbSBIb2xsZWJlZWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKUTIS9F3d7CfkCjsf4my28pYoZJDkEAiXVqGP4jzbFkszUQNfW3PYpFUo1GnKQykl/tM0qnzw 05bfVLo1+ce0e9fyAwYfulr+HaAVCPqx+PZw9CDY6c0NYd7Fc7S0scONxKekNF4q1mUucfGuGapW sEsyix0CuR0NMuJ4I+w8qMn9MzjzI7bvduG+uVLmZIi0p6D8+2R5BOQFy0tVeQ/aLfS91fG1DTYF YkPF+a/6JlFxzywPzCth8KW2Po4w8JqQWtam/ADKrgMaOnEJs9csefTW/FWRDeGQk5t3rnyS19FP QfpyPPau4ChB5xokfRcg3VEwqfOoIIexjUhZY5X9AgMBAAGjggHzMIIB7zAfBgNVHSMEGDAWgBTn AiOAAE/Y17yUC9k/dDlJMjyKeTAdBgNVHQ4EFgQUjqBhf3GcBV6YGYSmp2iS4Wi/3N4wDAYDVR0T AQH/BAIwADAlBgNVHREEHjAcgRp0aW0uaG9sbGViZWVrQGRpZ2ljZXJ0LmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMEMEMGA1UdIAQ8MDowOAYKYIZIAYb9 bAQBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGIBgNVHR8E gYAwfjA9oDugOYY3aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFzc3VyZWRJ RENBLWcyLmNybDA9oDugOYY3aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFz c3VyZWRJRENBLWcyLmNybDB5BggrBgEFBQcBAQRtMGswJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBDBggrBgEFBQcwAoY3aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMkFzc3VyZWRJRENBLmNydDANBgkqhkiG9w0BAQsFAAOCAQEAmOLw9+cVMHn8tJ0k 76baCfFZwkvfvxSAlCXo+Fcsv55/og0V065Rpb4HvVTi0e0qKCMbBxc71NWxhMvKJHt+sfSmVatX mAOPNDRvtVvJBkcd0bvzMut/r3npQqs1wezHLtAq+MlQZDjgiJB+DkNblnnphzEQSp7q/4K9oMoP KViRxBv+/kseA8GOfhHU6EVmeu9xQrBqexH1DPUrUSGpNGDyvtUaU+bBy8Kz2hQfOu6f/73wLqUx e583C9y2Gqn1xCB77yPxXqRSLLRC6FbrToJbKiFYQJ4znZZyhPYJHL0SOpWyXfVKp4PEO54A/xr5 oVyPhEQhOtasoIRCLtHZrzCCBk4wggU2oAMCAQICEASueWBmZpAaucV/pmxb3M0wDQYJKoZIhvcN AQELBQAwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3 LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgQXNzdXJlZCBJRCBSb290IENBMB4XDTEz MTEwNTEyMDAwMFoXDTI4MTEwNTEyMDAwMFowZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lD ZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hB MiBBc3N1cmVkIElEIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PgRIz9qte/A J3kbLQWHohBDMd8O1BUbT3ekIs4+jHDwvgeO3ScqvAEdtiwKyt1pWB9B7WoFH9pjeFkeIiwr+Lp+ yTU7VvEffEJ+JbAjGcZFONc9RPkgfGCuHLBaGAS+jzv3qfCUmqYMY0m2QRdTQDK9T+ZQelAfJUXo 8Ymvzf9e/1Dz8BcR/73FifW9YrnY+45FBIVtmc3FSE39JqsCNkXqNtdfauIagkEK3OnZ9ZEXjsYh rTg8E+Yef2ac1U3ZRtr2z1KnfTskw7TBUTXGm+vU737kewPhRL16CzfgT8uCig1xGOSm4IksG/Oy czzBsJKeGH29q33FfQihLMKfcwIDAQABo4IC+DCCAvQwEgYDVR0TAQH/BAgwBgEB/wIBADAOBgNV HQ8BAf8EBAMCAYYwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wgYEGA1UdHwR6MHgwOqA4oDaGNGh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdp Q2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwOqA4oDaGNGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwME MIIBswYDVR0gBIIBqjCCAaYwggGiBgpghkgBhv1sAAIEMIIBkjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCCAWQGCCsGAQUFBwICMIIBVh6CAVIAQQBuAHkAIAB1AHMA ZQAgAG8AZgAgAHQAaABpAHMAIABDAGUAcgB0AGkAZgBpAGMAYQB0AGUAIABjAG8AbgBzAHQAaQB0 AHUAdABlAHMAIABhAGMAYwBlAHAAdABhAG4AYwBlACAAbwBmACAAdABoAGUAIABEAGkAZwBpAEMA ZQByAHQAIABDAFAALwBDAFAAUwAgAGEAbgBkACAAdABoAGUAIABSAGUAbAB5AGkAbgBnACAAUABh AHIAdAB5ACAAQQBnAHIAZQBlAG0AZQBuAHQAIAB3AGgAaQBjAGgAIABsAGkAbQBpAHQAIABsAGkA YQBiAGkAbABpAHQAeQAgAGEAbgBkACAAYQByAGUAIABpAG4AYwBvAHIAcABvAHIAYQB0AGUAZAAg AGgAZQByAGUAaQBuACAAYgB5ACAAcgBlAGYAZQByAGUAbgBjAGUALjAdBgNVHQ4EFgQU5wIjgABP 2Ne8lAvZP3Q5STI8inkwHwYDVR0jBBgwFoAUReuir/SSy4IxLVGLp6chnfNtyA8wDQYJKoZIhvcN AQELBQADggEBAE7UiSe5/R2Hd34PKAWQ8QovyTs+vZOckMav+pFRhzJUa+jKwXFRXJmOtfrgYhmZ pgeafBMn2+UCooQS2RX2CkRXxDSPbXMfOtagAT3e44LkRWuy6yX9gF4dOZC+W0L2zpFg4/mgVgxI EM4zaHvNk6vwastPWA+5e10bBIGepyLiV0kn7pKTCL5pCFMCOi5dyBn0UIBOAtmwXZG0k4f5lpaB VUCOZu2C2LsoX+1MYe0GWCgZUxFEvEcgKbIEbNiJVJk7ddtneCweknjGVT1YEhEybr1DDE0023vG QtvsvqubYUwGkuOO3yEqUFcEwGCiNdUknmY3CUnP1fhls+DibsIxggO/MIIDuwIBATB5MGUxCzAJ BgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xJDAiBgNVBAMTG0RpZ2lDZXJ0IFNIQTIgQXNzdXJlZCBJRCBDQQIQDi7WjgxCjxTrYbReNHes EzANBglghkgBZQMEAgEFAKCCAhcwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0B CQUxDxcNMTgxMDExMTkyNTA5WjAvBgkqhkiG9w0BCQQxIgQgUedCt6gNrm/l+TlyxZCNqblAqHOM 9ZXdBNeZVOJ1KlQwgYgGCSsGAQQBgjcQBDF7MHkwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERp Z2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQg U0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOthtF40d6wTMIGKBgsqhkiG9w0BCRACCzF7oHkw ZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2lj ZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOth tF40d6wTMIGTBgkqhkiG9w0BCQ8xgYUwgYIwCwYJYIZIAWUDBAEqMAsGCWCGSAFlAwQBFjAKBggq hkiG9w0DBzALBglghkgBZQMEAQIwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAsGCWCG SAFlAwQCATALBglghkgBZQMEAgMwCwYJYIZIAWUDBAICMAcGBSsOAwIaMA0GCSqGSIb3DQEBAQUA BIIBAB/Dp3GjKglv0f1dNrNrj0iHtrG4pvKMKwy6LW/YLoXmD59NQqJJ3S9fROdV7MN+SkrDmJik 1usgSBcSCBketHQFUVjUt3bjrrCPWiAU5duU8d3oY2Z4Xj3IHOPIbkP7UZPEXTwNZRvK1CG1hp2E y/qQeolZAeW06fS9rXYz+3O7kxLYlDnVPVZEPMqW/0Lp7bb4aydNJSb9ur6s/lQ20Jrum2kUa5rV gPVuhkbCoZrMyLC4kxKhyh6fvHmfcrZt+pd4dnC5HIe95D99xuQ5mYVLGbnWT4WdToxTdg+Z9NlI tFaMlgVZk2KxGlFXSGe38ctZamuz81g+yjUVUmktwdgAAAAAAAA= ------=_NextPart_000_067A_01D46176.98D2BD10-- From nobody Thu Oct 11 16:12:58 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 64FB6130EC3 for ; Thu, 11 Oct 2018 16:12:56 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.399 X-Spam-Level: X-Spam-Status: No, score=-1.399 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.25, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IZw5KC2NBB65 for ; Thu, 11 Oct 2018 16:12:54 -0700 (PDT) Received: from mail-it1-f173.google.com (mail-it1-f173.google.com [209.85.166.173]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40BBF12DD85 for ; Thu, 11 Oct 2018 16:12:54 -0700 (PDT) Received: by mail-it1-f173.google.com with SMTP id l191-v6so16118508ita.4 for ; Thu, 11 Oct 2018 16:12:54 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=7nE4k42kTIyx3fFaIjS1ZDm94oE3T+9i2xTmXI0QaO8=; b=jajApiy/5DyhZp/dV0sPVMKk2RctVHk0UwVxq5Nwj847lT2z/5aIVR0ixHsUt9nJh8 LMGSa7o2ThE9rO56JX7LaBJLDStpALaMnfIFKPE7pwzRHdZiqeBlw1F1R2XL+1OTau8z grcNGzQJW3XqP2ELLXCHxbsRUK/45JogapHFLrZ7epoPQwFpCen/mi+4er/JcKgYss1P zmfJc+vnh3xfcK2EiLMSIrtkJZsa6qP/bC0ZZdfEKv/SLOZlYsCDiT9IPsfbgrU4Hh79 ej2idcRGrg0CiH61Ne11oBStB+JE6qAPQYEP3Pgtz2ZkHol9hcps77+dmINJZ+C3q8TI oVAQ== X-Gm-Message-State: ABuFfogKn8M+JKlEJNIE7jU5t5PQAYNguPJVLoSh2P3LbJaxYiRFSncp AEEyTSjzuyMkZo1ML2uJhniN/f1Paae0bA== X-Google-Smtp-Source: ACcGV63Dqiw61ruP9EUyjFvRToj3264Oo31obcuI5BVaIpjBZ8xsKUS6/hclrm/AbixUnE4LxMuHzg== X-Received: by 2002:a02:1e07:: with SMTP id m7-v6mr3041666jad.128.1539299573228; Thu, 11 Oct 2018 16:12:53 -0700 (PDT) Received: from mail-io1-f41.google.com (mail-io1-f41.google.com. [209.85.166.41]) by smtp.gmail.com with ESMTPSA id 127-v6sm15700196itj.36.2018.10.11.16.12.52 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 11 Oct 2018 16:12:52 -0700 (PDT) Received: by mail-io1-f41.google.com with SMTP id w11-v6so7930323iob.2 for ; Thu, 11 Oct 2018 16:12:52 -0700 (PDT) X-Received: by 2002:a6b:e415:: with SMTP id u21-v6mr2830037iog.78.1539299572001; Thu, 11 Oct 2018 16:12:52 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Ryan Sleevi Date: Fri, 12 Oct 2018 08:12:41 +0900 X-Gmail-Original-Message-ID: Message-ID: To: Tim Hollebeek Cc: Russ Housley , SPASM Content-Type: multipart/alternative; boundary="000000000000313b7d0577fc1cd0" Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Oct 2018 23:12:56 -0000 --000000000000313b7d0577fc1cd0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Fri, Oct 12, 2018 at 4:25 AM Tim Hollebeek wrote: > LAMPS chair hat off; CABF Validation Subcommittee (formerly, Validation > Working Group) hat on. > > Recently at the CA/Browser Forum, allowing customers to use CAA to limit > the validation methods that can be used for a domain has been identified > as one of the Forum's highest priorities. I started a thread on the idea > back > in December: > > https://mailarchive.ietf.org/arch/msg/spasm/Jse-FslACq3wair2B2_YSwpViNs > > While CAs can potentially unilaterally implement this on their own outsid= e > the Forum with parameters (as in the acme-caa draft), uniformity > throughout > the industry would be desirable. The Forum also has the ability to > mandate > implementation by a specific date. > > This was discussed on this morning's Validation Subcommittee call, and it > was suggested we ask the group if there is interest in including this in > RFC > > 6844-bis, or whether it would be preferable to handle it as a separate > draft. > Handle it as a separate draft, and recharter the WG If there is consensus to adopt draft text. The charter we have does not include that effort, and there are more ways to botch it then to get it right. It=E2=80=99s an exten= sion, in theory, so let it be defined as such in a separate document. Personally, I believe such an extension would be better spec=E2=80=99d as Informational (thus, at odds with 6844-bis, which is Standards Track), because what the Forum =E2=80=9Cwants=E2=80=9D is an extension whose namesp= ace is defined and maintained by the CA/Browser Forum, not the IETF or IANA, and not designed to interoperate with other PKIs that use CPs other than the Baseline Requirements. If members of the Forum want Lamps to adopt such work, they should first work through what it is they want before asking Lamps to recharter to consider their industry-specific use case. So no, don=E2=80=99t add a rechartering discussion for WGLC just because so= me folks had an extension they want to figure out. > -Tim > > > -----Original Message----- > > From: Spasm On Behalf Of Russ Housley > > Sent: Thursday, October 11, 2018 2:01 PM > > To: SPASM > > Subject: [lamps] WG Last Call for rfc6844bis > > > > This is the LAMPS WG Last Call for "DNS Certification Authority > Authorization > > (CAA) Resource Record" . > > > > Please review the document and send your comments to the list by 22 > > October 2018. > > > > If no concerns are raised, the document will be forwarded to the IESG > with > a > > request for publication as Proposed Standard. > > > > Russ & Tim > > _______________________________________________ > > Spasm mailing list > > Spasm@ietf.org > > https://www.ietf.org/mailman/listinfo/spasm > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm > --000000000000313b7d0577fc1cd0 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


On Fri,= Oct 12, 2018 at 4:25 AM Tim Hollebeek <tim.hollebeek@digicert.com> wrote:
LAMPS chair hat off; CABF Validation Subcommittee (for= merly, Validation
Working Group) hat on.

Recently at the CA/Browser Forum, allowing customers to use CAA=C2=A0 to li= mit
the validation methods that can be used for a domain has been identified as one of the Forum's highest priorities.=C2=A0 I started a thread on t= he idea
back
in December:

https://mailarchive.ietf.org/= arch/msg/spasm/Jse-FslACq3wair2B2_YSwpViNs

While CAs can potentially unilaterally implement this on their own outside =
the Forum with parameters (as in the acme-caa draft), uniformity throughout=
the industry would be desirable.=C2=A0 The Forum also has the ability to ma= ndate
implementation by a specific date.

This was discussed on this morning's Validation Subcommittee call, and = it
was suggested we ask the group if there is interest in including this in RF= C


6844-bis, or whether it would be preferable to handle it as a separate
draft.

Handle it as a s= eparate draft, and recharter the WG If there is consensus to adopt draft te= xt. The charter we have does not include that effort, and there are more wa= ys to botch it then to get it right. It=E2=80=99s an extension, in theory, = so let it be defined as such in a separate document.

Personally, I believe such an extension would = be better spec=E2=80=99d as Informational (thus, at odds with 6844-bis, whi= ch is Standards Track), because what the Forum =E2=80=9Cwants=E2=80=9D is a= n extension whose namespace is defined and maintained by the CA/Browser For= um, not the IETF or IANA, and not designed to interoperate with other PKIs = that use CPs other than the Baseline Requirements. If members of the Forum = want Lamps to adopt such work, they should first work through what it is th= ey want before asking Lamps to recharter to consider their industry-specifi= c use case.

So no, don= =E2=80=99t add a rechartering discussion for WGLC just because some folks h= ad an extension they want to figure out.

<= blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1px= #ccc solid;padding-left:1ex">
-Tim

> -----Original Message-----
> From: Spasm <spasm-bounces@ietf.org> On Behalf Of Russ Housley
> Sent: Thursday, October 11, 2018 2:01 PM
> To: SPASM <spas= m@ietf.org>
> Subject: [lamps] WG Last Call for rfc6844bis
>
> This is the LAMPS WG Last Call for "DNS Certification Authority Authorization
> (CAA) Resource Record" <draft-ietf-lamps-rfc6844bis-01>. >
> Please review the document and send your comments to the list by 22 > October 2018.
>
> If no concerns are raised, the document will be forwarded to the IESG = with
a
> request for publication as Proposed Standard.
>
> Russ & Tim
> _______________________________________________
> Spasm mailing list
> Spasm@ietf.org=
> https://www.ietf.org/mailman/listinfo/spasm
_______________________________________________
Spasm mailing list
Spasm@ietf.org
https://www.ietf.org/mailman/listinfo/spasm
--000000000000313b7d0577fc1cd0-- From nobody Fri Oct 12 14:16:22 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 613BB126BED for ; Fri, 12 Oct 2018 14:16:21 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.012 X-Spam-Level: X-Spam-Status: No, score=-0.012 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2oGZxMDmXmcU for ; Fri, 12 Oct 2018 14:16:18 -0700 (PDT) Received: from mail1.bemta23.messagelabs.com (mail1.bemta23.messagelabs.com [67.219.246.215]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D75A4124BE5 for ; Fri, 12 Oct 2018 14:16:17 -0700 (PDT) Received: from [67.219.246.196] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-3.bemta.az-c.us-east-1.aws.symcld.net id C4/ED-08487-02F01CB5; Fri, 12 Oct 2018 21:16:16 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA1WTa1BMYRjHe/ecPXtSJ6et9EgMO4OROTu7DGL cxgyTD2QYH8jt1J52l23Lno11m0lII6koame67EwuhS9WhhK1DIlCDJVIySCT0cR0YXDOvuv2 5Zn/PL//c3nfeV+aULtUEbTgsAs2K2/RUKPI1olVNm7i6Po43fVM/+je922q6OOdxSi65FnCY iKmvHxYEXOgpoaMqez4olxFrFearfHJji1KU87gbSqlqAw58rNLiDRUkY+OoFE0yR4loKNvv+ II8qfVbJ4CsksEGajZTgTfetORDChWB89q73pNoewU6Dr1QClrgl0EneklXh0ieV43d5LYo4f W2jM+vQTOth5TyZpkJ4O74JxXM+xGaBnJpvCw5wjaLw5RMvBnV0P5nZveYYgdA4ONFxR4WDi0 95R6NbCh0PX4PoV1GHx480OJ/RugeMAj5WkpPwnaqjhsGQ8tpVneEwN7UwWvhp6QGHDwuaCAw HoFvBzJUmBTC4KXR9N8w6KgtOCxr8AC7or7Smwqk0znT6gwmACV2V0kBjcIeNtY72sbCf0PDv uAm4LcgTyEb9sA+ZUeKhdNd/5zPKfkI+TOp93VCqf3ooLhXlEPiU3roaG9DWEdBeXpP1VYT4c zro8E1tPgS+4L8v+8StLz4bIBZydBflaXr3I2ZDT3U2UooBLNireZjSZ7Em+2cHqdjtPrZ3Bz uDk6Lb+bS9CmipzAi3ZOr+V3ilpxV1KCxaC1CvZLSHqWhhTVsquo4bTRg8bSCk0YE7+jLk4dF J9s2GXiRdNmW6pFED0okqY1wLiY+jh1sE0wCo5Es0V6278x0IGaUKZYxoyYwieJZiNGjWgpfe zFoUKC7i7MlOInb8x4+1yKmXJUk9ZkqxARzgQGScWsXGxKtf5p/fvntKDxESEM8vPzUwemCLY ks/1/3ovCaaQJYXrkFQLNVvufDXql5RTScrXL6+Tl7PxfFJGGGL/mO+8fLfjWZAm6InhmXKsZ 2L5xZKFrXnV3x9awDFNO7L7XYZvrPw0s+xrp8AzPqxheN8i7Nk0+WdTnfOTsFvroPRyfM7R2V X/etuL+aWhc1ENb7LklbmXTir0rjeltV26NnZnn/Dl1YfW76qDY5YkBUwIKc+tiiX26g0+b1o yZ+11DiiZeH0XYRP4X8DwXVDQEAAA= X-Env-Sender: tim.hollebeek@digicert.com X-Msg-Ref: server-13.tower-404.messagelabs.com!1539378975!281403!1 X-Originating-IP: [216.32.181.114] X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass X-StarScan-Received: X-StarScan-Version: 9.14.24; banners=-,-,- X-VirusChecked: Checked Received: (qmail 18333 invoked from network); 12 Oct 2018 21:16:16 -0000 Received: from mail-dm3nam05lp0114.outbound.protection.outlook.com (HELO NAM05-DM3-obe.outbound.protection.outlook.com) (216.32.181.114) by server-13.tower-404.messagelabs.com with AES256-SHA256 encrypted SMTP; 12 Oct 2018 21:16:16 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Ro95zv3Tsuql+DQhCxCj4REHWRY6fZ3VhC+SLk+RW74=; b=ndvHRI/rb4h325Pja8GImzk4ke4xqVuKHe4sl7C/DtOHkcafLVYBvamn/k0Gq97WLIqt3caFjakoShrre/nl7G8z6kghhCV9U3MNurIhwAbFhxzhSvhpCDyMdu43S8p4eEfCOM9B0gEq8dwH3w6aQo2zoyQ3H5SfeTcRD3zCFeY= Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1585.namprd14.prod.outlook.com (10.172.147.151) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1228.21; Fri, 12 Oct 2018 21:16:13 +0000 Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::14a4:c8e1:5979:3ae1]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::14a4:c8e1:5979:3ae1%2]) with mapi id 15.20.1228.020; Fri, 12 Oct 2018 21:16:13 +0000 From: Tim Hollebeek To: Ryan Sleevi CC: Russ Housley , SPASM Thread-Topic: [lamps] WG Last Call for rfc6844bis Thread-Index: AQHUYYx49OvVTNXTEUG4xpwbXU/0E6UaadrggABC3oCAAXDVAA== Date: Fri, 12 Oct 2018 21:16:13 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [98.111.253.32] x-ms-publictraffictype: Email x-microsoft-exchange-diagnostics: 1; BN6PR14MB1585; 6:2uNZxKys6FNxCSGM2+7OrPtEUe+4sUxMbYho33vS6AjlF76NHdgRt1juzDqALh4UTa5tD1EUNmnTVcM73Wcbd/mDWVDFoeT+7VHhYHVsH53i3pazJUK5FnFZCXz9TexuK+G8gO6LMfCBvURUVUgfURdSZRbJKBq+OlGHdLblTRoWQWyruVQvLeqKWjB72HyFYEG6fOl81VbmFBsOv05uHYLdmoen8HM5hpC5+3ODiO0G5+dvef0RgfI9ps1fy+Coe0R4YcbgoNti+jC6ssPlWcF3Mw4YV3b7PlBy4E8A0iGliOwmwBJvNZIUpAZQ9xp+DDqj0w4yeHagIFB8ogY/+dJ/WkiBY8PYQw6pAaQv1e72yPelvDUPwnXgfXzKTWmv+ErP8dpYJ18F5IE8PB/ycOCZprVUyAVj2/0xnnSRAW5JMYxpW09DtMzjaKGgxRL+gqG2qTMlRJuzd0u55nEBKQ==; 5:ZdYLaHph+zKM6UddyjK7mYteoReYL7mUq0vLDZmE1RQXbU48omAPP0zNMz1NKVOV0SsmdL8dS4CELP/uaTMdtmePq1YqbSKLyF2mCopnmenCjEq8VAElM9DISy4o/Tce8soggMinzBBK8SDLLL+yuCNrCcjHVFRkedByPBHO3OM=; 7:V/c0AxDf6KArCxLC2go+XSIqx5R5NoeVLA0NMGyqq8A7MUyHm1jM45kGPUm/21QakVMRy80uwfVmkQ80BnXuiHrJC1UwiMvJnHaHQdsRa2+11Y07pjKbRksSEzbeB2C3g+1nCUJmKQV8oLvXzvAQ57Z2Y6RSUDz9dQgbTHE4BKdE9ouWOUUto8O34ZvDp8d+0vtb1rnCEaOi6A6GeI81y89ktdLiTGCHwYDTUs9mB5Zp5kvAko+/KtQFy8JNEhjh x-ms-exchange-antispam-srfa-diagnostics: SOS; x-ms-office365-filtering-correlation-id: 53fe5536-feea-4215-37b5-08d63087f0d2 x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1585; x-ms-traffictypediagnostic: BN6PR14MB1585: x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(100405760836317)(269456686620040)(21748063052155)(28532068793085)(190501279198761)(227612066756510)(258766100185102); x-ms-exchange-senderadcheck: 1 x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(3231355)(944501410)(4983020)(52105095)(3002001)(10201501046)(93006095)(93001095)(149066)(150057)(6041310)(20161123560045)(20161123564045)(20161123558120)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051); SRVR:BN6PR14MB1585; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1585; x-forefront-prvs: 0823A5777B x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(346002)(39850400004)(376002)(396003)(136003)(189003)(199004)(13464003)(5250100002)(14454004)(7736002)(86362001)(7696005)(105586002)(54896002)(229853002)(6436002)(236005)(25786009)(55016002)(54906003)(6306002)(106356001)(9686003)(316002)(6916009)(81166006)(2900100001)(8676002)(81156014)(99936001)(8936002)(2906002)(606006)(5660300001)(6116002)(6246003)(99286004)(74316002)(790700001)(66066001)(3846002)(476003)(446003)(478600001)(256004)(11346002)(53936002)(102836004)(33656002)(486006)(26005)(68736007)(14444005)(44832011)(966005)(66574009)(4326008)(71200400001)(71190400001)(76176011)(186003)(97736004)(53546011)(6506007); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1585; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts) x-microsoft-antispam-message-info: f+GwuiIcf3Iq+L2h3mJnmEwWArN7rPww6bD0ecWfKzbplfTiq8eGL6QRo6f0pnLxYE2skU3sXUxOepcl6SMuKfBv+MrIZ62RSd4bQEwP5t2Ni3M49s5VuaqohPfXkbqMke193KGQoytmjrUsVyg2qCaLmgqL70PFZYopNAsep9YyCn+/iVvydhxZ8n08GEih8XSXd5/2NekZpD3zwtRAi5cecoT4L3mkOZoG6w/qx0j5uJk0Lbbj2sgOhBfR1/EW0RKZy6GeXd7VLUkBHJVQ47uCbYdJaAA9mbT2kGGHEvsMUcVBwt3aItWhTvcIbGUXqkipTtSIjqDMx6MQNwApfbI7/Vur64/8KgoBigujJE0= spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=2.16.840.1.101.3.4.2.1; boundary="----=_NextPart_000_06AE_01D4624F.3A9EEFA0" MIME-Version: 1.0 X-OriginatorOrg: digicert.com X-MS-Exchange-CrossTenant-Network-Message-Id: 53fe5536-feea-4215-37b5-08d63087f0d2 X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Oct 2018 21:16:13.7159 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1585 Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Oct 2018 21:16:22 -0000 ------=_NextPart_000_06AE_01D4624F.3A9EEFA0 Content-Type: multipart/alternative; boundary="----=_NextPart_001_06AF_01D4624F.3A9EEFA0" ------=_NextPart_001_06AF_01D4624F.3A9EEFA0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Your characterization of what the Forum =E2=80=9Cwants=E2=80=9D is at = odds with previous discussions in London, where working with IANA was = explicitly called out as a goal. =20 It also is at odds with the unanimous consensus on the last validation = call, where everyone agreed that working together with IETF on this was = desirable. =20 -Tim =20 From: Ryan Sleevi =20 Sent: Thursday, October 11, 2018 7:13 PM To: Tim Hollebeek Cc: Russ Housley ; SPASM Subject: Re: [lamps] WG Last Call for rfc6844bis =20 =20 =20 On Fri, Oct 12, 2018 at 4:25 AM Tim Hollebeek = > wrote: LAMPS chair hat off; CABF Validation Subcommittee (formerly, Validation Working Group) hat on. Recently at the CA/Browser Forum, allowing customers to use CAA to = limit the validation methods that can be used for a domain has been identified as one of the Forum's highest priorities. I started a thread on the = idea back in December: https://mailarchive.ietf.org/arch/msg/spasm/Jse-FslACq3wair2B2_YSwpViNs While CAs can potentially unilaterally implement this on their own = outside=20 the Forum with parameters (as in the acme-caa draft), uniformity = throughout=20 the industry would be desirable. The Forum also has the ability to = mandate=20 implementation by a specific date. This was discussed on this morning's Validation Subcommittee call, and = it was suggested we ask the group if there is interest in including this in = RFC 6844-bis, or whether it would be preferable to handle it as a separate draft. =20 Handle it as a separate draft, and recharter the WG If there is = consensus to adopt draft text. The charter we have does not include that = effort, and there are more ways to botch it then to get it right. = It=E2=80=99s an extension, in theory, so let it be defined as such in a = separate document. =20 Personally, I believe such an extension would be better spec=E2=80=99d = as Informational (thus, at odds with 6844-bis, which is Standards = Track), because what the Forum =E2=80=9Cwants=E2=80=9D is an extension = whose namespace is defined and maintained by the CA/Browser Forum, not = the IETF or IANA, and not designed to interoperate with other PKIs that = use CPs other than the Baseline Requirements. If members of the Forum = want Lamps to adopt such work, they should first work through what it is = they want before asking Lamps to recharter to consider their = industry-specific use case. =20 So no, don=E2=80=99t add a rechartering discussion for WGLC just because = some folks had an extension they want to figure out. =20 -Tim > -----Original Message----- > From: Spasm > = On Behalf Of Russ Housley > Sent: Thursday, October 11, 2018 2:01 PM > To: SPASM > > Subject: [lamps] WG Last Call for rfc6844bis >=20 > This is the LAMPS WG Last Call for "DNS Certification Authority Authorization > (CAA) Resource Record" . >=20 > Please review the document and send your comments to the list by 22 > October 2018. >=20 > If no concerns are raised, the document will be forwarded to the IESG = with a > request for publication as Proposed Standard. >=20 > Russ & Tim > _______________________________________________ > Spasm mailing list > Spasm@ietf.org =20 > https://www.ietf.org/mailman/listinfo/spasm _______________________________________________ Spasm mailing list Spasm@ietf.org =20 https://www.ietf.org/mailman/listinfo/spasm ------=_NextPart_001_06AF_01D4624F.3A9EEFA0 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable

Your = characterization of what the Forum =E2=80=9Cwants=E2=80=9D is at odds = with previous discussions in London, where working with IANA was = explicitly called out as a goal.

 

It also is = at odds with the unanimous consensus on the last validation call, where = everyone agreed that working together with IETF on this was = desirable.

 

-Tim

 

From: Ryan = Sleevi <ryan-ietf@sleevi.com>
Sent: Thursday, October = 11, 2018 7:13 PM
To: Tim Hollebeek = <tim.hollebeek@digicert.com>
Cc: Russ Housley = <housley@vigilsec.com>; SPASM = <spasm@ietf.org>
Subject: Re: [lamps] WG Last Call for = rfc6844bis

 

 

 

On = Fri, Oct 12, 2018 at 4:25 AM Tim Hollebeek <tim.hollebeek@digicert.com= > wrote:

LAMPS = chair hat off; CABF Validation Subcommittee (formerly, = Validation
Working Group) hat on.

Recently at the CA/Browser = Forum, allowing customers to use CAA  to limit
the validation = methods that can be used for a domain has been identified
as one of = the Forum's highest priorities.  I started a thread on the = idea
back
in December:

https://mailarchive.ietf.org/arch/msg/spasm/Jse-FslACq3= wair2B2_YSwpViNs

While CAs can potentially unilaterally = implement this on their own outside
the Forum with parameters (as in = the acme-caa draft), uniformity throughout
the industry would be = desirable.  The Forum also has the ability to mandate =
implementation by a specific date.

This was discussed on this = morning's Validation Subcommittee call, and it
was suggested we ask = the group if there is interest in including this in = RFC



6844-bis, or whether it would be preferable to = handle it as a separate
draft.

 

Handle it as a separate draft, and recharter the WG If = there is consensus to adopt draft text. The charter we have does not = include that effort, and there are more ways to botch it then to get it = right. It=E2=80=99s an extension, in theory, so let it be defined as = such in a separate document.

 

Personally, I believe such an extension would be = better spec=E2=80=99d as Informational (thus, at odds with 6844-bis, = which is Standards Track), because what the Forum = =E2=80=9Cwants=E2=80=9D is an extension whose namespace is defined and = maintained by the CA/Browser Forum, not the IETF or IANA, and not = designed to interoperate with other PKIs that use CPs other than the = Baseline Requirements. If members of the Forum want Lamps to adopt such = work, they should first work through what it is they want before asking = Lamps to recharter to consider their industry-specific use = case.

 

So no, don=E2=80=99t add a rechartering discussion for = WGLC just because some folks had an extension they want to figure = out.

 


-Tim

> -----Original = Message-----
> From: Spasm <spasm-bounces@ietf.org> On Behalf Of Russ = Housley
> Sent: Thursday, October 11, 2018 2:01 PM
> To: = SPASM <spasm@ietf.org>
> Subject: [lamps] WG = Last Call for rfc6844bis
>
> This is the LAMPS WG Last Call = for "DNS Certification Authority
Authorization
> (CAA) = Resource Record" <draft-ietf-lamps-rfc6844bis-01>.
> =
> Please review the document and send your comments to the list = by 22
> October 2018.
>
> If no concerns are raised, = the document will be forwarded to the IESG with
a
> request for = publication as Proposed Standard.
>
> Russ & = Tim
> _______________________________________________
> = Spasm mailing list
> Spasm@ietf.org
> https://www.ietf.org/mailman/listinfo/spasm
____= ___________________________________________
Spasm mailing list
Spasm@ietf.org
https://www.ietf.org/mailman/listinfo/spasm

------=_NextPart_001_06AF_01D4624F.3A9EEFA0-- ------=_NextPart_000_06AE_01D4624F.3A9EEFA0 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCD0sw ggO3MIICn6ADAgECAhAM5+DlF9hG/o/lYPwb8DA5MA0GCSqGSIb3DQEBBQUAMGUxCzAJBgNVBAYT AlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5jb20xJDAi BgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTEx MTAwMDAwMDBaMGUxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsT EHd3dy5kaWdpY2VydC5jb20xJDAiBgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK0OFc7kQ4BcsYfzt2D5cRKlrtwmlIiq9M71 IDkoWGAM+IDaqRWVMmE8tbEohIqK3J8KDIMXeo+QrIrneVNcMYQq9g+YMjZ2zN7dPKii72r7IfJS Yd+fINcf4rHZ/hhk0hJbX/lYGDW8R82hNvlrf9SwOD7BG8OMM9nYLxj+KA+zp4PWw25EwGE1lhb+ WZyLdm3X8aJLDSv/C3LanmDQjpA1xnhVhyChz+VtCshJfDGYM2wi6YfQMlqiuhOCEe05F52ZOnKh 5vqk2dUXMXWuhX0irj8BRob2KHnIsdrkVxfEfhwOsLSSplazvbKX7aqn8LfFqD+VFtD/oZbrCF8Y d08CAwEAAaNjMGEwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFEXr oq/0ksuCMS1Ri6enIZ3zbcgPMB8GA1UdIwQYMBaAFEXroq/0ksuCMS1Ri6enIZ3zbcgPMA0GCSqG SIb3DQEBBQUAA4IBAQCiDrzf4u3w43JzemSUv/dyZtgy5EJ1Yq6H6/LV2d5Ws5/MzhQouQ2XYFwS TFjk0z2DSUVYlzVpGqhH6lbGeasS2GeBhN9/CTyU5rgmLCC9PbMoifdf/yLil4Qf6WXvh+DfwWdJ s13rsgkq6ybteL59PyvztyY1bV+JAbZJW58BBZurPSXBzLZ/wvFvhsb6ZGjrgS2U60K3+owe3WLx vlBnt2y98/Efaww2BxZ/N3ypW2168RJGYIPXJwS+S86XvsNnKmgR34DnDDNmvxMNFG7zfx9jEB76 jRslbWyPpbdhAbHSoyahEHGdreLD+cOZUbcrBwjOLuZQsqf6CkUvovDyMIIFOjCCBCKgAwIBAgIQ Di7WjgxCjxTrYbReNHesEzANBgkqhkiG9w0BAQsFADBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMM RGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2Vy dCBTSEEyIEFzc3VyZWQgSUQgQ0EwHhcNMTcxMTI4MDAwMDAwWhcNMjIwMjI1MTIwMDAwWjBWMQsw CQYDVQQGEwJVUzENMAsGA1UECBMEVXRhaDENMAsGA1UEBxMETGVoaTERMA8GA1UEChMIRGlnaUNl cnQxFjAUBgNVBAMTDVRpbSBIb2xsZWJlZWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKUTIS9F3d7CfkCjsf4my28pYoZJDkEAiXVqGP4jzbFkszUQNfW3PYpFUo1GnKQykl/tM0qnzw 05bfVLo1+ce0e9fyAwYfulr+HaAVCPqx+PZw9CDY6c0NYd7Fc7S0scONxKekNF4q1mUucfGuGapW sEsyix0CuR0NMuJ4I+w8qMn9MzjzI7bvduG+uVLmZIi0p6D8+2R5BOQFy0tVeQ/aLfS91fG1DTYF YkPF+a/6JlFxzywPzCth8KW2Po4w8JqQWtam/ADKrgMaOnEJs9csefTW/FWRDeGQk5t3rnyS19FP QfpyPPau4ChB5xokfRcg3VEwqfOoIIexjUhZY5X9AgMBAAGjggHzMIIB7zAfBgNVHSMEGDAWgBTn AiOAAE/Y17yUC9k/dDlJMjyKeTAdBgNVHQ4EFgQUjqBhf3GcBV6YGYSmp2iS4Wi/3N4wDAYDVR0T AQH/BAIwADAlBgNVHREEHjAcgRp0aW0uaG9sbGViZWVrQGRpZ2ljZXJ0LmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMEMEMGA1UdIAQ8MDowOAYKYIZIAYb9 bAQBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGIBgNVHR8E gYAwfjA9oDugOYY3aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFzc3VyZWRJ RENBLWcyLmNybDA9oDugOYY3aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFz c3VyZWRJRENBLWcyLmNybDB5BggrBgEFBQcBAQRtMGswJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBDBggrBgEFBQcwAoY3aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMkFzc3VyZWRJRENBLmNydDANBgkqhkiG9w0BAQsFAAOCAQEAmOLw9+cVMHn8tJ0k 76baCfFZwkvfvxSAlCXo+Fcsv55/og0V065Rpb4HvVTi0e0qKCMbBxc71NWxhMvKJHt+sfSmVatX mAOPNDRvtVvJBkcd0bvzMut/r3npQqs1wezHLtAq+MlQZDjgiJB+DkNblnnphzEQSp7q/4K9oMoP KViRxBv+/kseA8GOfhHU6EVmeu9xQrBqexH1DPUrUSGpNGDyvtUaU+bBy8Kz2hQfOu6f/73wLqUx e583C9y2Gqn1xCB77yPxXqRSLLRC6FbrToJbKiFYQJ4znZZyhPYJHL0SOpWyXfVKp4PEO54A/xr5 oVyPhEQhOtasoIRCLtHZrzCCBk4wggU2oAMCAQICEASueWBmZpAaucV/pmxb3M0wDQYJKoZIhvcN AQELBQAwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3 LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgQXNzdXJlZCBJRCBSb290IENBMB4XDTEz MTEwNTEyMDAwMFoXDTI4MTEwNTEyMDAwMFowZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lD ZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hB MiBBc3N1cmVkIElEIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PgRIz9qte/A J3kbLQWHohBDMd8O1BUbT3ekIs4+jHDwvgeO3ScqvAEdtiwKyt1pWB9B7WoFH9pjeFkeIiwr+Lp+ yTU7VvEffEJ+JbAjGcZFONc9RPkgfGCuHLBaGAS+jzv3qfCUmqYMY0m2QRdTQDK9T+ZQelAfJUXo 8Ymvzf9e/1Dz8BcR/73FifW9YrnY+45FBIVtmc3FSE39JqsCNkXqNtdfauIagkEK3OnZ9ZEXjsYh rTg8E+Yef2ac1U3ZRtr2z1KnfTskw7TBUTXGm+vU737kewPhRL16CzfgT8uCig1xGOSm4IksG/Oy czzBsJKeGH29q33FfQihLMKfcwIDAQABo4IC+DCCAvQwEgYDVR0TAQH/BAgwBgEB/wIBADAOBgNV HQ8BAf8EBAMCAYYwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wgYEGA1UdHwR6MHgwOqA4oDaGNGh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdp Q2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwOqA4oDaGNGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwME MIIBswYDVR0gBIIBqjCCAaYwggGiBgpghkgBhv1sAAIEMIIBkjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCCAWQGCCsGAQUFBwICMIIBVh6CAVIAQQBuAHkAIAB1AHMA ZQAgAG8AZgAgAHQAaABpAHMAIABDAGUAcgB0AGkAZgBpAGMAYQB0AGUAIABjAG8AbgBzAHQAaQB0 AHUAdABlAHMAIABhAGMAYwBlAHAAdABhAG4AYwBlACAAbwBmACAAdABoAGUAIABEAGkAZwBpAEMA ZQByAHQAIABDAFAALwBDAFAAUwAgAGEAbgBkACAAdABoAGUAIABSAGUAbAB5AGkAbgBnACAAUABh AHIAdAB5ACAAQQBnAHIAZQBlAG0AZQBuAHQAIAB3AGgAaQBjAGgAIABsAGkAbQBpAHQAIABsAGkA YQBiAGkAbABpAHQAeQAgAGEAbgBkACAAYQByAGUAIABpAG4AYwBvAHIAcABvAHIAYQB0AGUAZAAg AGgAZQByAGUAaQBuACAAYgB5ACAAcgBlAGYAZQByAGUAbgBjAGUALjAdBgNVHQ4EFgQU5wIjgABP 2Ne8lAvZP3Q5STI8inkwHwYDVR0jBBgwFoAUReuir/SSy4IxLVGLp6chnfNtyA8wDQYJKoZIhvcN AQELBQADggEBAE7UiSe5/R2Hd34PKAWQ8QovyTs+vZOckMav+pFRhzJUa+jKwXFRXJmOtfrgYhmZ pgeafBMn2+UCooQS2RX2CkRXxDSPbXMfOtagAT3e44LkRWuy6yX9gF4dOZC+W0L2zpFg4/mgVgxI EM4zaHvNk6vwastPWA+5e10bBIGepyLiV0kn7pKTCL5pCFMCOi5dyBn0UIBOAtmwXZG0k4f5lpaB VUCOZu2C2LsoX+1MYe0GWCgZUxFEvEcgKbIEbNiJVJk7ddtneCweknjGVT1YEhEybr1DDE0023vG QtvsvqubYUwGkuOO3yEqUFcEwGCiNdUknmY3CUnP1fhls+DibsIxggO/MIIDuwIBATB5MGUxCzAJ BgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xJDAiBgNVBAMTG0RpZ2lDZXJ0IFNIQTIgQXNzdXJlZCBJRCBDQQIQDi7WjgxCjxTrYbReNHes EzANBglghkgBZQMEAgEFAKCCAhcwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0B CQUxDxcNMTgxMDEyMjExNTUyWjAvBgkqhkiG9w0BCQQxIgQgwqoeRjPrj91A4TKmgJLVl+d8HeH5 CQaN3D53k9NOi2wwgYgGCSsGAQQBgjcQBDF7MHkwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERp Z2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQg U0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOthtF40d6wTMIGKBgsqhkiG9w0BCRACCzF7oHkw ZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2lj ZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOth tF40d6wTMIGTBgkqhkiG9w0BCQ8xgYUwgYIwCwYJYIZIAWUDBAEqMAsGCWCGSAFlAwQBFjAKBggq hkiG9w0DBzALBglghkgBZQMEAQIwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAsGCWCG SAFlAwQCATALBglghkgBZQMEAgMwCwYJYIZIAWUDBAICMAcGBSsOAwIaMA0GCSqGSIb3DQEBAQUA BIIBAAnzlxAMWuDijMyNE66NZcS0iV5H0DJrjkEpClTPYqeus9lKM0KIHmK6eE3wrIQD1rbsmK2A c37g4OykVHoRVO5jFFFKy8helBP1ZWvh4hLwefUQaALGHWcPwpmGCFXU4rA83y5LOy8bLjYxnSVo VeflNOxjBXmvmAoUarWnDrsWC5HsrTmaRHnmwR04UpkMaBAWZ9GXf2bEvdO6NELXXWQADv452YF8 DyN/H1cG0FaCtKISo1yalhGg0CrYn94cS0DpS1Cnua482TBSfGw/do64FHnqOjwtxtUC1RfiBjBi 09tQ4BeL6/whaOFCAD8AyPFsCaa86Zxw7RJmofir51UAAAAAAAA= ------=_NextPart_000_06AE_01D4624F.3A9EEFA0-- From nobody Fri Oct 12 14:37:55 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4F3B112872C for ; Fri, 12 Oct 2018 14:37:52 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.589 X-Spam-Level: X-Spam-Status: No, score=0.589 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.25, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DA0XpKkKLBFS for ; Fri, 12 Oct 2018 14:37:49 -0700 (PDT) Received: from mail-io1-f52.google.com (mail-io1-f52.google.com [209.85.166.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8E1E4127333 for ; Fri, 12 Oct 2018 14:37:49 -0700 (PDT) Received: by mail-io1-f52.google.com with SMTP id n5-v6so10261268ioh.5 for ; Fri, 12 Oct 2018 14:37:49 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=xpKhqH2MWG6QtngZAmyXgXSXtcT1k1jKvRlDIOmNBbo=; b=HP9CEFomLzqU0S7A6+B65/RY6EJxj/OHdtF8l/6UtQAZ8S+1w5I3XlBngFSKPH2lkF DGaHC8/UTocF/oI9OZhe2FkB045rxJPSI6+nzne/MwPLczlJIlnSqExBvIPIvytla4Be D3wu5CGJ/MCX6OygFHMSzvopi9HHOmFpwNUE9eyG+/3qRrG7h/cj7aivopOaxb1LtwRy NDmkA4JnyRgkSwJkZAQjOZ6J4OoujXnBfQI3uPLM9CRSfqq700cNE6BTT4Yh2bq26VJZ BV1S1klnp9RWVLJY49iIbstQ/P6mvj5v5v8tsN+UZ5PQcNxFSj+5XZlsUeQvLGYnWARq N0JQ== X-Gm-Message-State: ABuFfoiLaBwXXgwsP+sGb+bj+A+7POjahZJCmZGWhvk5LE3nQFLgYvg9 IICmOuOKO8U/etNWqbNFPr0+53HTJ9dvuQ== X-Google-Smtp-Source: ACcGV62a9pSWbgog9Ku08UoO23b3v+8i15iGh+pYdz/d/dCZ0GveRXBk1y3seJzDyPtdBxG9nHi3PQ== X-Received: by 2002:a6b:e802:: with SMTP id f2-v6mr5355136ioh.19.1539380268426; Fri, 12 Oct 2018 14:37:48 -0700 (PDT) Received: from mail-it1-f171.google.com (mail-it1-f171.google.com. [209.85.166.171]) by smtp.gmail.com with ESMTPSA id v5-v6sm670540ioe.61.2018.10.12.14.37.48 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 12 Oct 2018 14:37:48 -0700 (PDT) Received: by mail-it1-f171.google.com with SMTP id 134-v6so20867984itz.2 for ; Fri, 12 Oct 2018 14:37:48 -0700 (PDT) X-Received: by 2002:a24:2b83:: with SMTP id h125-v6mr1367296ita.1.1539380267637; Fri, 12 Oct 2018 14:37:47 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Ryan Sleevi Date: Sat, 13 Oct 2018 06:37:36 +0900 X-Gmail-Original-Message-ID: Message-ID: To: Tim Hollebeek Cc: Russ Housley , Ryan Sleevi , SPASM Content-Type: multipart/alternative; boundary="00000000000006ee8f05780ee6c9" Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Oct 2018 21:37:52 -0000 --00000000000006ee8f05780ee6c9 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Sat, Oct 13, 2018 at 6:16 AM Tim Hollebeek wrote: > Your characterization of what the Forum =E2=80=9Cwants=E2=80=9D is at odd= s with previous > discussions in London, where working with IANA was explicitly called out = as > a goal. > > Yes, to register the appropriate strings to be associated with an Informational or CA/Browser Forum maintained document. > It also is at odds with the unanimous consensus on the last validation > call, where everyone agreed that working together with IETF on this was > desirable. > That=E2=80=99s cool and all, but that=E2=80=99s not how the CA/Browser Foru= m measures consent (via Ballot), and that=E2=80=99s not at odds with what I suggested.= Write a draft, recognize the use cases, and if it to be published in IETF at all, do it as Informational. In any event, you=E2=80=99re talking about something not on the charter, an= d doing it as soon as WGLC starts - and suggesting delay - is poor choice. Does 6844bis address what Lamps was chartered to do? Yes. Does any of your hypothetical proposal require change to those mechanisms? No. So let=E2=80= =99s stop talking about it in WGLC, focus on the charter and the question asked, and once there=E2=80=99s something more to discuss, revisit charter revisions a= nd consensus. But don=E2=80=99t hold up 6844bis to add features to a document = designed to be independently extensible. > > > -Tim > > > > *From:* Ryan Sleevi > *Sent:* Thursday, October 11, 2018 7:13 PM > *To:* Tim Hollebeek > *Cc:* Russ Housley ; SPASM > *Subject:* Re: [lamps] WG Last Call for rfc6844bis > > > > > > > > On Fri, Oct 12, 2018 at 4:25 AM Tim Hollebeek > wrote: > > LAMPS chair hat off; CABF Validation Subcommittee (formerly, Validation > Working Group) hat on. > > Recently at the CA/Browser Forum, allowing customers to use CAA to limit > the validation methods that can be used for a domain has been identified > as one of the Forum's highest priorities. I started a thread on the idea > back > in December: > > https://mailarchive.ietf.org/arch/msg/spasm/Jse-FslACq3wair2B2_YSwpViNs > > > While CAs can potentially unilaterally implement this on their own outsid= e > the Forum with parameters (as in the acme-caa draft), uniformity > throughout > the industry would be desirable. The Forum also has the ability to > mandate > implementation by a specific date. > > This was discussed on this morning's Validation Subcommittee call, and it > was suggested we ask the group if there is interest in including this in > RFC > > > > 6844-bis, or whether it would be preferable to handle it as a separate > draft. > > > > Handle it as a separate draft, and recharter the WG If there is consensus > to adopt draft text. The charter we have does not include that effort, an= d > there are more ways to botch it then to get it right. It=E2=80=99s an ext= ension, in > theory, so let it be defined as such in a separate document. > > > > Personally, I believe such an extension would be better spec=E2=80=99d as > Informational (thus, at odds with 6844-bis, which is Standards Track), > because what the Forum =E2=80=9Cwants=E2=80=9D is an extension whose name= space is defined > and maintained by the CA/Browser Forum, not the IETF or IANA, and not > designed to interoperate with other PKIs that use CPs other than the > Baseline Requirements. If members of the Forum want Lamps to adopt such > work, they should first work through what it is they want before asking > Lamps to recharter to consider their industry-specific use case. > > > > So no, don=E2=80=99t add a rechartering discussion for WGLC just because = some > folks had an extension they want to figure out. > > > > > -Tim > > > -----Original Message----- > > From: Spasm On Behalf Of Russ Housley > > Sent: Thursday, October 11, 2018 2:01 PM > > To: SPASM > > Subject: [lamps] WG Last Call for rfc6844bis > > > > This is the LAMPS WG Last Call for "DNS Certification Authority > Authorization > > (CAA) Resource Record" . > > > > Please review the document and send your comments to the list by 22 > > October 2018. > > > > If no concerns are raised, the document will be forwarded to the IESG > with > a > > request for publication as Proposed Standard. > > > > Russ & Tim > > _______________________________________________ > > Spasm mailing list > > Spasm@ietf.org > > https://www.ietf.org/mailman/listinfo/spasm > > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm > > > --00000000000006ee8f05780ee6c9 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


On Sat,= Oct 13, 2018 at 6:16 AM Tim Hollebeek <tim.hollebeek@digicert.com> wrote:

Your c= haracterization of what the Forum =E2=80=9Cwants=E2=80=9D is at odds with p= revious discussions in London, where working with IANA was explicitly calle= d out as a goal.

<= /div>

Yes, to reg= ister the appropriate strings to be associated with an Informational or CA/= Browser Forum maintained document.

<= blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1px= #ccc solid;padding-left:1ex">
It also is at odds w= ith the unanimous consensus on the last validation call, where everyone agr= eed that working together with IETF on this was desirable.

That=E2=80=99s cool a= nd all, but that=E2=80=99s not how the CA/Browser Forum measures consent (v= ia Ballot), and that=E2=80=99s not at odds with what I suggested. Write a d= raft, recognize the use cases, and if it to be published in IETF at all, do= it as Informational.

In= any event, you=E2=80=99re talking about something not on the charter, and = doing it as soon as WGLC starts - and suggesting delay - is poor choice. Do= es 6844bis address what Lamps was chartered to do? Yes. Does any of your hy= pothetical proposal require change to those mechanisms? No. So let=E2=80=99= s stop talking about it in WGLC, focus on the charter and the question aske= d, and once there=E2=80=99s something more to discuss, revisit charter revi= sions and consensus. But don=E2=80=99t hold up 6844bis to add features to a= document designed to be independently extensible.
<= br>

=C2=A0

=

-Tim

= =C2=A0

From: R= yan Sleevi <ry= an-ietf@sleevi.com>
Sent: Thursday, October 11, 2018 7:13= PM
To: Tim Hollebeek <tim.hollebeek@digicert.com>
Cc: R= uss Housley <h= ousley@vigilsec.com>; SPASM <spasm@ietf.org>
Subject: Re: [lamps] WG La= st Call for rfc6844bis

=C2=A0

<= div>

=C2=A0

=C2=A0

On Fri, = Oct 12, 2018 at 4:25 AM Tim Hollebeek <tim.hollebeek@digicert.com> wrote:=

LAMPS chair hat off; CABF Validation Subcommittee (for= merly, Validation
Working Group) hat on.

Recently at the CA/Brows= er Forum, allowing customers to use CAA=C2=A0 to limit
the validation me= thods that can be used for a domain has been identified
as one of the Fo= rum's highest priorities.=C2=A0 I started a thread on the idea
back<= br>in December:

https://mailarchive.ietf.= org/arch/msg/spasm/Jse-FslACq3wair2B2_YSwpViNs

While CAs can pot= entially unilaterally implement this on their own outside
the Forum wit= h parameters (as in the acme-caa draft), uniformity throughout
the indu= stry would be desirable.=C2=A0 The Forum also has the ability to mandate implementation by a specific date.

This was discussed on this morn= ing's Validation Subcommittee call, and it
was suggested we ask the = group if there is interest in including this in RFC



6844-bis, or whether it would be preferable to handle it as = a separate
draft.

=C2=A0

Handle it as = a separate draft, and recharter the WG If there is consensus to adopt draft= text. The charter we have does not include that effort, and there are more= ways to botch it then to get it right. It=E2=80=99s an extension, in theor= y, so let it be defined as such in a separate document.

=C2=A0

Personally, I believe such an extension would be better spec= =E2=80=99d as Informational (thus, at odds with 6844-bis, which is Standard= s Track), because what the Forum =E2=80=9Cwants=E2=80=9D is an extension wh= ose namespace is defined and maintained by the CA/Browser Forum, not the IE= TF or IANA, and not designed to interoperate with other PKIs that use CPs o= ther than the Baseline Requirements. If members of the Forum want Lamps to = adopt such work, they should first work through what it is they want before= asking Lamps to recharter to consider their industry-specific use case.=

=C2=A0

So no, don=E2=80=99t add a rechartering dis= cussion for WGLC just because some folks had an extension they want to figu= re out.

=C2=A0=


-Tim

> -----Original Message-----
> From= : Spasm <spa= sm-bounces@ietf.org> On Behalf Of Russ Housley
> Sent: Thursda= y, October 11, 2018 2:01 PM
> To: SPASM <spasm@ietf.org>
> Subject: [lamps] = WG Last Call for rfc6844bis
>
> This is the LAMPS WG Last Call= for "DNS Certification Authority
Authorization
> (CAA) Resou= rce Record" <draft-ietf-lamps-rfc6844bis-01>.
>
> P= lease review the document and send your comments to the list by 22
> = October 2018.
>
> If no concerns are raised, the document will= be forwarded to the IESG with
a
> request for publication as Prop= osed Standard.
>
> Russ & Tim
> ____________________= ___________________________
> Spasm mailing list
> Spasm@ietf.org
> https://ww= w.ietf.org/mailman/listinfo/spasm
__________________________________= _____________
Spasm mailing list
Spasm@ietf.org
https://www.ietf.org/mailman/listinfo/sp= asm

--00000000000006ee8f05780ee6c9-- From nobody Fri Oct 12 14:44:52 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C777B12872C for ; Fri, 12 Oct 2018 14:44:50 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.012 X-Spam-Level: X-Spam-Status: No, score=-0.012 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jTEEQHdTY2BX for ; Fri, 12 Oct 2018 14:44:46 -0700 (PDT) Received: from mail1.bemta24.messagelabs.com (mail1.bemta24.messagelabs.com [67.219.250.112]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 83B76126BED for ; Fri, 12 Oct 2018 14:44:46 -0700 (PDT) Received: from [67.219.250.196] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-1.bemta.az-b.us-west-2.aws.symcld.net id 52/6C-08740-DC511CB5; Fri, 12 Oct 2018 21:44:45 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA1WTWUwTURSGuTPTdlSqQylwJK6NKzq1hUQxMUE fTPDBJT6piDq1Y9tYCukUKSYmiFWxaEBFVARBaSq2hgdcQkJQxLggVQQjWJdAFVzQoEQNYuIy 01u3l5Nvzv+f5d7coUlVjSKR5p0O3m7jrBr5WKpDW7uODcRdz9C1dCWnDr4JKlKP9Fah1NPdW 5eS6R7PKJG+p6mJSvc9+yxbQ26QWWyGbOcWmdn/alSR432KnEGXqQAVtCE3GkNTzEESgp4Fbj SWVjGHCfhef5bCH70I3t65JZNcckYH3c23CYnVzCwIHQ+E8ySTBr2Fp8McK3r67vdS2KOHx83 eCK+CRvdDGZ42E/r6WuQSK5lMGBz1K/CwDwTcLj8QFsYwa8Hb2R9eDzHxMHL3AoGHJcCT/uow A6OGUGe7HHMcvH35Q4b9G6HqU6uYp8X8dAheZrFlMnRVFyNpFjDXFFDnea3AAgsfjx0jMa8E9 +UfJDZ1Iaipeo2wkAS1HS8ibAXXg/JIpxoEz/1HI52mgO9QiMLCVRLeX2ygsDAJhgP7I3xHDp 3liyRWMUYo87XKS9G8in9OVyHWk1LjkfYAURG+pxhoO9lPVYhHIpkNcLh9G/YngafwpwLzPPC eeUdingufS59S/+cVIi+BS0acnQ5lxaFI5ULYd39YXoPG+dAig91iMjuyOIuV1et0rF6fzOpT UtiUhVpuJ2vQ5gpsHi842GQtlydohfysrVaj1sY7GpD4Ko05e2c0oh6XqRVNpAlNnNKwoyVDN d6Qbcw3c4J5sz3XygutaBJNa0DpVF/PUMXYeRPv3Gaxik/7twx0tEatTJFkpZDDZQkWE5buou X00JO9J0j6xYkiMQ6F476BHjEWSVFF2bJtfGKC0ioVM1KxOdf2p/XvH6cLTU6MVaKoqChVdA5 vz7I4/tcHUQKNNLHKK1KXaIvN8WeDQXE5QlyueUWLtJyD+yslFqDjmbse+WtjaOepZfn1N0uq b075OvK1eLdny3Djt8ruCfRQXwm7arEp+Go9u917sedeapO6cm2oRFe6o/nKprnnpqXHrVyQ9 6xp6aX5lK+t0OW6URe/unC2N1AGuUWEv3NOKd8wVYDFmd/KzO6YgfnnVQZr2pd4y+ihxjT3rI GOTA0lmDl9EmkXuF/CKJBaMwQAAA== X-Env-Sender: tim.hollebeek@digicert.com X-Msg-Ref: server-32.tower-344.messagelabs.com!1539380683!313142!1 X-Originating-IP: [207.46.163.88] X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass X-StarScan-Received: X-StarScan-Version: 9.14.24; banners=-,-,- X-VirusChecked: Checked Received: (qmail 31084 invoked from network); 12 Oct 2018 21:44:44 -0000 Received: from mail-bl2nam02lp0088.outbound.protection.outlook.com (HELO NAM02-BL2-obe.outbound.protection.outlook.com) (207.46.163.88) by server-32.tower-344.messagelabs.com with AES256-SHA256 encrypted SMTP; 12 Oct 2018 21:44:44 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=rJrlnc0RN079TOLe0wygw8JlZNP9+XjCb7bhfcHlnIQ=; b=n16n1Jc2/HVAhg6mw1tgEQCLdVa6/GZzo6YzGbufq6nB8UYaFxF8VedcPVidxX+8wqcEg/IyWe+jVoMfqsDzGvCTHHIzebJputWpREIbO3tN6jk054D76GShb7YQVBLW0CNweiZv4sGO4ekPWBJWhpl2dFseBS/yQ2n6KwJn/fQ= Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1811.namprd14.prod.outlook.com (10.171.177.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1228.24; Fri, 12 Oct 2018 21:44:41 +0000 Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::14a4:c8e1:5979:3ae1]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::14a4:c8e1:5979:3ae1%2]) with mapi id 15.20.1228.020; Fri, 12 Oct 2018 21:44:41 +0000 From: Tim Hollebeek To: Ryan Sleevi CC: Russ Housley , SPASM Thread-Topic: [lamps] WG Last Call for rfc6844bis Thread-Index: AQHUYYx49OvVTNXTEUG4xpwbXU/0E6UaadrggABC3oCAAXDVAIAABu8AgAAAXXA= Date: Fri, 12 Oct 2018 21:44:41 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [98.111.253.32] x-ms-publictraffictype: Email x-microsoft-exchange-diagnostics: 1; BN6PR14MB1811; 6:w1MXE6GcrEc5Sh0PgrhkZwMVAkoULFcgWm+3RIBQTHHEub9suLsh9p/OuC8eYMVy46cFmt/j74Gv7iioY05zz4FrT3AkVPxZDxKP22e866VPuNYp3A92lwajPKUL1AS19IVdVoUWR1SIezA5e5/8yie9wfL0c+cPRq4q7gIalWH2DpQGNVfS5aZTSGDRVi38ymvAyPKPmGxpzhDEAxIQ4aiG+Ko2re5hoz4PDCVY5QJnwG3v7kLvUDc5o/JPKecfTci9aSH1XMZrC11qXH5VyffUPmXmCPMF4N2lL74rjfKrOlVcmwzA4ERxwvRJqbb9FeolPEwQurOxcPKZC12jBbKTB8xlmzMabVNaOZPtwXtzqPrO0l3hxEA5u95XAtuLKCvmmfwrw7XKlEndUtKhML3Neh3JdY34T/+yMwayPGcqU+WMXFqrPjpqTNcwVnb56QiUeIt3BYMsCsvwlV57bA==; 5:LAA4O/ZFiOhWUgSuOEFM6L+JRKeqUQv+z3Z0OZvnPvL4jfFeckgoGXoAzV3ujJc7xPohlsnef7/fGITvoPz0rvGqsAI7NXVa9DICfuofzI9MOL2ZSKXMl5xnVY4qdwYYbgRrHRHaDHeG3M++kXQ8s8Bw08HrzDzVIqbY2JPKUB4=; 7:+6JKOuLthv3wToSESht/8UJGSAp4xfBKEx+j0+sV9mOZWF0mbE9/tzQWklbKsMuK+pZIqLGoj8NWWTEPPp8v1lL5WzeEjIaXyj8O27x9B9Ql+iUM938GUBGAl9eYH+C7klAdMIVqukn6MHvPoUU6sse4d23x01RRH2X18UaZziAWIaEtk5ESNNwTCAGIuMI+FPjeuxHV2jAIcecCSssPr0t3jxzoIOtP/3hIN7jGHGS4GOJwzCn/sHWEW2f43vXE x-ms-exchange-antispam-srfa-diagnostics: SOS; x-ms-office365-filtering-correlation-id: bbb2eeab-be59-4586-8c47-08d6308beace x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1811; x-ms-traffictypediagnostic: BN6PR14MB1811: x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(100405760836317)(269456686620040)(21748063052155)(28532068793085)(190501279198761)(227612066756510)(258766100185102); x-ms-exchange-senderadcheck: 1 x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(3231355)(944501410)(4983020)(52105095)(3002001)(10201501046)(93006095)(93001095)(149066)(150057)(6041310)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123560045)(20161123562045)(201708071742011)(7699051); SRVR:BN6PR14MB1811; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1811; x-forefront-prvs: 0823A5777B x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(376002)(346002)(366004)(39850400004)(136003)(189003)(199004)(13464003)(68736007)(6246003)(2906002)(97736004)(966005)(33656002)(561944003)(25786009)(54906003)(66066001)(14454004)(5250100002)(4326008)(99286004)(81156014)(71190400001)(8676002)(71200400001)(81166006)(8936002)(54896002)(74316002)(606006)(55016002)(7736002)(6916009)(5660300001)(6306002)(9686003)(53936002)(316002)(229853002)(6436002)(486006)(105586002)(86362001)(44832011)(236005)(102836004)(93886005)(6506007)(790700001)(53546011)(2900100001)(3846002)(6116002)(7696005)(76176011)(66574009)(478600001)(99936001)(11346002)(256004)(26005)(186003)(446003)(14444005)(476003)(106356001); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1811; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts) x-microsoft-antispam-message-info: RXLjodiFTEU37n9Cd8Q8iMgpb6muZadx51P1ougfh/1sFk/mh+HVKBSOsRoz6ZKVwSH2h0fffiBYRZoxdcljKSRnG9mR2nNN1C55U7ZCx6S7d71x+jcehtQRlje03S8g+REkUZwgx4PVG6DP0K2lyGsxLv135kAc+egFaH++FzPOjY6+ppmRalmiBvpYZbdZya6Z6wlAHfMmcYW2WkoNyOBvcLpGP33fRJOdnGEyUuL6RdmO0ncjj7vNc/r13a3iFEDRAaNALeNi3auzlj0P/TlY0TFZs2xh1jLODYXUsAabeZdbU7uSj4ZzHD3JpQJRj+wYaPrJ6ZmUD6SdHTtZMtfNNvEOWWQiRQ8fhnsEjh4= spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=2.16.840.1.101.3.4.2.1; boundary="----=_NextPart_000_06D9_01D46253.349D2AF0" MIME-Version: 1.0 X-OriginatorOrg: digicert.com X-MS-Exchange-CrossTenant-Network-Message-Id: bbb2eeab-be59-4586-8c47-08d6308beace X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Oct 2018 21:44:41.5644 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1811 Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Oct 2018 21:44:51 -0000 ------=_NextPart_000_06D9_01D46253.349D2AF0 Content-Type: multipart/alternative; boundary="----=_NextPart_001_06DA_01D46253.349D2AF0" ------=_NextPart_001_06DA_01D46253.349D2AF0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable =20 I actually support not holding up 6844bis and doing it as a separate = draft, but people on the call wanted me to find out what the non-CABF = LAMPS participants thought. =20 I don=E2=80=99t think extensions to CAA are outside the scope of the = charter, or the 6844bis effort for that matter. Which is why I was = willing to ask and see how the group would like to handle it. =20 Also, I was asked by the chair to bring it up during the WGLC, so it is = inappropriate for you to try to shut down the discussion. =20 -Tim =20 From: Ryan Sleevi =20 Sent: Friday, October 12, 2018 5:38 PM To: Tim Hollebeek Cc: Russ Housley ; Ryan Sleevi = ; SPASM Subject: Re: [lamps] WG Last Call for rfc6844bis =20 =20 =20 On Sat, Oct 13, 2018 at 6:16 AM Tim Hollebeek = > wrote: Your characterization of what the Forum =E2=80=9Cwants=E2=80=9D is at = odds with previous discussions in London, where working with IANA was = explicitly called out as a goal. =20 Yes, to register the appropriate strings to be associated with an = Informational or CA/Browser Forum maintained document. =20 It also is at odds with the unanimous consensus on the last validation = call, where everyone agreed that working together with IETF on this was = desirable. =20 That=E2=80=99s cool and all, but that=E2=80=99s not how the CA/Browser = Forum measures consent (via Ballot), and that=E2=80=99s not at odds with = what I suggested. Write a draft, recognize the use cases, and if it to = be published in IETF at all, do it as Informational. =20 In any event, you=E2=80=99re talking about something not on the charter, = and doing it as soon as WGLC starts - and suggesting delay - is poor = choice. Does 6844bis address what Lamps was chartered to do? Yes. Does = any of your hypothetical proposal require change to those mechanisms? = No. So let=E2=80=99s stop talking about it in WGLC, focus on the charter = and the question asked, and once there=E2=80=99s something more to = discuss, revisit charter revisions and consensus. But don=E2=80=99t hold = up 6844bis to add features to a document designed to be independently = extensible. =20 =20 =20 -Tim =20 From: Ryan Sleevi >=20 Sent: Thursday, October 11, 2018 7:13 PM To: Tim Hollebeek > Cc: Russ Housley >; = SPASM > Subject: Re: [lamps] WG Last Call for rfc6844bis =20 =20 =20 On Fri, Oct 12, 2018 at 4:25 AM Tim Hollebeek = > wrote: LAMPS chair hat off; CABF Validation Subcommittee (formerly, Validation Working Group) hat on. Recently at the CA/Browser Forum, allowing customers to use CAA to = limit the validation methods that can be used for a domain has been identified as one of the Forum's highest priorities. I started a thread on the = idea back in December: https://mailarchive.ietf.org/arch/msg/spasm/Jse-FslACq3wair2B2_YSwpViNs While CAs can potentially unilaterally implement this on their own = outside=20 the Forum with parameters (as in the acme-caa draft), uniformity = throughout=20 the industry would be desirable. The Forum also has the ability to = mandate=20 implementation by a specific date. This was discussed on this morning's Validation Subcommittee call, and = it was suggested we ask the group if there is interest in including this in = RFC 6844-bis, or whether it would be preferable to handle it as a separate draft. =20 Handle it as a separate draft, and recharter the WG If there is = consensus to adopt draft text. The charter we have does not include that = effort, and there are more ways to botch it then to get it right. = It=E2=80=99s an extension, in theory, so let it be defined as such in a = separate document. =20 Personally, I believe such an extension would be better spec=E2=80=99d = as Informational (thus, at odds with 6844-bis, which is Standards = Track), because what the Forum =E2=80=9Cwants=E2=80=9D is an extension = whose namespace is defined and maintained by the CA/Browser Forum, not = the IETF or IANA, and not designed to interoperate with other PKIs that = use CPs other than the Baseline Requirements. If members of the Forum = want Lamps to adopt such work, they should first work through what it is = they want before asking Lamps to recharter to consider their = industry-specific use case. =20 So no, don=E2=80=99t add a rechartering discussion for WGLC just because = some folks had an extension they want to figure out. =20 -Tim > -----Original Message----- > From: Spasm > = On Behalf Of Russ Housley > Sent: Thursday, October 11, 2018 2:01 PM > To: SPASM > > Subject: [lamps] WG Last Call for rfc6844bis >=20 > This is the LAMPS WG Last Call for "DNS Certification Authority Authorization > (CAA) Resource Record" . >=20 > Please review the document and send your comments to the list by 22 > October 2018. >=20 > If no concerns are raised, the document will be forwarded to the IESG = with a > request for publication as Proposed Standard. >=20 > Russ & Tim > _______________________________________________ > Spasm mailing list > Spasm@ietf.org =20 > https://www.ietf.org/mailman/listinfo/spasm _______________________________________________ Spasm mailing list Spasm@ietf.org =20 https://www.ietf.org/mailman/listinfo/spasm ------=_NextPart_001_06DA_01D46253.349D2AF0 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable

 

I actually = support not holding up 6844bis and doing it as a separate draft, but = people on the call wanted me to find out what the non-CABF LAMPS = participants thought.

 

I = don=E2=80=99t think extensions to CAA are outside the scope of the = charter, or the 6844bis effort for that matter.=C2=A0 Which is why I was = willing to ask and see how the group would like to handle = it.

 

Also, I was asked by the chair to bring it up during = the WGLC, so it is inappropriate for you to try to shut down the = discussion.

 

-Tim

 

From: Ryan = Sleevi <ryan-ietf@sleevi.com>
Sent: Friday, October 12, = 2018 5:38 PM
To: Tim Hollebeek = <tim.hollebeek@digicert.com>
Cc: Russ Housley = <housley@vigilsec.com>; Ryan Sleevi <ryan-ietf@sleevi.com>; = SPASM <spasm@ietf.org>
Subject: Re: [lamps] WG Last Call = for rfc6844bis

 

 

 

On = Sat, Oct 13, 2018 at 6:16 AM Tim Hollebeek <tim.hollebeek@digicert.com= > wrote:

Your = characterization of what the Forum =E2=80=9Cwants=E2=80=9D is at odds = with previous discussions in London, where working with IANA was = explicitly called out as a = goal.

 

Yes, to register the appropriate strings to be = associated with an Informational or CA/Browser Forum maintained = document.

 

It also is at odds with the unanimous consensus on the = last validation call, where everyone agreed that working together with = IETF on this was = desirable.

 

That=E2=80=99s cool and all, but that=E2=80=99s not = how the CA/Browser Forum measures consent (via Ballot), and = that=E2=80=99s not at odds with what I suggested. Write a draft, = recognize the use cases, and if it to be published in IETF at all, do it = as Informational.

 

In any event, you=E2=80=99re talking about something = not on the charter, and doing it as soon as WGLC starts - and suggesting = delay - is poor choice. Does 6844bis address what Lamps was chartered to = do? Yes. Does any of your hypothetical proposal require change to those = mechanisms? No. So let=E2=80=99s stop talking about it in WGLC, focus on = the charter and the question asked, and once there=E2=80=99s something = more to discuss, revisit charter revisions and consensus. But = don=E2=80=99t hold up 6844bis to add features to a document designed to = be independently extensible.

 

 

 <= /o:p>

-Tim

 <= /o:p>

From:= Ryan Sleevi <ryan-ietf@sleevi.com>
Sent: = Thursday, October 11, 2018 7:13 PM
To: Tim Hollebeek <tim.hollebeek@digicert.com>
Cc: Russ = Housley <housley@vigilsec.com>; SPASM <spasm@ietf.org>
Subject: Re: [lamps] = WG Last Call for = rfc6844bis

 <= /o:p>

 <= /o:p>

 <= /o:p>

On Fri, Oct = 12, 2018 at 4:25 AM Tim Hollebeek <tim.hollebeek@digicert.com> = wrote:

LAMPS chair = hat off; CABF Validation Subcommittee (formerly, Validation
Working = Group) hat on.

Recently at the CA/Browser Forum, allowing = customers to use CAA  to limit
the validation methods that can = be used for a domain has been identified
as one of the Forum's = highest priorities.  I started a thread on the idea
back
in = December:

https://mailarchive.ietf.org/arch/msg/spasm/Jse-FslACq3= wair2B2_YSwpViNs

While CAs can potentially unilaterally = implement this on their own outside
the Forum with parameters (as in = the acme-caa draft), uniformity throughout
the industry would be = desirable.  The Forum also has the ability to mandate =
implementation by a specific date.

This was discussed on this = morning's Validation Subcommittee call, and it
was suggested we ask = the group if there is interest in including this in = RFC



6844= -bis, or whether it would be preferable to handle it as a = separate
draft.

 <= /o:p>

Handle it = as a separate draft, and recharter the WG If there is consensus to adopt = draft text. The charter we have does not include that effort, and there = are more ways to botch it then to get it right. It=E2=80=99s an = extension, in theory, so let it be defined as such in a separate = document.

 <= /o:p>

Personally, = I believe such an extension would be better spec=E2=80=99d as = Informational (thus, at odds with 6844-bis, which is Standards Track), = because what the Forum =E2=80=9Cwants=E2=80=9D is an extension whose = namespace is defined and maintained by the CA/Browser Forum, not the = IETF or IANA, and not designed to interoperate with other PKIs that use = CPs other than the Baseline Requirements. If members of the Forum want = Lamps to adopt such work, they should first work through what it is they = want before asking Lamps to recharter to consider their = industry-specific use case.

 <= /o:p>

So no, = don=E2=80=99t add a rechartering discussion for WGLC just because some = folks had an extension they want to figure = out.

 <= /o:p>


-Tim
=
> -----Original Message-----
> From: Spasm <spasm-bounces@ietf.org> On Behalf Of Russ = Housley
> Sent: Thursday, October 11, 2018 2:01 PM
> To: = SPASM <spasm@ietf.org>
> Subject: [lamps] WG = Last Call for rfc6844bis
>
> This is the LAMPS WG Last Call = for "DNS Certification Authority
Authorization
> (CAA) = Resource Record" <draft-ietf-lamps-rfc6844bis-01>.
> =
> Please review the document and send your comments to the list = by 22
> October 2018.
>
> If no concerns are raised, = the document will be forwarded to the IESG with
a
> request for = publication as Proposed Standard.
>
> Russ & = Tim
> _______________________________________________
> = Spasm mailing list
> Spasm@ietf.org
> https://www.ietf.org/mailman/listinfo/spasm
____= ___________________________________________
Spasm mailing list
Spasm@ietf.org
https://www.ietf.org/mailman/listinfo/spasm

------=_NextPart_001_06DA_01D46253.349D2AF0-- ------=_NextPart_000_06D9_01D46253.349D2AF0 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCD0sw ggO3MIICn6ADAgECAhAM5+DlF9hG/o/lYPwb8DA5MA0GCSqGSIb3DQEBBQUAMGUxCzAJBgNVBAYT AlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5jb20xJDAi BgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTEx MTAwMDAwMDBaMGUxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsT EHd3dy5kaWdpY2VydC5jb20xJDAiBgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK0OFc7kQ4BcsYfzt2D5cRKlrtwmlIiq9M71 IDkoWGAM+IDaqRWVMmE8tbEohIqK3J8KDIMXeo+QrIrneVNcMYQq9g+YMjZ2zN7dPKii72r7IfJS Yd+fINcf4rHZ/hhk0hJbX/lYGDW8R82hNvlrf9SwOD7BG8OMM9nYLxj+KA+zp4PWw25EwGE1lhb+ WZyLdm3X8aJLDSv/C3LanmDQjpA1xnhVhyChz+VtCshJfDGYM2wi6YfQMlqiuhOCEe05F52ZOnKh 5vqk2dUXMXWuhX0irj8BRob2KHnIsdrkVxfEfhwOsLSSplazvbKX7aqn8LfFqD+VFtD/oZbrCF8Y d08CAwEAAaNjMGEwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFEXr oq/0ksuCMS1Ri6enIZ3zbcgPMB8GA1UdIwQYMBaAFEXroq/0ksuCMS1Ri6enIZ3zbcgPMA0GCSqG SIb3DQEBBQUAA4IBAQCiDrzf4u3w43JzemSUv/dyZtgy5EJ1Yq6H6/LV2d5Ws5/MzhQouQ2XYFwS TFjk0z2DSUVYlzVpGqhH6lbGeasS2GeBhN9/CTyU5rgmLCC9PbMoifdf/yLil4Qf6WXvh+DfwWdJ s13rsgkq6ybteL59PyvztyY1bV+JAbZJW58BBZurPSXBzLZ/wvFvhsb6ZGjrgS2U60K3+owe3WLx vlBnt2y98/Efaww2BxZ/N3ypW2168RJGYIPXJwS+S86XvsNnKmgR34DnDDNmvxMNFG7zfx9jEB76 jRslbWyPpbdhAbHSoyahEHGdreLD+cOZUbcrBwjOLuZQsqf6CkUvovDyMIIFOjCCBCKgAwIBAgIQ Di7WjgxCjxTrYbReNHesEzANBgkqhkiG9w0BAQsFADBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMM RGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2Vy dCBTSEEyIEFzc3VyZWQgSUQgQ0EwHhcNMTcxMTI4MDAwMDAwWhcNMjIwMjI1MTIwMDAwWjBWMQsw CQYDVQQGEwJVUzENMAsGA1UECBMEVXRhaDENMAsGA1UEBxMETGVoaTERMA8GA1UEChMIRGlnaUNl cnQxFjAUBgNVBAMTDVRpbSBIb2xsZWJlZWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKUTIS9F3d7CfkCjsf4my28pYoZJDkEAiXVqGP4jzbFkszUQNfW3PYpFUo1GnKQykl/tM0qnzw 05bfVLo1+ce0e9fyAwYfulr+HaAVCPqx+PZw9CDY6c0NYd7Fc7S0scONxKekNF4q1mUucfGuGapW sEsyix0CuR0NMuJ4I+w8qMn9MzjzI7bvduG+uVLmZIi0p6D8+2R5BOQFy0tVeQ/aLfS91fG1DTYF YkPF+a/6JlFxzywPzCth8KW2Po4w8JqQWtam/ADKrgMaOnEJs9csefTW/FWRDeGQk5t3rnyS19FP QfpyPPau4ChB5xokfRcg3VEwqfOoIIexjUhZY5X9AgMBAAGjggHzMIIB7zAfBgNVHSMEGDAWgBTn AiOAAE/Y17yUC9k/dDlJMjyKeTAdBgNVHQ4EFgQUjqBhf3GcBV6YGYSmp2iS4Wi/3N4wDAYDVR0T AQH/BAIwADAlBgNVHREEHjAcgRp0aW0uaG9sbGViZWVrQGRpZ2ljZXJ0LmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMEMEMGA1UdIAQ8MDowOAYKYIZIAYb9 bAQBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGIBgNVHR8E gYAwfjA9oDugOYY3aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFzc3VyZWRJ RENBLWcyLmNybDA9oDugOYY3aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFz c3VyZWRJRENBLWcyLmNybDB5BggrBgEFBQcBAQRtMGswJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBDBggrBgEFBQcwAoY3aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMkFzc3VyZWRJRENBLmNydDANBgkqhkiG9w0BAQsFAAOCAQEAmOLw9+cVMHn8tJ0k 76baCfFZwkvfvxSAlCXo+Fcsv55/og0V065Rpb4HvVTi0e0qKCMbBxc71NWxhMvKJHt+sfSmVatX mAOPNDRvtVvJBkcd0bvzMut/r3npQqs1wezHLtAq+MlQZDjgiJB+DkNblnnphzEQSp7q/4K9oMoP KViRxBv+/kseA8GOfhHU6EVmeu9xQrBqexH1DPUrUSGpNGDyvtUaU+bBy8Kz2hQfOu6f/73wLqUx e583C9y2Gqn1xCB77yPxXqRSLLRC6FbrToJbKiFYQJ4znZZyhPYJHL0SOpWyXfVKp4PEO54A/xr5 oVyPhEQhOtasoIRCLtHZrzCCBk4wggU2oAMCAQICEASueWBmZpAaucV/pmxb3M0wDQYJKoZIhvcN AQELBQAwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3 LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgQXNzdXJlZCBJRCBSb290IENBMB4XDTEz MTEwNTEyMDAwMFoXDTI4MTEwNTEyMDAwMFowZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lD ZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hB MiBBc3N1cmVkIElEIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PgRIz9qte/A J3kbLQWHohBDMd8O1BUbT3ekIs4+jHDwvgeO3ScqvAEdtiwKyt1pWB9B7WoFH9pjeFkeIiwr+Lp+ yTU7VvEffEJ+JbAjGcZFONc9RPkgfGCuHLBaGAS+jzv3qfCUmqYMY0m2QRdTQDK9T+ZQelAfJUXo 8Ymvzf9e/1Dz8BcR/73FifW9YrnY+45FBIVtmc3FSE39JqsCNkXqNtdfauIagkEK3OnZ9ZEXjsYh rTg8E+Yef2ac1U3ZRtr2z1KnfTskw7TBUTXGm+vU737kewPhRL16CzfgT8uCig1xGOSm4IksG/Oy czzBsJKeGH29q33FfQihLMKfcwIDAQABo4IC+DCCAvQwEgYDVR0TAQH/BAgwBgEB/wIBADAOBgNV HQ8BAf8EBAMCAYYwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wgYEGA1UdHwR6MHgwOqA4oDaGNGh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdp Q2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwOqA4oDaGNGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwME MIIBswYDVR0gBIIBqjCCAaYwggGiBgpghkgBhv1sAAIEMIIBkjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCCAWQGCCsGAQUFBwICMIIBVh6CAVIAQQBuAHkAIAB1AHMA ZQAgAG8AZgAgAHQAaABpAHMAIABDAGUAcgB0AGkAZgBpAGMAYQB0AGUAIABjAG8AbgBzAHQAaQB0 AHUAdABlAHMAIABhAGMAYwBlAHAAdABhAG4AYwBlACAAbwBmACAAdABoAGUAIABEAGkAZwBpAEMA ZQByAHQAIABDAFAALwBDAFAAUwAgAGEAbgBkACAAdABoAGUAIABSAGUAbAB5AGkAbgBnACAAUABh AHIAdAB5ACAAQQBnAHIAZQBlAG0AZQBuAHQAIAB3AGgAaQBjAGgAIABsAGkAbQBpAHQAIABsAGkA YQBiAGkAbABpAHQAeQAgAGEAbgBkACAAYQByAGUAIABpAG4AYwBvAHIAcABvAHIAYQB0AGUAZAAg AGgAZQByAGUAaQBuACAAYgB5ACAAcgBlAGYAZQByAGUAbgBjAGUALjAdBgNVHQ4EFgQU5wIjgABP 2Ne8lAvZP3Q5STI8inkwHwYDVR0jBBgwFoAUReuir/SSy4IxLVGLp6chnfNtyA8wDQYJKoZIhvcN AQELBQADggEBAE7UiSe5/R2Hd34PKAWQ8QovyTs+vZOckMav+pFRhzJUa+jKwXFRXJmOtfrgYhmZ pgeafBMn2+UCooQS2RX2CkRXxDSPbXMfOtagAT3e44LkRWuy6yX9gF4dOZC+W0L2zpFg4/mgVgxI EM4zaHvNk6vwastPWA+5e10bBIGepyLiV0kn7pKTCL5pCFMCOi5dyBn0UIBOAtmwXZG0k4f5lpaB VUCOZu2C2LsoX+1MYe0GWCgZUxFEvEcgKbIEbNiJVJk7ddtneCweknjGVT1YEhEybr1DDE0023vG QtvsvqubYUwGkuOO3yEqUFcEwGCiNdUknmY3CUnP1fhls+DibsIxggO/MIIDuwIBATB5MGUxCzAJ BgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xJDAiBgNVBAMTG0RpZ2lDZXJ0IFNIQTIgQXNzdXJlZCBJRCBDQQIQDi7WjgxCjxTrYbReNHes EzANBglghkgBZQMEAgEFAKCCAhcwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0B CQUxDxcNMTgxMDEyMjE0NDIwWjAvBgkqhkiG9w0BCQQxIgQgZ9vPsQXZVrZ5GjJlB6boH/EMKncO WZuO+AvqgwEuCx8wgYgGCSsGAQQBgjcQBDF7MHkwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERp Z2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQg U0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOthtF40d6wTMIGKBgsqhkiG9w0BCRACCzF7oHkw ZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2lj ZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOth tF40d6wTMIGTBgkqhkiG9w0BCQ8xgYUwgYIwCwYJYIZIAWUDBAEqMAsGCWCGSAFlAwQBFjAKBggq hkiG9w0DBzALBglghkgBZQMEAQIwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAsGCWCG SAFlAwQCATALBglghkgBZQMEAgMwCwYJYIZIAWUDBAICMAcGBSsOAwIaMA0GCSqGSIb3DQEBAQUA BIIBAH8OJxxQWMPs9b9wg51W/y5tXr2PyYPez6jafinEN+Cu7pSDeol8NbDNwY5DQ1ENXq+6tBtv DvYb030I5iUqXy2DResJ1MuJTr48jTbhJQhNLVlWNsDHwKQDkC/L4G86a8eWKWBmovMH9eKT7LBU Eei9WHF30CnJnFkRJtWirfc9GLZ50/yCZEVVojXbGNgUB5HBaUmeGQo98uxUpXdwZtW0C9OxQbLK 0CjxppEHRAhlN2Qid8gITD7VIVgYCSzc5vZ/YVyA8tR+ogRFSTDwB7OSvKGEv0LVz5sZLxIG3M6T ofb8K/CHmQTP+kcTSmMHOWn9RRAbh6h4s8VwewkKTHgAAAAAAAA= ------=_NextPart_000_06D9_01D46253.349D2AF0-- From nobody Fri Oct 12 18:56:55 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5F30D129C6B for ; Fri, 12 Oct 2018 18:56:54 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.301 X-Spam-Level: X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SaRnCv7VWmvn for ; Fri, 12 Oct 2018 18:56:52 -0700 (PDT) Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A45A6128CF3 for ; Fri, 12 Oct 2018 18:56:51 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 0C7D9BE24; Sat, 13 Oct 2018 02:56:50 +0100 (IST) X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7qMT09GIx39p; Sat, 13 Oct 2018 02:56:48 +0100 (IST) Received: from [10.244.2.138] (95-45-153-252-dynamic.agg2.phb.bdt-fng.eircom.net [95.45.153.252]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id AAC40BE20; Sat, 13 Oct 2018 02:56:48 +0100 (IST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1539395808; bh=SPnxp8BQBbbtRwLfSBjJ/SlvSoMfbcK00YloNyny6UA=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=dreSu8iOaj6v7QH1e61U6IbNuXUdEOxra122aGooNfxWuDmK0MnlWD/CITGn/jH3E haTqm4QxhGXhAnwsFJh50cPg3f5+9Jp6YH1lkkJHgRO8MiDbhKyzxIxoO1sXBrHS+q EAoEj17F9qhJkdpZ2z7afSJrFKfldkb0bMby8KtY= To: Tim Hollebeek , Ryan Sleevi Cc: SPASM , Russ Housley References: From: Stephen Farrell Openpgp: id=5BB5A6EA5765D2C5863CAE275AB2FAF17B172BEA; url= Autocrypt: addr=stephen.farrell@cs.tcd.ie; prefer-encrypt=mutual; keydata= xsFNBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nemCP5PMvmh 5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kTq0IqYzsEv5HI58S+ QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtEgvw4fVhVWJuyy3w//0F2tzKr EMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy+pAh4EKzS1FE7BOZp9daMu9MUQmDqtZU bUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqO Vz+7L+WiVfxLbeVqBwV+4uL9to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJg b097ZaNyuY1ETghVB5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k 4LyM2lp5FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9tlyWxn5Xi HzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQABzTJTdGVwaGVuIEZh cnJlbGwgKDIwMTcpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPsLBgAQTAQgAKgIbAwUJ CZQmAAULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAUCWj6jdwIZAQAKCRBasvrxexcr6o7QD/9m x9DPJetmW794RXmNTrbTJ44zc/tJbcLdRBh0KBn9OW/EaAqjDmgNJeCMyJTKr1ywaps8HGUN hLEVkc14NUpgi4/Zkrbi3DmTp25OHj6wXBS5qVMyVynTMEIjOfeFFyxG+48od+Xn7qg6LT7G rHeNf+z/r0v9+8eZ1Ip63kshQDGhhpmRMKu4Ws9ZvTW2ACXkkTFaSGYJj3yIP4R6IgwBYGMz DXFX6nS4LA1s3pcPNxOgrvCyb60AiJZTLcOk/rRrpZtXB1XQc23ZZmrlTkl2HaThL6w3YKdi Ti1NbuMeOxZqtXcUshII45sANm4HuWNTiRh93Bn5bN6ddjgsaXEZBKUBuUaPBl7gQiQJcAlS 3MmGgVS4ZoX8+VaPGpXdQVFyBMRFlOKOC5XJESt7wY0RE2C8PFm+5eywSO/P1fkl9whkMgml 3OEuIQiP2ehRt/HVLMHkoM9CPQ7t6UwdrXrvX+vBZykav8x9U9M6KTgfsXytxUl6Vx5lPMLi 2/Jrsz6Mzh/IVZa3xjhq1OLFSI/tT2ji4FkJDQbO+yYUDhcuqfakDmtWLMxecZsY6O58A/95 8Qni6Xeq+Nh7zJ7wNcQOMoDGj+24di2TX1cKLzdDMWFaWzlNP5dB5VMwS9Wqj1Z6TzKjGjru q8soqohwb2CK9B3wzFg0Bs1iBI+2RuFnxM7BTQRaPVAyARAA+g3R0HzGr/Dl34Y07XqGqzq5 SU0nXIu9u8Ynsxj7gR5qb3HgUWYEWrHW2jHOByXnvkffucf5yzwrsvw8Q8iI8CFHiTYHPpey 4yPVn6R0w/FOMcY70eTIu/k6EEFDlDbs09DtKcrsT9bmN0XoRxITlXwWTufYqUnmS+YkAuk+ TLCtUin7OdaS2uU6Ata3PLQSeM2ZsUQMmYmHPwB9rmf+q2I005AJ9Q1SPQ2KNg/8xOGxo13S VuaSqYRQdpV93RuCOzg4vuXtR+gP0KQrus/P2ZCEPvU9cXF/2MIhXgOz207lv3iE2zGyNXld /n8spvWk+0bH5Zqd9Wcba/rGcBhmX9NKKDARZqjkv/zVEP1X97w1HsNYeUFNcg2lk9zQKb4v l1jx/Uz8ukzH2QNhU4R39dbF/4AwWuSVkGW6bTxHJqGs6YimbfdQqxTzmqFwz3JP0OtXX5q/ 6D4pHwcmJwEiDNzsBLl6skPSQ0Xyq3pua/qAP8MVm+YxCxJQITqZ8qjDLzoe7s9X6FLLC/DA L9kxl5saVSfDbuI3usH/emdtn0NA9/M7nfgih92zD92sl1yQXHT6BDa8xW1j+RU4P+E0wyd7 zgB2UeYgrp2IIcfG+xX2uFG5MJQ/nYfBoiALb0+dQHNHDtFnNGY3Oe8z1M9c5aDG3/s29QbJ +w7hEKKo9YMAEQEAAcLBZQQYAQgADwUCWj1QMgIbDAUJCZQmAAAKCRBasvrxexcr6qwvD/9b Rek3kfN8Q+jGrKl8qwY8HC5s4mhdDJZI/JP2FImf5J2+d5/e8UJ4fcsT79E0/FqX3Z9wZr6h sofPqLh1/YzDsYkZDHTYSGrlWGP/I5kXwUmFnBZHzM3WGrL3S7ZmCYMdudhykxXXjq7M6Do1 oxM8JofrXGtwBTLv5wfvvygJouVCVe87Ge7mCeY5vey1eUi4zSSF1zPpR6gg64w2g4TXM5qt SwkZVOv1g475LsGlYWRuJV8TA67yp1zJI7HkNqCo8KyHX0DPOh9c+Sd9ZX4aqKfqH9HIpnCL AYEgj7vofeix7gM3kQQmwynqq32bQGQBrKJEYp2vfeO30VsVx4dzuuiC5lyjUccVmw5D72J0 FlGrfEm0kw6D1qwyBg0SAMqamKN6XDdjhNAtXIaoA2UMZK/vZGGUKbqTgDdk0fnzOyb2zvXK CiPFKqIPAqKaDHg0JHdGI3KpQdRNLLzgx083EqEc6IAwWA6jSz+6lZDV6XDgF0lYqAYIkg3+ 6OUXUv6plMlwSHquiOc/MQXHfgUP5//Ra5JuiuyCj954FD+MBKIj8eWROfnzyEnBplVHGSDI ZLzL3pvV14dcsoajdeIH45i8DxnVm64BvEFHtLNlnliMrLOrk4shfmWyUqNlzilXN2BTFVFH 4MrnagFdcFnWYp1JPh96ZKjiqBwMv/H0kw== Message-ID: Date: Sat, 13 Oct 2018 02:56:47 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="ZvbDfiSUmW5FpgRUfMyc0ZkFw5o2W2hEE" Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 13 Oct 2018 01:56:54 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --ZvbDfiSUmW5FpgRUfMyc0ZkFw5o2W2hEE Content-Type: multipart/mixed; boundary="IY9206CEqhh3Mq4obQ3Lw3ke1zcNMTETD"; protected-headers="v1" From: Stephen Farrell To: Tim Hollebeek , Ryan Sleevi Cc: SPASM , Russ Housley Message-ID: Subject: Re: [lamps] WG Last Call for rfc6844bis References: In-Reply-To: --IY9206CEqhh3Mq4obQ3Lw3ke1zcNMTETD Content-Type: multipart/mixed; boundary="------------8B7F4E558BF0F546036EB0DD" Content-Language: en-GB This is a multi-part message in MIME format. --------------8B7F4E558BF0F546036EB0DD Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hiya, On 12/10/18 22:44, Tim Hollebeek wrote: > Also, I was asked by the chair to bring it up during the WGLC,=20 Sorry, the chair of what? lamps? some cabforum thing? I'm not clear what you meant. > so it > is inappropriate for you to try to shut down the discussion. Hmm. An odd assertion for an IETF WG chair to make on that WG's list. But somewhat closer to the actual discussion: IMO the cabforum is substantially unrepresentative for it's claimed scope so I'm always skeptical of its claims (even though many seem sane). And there's also a fine history of people liking yet more PKI related but not-useful specs, so I'm also skeptcal of all proposed new work for this WG. For me, that implies there ought be a more than usually high burden for folks wanting new stuff standardised in this space. So, FWIW, I'd prefer see better justification for adopting changes such as those proposed. Cheers, S. --------------8B7F4E558BF0F546036EB0DD Content-Type: application/pgp-keys; name="0x5AB2FAF17B172BEA.asc" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="0x5AB2FAF17B172BEA.asc" -----BEGIN PGP PUBLIC KEY BLOCK----- mQINBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nem CP5PMvmh5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kT q0IqYzsEv5HI58S+QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtE gvw4fVhVWJuyy3w//0F2tzKrEMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy +pAh4EKzS1FE7BOZp9daMu9MUQmDqtZUbUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5 iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqOVz+7L+WiVfxLbeVqBwV+4uL9 to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJgb097ZaNyuY1ETghV B5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k4LyM2lp5 FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9t lyWxn5XiHzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQAB tCFTdGVwaGVuIEZhcnJlbGwgPHN0ZXBoZW5AamVsbC5pZT6JAj0EEwEIACcFAlo9 UYwCGwMFCQmUJgAFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQWrL68XsXK+qG CxAApYHWYgGOIL3G6/OpkejdAkQoCVQAK8LJUSf6vzwost4iVfxIKcKW/3RqKNKk rRl8beJ7j1CWXAz9+VXAOsE9+zNxXIDgGA7HlvJnhffl+qwibVgiHgUcJFhCSbBr sjC+1uULaTU8zYEyET//GOGPLF+X+degkE/sesh4zcEAjF7fGPnlncdCCH3tvPZZ sdTcjwOCRVonKsDgQzBTCMz/RPBfEFX44HZx4g1UQAcCA4xlucY8QkJEyCrSNGpG nvGK8DcGSmnstl1/a9fnlhpdFxieX3oY2phJ1WKkYTn6Advrek3UP71CKxpgtPmk d3iUUz/VZa0Cv6YxQXskspRDVEvdCMYSQBtJPQ4y2+5UxVR9GIQXenwYp9AP2niv Voh+ITsDWWeWnnvYMq07rSDjq0nGdj41MJkNX+Yb2PXVyXItcj5ybE3T2+y3pSBG FEZYJGuaL4NwtBJFMOdOtBmUOPbetS2971EL3Izxb7ibOZWDwexv+8R6SWYfP1wV N3p46RyBQuXqJV8ccE11m6vtZTGSYgnLUUFZMRQYH+0hwuYe0T3AA18xDdSYsa8v ovCCd3l5S4UNzIM2PMChqGrEzKapUpZg7+8ACcxRU3b9Ihd7WYjJ+pQPCoWYKozv tEvenbNpE/govO/ED3B14e+R2yevRPjRrsN7PJzSf15fQLuJARwEEAEIAAYFAlo9 UqAACgkQLzyHNoBfjaLrSwf+MIHbFRQ4O5cmLYR5sIByWelN3SuRN/gW8rpKo9Ok Cz6An8uV/iCXy5tNMLzzi0BFl8f22DwBcC5qy9qnlIAdogWam1qWoTAoAD8veEqm uKhYrqJsCcAyNrKYmK0hP3rpHxx1LySDmKYXmw/8qtBXKHTouMm+5tSsznhykRMT AAr2p7PSaHgo+hIVaW/rKSspHjDhhZS+G9mtOZad1IH29M6G1Q1NCO0Ywe8krKLQ IAQlFxtgvOqpPOZNzeKBa/+KbE8TGgMWrkOhC8OeEM5PVzdDhlhD9kPzB/pCKDF5 DofJ/ZRqnDpbKPQ0bsW38AOig3kOc0A27awiBEw3urqR1YkCMwQQAQgAHRYhBH4X CgRchM9GDit5oBDvedn9g1MSBQJbtyScAAoJEBDvedn9g1MSI/oP/0A9J9nrnBMq Zpm857lfYWw+rshLK+tyeP4OQeOqnDFvs9jePpcyJLG3DF2r6VbVKPQq+AE6Uf5h cJBDEN6BjEhRPSbLcqG3A1cz/nNwm8rPmNp+oKhmaBBQGxwciMLmzgynsDydnjPp MyEs04zvsbsl4vrp2095o105l8KcrrxQrioFjbwveGwHQK9bxJKhx9D+gIk+MouB ur45UDKTZkMZrr9FGrtkyXCGAxvKdcNC5Oa8z9sj1rcUJfG/OpVAMWhArdlZbFUQ yoX6pU2Zb1CR2qpWAVerGSfBhmfCyStjARqaKxlftjO+Bj3Jj73Cr5eqej3qB5+V 4BCsPjr4RLvVbYUCPsRdxWc+nBLlfVYkRURu21g1hFm5KFPjgUkyo1s4vjUOY8Dy I+xLGF7f/IhUBG6l+Vswhpwu7ydalZkeFiPx5xna5NfbEYxvsIf71DvipGvIOaHv X4egWoFgm8n/9c3rcMxJtpwHPSsUt5dgLsyu6VE0IbvOAc3dN7CWJ355DVFJq9Zg 2YVf0izSpyyzJeGsgkfjW6xpmdvZxuT2UcN4BTcm6vYqueASGrb3lfhzC5gpeVsc /MoSjTS65vNWbpzONZWMZuLEFraxWJzC0JrDK3NCd0VN3kstqGkVbUIiYOnUm8Vu 4zoVMLlGWzHLIGoPRG2nRezn1YyNfyb5tDJTdGVwaGVuIEZhcnJlbGwgKDIwMTcp IDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPokCQAQTAQgAKgIbAwUJCZQmAAUL CQgHAgYVCAkKCwIEFgIDAQIeAQIXgAUCWj6jdwIZAQAKCRBasvrxexcr6o7QD/9m x9DPJetmW794RXmNTrbTJ44zc/tJbcLdRBh0KBn9OW/EaAqjDmgNJeCMyJTKr1yw aps8HGUNhLEVkc14NUpgi4/Zkrbi3DmTp25OHj6wXBS5qVMyVynTMEIjOfeFFyxG +48od+Xn7qg6LT7GrHeNf+z/r0v9+8eZ1Ip63kshQDGhhpmRMKu4Ws9ZvTW2ACXk kTFaSGYJj3yIP4R6IgwBYGMzDXFX6nS4LA1s3pcPNxOgrvCyb60AiJZTLcOk/rRr pZtXB1XQc23ZZmrlTkl2HaThL6w3YKdiTi1NbuMeOxZqtXcUshII45sANm4HuWNT iRh93Bn5bN6ddjgsaXEZBKUBuUaPBl7gQiQJcAlS3MmGgVS4ZoX8+VaPGpXdQVFy BMRFlOKOC5XJESt7wY0RE2C8PFm+5eywSO/P1fkl9whkMgml3OEuIQiP2ehRt/HV LMHkoM9CPQ7t6UwdrXrvX+vBZykav8x9U9M6KTgfsXytxUl6Vx5lPMLi2/Jrsz6M zh/IVZa3xjhq1OLFSI/tT2ji4FkJDQbO+yYUDhcuqfakDmtWLMxecZsY6O58A/95 8Qni6Xeq+Nh7zJ7wNcQOMoDGj+24di2TX1cKLzdDMWFaWzlNP5dB5VMwS9Wqj1Z6 TzKjGjruq8soqohwb2CK9B3wzFg0Bs1iBI+2RuFnxIkBHAQQAQgABgUCWj1SoAAK CRAvPIc2gF+NovMcCACVZPo1cQa3D+vWaIo0ZyinO/MgtD2gHysoj1T0Qvq05//L ZXmhh578bJANvdl2g/HFhhwl/5HKIfWcyipQhmJklp/dsleKcNnn4B18T75RHY0G +po3ILq7evbiOjUH+xqApti1aCxi1GocsPghaLfsxmtXKMG4Xu7XhDTv66GOrqZf Y7+0ekJjD9Dza1t5NE/JR/VZA4B8PWR8Glb0+8C9rkjD0VZ5ekJdHPDGcJmFh8Z+ q25LDoI8Fgt1uKSowvoVnsQO5MFv/y6bXArtj1uB4hAL4JiOFgHlFdrW0MlFpvYm ziW4K9JHTD8KAfDbrb3e2W97ZDpROuYfE/lTbYOWiQI9BBMBCAAnBQJaPVAyAhsD BQkJlCYABQsJCAcCBhUICQoLAgQWAgMBAh4BAheAAAoJEFqy+vF7Fyvq0mkP/ius gsf6Z4/Tu+vHzBbl5i6oKI8ZieH8JfEgXx4ut9t7l3hBGC2r7DpR5A8zLMpEhGIK gFcHagksFkfLEE/FmWDfd1MysQafxBYrHaI27P2tkxfI5JYV6247TV39pQ93kGds tsjIrmh/zEJCVczoofxtz72BDt51H2Z8tN28F/YVHnbaGDwFEEzWKYpze87y/f36 ogcdGO6LDEEEIA6Ee0dGxleuKlLS4UDTt0zjo6L8TyiyPHp9C3+UfnP8837Zp3Fh KstIBd+vWgPdHFg2G5aDIYUvrj9UJBvVgaN/RnkwE+dab2OBSg5jkr141JLQvzdZ 4mOUXn5D9Y6AH6tvj0+ubYMV6j35L1/ZXncuXPVYiylcmDp/6f2WYcT3gx9CPUYA cLMjQV4vX2W8z4uEPyMlIJuGsLf7KhvLL8BQ6zlncT6eONfUUX9UJUCzqI5rqL5c b5jWGHeKvbLWRyQnlq5PXQxJTwYRm71rJTgzejc33LE6Nqg/Q25Dgwwsv+f+7i73 gB5loc80Fef+FV9VFGalFe0Yq8m0UASmkYRh7MH5ssoibpeWk+SGfBjOV4tnsAwR yjYLpAzxA8HeDcmlLeypGEDmsQ/iUvXoGaKOYX4Ieg8T/PCAplsqnJUOq8hbkgOC 98gLZfiltkNG8YhQpoZIHj6SxmBRSc3K99CvanuOiQIzBBABCAAdFiEEfhcKBFyE z0YOK3mgEO952f2DUxIFAlu3JJsACgkQEO952f2DUxJ4qRAAmbjiO3WTAeBCB4ME p2N2+XQCMTTFURDGuJnqU/+X//fhhPRq4V/OxgisKFKlBcAS2hsECvg6HDVSz4Fl 74fk/y+botG4/CjMLdKPB9fgh5zz72i3q0hWDixt50NKBv8IIVWOyYgZxDU/vcks lMEnqbFgJX+CfdALpvAM4WjuQP0UMcKNE3xd+EdDhD1xjK3Tq4XfWob9q6aBZgL2 B4IaADCIeDDE1hv0agnSJmMJE7Bti8tNxCCxVRbZtOaxVHXdRUoOx2XTaxFXupxV hbpHRrdFrwq51f6e3bkfkNEZ3fzYpnlbynJ2zL++JO8P3Pq/S6UKEFjEB50i8YgK WuFvGUsQ+YiDgiZU4saqxSBWbfYn3lY6MSSTg8RnXbFIMG3CFImqYk1uhaV+bDjc p0htjzM2F98g7c3o7sWx0bGarId4uhOmpj7JJVQ+lu7Jby6Ocj8n//7qF1Nn11Cw QlCVaeAq5Y5DmZrnww9I3zzOWWyqFkAVCM3GqeRLMvplD6/+O+5FF7XoHzQB47nk OyZtawy/9gssPWZKLv4qHLYS0wGGCiNbCsYy90s3pfeafM0kSxxjIvEz21KT6LJI /awu2ErQFWCkDMFJ1p/97MjPrQ/6d4cPO140V/wyfuWaBiTVqa9mgnb2zn6fYfDH JEvl1UzIx3JCae25tty1+qtnS0i0LlN0ZXBoZW4gRmFycmVsbCA8c3RlcGhlbkB0 b2xlcmFudG5ldHdvcmtzLmNvbT6JAj0EEwEIACcFAlo9UVoCGwMFCQmUJgAFCwkI BwIGFQgJCgsCBBYCAwECHgECF4AACgkQWrL68XsXK+o7HBAAxHAdFkBGZ9gJK8w7 NUYS9C6enGYtAYoKH5G3Bn3YScjErNfQtHYb53KwBQpVSOv1HcN8hbQ8mLTgn9lt zNwNSuv0XxIswi807HRSIZ4vYDiS5VKV1YkLYK5bLY5O4alVdzqM+AZQqkuHBu63 6n+C0ED6UwLhVBFfSNvBQVAdoq6gvr+IE8rCIKTMNGwNcgVPbF+YxP7UZM6p7s2a 5MIqGw7URSfaqfuztibXGOBLFbSwLGqHSSnOXBfEeDrwdZ+ur8cXIIPRIeCTVmeO 8bGgpgBqNQXG9oyGN+TrYAC+4Ahi0UjCk7QGj8tf3xICKoQpYyfceNBZJ/969gV9 tVgvRxUjxUwc9kZbi0c8XYMTq5GCvBIh1D6BOW9QBM2SsNgG3l36+e3+c2LDdyKn 20C1IzGLVDdcCtz42/onQ/e9sMlzFrfLjs5SO2/TnLvp2JtsIQXyb/T5qd0GE5j8 /iwfZR+uVTVVEsUl1a+Yllzt6sdR7RIhhKpKaKzEAk4d0+VHdz7zEkQRRSjbPVoS fy8c/kld9Fi8Buna+ZkKpcwIW+D4XP83pGcl0XUv6AyqwS1LnEt+jv/+PSXskYtU Lzn8Z35iKkSAH/5Nz6GCZk6ORPNv/6+UI92BpUbu/G2tBwK8bPgAg+gJxBx3G7MK W7VRCmM5UrtAK9A3O70VjPyMkHSJARwEEAEIAAYFAlo9UqAACgkQLzyHNoBfjaLC LAf/X/9vRTZWtwSXxiBCA54a6hg9IvW0mvPUqgXfvrhtOk0IFucLKrTXK8J/NcmU 6ulxOovVbQ+Bin6gtHeCmSa/W523g/NXCOuFTnS/MyVibNL4+RCFwqGysl++Cm+L nj1MmasE9kO+CNdervx8APfxV7D6OYrG4eGag+LdFR6VpJn6tRT0/WvyT8l+Oqiq gdhXHv+0MvkkD9TX5LlJW4VB/yRvWkkmL5N5c5zYh+NcfTPhQ5S9dOorVzrm65d6 Itn0937Ennau7s7fiFdA0BHjWqEAFLsBIXQfCFjjKjdsKA4xlSiX7X7ElmPYpWa5 wwTQ66dL0anMd9y1DJCMOHe4gYkCMwQQAQgAHRYhBH4XCgRchM9GDit5oBDvedn9 g1MSBQJbtyScAAoJEBDvedn9g1MSY7sP+gKR0rFU1g+GtB+hSdtwPRbacvml2eL2 Jc5Eq37J9hAqxHyt5V0If7s8IyVA2GXgdfwULBWbXGDUDiUkh20OPQRUS8G9Sf8A WRuG25q5C8ZzWygykL88RKXJZDFtA49CeqO5Bq5syBhq4QfiSTffQHIp3h0boPGU hSBEUQpooMXYQClNARQ+z/uRzR5bUi9wxdXNnxTn9ia4ASlaBPvUYTGY1jW2HrRR SwpI12+UaWsvc3jJtQ8X0kxgJ7jsFF1uqquIZ5eflQv+PHHg2RJSy37u0UFGb+OK ZEkzlmbPokKCYhzBR5PcD6sgdlaJNcidmto9u1oV6yZT8J2W4CTuUclgxt6f3lZq ZeVLnNnbHyKUdeypwLlqYISulfnMhZ3A6Bgpf2BtjL6KJbFtPBYmYdxI+HZyY49u U2ZHhRu+CSQ1y7zGKSX0gRp5hE7+A4XJtsT6lTLhbi9aiZTG1S6zKNhl3qNNzszc r27PrvFiyGhpuYQuzdQl2PMGbOI6Ojif3sab53NO3RLsLOM09wIlr95yKLlkXkUr WcvUJGrw6HKm8j5opXHTwmJOAbDpc6cMDu+ITRu4spdCnQJcE8RkO8tKyaLuh2Gt U5kYSBK97yr5VviX1FK6rY14LLmnE16OPiK2tiVBKy9nGM0DKtY+K9WcoRZ7s/d7 O0bMfzcNPtGLuQINBFo9UDIBEAD6DdHQfMav8OXfhjTteoarOrlJTSdci727xiez GPuBHmpvceBRZgRasdbaMc4HJee+R9+5x/nLPCuy/DxDyIjwIUeJNgc+l7LjI9Wf pHTD8U4xxjvR5Mi7+ToQQUOUNuzT0O0pyuxP1uY3RehHEhOVfBZO59ipSeZL5iQC 6T5MsK1SKfs51pLa5ToC1rc8tBJ4zZmxRAyZiYc/AH2uZ/6rYjTTkAn1DVI9DYo2 D/zE4bGjXdJW5pKphFB2lX3dG4I7ODi+5e1H6A/QpCu6z8/ZkIQ+9T1xcX/YwiFe A7PbTuW/eITbMbI1eV3+fyym9aT7Rsflmp31Zxtr+sZwGGZf00ooMBFmqOS//NUQ /Vf3vDUew1h5QU1yDaWT3NApvi+XWPH9TPy6TMfZA2FThHf11sX/gDBa5JWQZbpt PEcmoazpiKZt91CrFPOaoXDPck/Q61dfmr/oPikfByYnASIM3OwEuXqyQ9JDRfKr em5r+oA/wxWb5jELElAhOpnyqMMvOh7uz1foUssL8MAv2TGXmxpVJ8Nu4je6wf96 Z22fQ0D38zud+CKH3bMP3ayXXJBcdPoENrzFbWP5FTg/4TTDJ3vOAHZR5iCunYgh x8b7Ffa4UbkwlD+dh8GiIAtvT51Ac0cO0Wc0Zjc57zPUz1zloMbf+zb1Bsn7DuEQ oqj1gwARAQABiQIlBBgBCAAPBQJaPVAyAhsMBQkJlCYAAAoJEFqy+vF7FyvqrC8P /1tF6TeR83xD6MasqXyrBjwcLmziaF0Mlkj8k/YUiZ/knb53n97xQnh9yxPv0TT8 Wpfdn3BmvqGyh8+ouHX9jMOxiRkMdNhIauVYY/8jmRfBSYWcFkfMzdYasvdLtmYJ gx252HKTFdeOrszoOjWjEzwmh+tca3AFMu/nB++/KAmi5UJV7zsZ7uYJ5jm97LV5 SLjNJIXXM+lHqCDrjDaDhNczmq1LCRlU6/WDjvkuwaVhZG4lXxMDrvKnXMkjseQ2 oKjwrIdfQM86H1z5J31lfhqop+of0cimcIsBgSCPu+h96LHuAzeRBCbDKeqrfZtA ZAGsokRina9947fRWxXHh3O66ILmXKNRxxWbDkPvYnQWUat8SbSTDoPWrDIGDRIA ypqYo3pcN2OE0C1chqgDZQxkr+9kYZQpupOAN2TR+fM7JvbO9coKI8Uqog8CopoM eDQkd0YjcqlB1E0svODHTzcSoRzogDBYDqNLP7qVkNXpcOAXSVioBgiSDf7o5RdS /qmUyXBIeq6I5z8xBcd+BQ/n/9Frkm6K7IKP3ngUP4wEoiPx5ZE5+fPIScGmVUcZ IMhkvMvem9XXh1yyhqN14gfjmLwPGdWbrgG8QUe0s2WeWIyss6uTiyF+ZbJSo2XO KVc3YFMVUUfgyudqAV1wWdZinUk+H3pkqOKoHAy/8fST =3DJ121 -----END PGP PUBLIC KEY BLOCK----- --------------8B7F4E558BF0F546036EB0DD-- --IY9206CEqhh3Mq4obQ3Lw3ke1zcNMTETD-- --ZvbDfiSUmW5FpgRUfMyc0ZkFw5o2W2hEE Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEW7Wm6ldl0sWGPK4nWrL68XsXK+oFAlvBUOAACgkQWrL68XsX K+o64A//dLQwWY/g5qAUC1yl5jNVzyQtIC1lKu3tFDHO8shHuRC3pv7rz84+6GRz yMDOqCqRPrT3Jy7nX3NsoTiaPPz9zw5LuGpU0iFwVf3GzSL5jBhqW4Wuc07JN+FY m8coyHcswP/ZWup7eU1vM3TrGEtbj+0IbLB7bGqbCGCdFFAvHPVCmXqDMFKoMSh2 2ECgpVKqrrnrqpgcaG0B3aJN/LEmCiWj691Lit/YLugyXjN3BDW8z3epCrw74Uci VddgKE7Iimp+YkVyF5fg5YnQ7/bIUIkYbM8dRkYOoqTT1bPTnE+RxB0VwCvQhPki 24p+y9JHUYghLNDLXeQxoq7zBvFc2tJCUmG4HfgGQT5Fm6BigOxXRbbT70dKQu8Y OFiXDxKDfbCJN+Bd+BUQ8Hk9K3/t6Ln+VLyVOxWUMEABlyEugWn34RFqtHynnUCx Dw0SLDOMZRjHMrlj5acqnSwpoNOOoHU/4OU2H6kvboCJ1IiR6Puz1GCyeUz30iUY zanrNqq11ICPyxzvFjIT/ESqVFaJoYxpu7tb+KyGxDbG7DjxvKOHaOifCuD7Qa7L b8xKyZR/EVZX1otO+hRfSc3ubEjZHiv86L0GFsTM3ADGSLhtLaYexbaiRjujVr46 EdXnTU0WivdUawzGpBbbnhSeViksmIz4LO0GOEazHFIo80W1+3M= =mStN -----END PGP SIGNATURE----- --ZvbDfiSUmW5FpgRUfMyc0ZkFw5o2W2hEE-- From nobody Sat Oct 13 19:20:04 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D546F128CFD for ; Sat, 13 Oct 2018 19:20:01 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7PI5ldUTKf1O for ; Sat, 13 Oct 2018 19:20:00 -0700 (PDT) Received: from esa1.isaracorp.com (esa1.isaracorp.com [207.107.152.166]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 48BD2128766 for ; Sat, 13 Oct 2018 19:20:00 -0700 (PDT) Received: from unknown (HELO V0501WEXGPR02.isaracorp.com) ([10.5.9.20]) by ip1.isaracorp.com with ESMTP; 14 Oct 2018 02:19:53 +0000 Received: from V0501WEXGPR01.isaracorp.com (10.5.8.20) by V0501WEXGPR01.isaracorp.com (10.5.8.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.1466.3; Sat, 13 Oct 2018 22:19:52 -0400 Received: from V0501WEXGPR01.isaracorp.com ([fe80::d802:5aec:db34:beba]) by V0501WEXGPR01.isaracorp.com ([fe80::d802:5aec:db34:beba%7]) with mapi id 15.01.1466.003; Sat, 13 Oct 2018 22:19:52 -0400 From: Daniel Van Geest To: Russ Housley CC: SPASM Thread-Topic: [lamps] FW: New Version Notification for draft-vangeest-x509-hash-sigs-00.txt Thread-Index: AQHUYMUHdpxjfrA1dEW3V6hKK1/0vaUZLkUAgAAAV4CAAODWAIAAazsAgAPxJQA= Date: Sun, 14 Oct 2018 02:19:52 +0000 Message-ID: <10EE4875-A684-4396-BCF8-AC2C79275CC4@isara.com> References: <153919524373.5861.7228296681722124369.idtracker@ietfa.amsl.com> <8B931581-1CCD-4C3B-841D-8C78531EDFA7@vigilsec.com> <97CFF9D6-F445-4FD4-A0FF-4296F580C5DF@isara.com> <1333B758-3C46-414D-9EB5-F2BB615D4ED5@vigilsec.com> In-Reply-To: <1333B758-3C46-414D-9EB5-F2BB615D4ED5@vigilsec.com> Accept-Language: en-CA, en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [172.31.5.52] Content-Type: multipart/alternative; boundary="_000_10EE4875A6844396BCF8AC2C79275CC4isaracom_" MIME-Version: 1.0 Archived-At: Subject: Re: [lamps] FW: New Version Notification for draft-vangeest-x509-hash-sigs-00.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Oct 2018 02:20:02 -0000 --_000_10EE4875A6844396BCF8AC2C79275CC4isaracom_ Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 DQoNCk9uIDIwMTgtMTAtMTEsIDEyOjA4IFBNLCAiUnVzcyBIb3VzbGV5IiA8aG91c2xleUB2aWdp bHNlYy5jb208bWFpbHRvOmhvdXNsZXlAdmlnaWxzZWMuY29tPj4gd3JvdGU6DQoNCg0Kc2EtSFNT LUxNUy1IYXNoU2lnLXdpdGgtU0hBMjU2IGFzIGRlZmluZWQgYWJvdmUgaXMgdGhlIHNhbWUgYXMg c2EtSFNTLUxNUy1IYXNoU2lnIGluIG15IGRyYWZ0LiAgV2UgbmVlZCB0byB1c2Ugb25lIG9yIHRo ZSBvdGhlci4NCg0KUmlnaHQuICBXZWxsIHNpbmNlIHRoaXMgZHJhZnQgcHJvcG9zZXMgYSBTSEEt NTEyIHZhcmlhbnQsIEkgdGhpbmsgdGhlIFNIQS0yNTYgdmFyaWFudCBzaG91bGQgaGF2ZSBTSEEy NTYgaW4gdGhlIG5hbWUgKHVzaW5nIGEgc2ltaWxhcmx5LW5hbWVkIE9JRCkuICBJdCB3b3VsZCBi ZSBjbGVhbmVzdCBpZiB0aGUgT0lEcyB3ZXJlIGFsbCBkZWZpbmVkIGluIHRoZSBzYW1lIGRvY3Vt ZW50IGFuZCBvdGhlciBkb2NzIHJlZmVyZW5jZSB0aGUgb25lLCBidXQgYW0gbm90IG9wcG9zZWQg aWYgdGhlcmUgYXJlIHJlYXNvbnMgZm9yIGRvaW5nIGl0IG90aGVyd2lzZS4gIFRoYXTigJlzIHNv bWV0aGluZyB0byBkZXRlcm1pbmUgaWYgdGhpcyBnZXRzIGFkZGVkIHRvIHRoZSBjaGFydGVyLg0K DQpSdXNzDQoNCg== --_000_10EE4875A6844396BCF8AC2C79275CC4isaracom_ Content-Type: text/html; charset="utf-8" Content-ID: <9CF22BB4DBA6444AA198D5735BEC760B@isara.com> Content-Transfer-Encoding: base64 PGh0bWwgeG1sbnM6bz0idXJuOnNjaGVtYXMtbWljcm9zb2Z0LWNvbTpvZmZpY2U6b2ZmaWNlIiB4 bWxuczp3PSJ1cm46c2NoZW1hcy1taWNyb3NvZnQtY29tOm9mZmljZTp3b3JkIiB4bWxuczptPSJo dHRwOi8vc2NoZW1hcy5taWNyb3NvZnQuY29tL29mZmljZS8yMDA0LzEyL29tbWwiIHhtbG5zPSJo dHRwOi8vd3d3LnczLm9yZy9UUi9SRUMtaHRtbDQwIj4NCjxoZWFkPg0KPG1ldGEgaHR0cC1lcXVp dj0iQ29udGVudC1UeXBlIiBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9dXRmLTgiPg0KPG1l dGEgbmFtZT0iR2VuZXJhdG9yIiBjb250ZW50PSJNaWNyb3NvZnQgV29yZCAxNSAoZmlsdGVyZWQg bWVkaXVtKSI+DQo8c3R5bGU+PCEtLQ0KLyogRm9udCBEZWZpbml0aW9ucyAqLw0KQGZvbnQtZmFj ZQ0KCXtmb250LWZhbWlseToiQ2FtYnJpYSBNYXRoIjsNCglwYW5vc2UtMToyIDQgNSAzIDUgNCA2 IDMgMiA0O30NCkBmb250LWZhY2UNCgl7Zm9udC1mYW1pbHk6Q2FsaWJyaTsNCglwYW5vc2UtMToy IDE1IDUgMiAyIDIgNCAzIDIgNDt9DQovKiBTdHlsZSBEZWZpbml0aW9ucyAqLw0KcC5Nc29Ob3Jt YWwsIGxpLk1zb05vcm1hbCwgZGl2Lk1zb05vcm1hbA0KCXttYXJnaW46MGNtOw0KCW1hcmdpbi1i b3R0b206LjAwMDFwdDsNCglmb250LXNpemU6MTEuMHB0Ow0KCWZvbnQtZmFtaWx5OiJDYWxpYnJp IixzYW5zLXNlcmlmO30NCmE6bGluaywgc3Bhbi5Nc29IeXBlcmxpbmsNCgl7bXNvLXN0eWxlLXBy aW9yaXR5Ojk5Ow0KCWNvbG9yOmJsdWU7DQoJdGV4dC1kZWNvcmF0aW9uOnVuZGVybGluZTt9DQph OnZpc2l0ZWQsIHNwYW4uTXNvSHlwZXJsaW5rRm9sbG93ZWQNCgl7bXNvLXN0eWxlLXByaW9yaXR5 Ojk5Ow0KCWNvbG9yOnB1cnBsZTsNCgl0ZXh0LWRlY29yYXRpb246dW5kZXJsaW5lO30NCnAubXNv bm9ybWFsMCwgbGkubXNvbm9ybWFsMCwgZGl2Lm1zb25vcm1hbDANCgl7bXNvLXN0eWxlLW5hbWU6 bXNvbm9ybWFsOw0KCW1zby1tYXJnaW4tdG9wLWFsdDphdXRvOw0KCW1hcmdpbi1yaWdodDowY207 DQoJbXNvLW1hcmdpbi1ib3R0b20tYWx0OmF1dG87DQoJbWFyZ2luLWxlZnQ6MGNtOw0KCWZvbnQt c2l6ZToxMS4wcHQ7DQoJZm9udC1mYW1pbHk6IkNhbGlicmkiLHNhbnMtc2VyaWY7fQ0Kc3Bhbi5F bWFpbFN0eWxlMTgNCgl7bXNvLXN0eWxlLXR5cGU6cGVyc29uYWwtcmVwbHk7DQoJZm9udC1mYW1p bHk6IkNhbGlicmkiLHNhbnMtc2VyaWY7fQ0KLk1zb0NocERlZmF1bHQNCgl7bXNvLXN0eWxlLXR5 cGU6ZXhwb3J0LW9ubHk7DQoJZm9udC1zaXplOjEwLjBwdDt9DQpAcGFnZSBXb3JkU2VjdGlvbjEN Cgl7c2l6ZTo2MTIuMHB0IDc5Mi4wcHQ7DQoJbWFyZ2luOjcyLjBwdCA3Mi4wcHQgNzIuMHB0IDcy LjBwdDt9DQpkaXYuV29yZFNlY3Rpb24xDQoJe3BhZ2U6V29yZFNlY3Rpb24xO30NCi0tPjwvc3R5 bGU+DQo8L2hlYWQ+DQo8Ym9keSBsYW5nPSJFTi1DQSIgbGluaz0iYmx1ZSIgdmxpbms9InB1cnBs ZSI+DQo8ZGl2IGNsYXNzPSJXb3JkU2VjdGlvbjEiPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PG86 cD4mbmJzcDs8L286cD48L3A+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpw PjwvcD4NCjxkaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1s ZWZ0OjM2LjBwdCI+T24gMjAxOC0xMC0xMSwgMTI6MDggUE0sICZxdW90O1J1c3MgSG91c2xleSZx dW90OyAmbHQ7PGEgaHJlZj0ibWFpbHRvOmhvdXNsZXlAdmlnaWxzZWMuY29tIj5ob3VzbGV5QHZp Z2lsc2VjLmNvbTwvYT4mZ3Q7IHdyb3RlOjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4N CjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48 bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwi IHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+ DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+ c2EtSFNTLUxNUy1IYXNoU2lnLXdpdGgtU0hBMjU2IGFzIGRlZmluZWQgYWJvdmUgaXMgdGhlIHNh bWUgYXMmbmJzcDtzYS1IU1MtTE1TLUhhc2hTaWcgaW4gbXkgZHJhZnQuICZuYnNwO1dlIG5lZWQg dG8gdXNlIG9uZSBvciB0aGUgb3RoZXIuPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8 cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNw OzwvbzpwPjwvcD4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPlJpZ2h0LiZuYnNwOyBXZWxsIHNpbmNl IHRoaXMgZHJhZnQgcHJvcG9zZXMgYSBTSEEtNTEyIHZhcmlhbnQsIEkgdGhpbmsgdGhlIFNIQS0y NTYgdmFyaWFudCBzaG91bGQgaGF2ZSBTSEEyNTYgaW4gdGhlIG5hbWUgKHVzaW5nIGEgc2ltaWxh cmx5LW5hbWVkIE9JRCkuJm5ic3A7IEl0IHdvdWxkIGJlIGNsZWFuZXN0IGlmIHRoZSBPSURzIHdl cmUgYWxsIGRlZmluZWQgaW4gdGhlIHNhbWUgZG9jdW1lbnQgYW5kIG90aGVyIGRvY3MgcmVmZXJl bmNlDQogdGhlIG9uZSwgYnV0IGFtIG5vdCBvcHBvc2VkIGlmIHRoZXJlIGFyZSByZWFzb25zIGZv ciBkb2luZyBpdCBvdGhlcndpc2UuJm5ic3A7IFRoYXTigJlzIHNvbWV0aGluZyB0byBkZXRlcm1p bmUgaWYgdGhpcyBnZXRzIGFkZGVkIHRvIHRoZSBjaGFydGVyLjxvOnA+PC9vOnA+PC9wPg0KPHAg Y2xhc3M9Ik1zb05vcm1hbCI+PG86cD4mbmJzcDs8L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8 cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5SdXNzPG86cD48 L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFy Z2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8 L2JvZHk+DQo8L2h0bWw+DQo= --_000_10EE4875A6844396BCF8AC2C79275CC4isaracom_-- From nobody Sat Oct 13 19:33:22 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EEB3D128CFD for ; Sat, 13 Oct 2018 19:33:20 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fKJ_Of5YKxfs for ; Sat, 13 Oct 2018 19:33:18 -0700 (PDT) Received: from esa1.isaracorp.com (esa1.isaracorp.com [207.107.152.166]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7B27F128766 for ; Sat, 13 Oct 2018 19:33:18 -0700 (PDT) Received: from unknown (HELO V0501WEXGPR01.isaracorp.com) ([10.5.8.20]) by ip1.isaracorp.com with ESMTP; 14 Oct 2018 02:33:17 +0000 Received: from V0501WEXGPR01.isaracorp.com (10.5.8.20) by V0501WEXGPR02.isaracorp.com (10.5.9.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.1466.3; Sat, 13 Oct 2018 22:33:17 -0400 Received: from V0501WEXGPR01.isaracorp.com ([fe80::d802:5aec:db34:beba]) by V0501WEXGPR01.isaracorp.com ([fe80::d802:5aec:db34:beba%7]) with mapi id 15.01.1466.003; Sat, 13 Oct 2018 22:33:17 -0400 From: Daniel Van Geest To: SPASM Thread-Topic: I-D Action: draft-vangeest-x509-hash-sigs-01.txt Thread-Index: AQHUY2WBt+tj8qrgI0esL5ClbQ1/BKUealGA Date: Sun, 14 Oct 2018 02:33:17 +0000 Message-ID: References: <153948404612.12477.821202976557637533@ietfa.amsl.com> In-Reply-To: <153948404612.12477.821202976557637533@ietfa.amsl.com> Accept-Language: en-CA, en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [172.31.5.52] Content-Type: multipart/alternative; boundary="_000_DDCC347BA2F849F0BF440CA66F66C222isaracom_" MIME-Version: 1.0 Archived-At: Subject: [lamps] FW: I-D Action: draft-vangeest-x509-hash-sigs-01.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Oct 2018 02:33:21 -0000 --_000_DDCC347BA2F849F0BF440CA66F66C222isaracom_ Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 SeKAmXZlIHVwbG9hZGVkIGEgbmV3IGRyYWZ0IGluY29ycG9yYXRpbmcgUnVzc+KAmSBTSUdOQVRV UkUtQUxHT1JJVEhNIHN1Z2dlc3Rpb24uDQoNClRoZSBPSUQgbmFtaW5nIGNvbnZlbnRpb25zIHdl cmUgYmFzZWQgb24gdGhlIG5hbWVzIHVzZWQgYnkgRWNEU0EsIGJ1dCBJIGNhbiB1cGRhdGUgdGhl bSBpZiB0aGVyZSBhcmUgb3RoZXIgcHJlZmVycmVkIGNvbnZlbnRpb25zLg0KDQpTb21lIGNvLW9y ZGluYXRpb24gYmV0d2VlbiB0aGlzIGFuZCBkcmFmdC1pZXRmLWxhbXBzLWNtcy1oYXNoLXNpZyB3 aWxsIHN0aWxsIG5lZWQgdG8gYmUgZG9uZS4NCg0KVGhhbmtzLA0KRGFuaWVsDQoNCg0KT24gMjAx OC0xMC0xMywgMTA6MjcgUE0sICJJLUQtQW5ub3VuY2Ugb24gYmVoYWxmIG9mIGludGVybmV0LWRy YWZ0c0BpZXRmLm9yZzxtYWlsdG86aW50ZXJuZXQtZHJhZnRzQGlldGYub3JnPiIgPGktZC1hbm5v dW5jZS1ib3VuY2VzQGlldGYub3JnPG1haWx0bzppLWQtYW5ub3VuY2UtYm91bmNlc0BpZXRmLm9y Zz4gb24gYmVoYWxmIG9mIGludGVybmV0LWRyYWZ0c0BpZXRmLm9yZzxtYWlsdG86aW50ZXJuZXQt ZHJhZnRzQGlldGYub3JnPj4gd3JvdGU6DQoNCg0KQSBOZXcgSW50ZXJuZXQtRHJhZnQgaXMgYXZh aWxhYmxlIGZyb20gdGhlIG9uLWxpbmUgSW50ZXJuZXQtRHJhZnRzIGRpcmVjdG9yaWVzLg0KDQoN CiAgICAgICAgVGl0bGUgICAgICAgICAgIDogQWxnb3JpdGhtIElkZW50aWZpZXJzIGZvciBIU1Mg YW5kIFhNU1MgZm9yIFVzZSBpbiB0aGUgSW50ZXJuZXQgWC41MDkgUHVibGljIEtleSBJbmZyYXN0 cnVjdHVyZQ0KICAgICAgICBBdXRob3JzICAgICAgICAgOiBEYW5pZWwgVmFuIEdlZXN0DQogICAg ICAgICAgICAgICAgICAgICAgICAgIFNjb3R0IEZsdWhyZXINCiAgICAgICAgICAgICAgICBGaWxl bmFtZSAgICAgICAgOiBkcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy0wMS50eHQNCiAgICAg ICAgICAgICAgICBQYWdlcyAgICAgICAgICAgOiAxNA0KICAgICAgICAgICAgICAgIERhdGUgICAg ICAgICAgICA6IDIwMTgtMTAtMTMNCg0KQWJzdHJhY3Q6DQogICBUaGlzIGRvY3VtZW50IHNwZWNp ZmllcyBhbGdvcml0aG0gaWRlbnRpZmllcnMgYW5kIEFTTi4xIGVuY29kaW5nDQogICBmb3JtYXRz IGZvciB0aGUgSGllcmFyY2hpY2FsIFNpZ25hdHVyZSBTeXN0ZW0gKEhTUyksIGVYdGVuZGVkIE1l cmtsZQ0KICAgU2lnbmF0dXJlIFNjaGVtZSAoWE1TUyksIGFuZCBYTVNTXk1ULCBhIG11bHRpLXRy ZWUgdmFyaWFudCBvZiBYTVNTLg0KICAgVGhpcyBzcGVjaWZpY2F0aW9uIGFwcGxpZXMgdG8gdGhl IEludGVybmV0IFguNTA5IFB1YmxpYyBLZXkNCiAgIGluZnJhc3RydWN0dXJlIChQS0kpIHdoZW4g ZGlnaXRhbCBzaWduYXR1cmVzIGFyZSB1c2VkIHRvIHNpZ24NCiAgIGNlcnRpZmljYXRlcyBhbmQg Y2VydGlmaWNhdGUgcmV2b2NhdGlvbiBsaXN0cyAoQ1JMcykuDQoNCg0KVGhlIElFVEYgZGF0YXRy YWNrZXIgc3RhdHVzIHBhZ2UgZm9yIHRoaXMgZHJhZnQgaXM6DQpodHRwczovL2RhdGF0cmFja2Vy LmlldGYub3JnL2RvYy9kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy8NCg0KVGhlcmUgYXJl IGFsc28gaHRtbGl6ZWQgdmVyc2lvbnMgYXZhaWxhYmxlIGF0Og0KaHR0cHM6Ly90b29scy5pZXRm Lm9yZy9odG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzLTAxDQpodHRwczovL2RhdGF0 cmFja2VyLmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzLTAx DQoNCkEgZGlmZiBmcm9tIHRoZSBwcmV2aW91cyB2ZXJzaW9uIGlzIGF2YWlsYWJsZSBhdDoNCmh0 dHBzOi8vd3d3LmlldGYub3JnL3JmY2RpZmY/dXJsMj1kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gt c2lncy0wMQ0KDQoNClBsZWFzZSBub3RlIHRoYXQgaXQgbWF5IHRha2UgYSBjb3VwbGUgb2YgbWlu dXRlcyBmcm9tIHRoZSB0aW1lIG9mIHN1Ym1pc3Npb24NCnVudGlsIHRoZSBodG1saXplZCB2ZXJz aW9uIGFuZCBkaWZmIGFyZSBhdmFpbGFibGUgYXQgdG9vbHMuaWV0Zi5vcmcuDQoNCkludGVybmV0 LURyYWZ0cyBhcmUgYWxzbyBhdmFpbGFibGUgYnkgYW5vbnltb3VzIEZUUCBhdDoNCmZ0cDovL2Z0 cC5pZXRmLm9yZy9pbnRlcm5ldC1kcmFmdHMvDQoNCl9fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fDQpJLUQtQW5ub3VuY2UgbWFpbGluZyBsaXN0DQpJLUQtQW5u b3VuY2VAaWV0Zi5vcmc8bWFpbHRvOkktRC1Bbm5vdW5jZUBpZXRmLm9yZz4NCmh0dHBzOi8vd3d3 LmlldGYub3JnL21haWxtYW4vbGlzdGluZm8vaS1kLWFubm91bmNlDQpJbnRlcm5ldC1EcmFmdCBk aXJlY3RvcmllczogaHR0cDovL3d3dy5pZXRmLm9yZy9zaGFkb3cuaHRtbA0Kb3IgZnRwOi8vZnRw LmlldGYub3JnL2lldGYvMXNoYWRvdy1zaXRlcy50eHQNCg0K --_000_DDCC347BA2F849F0BF440CA66F66C222isaracom_ Content-Type: text/html; charset="utf-8" Content-ID: Content-Transfer-Encoding: base64 PGh0bWwgeG1sbnM6bz0idXJuOnNjaGVtYXMtbWljcm9zb2Z0LWNvbTpvZmZpY2U6b2ZmaWNlIiB4 bWxuczp3PSJ1cm46c2NoZW1hcy1taWNyb3NvZnQtY29tOm9mZmljZTp3b3JkIiB4bWxuczptPSJo dHRwOi8vc2NoZW1hcy5taWNyb3NvZnQuY29tL29mZmljZS8yMDA0LzEyL29tbWwiIHhtbG5zPSJo dHRwOi8vd3d3LnczLm9yZy9UUi9SRUMtaHRtbDQwIj4NCjxoZWFkPg0KPG1ldGEgaHR0cC1lcXVp dj0iQ29udGVudC1UeXBlIiBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9dXRmLTgiPg0KPG1l dGEgbmFtZT0iR2VuZXJhdG9yIiBjb250ZW50PSJNaWNyb3NvZnQgV29yZCAxNSAoZmlsdGVyZWQg bWVkaXVtKSI+DQo8c3R5bGU+PCEtLQ0KLyogRm9udCBEZWZpbml0aW9ucyAqLw0KQGZvbnQtZmFj ZQ0KCXtmb250LWZhbWlseToiQ2FtYnJpYSBNYXRoIjsNCglwYW5vc2UtMToyIDQgNSAzIDUgNCA2 IDMgMiA0O30NCkBmb250LWZhY2UNCgl7Zm9udC1mYW1pbHk6Q2FsaWJyaTsNCglwYW5vc2UtMToy IDE1IDUgMiAyIDIgNCAzIDIgNDt9DQovKiBTdHlsZSBEZWZpbml0aW9ucyAqLw0KcC5Nc29Ob3Jt YWwsIGxpLk1zb05vcm1hbCwgZGl2Lk1zb05vcm1hbA0KCXttYXJnaW46MGNtOw0KCW1hcmdpbi1i b3R0b206LjAwMDFwdDsNCglmb250LXNpemU6MTEuMHB0Ow0KCWZvbnQtZmFtaWx5OiJDYWxpYnJp IixzYW5zLXNlcmlmO30NCmE6bGluaywgc3Bhbi5Nc29IeXBlcmxpbmsNCgl7bXNvLXN0eWxlLXBy aW9yaXR5Ojk5Ow0KCWNvbG9yOmJsdWU7DQoJdGV4dC1kZWNvcmF0aW9uOnVuZGVybGluZTt9DQph OnZpc2l0ZWQsIHNwYW4uTXNvSHlwZXJsaW5rRm9sbG93ZWQNCgl7bXNvLXN0eWxlLXByaW9yaXR5 Ojk5Ow0KCWNvbG9yOnB1cnBsZTsNCgl0ZXh0LWRlY29yYXRpb246dW5kZXJsaW5lO30NCnAubXNv bm9ybWFsMCwgbGkubXNvbm9ybWFsMCwgZGl2Lm1zb25vcm1hbDANCgl7bXNvLXN0eWxlLW5hbWU6 bXNvbm9ybWFsOw0KCW1zby1tYXJnaW4tdG9wLWFsdDphdXRvOw0KCW1hcmdpbi1yaWdodDowY207 DQoJbXNvLW1hcmdpbi1ib3R0b20tYWx0OmF1dG87DQoJbWFyZ2luLWxlZnQ6MGNtOw0KCWZvbnQt c2l6ZToxMS4wcHQ7DQoJZm9udC1mYW1pbHk6IkNhbGlicmkiLHNhbnMtc2VyaWY7fQ0Kc3Bhbi5h cHBsZS10YWItc3Bhbg0KCXttc28tc3R5bGUtbmFtZTphcHBsZS10YWItc3Bhbjt9DQpzcGFuLkVt YWlsU3R5bGUxOQ0KCXttc28tc3R5bGUtdHlwZTpwZXJzb25hbC1yZXBseTsNCglmb250LWZhbWls eToiQ2FsaWJyaSIsc2Fucy1zZXJpZjt9DQouTXNvQ2hwRGVmYXVsdA0KCXttc28tc3R5bGUtdHlw ZTpleHBvcnQtb25seTsNCglmb250LXNpemU6MTAuMHB0O30NCkBwYWdlIFdvcmRTZWN0aW9uMQ0K CXtzaXplOjYxMi4wcHQgNzkyLjBwdDsNCgltYXJnaW46NzIuMHB0IDcyLjBwdCA3Mi4wcHQgNzIu MHB0O30NCmRpdi5Xb3JkU2VjdGlvbjENCgl7cGFnZTpXb3JkU2VjdGlvbjE7fQ0KLS0+PC9zdHls ZT4NCjwvaGVhZD4NCjxib2R5IGxhbmc9IkVOLUNBIiBsaW5rPSJibHVlIiB2bGluaz0icHVycGxl Ij4NCjxkaXYgY2xhc3M9IldvcmRTZWN0aW9uMSI+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj5J4oCZ dmUgdXBsb2FkZWQgYSBuZXcgZHJhZnQgaW5jb3Jwb3JhdGluZyBSdXNz4oCZIFNJR05BVFVSRS1B TEdPUklUSE0gc3VnZ2VzdGlvbi48bzpwPjwvbzpwPjwvcD4NCjxwIGNsYXNzPSJNc29Ob3JtYWwi PjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+VGhlIE9JRCBuYW1p bmcgY29udmVudGlvbnMgd2VyZSBiYXNlZCBvbiB0aGUgbmFtZXMgdXNlZCBieSBFY0RTQSwgYnV0 IEkgY2FuIHVwZGF0ZSB0aGVtIGlmIHRoZXJlIGFyZSBvdGhlciBwcmVmZXJyZWQgY29udmVudGlv bnMuPG86cD48L286cD48L3A+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpw PjwvcD4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPlNvbWUgY28tb3JkaW5hdGlvbiBiZXR3ZWVuIHRo aXMgYW5kIGRyYWZ0LWlldGYtbGFtcHMtY21zLWhhc2gtc2lnIHdpbGwgc3RpbGwgbmVlZCB0byBi ZSBkb25lLjxvOnA+PC9vOnA+PC9wPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PG86cD4mbmJzcDs8 L286cD48L3A+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj5UaGFua3MsPG86cD48L286cD48L3A+DQo8 cCBjbGFzcz0iTXNvTm9ybWFsIj5EYW5pZWw8bzpwPjwvbzpwPjwvcD4NCjxwIGNsYXNzPSJNc29O b3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PG86cD4m bmJzcDs8L286cD48L3A+DQo8ZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxl PSJtYXJnaW4tbGVmdDozNi4wcHQiPk9uIDIwMTgtMTAtMTMsIDEwOjI3IFBNLCAmcXVvdDtJLUQt QW5ub3VuY2Ugb24gYmVoYWxmIG9mDQo8YSBocmVmPSJtYWlsdG86aW50ZXJuZXQtZHJhZnRzQGll dGYub3JnIj5pbnRlcm5ldC1kcmFmdHNAaWV0Zi5vcmc8L2E+JnF1b3Q7ICZsdDs8YSBocmVmPSJt YWlsdG86aS1kLWFubm91bmNlLWJvdW5jZXNAaWV0Zi5vcmciPmktZC1hbm5vdW5jZS1ib3VuY2Vz QGlldGYub3JnPC9hPiBvbiBiZWhhbGYgb2YNCjxhIGhyZWY9Im1haWx0bzppbnRlcm5ldC1kcmFm dHNAaWV0Zi5vcmciPmludGVybmV0LWRyYWZ0c0BpZXRmLm9yZzwvYT4mZ3Q7IHdyb3RlOjxvOnA+ PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0K PGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxv OnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIg c3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+QSBOZXcgSW50ZXJuZXQtRHJhZnQgaXMgYXZhaWxh YmxlIGZyb20gdGhlIG9uLWxpbmUgSW50ZXJuZXQtRHJhZnRzIGRpcmVjdG9yaWVzLjxvOnA+PC9v OnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdp bi1sZWZ0OjM2LjBwdCI+PG86cD4mbmJzcDs8L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBj bGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwv bzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJn aW4tbGVmdDozNi4wcHQiPiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwO1RpdGxlJm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7IDogQWxnb3JpdGhtIElkZW50aWZpZXJzIGZvciBIU1MgYW5kIFhNU1Mg Zm9yIFVzZSBpbiB0aGUgSW50ZXJuZXQgWC41MDkgUHVibGljIEtleSBJbmZyYXN0cnVjdHVyZTxv OnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9 Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7QXV0aG9ycyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyA6IERhbmllbCBWYW4gR2Vlc3Q8bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRp dj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPiZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwO1Njb3R0IEZsdWhyZXI8bzpwPjwv bzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJn aW4tbGVmdDozNi4wcHQiPjxzcGFuIGNsYXNzPSJhcHBsZS10YWItc3BhbiI+Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7DQo8L3NwYW4+RmlsZW5hbWUmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDs6IGRyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1z aWdzLTAxLnR4dDxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05v cm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+PHNwYW4gY2xhc3M9ImFwcGxlLXRhYi1z cGFuIj4mbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsNCjwvc3Bhbj5QYWdlcyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyA6 IDE0PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48c3BhbiBjbGFzcz0iYXBwbGUtdGFiLXNwYW4iPiZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOw0KPC9zcGFuPkRhdGUmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDs6IDIwMTgtMTAtMTM8bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJN c29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9w Pg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0 OjM2LjBwdCI+QWJzdHJhY3Q6PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFz cz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDsmbmJzcDsgVGhp cyBkb2N1bWVudCBzcGVjaWZpZXMgYWxnb3JpdGhtIGlkZW50aWZpZXJzIGFuZCBBU04uMSBlbmNv ZGluZzxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIg c3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7Jm5ic3A7IGZvcm1hdHMgZm9yIHRoZSBI aWVyYXJjaGljYWwgU2lnbmF0dXJlIFN5c3RlbSAoSFNTKSwgZVh0ZW5kZWQgTWVya2xlPG86cD48 L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFy Z2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDsmbmJzcDsgU2lnbmF0dXJlIFNjaGVtZSAoWE1TUyksIGFu ZCBYTVNTXk1ULCBhIG11bHRpLXRyZWUgdmFyaWFudCBvZiBYTVNTLjxvOnA+PC9vOnA+PC9wPg0K PC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2 LjBwdCI+Jm5ic3A7Jm5ic3A7IFRoaXMgc3BlY2lmaWNhdGlvbiBhcHBsaWVzIHRvIHRoZSBJbnRl cm5ldCBYLjUwOSBQdWJsaWMgS2V5PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBj bGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij4mbmJzcDsmbmJzcDsg aW5mcmFzdHJ1Y3R1cmUgKFBLSSkgd2hlbiBkaWdpdGFsIHNpZ25hdHVyZXMgYXJlIHVzZWQgdG8g c2lnbjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIg c3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+Jm5ic3A7Jm5ic3A7IGNlcnRpZmljYXRlcyBhbmQg Y2VydGlmaWNhdGUgcmV2b2NhdGlvbiBsaXN0cyAoQ1JMcykuPG86cD48L286cD48L3A+DQo8L2Rp dj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0 Ij48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3Jt YWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9k aXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBw dCI+VGhlIElFVEYgZGF0YXRyYWNrZXIgc3RhdHVzIHBhZ2UgZm9yIHRoaXMgZHJhZnQgaXM6PG86 cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0i bWFyZ2luLWxlZnQ6MzYuMHB0Ij48YSBocmVmPSJodHRwczovL2RhdGF0cmFja2VyLmlldGYub3Jn L2RvYy9kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gtc2lncy8iPmh0dHBzOi8vZGF0YXRyYWNrZXIu aWV0Zi5vcmcvZG9jL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1zaWdzLzwvYT48bzpwPjwvbzpw PjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4t bGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xh c3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+VGhlcmUgYXJlIGFsc28g aHRtbGl6ZWQgdmVyc2lvbnMgYXZhaWxhYmxlIGF0OjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8 ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+PGEg aHJlZj0iaHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFz aC1zaWdzLTAxIj5odHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQtdmFuZ2Vlc3QteDUw OS1oYXNoLXNpZ3MtMDE8L2E+PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFz cz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48YSBocmVmPSJodHRwczov L2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LXZhbmdlZXN0LXg1MDktaGFzaC1z aWdzLTAxIj5odHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LXZhbmdl ZXN0LXg1MDktaGFzaC1zaWdzLTAxPC9hPjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0K PHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+PG86cD4mbmJz cDs8L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0i bWFyZ2luLWxlZnQ6MzYuMHB0Ij5BIGRpZmYgZnJvbSB0aGUgcHJldmlvdXMgdmVyc2lvbiBpcyBh dmFpbGFibGUgYXQ6PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNv Tm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48YSBocmVmPSJodHRwczovL3d3dy5p ZXRmLm9yZy9yZmNkaWZmP3VybDI9ZHJhZnQtdmFuZ2Vlc3QteDUwOS1oYXNoLXNpZ3MtMDEiPmh0 dHBzOi8vd3d3LmlldGYub3JnL3JmY2RpZmY/dXJsMj1kcmFmdC12YW5nZWVzdC14NTA5LWhhc2gt c2lncy0wMTwvYT48bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29O b3JtYWwiIHN0eWxlPSJtYXJnaW4tbGVmdDozNi4wcHQiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0K PC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2 LjBwdCI+PG86cD4mbmJzcDs8L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNv Tm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5QbGVhc2Ugbm90ZSB0aGF0IGl0IG1h eSB0YWtlIGEgY291cGxlIG9mIG1pbnV0ZXMgZnJvbSB0aGUgdGltZSBvZiBzdWJtaXNzaW9uPG86 cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0i bWFyZ2luLWxlZnQ6MzYuMHB0Ij51bnRpbCB0aGUgaHRtbGl6ZWQgdmVyc2lvbiBhbmQgZGlmZiBh cmUgYXZhaWxhYmxlIGF0IHRvb2xzLmlldGYub3JnLjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8 ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+PG86 cD4mbmJzcDs8L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5JbnRlcm5ldC1EcmFmdHMgYXJlIGFsc28gYXZhaWxh YmxlIGJ5IGFub255bW91cyBGVFAgYXQ6PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8 cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48YSBocmVmPSJm dHA6Ly9mdHAuaWV0Zi5vcmcvaW50ZXJuZXQtZHJhZnRzLyI+ZnRwOi8vZnRwLmlldGYub3JnL2lu dGVybmV0LWRyYWZ0cy88L2E+PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFz cz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwvbzpw PjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4t bGVmdDozNi4wcHQiPl9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij5JLUQtQW5ub3VuY2UgbWFpbGluZyBsaXN0PG86cD48 L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFy Z2luLWxlZnQ6MzYuMHB0Ij48YSBocmVmPSJtYWlsdG86SS1ELUFubm91bmNlQGlldGYub3JnIj5J LUQtQW5ub3VuY2VAaWV0Zi5vcmc8L2E+PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8 cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48YSBocmVmPSJo dHRwczovL3d3dy5pZXRmLm9yZy9tYWlsbWFuL2xpc3RpbmZvL2ktZC1hbm5vdW5jZSI+aHR0cHM6 Ly93d3cuaWV0Zi5vcmcvbWFpbG1hbi9saXN0aW5mby9pLWQtYW5ub3VuY2U8L2E+PG86cD48L286 cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2lu LWxlZnQ6MzYuMHB0Ij5JbnRlcm5ldC1EcmFmdCBkaXJlY3RvcmllczogPGEgaHJlZj0iaHR0cDov L3d3dy5pZXRmLm9yZy9zaGFkb3cuaHRtbCI+DQpodHRwOi8vd3d3LmlldGYub3JnL3NoYWRvdy5o dG1sPC9hPjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1h bCIgc3R5bGU9Im1hcmdpbi1sZWZ0OjM2LjBwdCI+b3IgPGEgaHJlZj0iZnRwOi8vZnRwLmlldGYu b3JnL2lldGYvMXNoYWRvdy1zaXRlcy50eHQiPg0KZnRwOi8vZnRwLmlldGYub3JnL2lldGYvMXNo YWRvdy1zaXRlcy50eHQ8L2E+PG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFz cz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLWxlZnQ6MzYuMHB0Ij48bzpwPiZuYnNwOzwvbzpw PjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8L2JvZHk+DQo8L2h0bWw+DQo= --_000_DDCC347BA2F849F0BF440CA66F66C222isaracom_-- From nobody Mon Oct 15 08:48:54 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E25FA130DC1 for ; Mon, 15 Oct 2018 08:48:52 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sn3rd.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8DhLFmrp3Vqk for ; Mon, 15 Oct 2018 08:48:50 -0700 (PDT) Received: from mail-qk1-x72d.google.com (mail-qk1-x72d.google.com [IPv6:2607:f8b0:4864:20::72d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C03F0130E50 for ; Mon, 15 Oct 2018 08:48:50 -0700 (PDT) Received: by mail-qk1-x72d.google.com with SMTP id a13-v6so12107650qkc.7 for ; Mon, 15 Oct 2018 08:48:50 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=BIszhwOsQYc5YwAMlgwDbCDA39FWEARB1YywmVg1p1Y=; b=HCdcAghuC80FJHovKGKypZ+uY3qjLGXi4FEuCbF6bBEhOWPYKOfC/mzLROiKzKOCPs lh3hax+JySeFQAC65SbLvC+F0gQtgbhw/y9GqfS0vvlt/Jsn5Oi7O//IgtvXJC65mtXH h7UTRevNaURmX1bunOevPdApWXA39fc7LxkBw= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=BIszhwOsQYc5YwAMlgwDbCDA39FWEARB1YywmVg1p1Y=; b=CWOmSEA58fpNThkZ/JzbmglllSg4MW9xsID9ew1HsqBv4yIzP0hWasE9d+bCUv1hZ2 9h+LYdo2il5zm/UCNwVXUdDJDXUE/fs28/i2YFvn2yeo6zi6a8fsd7MRaXm0hODbpi/W WBUpuHcPLMgcCaxFki/QDYH5raObtYKOJFKynHvf7HMpnhH1tJJ5DGXCRMO96YAxyIQV U8EcOM9Uak+G6hz/C2b4ivP67I6AKD9fJIUWmcZYgxQL5Cx2IW/w7U/5tLLs9SuImrk6 SziRd9fJxMaiwIk6+FmytPLVdcUna4UbiwMh2eC/sLnBdThz3xdVDSwMrKsnjDRNJNar 8f/g== X-Gm-Message-State: ABuFfoj8a8a9jLQQPyPo5R7N7EVsCdfyala7IR3qD2Hogdoy6cNbcwlU S6sXY5q8ixyFVBSRAdSsgTtLXrU8B2Q= X-Google-Smtp-Source: ACcGV61WKnFqLbw9TosRn5lbjWeWlAo7SPzRBB8RWi3bfJ9jt2AEaFX2HlhM6EZIeWfHLiv0SNICxw== X-Received: by 2002:a37:5185:: with SMTP id f127-v6mr16802407qkb.44.1539618529799; Mon, 15 Oct 2018 08:48:49 -0700 (PDT) Received: from 192.168.1.115 (pool-108-18-182-101.washdc.east.verizon.net. [108.18.182.101]) by smtp.gmail.com with ESMTPSA id v57-v6sm7226818qtk.51.2018.10.15.08.48.48 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 15 Oct 2018 08:48:49 -0700 (PDT) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) From: Sean Turner In-Reply-To: Date: Mon, 15 Oct 2018 11:48:47 -0400 Cc: Russ Housley , SPASM Content-Transfer-Encoding: quoted-printable Message-Id: <3C360C1C-E112-4044-BC2A-AF9BFFD3673C@sn3rd.com> References: To: Tim Hollebeek X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Oct 2018 15:48:53 -0000 My thinking is that if the fixes to CAA are done we should not wait to = publish those while we figure out what to do wither these =E2=80=9Cnew=E2=80= =9D things. I.e., ship this draft if it is ready and do the =E2=80=9Cnew=E2= =80=9D things in a separate draft. spt > On Oct 11, 2018, at 15:25, Tim Hollebeek = wrote: >=20 > LAMPS chair hat off; CABF Validation Subcommittee (formerly, = Validation > Working Group) hat on. >=20 > Recently at the CA/Browser Forum, allowing customers to use CAA to = limit > the validation methods that can be used for a domain has been = identified > as one of the Forum's highest priorities. I started a thread on the = idea > back > in December: >=20 > = https://mailarchive.ietf.org/arch/msg/spasm/Jse-FslACq3wair2B2_YSwpViNs >=20 > While CAs can potentially unilaterally implement this on their own = outside=20 > the Forum with parameters (as in the acme-caa draft), uniformity = throughout=20 > the industry would be desirable. The Forum also has the ability to = mandate=20 > implementation by a specific date. >=20 > This was discussed on this morning's Validation Subcommittee call, and = it > was suggested we ask the group if there is interest in including this = in RFC >=20 > 6844-bis, or whether it would be preferable to handle it as a separate > draft. >=20 > -Tim >=20 >> -----Original Message----- >> From: Spasm On Behalf Of Russ Housley >> Sent: Thursday, October 11, 2018 2:01 PM >> To: SPASM >> Subject: [lamps] WG Last Call for rfc6844bis >>=20 >> This is the LAMPS WG Last Call for "DNS Certification Authority > Authorization >> (CAA) Resource Record" . >>=20 >> Please review the document and send your comments to the list by 22 >> October 2018. >>=20 >> If no concerns are raised, the document will be forwarded to the IESG = with > a >> request for publication as Proposed Standard. >>=20 >> Russ & Tim >> _______________________________________________ >> Spasm mailing list >> Spasm@ietf.org >> https://www.ietf.org/mailman/listinfo/spasm > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm From nobody Mon Oct 15 09:18:55 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 649C4130EB7 for ; Mon, 15 Oct 2018 09:18:54 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -3.051 X-Spam-Level: X-Spam-Status: No, score=-3.051 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.351, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, KHOP_DYNAMIC=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PqJ2xE1s-hUm for ; Mon, 15 Oct 2018 09:18:52 -0700 (PDT) Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DCE33130DC4 for ; Mon, 15 Oct 2018 09:18:52 -0700 (PDT) Received: from pps.filterd (m0050093.ppops.net [127.0.0.1]) by m0050093.ppops.net-00190b01. (8.16.0.23/8.16.0.23) with SMTP id w9FGD3iQ030651; Mon, 15 Oct 2018 17:18:51 +0100 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=jan2016.eng; bh=ZwlH/uOsPnlYMGWacPrOunOVZ4cv1oUY587SG6/ZG/4=; b=Zor5VeThIpB26nK8BVOMNUowP9i6z0gxvxQk7crlOo/JL906GCQSB9JgxFR36gctHUiL 7oCo92OQzIjAASbKu3UQV939SNOSBjhV51HQ10eYqqB6PU/U6t/9eG0/3mmwP/CEFTuX i9EEU6G2xdAOhc7sQ+vaeUUGeWdVZI8anYO4svgaOimau/raaseDu2coIDHOETO9pRMy T88cfMqBtS6jlMWk7DHm620Y/z8qnsvbAL0YcPlOYKISBuv1bJg0wd2A3HcLZPhYv924 eqcS0e2SRbaaFuvvHTfKMxVzSC17dTHGLWRudUqVQ+T36na7zqZlk+ptzQyXaCd/lG6D UA== Received: from prod-mail-ppoint1 (prod-mail-ppoint1.akamai.com [184.51.33.18]) by m0050093.ppops.net-00190b01. with ESMTP id 2n3dr6x45w-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 15 Oct 2018 17:18:51 +0100 Received: from pps.filterd (prod-mail-ppoint1.akamai.com [127.0.0.1]) by prod-mail-ppoint1.akamai.com (8.16.0.21/8.16.0.21) with SMTP id w9FG5eIq027414; Mon, 15 Oct 2018 12:18:50 -0400 Received: from email.msg.corp.akamai.com ([172.27.123.33]) by prod-mail-ppoint1.akamai.com with ESMTP id 2n3c1ugx2j-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Mon, 15 Oct 2018 12:18:50 -0400 Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com (172.27.123.101) by usma1ex-dag1mb2.msg.corp.akamai.com (172.27.123.102) with Microsoft SMTP Server (TLS) id 15.0.1365.1; Mon, 15 Oct 2018 12:18:49 -0400 Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com ([172.27.123.101]) by usma1ex-dag1mb1.msg.corp.akamai.com ([172.27.123.101]) with mapi id 15.00.1365.000; Mon, 15 Oct 2018 12:18:49 -0400 From: "Salz, Rich" To: Sean Turner , Tim Hollebeek CC: SPASM , Russ Housley Thread-Topic: [lamps] WG Last Call for rfc6844bis Thread-Index: AQHUYYx4wqAyciY7xUefcXJ6qShYqaUasEwAgAYMx4D//8VVAA== Date: Mon, 15 Oct 2018 16:18:48 +0000 Message-ID: References: <3C360C1C-E112-4044-BC2A-AF9BFFD3673C@sn3rd.com> In-Reply-To: <3C360C1C-E112-4044-BC2A-AF9BFFD3673C@sn3rd.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/10.11.0.180909 x-ms-exchange-messagesentrepresentingtype: 1 x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [172.19.39.93] Content-Type: text/plain; charset="utf-8" Content-ID: <5BB72F6D122A9D4F8481106027F09F04@akamai.com> Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-10-15_08:, , signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 malwarescore=0 phishscore=0 bulkscore=0 spamscore=0 mlxscore=0 mlxlogscore=819 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1807170000 definitions=main-1810150143 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-10-15_08:, , signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=809 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1807170000 definitions=main-1810150144 Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Oct 2018 16:18:54 -0000 PiAgICBNeSB0aGlua2luZyBpcyB0aGF0IGlmIHRoZSBmaXhlcyB0byBDQUEgYXJlIGRvbmUgd2Ug c2hvdWxkIG5vdCB3YWl0IHRvIHB1Ymxpc2ggdGhvc2Ugd2hpbGUgd2UgZmlndXJlIG91dCB3aGF0 IHRvIGRvIHdpdGhlciB0aGVzZSDigJxuZXfigJ0gdGhpbmdzLiAgSS5lLiwgc2hpcCB0aGlzIGRy YWZ0IGlmIGl0IGlzIHJlYWR5IGFuZCBkbyB0aGUg4oCcbmV34oCdIHRoaW5ncyBpbiBhIHNlcGFy YXRlIGRyYWZ0Lg0KICANClN0cm9uZ2x5IGFncmVlLg0KDQpBbmQgSSBhbSBnbGFkIHRvIGhlYXIg dGhhdCBDQS9Ccm93c2VyIEZvcnVtIGlzIGludGVyZXN0ZWQgaW4gaGVscGluZyB3cml0ZSBSRkMn cyA6KQ0KDQpUaGFua3MgZm9yIHJhaXNpbmcgdGhlIGlzc3VlLCBUaW0uDQoNCg0K From nobody Mon Oct 15 19:52:51 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CE825128BAC for ; Mon, 15 Oct 2018 19:52:49 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.066 X-Spam-Level: X-Spam-Status: No, score=-2.066 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.064, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xjc4mk0CRz4H for ; Mon, 15 Oct 2018 19:52:47 -0700 (PDT) Received: from mail1.bemta23.messagelabs.com (mail1.bemta23.messagelabs.com [67.219.246.215]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 43C29127333 for ; Mon, 15 Oct 2018 19:52:47 -0700 (PDT) Received: from [67.219.246.196] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-3.bemta.az-c.us-east-1.aws.symcld.net id D3/D1-08487-E7255CB5; Tue, 16 Oct 2018 02:52:46 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrIJsWRWlGSWpSXmKPExsVyQ2FruW5t0NF og0/zFSxevbjJbjHp/lxGi3nXki2m773G7sDisbb7KpvHkiU/mTyad+9m8Vh15wtrAEsUa2Ze Un5FAmvG5ZczGAs+OlbMmbKRuYHxr10XIxcHi0APs8TktweYQRwhgYlMEpPefWODcO4zSrxau Yeli5GTg03AQOLa3uNMXYwcHCICIRIfL5SBhJkF7CWmLd7CDGILA5U8OHcfrFxEwFDixt5lUH a0ROe2aUwgNouAqsS775PZQcbwCsRK/GzTAwkLCXxmlpj4SQbE5hSwlViw/x9YOaOAmMT3U2u YIFaJS9x6Mh/MlhAQkXh48TQbhC0q8fLxP1aI+hiJuZ8PQcWVJPbd2M8KYctKXJrfzQjyloTA fnaJ17s3s0MkdCU+TJ3KDGH7SnSfOg5VdIlRor1hDVRCS+L3ohmMIEdLCORIzG/3hghbSaze9 QxqmZzEqt6HLBC955klHu64DZWQkfi/sp8JItHBJvFo90tGiJdTJKasOsQ2gVF7FpLvZgHVMQ ssYJRoeLiCBSTBKyAocXLmExaIIi2JJU3/2SFseYntb+cwz2JkB7JtJLakQEQVJaZ0P4SqMJN oO/eRbQEjxypGs6SizPSMktzEzBxdQwMDXUNDI11zIMtSL7FKN1mvtFg3NbG4RNdQL7G8WK+4 Mjc5J0UvL7VkEyMw4aUUsOfuYDy1NP0QoyQHk5Iob5rH0WghvqT8lMqMxOKM+KLSnNTiQ4wyH BxKErzbAoFygkWp6akVaZk5wNQLk5bg4FES4c0GSfMWFyTmFmemQ6ROMRpz9N1uncHM0fb0+g xmIZa8/LxUKXHeaSClAiClGaV5cINgOeESo6yUMC8jAwODEE9BalFuZgmq/CtGcQ5GJWHeFpA pPJl5JXD7XgGdwgR0irvtEZBTShIRUlINjJv9Xikqn7soraMZzlL1q97fwKtRaf4xp4VMHH6n 83OS/VyXB0qo14Sz/A3g7Mm+v1hlcpx2Sf9VRlsXNfPG8xsO8JStP7r+9b4ol9/Lv3wv8RKJV lra+z9kYtQvjq4v+/RaRddNzp8X7lT53qXyxcZAH8MHAQrC8hLXxRfe35yvJ+Ha29GrxFKckW ioxVxUnAgA7EF8OQQEAAA= X-Env-Sender: tim.hollebeek@digicert.com X-Msg-Ref: server-15.tower-404.messagelabs.com!1539658364!399082!1 X-Originating-IP: [216.32.181.119] X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass X-StarScan-Received: X-StarScan-Version: 9.14.24; banners=-,-,- X-VirusChecked: Checked Received: (qmail 1133 invoked from network); 16 Oct 2018 02:52:45 -0000 Received: from mail-dm3nam05lp0119.outbound.protection.outlook.com (HELO NAM05-DM3-obe.outbound.protection.outlook.com) (216.32.181.119) by server-15.tower-404.messagelabs.com with AES256-GCM-SHA384 encrypted SMTP; 16 Oct 2018 02:52:45 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=e3J32NL9TfYSCkhly+fH7HjeR+y4gfWy7qYBBUnLuPI=; b=F0PMjJtRMIR/aw3cPZ8hKx8ueF3AX5QG13OKWs+HS50ptOjX97AI701yWBnSNN2x5IPVImGQqcXtGKzWYNypRc9/kcRADxmyaMuZy+etzRBrmG0Cba0OBRRDKd/AI4Hx8kMiGTb+YhoWirLWfaFHpc8dpuCmW/EDD+RJcJSD/VI= Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1188.namprd14.prod.outlook.com (10.173.161.150) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1228.24; Tue, 16 Oct 2018 02:52:43 +0000 Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::14a4:c8e1:5979:3ae1]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::14a4:c8e1:5979:3ae1%2]) with mapi id 15.20.1228.020; Tue, 16 Oct 2018 02:52:43 +0000 From: Tim Hollebeek To: Stephen Farrell , Ryan Sleevi CC: SPASM , Russ Housley Thread-Topic: [lamps] WG Last Call for rfc6844bis Thread-Index: AQHUYYx49OvVTNXTEUG4xpwbXU/0E6UaadrggABC3oCAAXDVAIAABu8AgAAAXXCAAEgNgIAExb1w Date: Tue, 16 Oct 2018 02:52:42 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [103.192.36.185] x-ms-publictraffictype: Email x-microsoft-exchange-diagnostics: 1; BN6PR14MB1188; 6:o59EtuxkA9wM8KtWJiUuYn4L8HcVlo8ZH5m2HI2Bbtr8vJpiw7pppNyaXKTCK/BSxJ/rNMzf8NpP6h2Ywu54ctwpoDovDrViiha9F/kX8/E/1EJkZz4VK+U79bMerFO1r7z6Vxd7gf1EDHIU9OnjSdzObNymuhGSoINUlcADn5jCWcEK/lnXApwEOUGSoK1QmLvCjWi3i7EPDcG7gCblPNpLGKeUcpoLxpGbs+eEW0Y5bxqFMUVIJx0bRVI6ETmRv+nrdm6sc8R8e2ZfeJb8lyfCZ8+ZMyW2LALizk9854pdmviSpXSb3MiMpep/iFhxZHyArfYFdJr6AfkzlTBnHceZwIYL5hZQvNOTvdlCgC5NYs+tnMiTSN6Cg546OiQ+0p+cOlH0UkRNjfu/HSE5EqxZVYgGIr5RkoJrJI3HskvR/OQV1qyENbSiuMzU6EQmu1kRS8s6WAf0rRVXDFL95Q==; 5:LOOeQpcOo1RQ+pK77MXcjLEFjI3Q8SgZhx5eaqEuatyNuIowxHVEllEQOs4kfOHJpZaXOvxUTf/0ZjXkKykN8U1rHPtM38WJrJksH1o2bBKma0bsaa9pQ7jTahg7kwEViAYYpZmkj//FDUopXukkXUzQvB7wi4pamDd9RbpxYiw=; 7:xErUBDabWo8jdEBGyjDrafzR1hejFc8lGc72ykCQBvDFxRWgoXxUapfxlaJIij5ut7axZz1V9MhMe7WfNHb8Ru8QKgMERF87HbPQkQWf26crAxEkiwCXhTN+BxWSeQTEDLVIET+5o1qTBOnJxcTs3dINLZcNqSy1oKwOInl4xYQkWYqPK51LoZwtPfwrgO8QqC+Flmkjam1+gXY4MLv4lSF4rGmctqWRXtk1RfWuvutqEnq+tkyUQH/Zj/d0cWrC x-ms-exchange-antispam-srfa-diagnostics: SOS; x-ms-office365-filtering-correlation-id: f910803c-5738-4b29-f2be-08d6331271bc x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(5600074)(711020)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1188; x-ms-traffictypediagnostic: BN6PR14MB1188: x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(32856632585715); x-ms-exchange-senderadcheck: 1 x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(3231355)(944501410)(4983020)(52105095)(3002001)(10201501046)(93006095)(93001095)(149066)(150057)(6041310)(20161123560045)(201703131423095)(201703031522075)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(20161123558120)(20161123562045)(201708071742011)(7699051); SRVR:BN6PR14MB1188; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1188; x-forefront-prvs: 0827D7ACB9 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(346002)(366004)(376002)(39860400002)(136003)(189003)(199004)(13464003)(9686003)(53936002)(5250100002)(25786009)(229853002)(66066001)(186003)(4326008)(305945005)(7736002)(102836004)(256004)(68736007)(3846002)(53546011)(6436002)(86362001)(55016002)(26005)(6116002)(2906002)(74316002)(6506007)(8936002)(296002)(81156014)(76176011)(476003)(97736004)(71190400001)(71200400001)(81166006)(7696005)(33656002)(486006)(99936001)(446003)(2900100001)(478600001)(11346002)(316002)(6246003)(14454004)(106356001)(99286004)(5660300001)(44832011)(54906003)(110136005)(93886005)(8676002)(105586002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1188; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts) x-microsoft-antispam-message-info: oljZ+C5gaWHCapEx7mgweLz8IMPGGvwyLg+ZikikvsQKHKV8/5ExWfs8JAj7eWW3DeWeQ5zMHS2bViktFCL6TyZnrdyUtKVdXgzAc1K2g5mqH+Vy3apJAyAr60UAadZ41DsPLx2PSJ98RttxDpXI8/ZHjPLhnJcUkaV6OSU3auegI+7Eu3i3UsR+IjD2oxK7YD5WJDsrQU2Uj8eEO3/zEJcoNXcFg4mVNoZY9h1BCgIbiU0EZfAG85clRZ/knF0PVaINPavLnI6zSu8EfzLiH7YQqnP8JDd292BxV1MKsF2kT2oxjncU8wu/kY9kWHQvhJQcXPXW8pzhTWKdkRRrpL0tCoVqvYJanpMCFEhYKfo= spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=2.16.840.1.101.3.4.2.1; boundary="----=_NextPart_000_077A_01D464D9.C49E0C40" MIME-Version: 1.0 X-OriginatorOrg: digicert.com X-MS-Exchange-CrossTenant-Network-Message-Id: f910803c-5738-4b29-f2be-08d6331271bc X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Oct 2018 02:52:42.8248 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1188 Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2018 02:52:50 -0000 ------=_NextPart_000_077A_01D464D9.C49E0C40 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit Yes, I realized after I sent the email that "chair" is ambiguous. I was referring to Russ. -Tim > -----Original Message----- > From: Stephen Farrell > Sent: Friday, October 12, 2018 9:57 PM > To: Tim Hollebeek ; Ryan Sleevi ietf@sleevi.com> > Cc: SPASM ; Russ Housley > Subject: Re: [lamps] WG Last Call for rfc6844bis > > > Hiya, > > On 12/10/18 22:44, Tim Hollebeek wrote: > > Also, I was asked by the chair to bring it up during the WGLC, > > Sorry, the chair of what? lamps? some cabforum thing? I'm not clear what you > meant. > > > so it > > is inappropriate for you to try to shut down the discussion. > Hmm. An odd assertion for an IETF WG chair to make on that WG's list. > > But somewhat closer to the actual discussion: IMO the cabforum is > substantially unrepresentative for it's claimed scope so I'm always > skeptical of > its claims (even though many seem sane). And there's also a fine history of > people liking yet more PKI related but not-useful specs, so I'm also > skeptcal of > all proposed new work for this WG. For me, that implies there ought be a > more > than usually high burden for folks wanting new stuff standardised in this > space. > > So, FWIW, I'd prefer see better justification for adopting changes such as > those > proposed. > > Cheers, > S. ------=_NextPart_000_077A_01D464D9.C49E0C40 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCD0sw ggO3MIICn6ADAgECAhAM5+DlF9hG/o/lYPwb8DA5MA0GCSqGSIb3DQEBBQUAMGUxCzAJBgNVBAYT AlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5jb20xJDAi BgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTEx MTAwMDAwMDBaMGUxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsT EHd3dy5kaWdpY2VydC5jb20xJDAiBgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK0OFc7kQ4BcsYfzt2D5cRKlrtwmlIiq9M71 IDkoWGAM+IDaqRWVMmE8tbEohIqK3J8KDIMXeo+QrIrneVNcMYQq9g+YMjZ2zN7dPKii72r7IfJS Yd+fINcf4rHZ/hhk0hJbX/lYGDW8R82hNvlrf9SwOD7BG8OMM9nYLxj+KA+zp4PWw25EwGE1lhb+ WZyLdm3X8aJLDSv/C3LanmDQjpA1xnhVhyChz+VtCshJfDGYM2wi6YfQMlqiuhOCEe05F52ZOnKh 5vqk2dUXMXWuhX0irj8BRob2KHnIsdrkVxfEfhwOsLSSplazvbKX7aqn8LfFqD+VFtD/oZbrCF8Y d08CAwEAAaNjMGEwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFEXr oq/0ksuCMS1Ri6enIZ3zbcgPMB8GA1UdIwQYMBaAFEXroq/0ksuCMS1Ri6enIZ3zbcgPMA0GCSqG SIb3DQEBBQUAA4IBAQCiDrzf4u3w43JzemSUv/dyZtgy5EJ1Yq6H6/LV2d5Ws5/MzhQouQ2XYFwS TFjk0z2DSUVYlzVpGqhH6lbGeasS2GeBhN9/CTyU5rgmLCC9PbMoifdf/yLil4Qf6WXvh+DfwWdJ s13rsgkq6ybteL59PyvztyY1bV+JAbZJW58BBZurPSXBzLZ/wvFvhsb6ZGjrgS2U60K3+owe3WLx vlBnt2y98/Efaww2BxZ/N3ypW2168RJGYIPXJwS+S86XvsNnKmgR34DnDDNmvxMNFG7zfx9jEB76 jRslbWyPpbdhAbHSoyahEHGdreLD+cOZUbcrBwjOLuZQsqf6CkUvovDyMIIFOjCCBCKgAwIBAgIQ Di7WjgxCjxTrYbReNHesEzANBgkqhkiG9w0BAQsFADBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMM RGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2Vy dCBTSEEyIEFzc3VyZWQgSUQgQ0EwHhcNMTcxMTI4MDAwMDAwWhcNMjIwMjI1MTIwMDAwWjBWMQsw CQYDVQQGEwJVUzENMAsGA1UECBMEVXRhaDENMAsGA1UEBxMETGVoaTERMA8GA1UEChMIRGlnaUNl cnQxFjAUBgNVBAMTDVRpbSBIb2xsZWJlZWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKUTIS9F3d7CfkCjsf4my28pYoZJDkEAiXVqGP4jzbFkszUQNfW3PYpFUo1GnKQykl/tM0qnzw 05bfVLo1+ce0e9fyAwYfulr+HaAVCPqx+PZw9CDY6c0NYd7Fc7S0scONxKekNF4q1mUucfGuGapW sEsyix0CuR0NMuJ4I+w8qMn9MzjzI7bvduG+uVLmZIi0p6D8+2R5BOQFy0tVeQ/aLfS91fG1DTYF YkPF+a/6JlFxzywPzCth8KW2Po4w8JqQWtam/ADKrgMaOnEJs9csefTW/FWRDeGQk5t3rnyS19FP QfpyPPau4ChB5xokfRcg3VEwqfOoIIexjUhZY5X9AgMBAAGjggHzMIIB7zAfBgNVHSMEGDAWgBTn AiOAAE/Y17yUC9k/dDlJMjyKeTAdBgNVHQ4EFgQUjqBhf3GcBV6YGYSmp2iS4Wi/3N4wDAYDVR0T AQH/BAIwADAlBgNVHREEHjAcgRp0aW0uaG9sbGViZWVrQGRpZ2ljZXJ0LmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMEMEMGA1UdIAQ8MDowOAYKYIZIAYb9 bAQBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGIBgNVHR8E gYAwfjA9oDugOYY3aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFzc3VyZWRJ RENBLWcyLmNybDA9oDugOYY3aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFz c3VyZWRJRENBLWcyLmNybDB5BggrBgEFBQcBAQRtMGswJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBDBggrBgEFBQcwAoY3aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMkFzc3VyZWRJRENBLmNydDANBgkqhkiG9w0BAQsFAAOCAQEAmOLw9+cVMHn8tJ0k 76baCfFZwkvfvxSAlCXo+Fcsv55/og0V065Rpb4HvVTi0e0qKCMbBxc71NWxhMvKJHt+sfSmVatX mAOPNDRvtVvJBkcd0bvzMut/r3npQqs1wezHLtAq+MlQZDjgiJB+DkNblnnphzEQSp7q/4K9oMoP KViRxBv+/kseA8GOfhHU6EVmeu9xQrBqexH1DPUrUSGpNGDyvtUaU+bBy8Kz2hQfOu6f/73wLqUx e583C9y2Gqn1xCB77yPxXqRSLLRC6FbrToJbKiFYQJ4znZZyhPYJHL0SOpWyXfVKp4PEO54A/xr5 oVyPhEQhOtasoIRCLtHZrzCCBk4wggU2oAMCAQICEASueWBmZpAaucV/pmxb3M0wDQYJKoZIhvcN AQELBQAwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3 LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgQXNzdXJlZCBJRCBSb290IENBMB4XDTEz MTEwNTEyMDAwMFoXDTI4MTEwNTEyMDAwMFowZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lD ZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hB MiBBc3N1cmVkIElEIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PgRIz9qte/A J3kbLQWHohBDMd8O1BUbT3ekIs4+jHDwvgeO3ScqvAEdtiwKyt1pWB9B7WoFH9pjeFkeIiwr+Lp+ yTU7VvEffEJ+JbAjGcZFONc9RPkgfGCuHLBaGAS+jzv3qfCUmqYMY0m2QRdTQDK9T+ZQelAfJUXo 8Ymvzf9e/1Dz8BcR/73FifW9YrnY+45FBIVtmc3FSE39JqsCNkXqNtdfauIagkEK3OnZ9ZEXjsYh rTg8E+Yef2ac1U3ZRtr2z1KnfTskw7TBUTXGm+vU737kewPhRL16CzfgT8uCig1xGOSm4IksG/Oy czzBsJKeGH29q33FfQihLMKfcwIDAQABo4IC+DCCAvQwEgYDVR0TAQH/BAgwBgEB/wIBADAOBgNV HQ8BAf8EBAMCAYYwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wgYEGA1UdHwR6MHgwOqA4oDaGNGh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdp Q2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwOqA4oDaGNGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwME MIIBswYDVR0gBIIBqjCCAaYwggGiBgpghkgBhv1sAAIEMIIBkjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCCAWQGCCsGAQUFBwICMIIBVh6CAVIAQQBuAHkAIAB1AHMA ZQAgAG8AZgAgAHQAaABpAHMAIABDAGUAcgB0AGkAZgBpAGMAYQB0AGUAIABjAG8AbgBzAHQAaQB0 AHUAdABlAHMAIABhAGMAYwBlAHAAdABhAG4AYwBlACAAbwBmACAAdABoAGUAIABEAGkAZwBpAEMA ZQByAHQAIABDAFAALwBDAFAAUwAgAGEAbgBkACAAdABoAGUAIABSAGUAbAB5AGkAbgBnACAAUABh AHIAdAB5ACAAQQBnAHIAZQBlAG0AZQBuAHQAIAB3AGgAaQBjAGgAIABsAGkAbQBpAHQAIABsAGkA YQBiAGkAbABpAHQAeQAgAGEAbgBkACAAYQByAGUAIABpAG4AYwBvAHIAcABvAHIAYQB0AGUAZAAg AGgAZQByAGUAaQBuACAAYgB5ACAAcgBlAGYAZQByAGUAbgBjAGUALjAdBgNVHQ4EFgQU5wIjgABP 2Ne8lAvZP3Q5STI8inkwHwYDVR0jBBgwFoAUReuir/SSy4IxLVGLp6chnfNtyA8wDQYJKoZIhvcN AQELBQADggEBAE7UiSe5/R2Hd34PKAWQ8QovyTs+vZOckMav+pFRhzJUa+jKwXFRXJmOtfrgYhmZ pgeafBMn2+UCooQS2RX2CkRXxDSPbXMfOtagAT3e44LkRWuy6yX9gF4dOZC+W0L2zpFg4/mgVgxI EM4zaHvNk6vwastPWA+5e10bBIGepyLiV0kn7pKTCL5pCFMCOi5dyBn0UIBOAtmwXZG0k4f5lpaB VUCOZu2C2LsoX+1MYe0GWCgZUxFEvEcgKbIEbNiJVJk7ddtneCweknjGVT1YEhEybr1DDE0023vG QtvsvqubYUwGkuOO3yEqUFcEwGCiNdUknmY3CUnP1fhls+DibsIxggO/MIIDuwIBATB5MGUxCzAJ BgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xJDAiBgNVBAMTG0RpZ2lDZXJ0IFNIQTIgQXNzdXJlZCBJRCBDQQIQDi7WjgxCjxTrYbReNHes EzANBglghkgBZQMEAgEFAKCCAhcwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0B CQUxDxcNMTgxMDE2MDI1MjM2WjAvBgkqhkiG9w0BCQQxIgQgCvsQxOo20F00DxiEBbeyBy+yLzGf VYU/Gc3h5qHg7sAwgYgGCSsGAQQBgjcQBDF7MHkwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERp Z2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQg U0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOthtF40d6wTMIGKBgsqhkiG9w0BCRACCzF7oHkw ZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2lj ZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOth tF40d6wTMIGTBgkqhkiG9w0BCQ8xgYUwgYIwCwYJYIZIAWUDBAEqMAsGCWCGSAFlAwQBFjAKBggq hkiG9w0DBzALBglghkgBZQMEAQIwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAsGCWCG SAFlAwQCATALBglghkgBZQMEAgMwCwYJYIZIAWUDBAICMAcGBSsOAwIaMA0GCSqGSIb3DQEBAQUA BIIBAFPSVSgco0eyD3BqYtiT0v1ScB/NqNGhkpJkQUDhzpHtB9b1DY02PGmj5lBGfhurrivNxkpK 01KcLfpd5hdZPzAkxhHjORTxghjw6AntqtcrC1ZyGCVsatYIIHU+Gk/+KjeBg6oN8KlVD4DXRqnM ZpCSs2No8SjGP3Ry4CTID6J3VwftYJrHGUr1nwjGmC2m9UNLBbXRfO/pQC/8MP8LVJifzjI74gv2 BAk4pSX80JqrVifh6vpkr87pxdVL+XRtduvY60Jy4IbUlfz4mil1u4c3EvzGaiC4VO9mrQNqPovL t0B51BIZI1ljHoAkgnFuIoI2l1qDAZECl11eKb+yx+sAAAAAAAA= ------=_NextPart_000_077A_01D464D9.C49E0C40-- From nobody Tue Oct 16 08:05:22 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ECC0E130DEE for ; Tue, 16 Oct 2018 08:05:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Fy50AM1dgDkM for ; Tue, 16 Oct 2018 08:05:11 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8737912D4EE for ; Tue, 16 Oct 2018 08:05:11 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 4419D300AAC for ; Tue, 16 Oct 2018 11:05:09 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id B91RSCd3Z8lB for ; Tue, 16 Oct 2018 11:05:03 -0400 (EDT) Received: from a860b60074bd.home (pool-71-127-50-4.washdc.fios.verizon.net [71.127.50.4]) by mail.smeinc.net (Postfix) with ESMTPSA id 8148E300A8B for ; Tue, 16 Oct 2018 11:05:03 -0400 (EDT) From: Russ Housley Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) Message-Id: <4DEA6435-42DF-45D1-A3D9-E9C6D750D252@vigilsec.com> Date: Tue, 16 Oct 2018 11:05:04 -0400 To: SPASM X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: [lamps] Draft agenda for LAMPS WG at IETF 103 X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2018 15:05:14 -0000 https://datatracker.ietf.org/meeting/103/materials/agenda-103-lamps-00 Please send comments to the list. Russ From nobody Tue Oct 16 09:53:51 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6BE4C130DFD for ; Tue, 16 Oct 2018 09:53:49 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EoG6FZ7SKtc7 for ; Tue, 16 Oct 2018 09:53:47 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3F254130DEE for ; Tue, 16 Oct 2018 09:53:47 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 7AD6B300A98 for ; Tue, 16 Oct 2018 12:53:44 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id XG0-ziTCt4eu for ; Tue, 16 Oct 2018 12:53:40 -0400 (EDT) Received: from a860b60074bd.home (pool-71-127-50-4.washdc.fios.verizon.net [71.127.50.4]) by mail.smeinc.net (Postfix) with ESMTPSA id 6F2D530056B; Tue, 16 Oct 2018 12:53:40 -0400 (EDT) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) From: Russ Housley In-Reply-To: Date: Tue, 16 Oct 2018 12:53:41 -0400 Cc: SPASM Content-Transfer-Encoding: quoted-printable Message-Id: References: <153773828944.29214.3317396448213914064@ietfa.amsl.com> To: Daniel Van Geest X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: Re: [lamps] I-D Action: draft-ietf-lamps-cms-hash-sig-01.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Oct 2018 16:53:50 -0000 Daniel: Thank you for the very careful review. I am working on an update to the document to assign these identifiers: sa-HSS-LMS-HashSig-with-SHA256 SIGNATURE-ALGORITHM ::=3D { IDENTIFIER id-alg-hss-lms-hashsig-with-sha256 PARAMS ARE absent HASHES { mda-sha256 } PUBLIC-KEYS { pk-HSS-LMS-HashSig } SMIME-CAPS { IDENTIFIED BY id-alg-hss-lms-hashsig-with-sha256 } } sa-HSS-LMS-HashSig-with-SHA384 SIGNATURE-ALGORITHM ::=3D { IDENTIFIER id-alg-hss-lms-hashsig-with-sha384 PARAMS ARE absent HASHES { mda-sha384 } PUBLIC-KEYS { pk-HSS-LMS-HashSig } SMIME-CAPS { IDENTIFIED BY id-alg-hss-lms-hashsig-with-sha384 } } sa-HSS-LMS-HashSig SIGNATURE-ALGORITHM ::=3D { IDENTIFIER id-alg-hss-lms-hashsig-with-sha512 PARAMS ARE absent HASHES { mda-sha512 } PUBLIC-KEYS { pk-HSS-LMS-HashSig } SMIME-CAPS { IDENTIFIED BY id-alg-hss-lms-hashsig-with-sha512 } } pk-HSS-LMS-HashSig PUBLIC-KEY ::=3D { IDENTIFIER id-alg-hss-lms-hashsig KEY HSS-LMS-HashSig-PublicKey PARAMS ARE absent CERT-KEY-USAGE { digitalSignature, nonRepudiation, keyCertSign, cRLSign } } > Comments on your recent changes: >=20 > The public key value is an OCTET STRING. Like the signature = format,=09 > it is designed for easy parsing. The value is a length, L, = followed=09 > by the public key itself. >=20 > L is the number of levels (in the private key & thus the signature), = not a length. Good catch. I suggest: The public key value is an OCTET STRING. Like the signature format, it is designed for easy parsing. The value is the number of levels in the public key, L, followed by the LMS public key. > The signature format is still off: >=20 > The elements of the HSS signature value for a tree with Nspk = levels > can be summarized as: >=20 > In [HASHSIG], L is the number of levels. Nspk is L - 1. If you keep = the updated indexing of the signed_public_key array in the signature, = then the above sentence should be: >=20 > The elements of the HSS signature value for a tree with Nspk = + 1 levels > can be summarized as: This seems to match exactly with this text from = draft-mcgrew-hash-sigs-13: The value of the HSS signature is set as follows. We let signed_pub_key denote an array of octet strings, where signed_pub_key[i] =3D sig[i] || pub[i+1], for i between 0 and = Nspk- 1, inclusive, where Nspk =3D L-1 denotes the number of signed = public keys. Then the HSS signature is u32str(Nspk) || signed_pub_key[0] || ... || signed_pub_key[Nspk-1] || sig[Nspk]. Maybe a note at the ends will add clarity. I suggest: Note that Nspk is the number of levels in the hierarchy of trees minus 1. Let me know if that actually adds clarity for you. Russ From nobody Wed Oct 17 13:05:57 2018 Return-Path: X-Original-To: spasm@ietf.org Delivered-To: spasm@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 1846E130D7A; Wed, 17 Oct 2018 13:05:55 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: Cc: spasm@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 6.87.0 Auto-Submitted: auto-generated Precedence: bulk Reply-To: spasm@ietf.org Message-ID: <153980675506.27653.14208289150597932162@ietfa.amsl.com> Date: Wed, 17 Oct 2018 13:05:55 -0700 Archived-At: Subject: [lamps] I-D Action: draft-ietf-lamps-cms-hash-sig-02.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Oct 2018 20:05:55 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Limited Additional Mechanisms for PKIX and SMIME WG of the IETF. Title : Use of the HSS/LMS Hash-based Signature Algorithm in the Cryptographic Message Syntax (CMS) Author : Russ Housley Filename : draft-ietf-lamps-cms-hash-sig-02.txt Pages : 16 Date : 2018-10-17 Abstract: This document specifies the conventions for using the the HSS/LMS hash-based signature algorithm with the Cryptographic Message Syntax (CMS). The HSS/LMS algorithm is one form of hash-based digital signature; it is described in [HASHSIG]. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-cms-hash-sig/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-lamps-cms-hash-sig-02 https://datatracker.ietf.org/doc/html/draft-ietf-lamps-cms-hash-sig-02 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-lamps-cms-hash-sig-02 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Wed Oct 17 13:06:59 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2D1BD130E13 for ; Wed, 17 Oct 2018 13:06:58 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4aHbBizil60a for ; Wed, 17 Oct 2018 13:06:56 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 31DD0130D7A for ; Wed, 17 Oct 2018 13:06:56 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id EF1863005D6 for ; Wed, 17 Oct 2018 16:06:53 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id N55d8NwFl7tn for ; Wed, 17 Oct 2018 16:06:53 -0400 (EDT) Received: from a860b60074bd.home (pool-71-127-50-4.washdc.fios.verizon.net [71.127.50.4]) by mail.smeinc.net (Postfix) with ESMTPSA id F04873004FE for ; Wed, 17 Oct 2018 16:06:52 -0400 (EDT) From: Russ Housley Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) Date: Wed, 17 Oct 2018 16:06:53 -0400 References: <153980675506.27653.14208289150597932162@ietfa.amsl.com> To: SPASM In-Reply-To: <153980675506.27653.14208289150597932162@ietfa.amsl.com> Message-Id: <84F72C3C-A8EF-46BE-B0E1-ECB3AAF33E91@vigilsec.com> X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: Re: [lamps] I-D Action: draft-ietf-lamps-cms-hash-sig-02.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Oct 2018 20:06:58 -0000 This revision resolves the last of the comments that I have received to = date. Russ > On Oct 17, 2018, at 4:05 PM, internet-drafts@ietf.org wrote: >=20 >=20 > A New Internet-Draft is available from the on-line Internet-Drafts = directories. > This draft is a work item of the Limited Additional Mechanisms for = PKIX and SMIME WG of the IETF. >=20 > Title : Use of the HSS/LMS Hash-based Signature = Algorithm in the Cryptographic Message Syntax (CMS) > Author : Russ Housley > Filename : draft-ietf-lamps-cms-hash-sig-02.txt > Pages : 16 > Date : 2018-10-17 >=20 > Abstract: > This document specifies the conventions for using the the HSS/LMS > hash-based signature algorithm with the Cryptographic Message Syntax > (CMS). The HSS/LMS algorithm is one form of hash-based digital > signature; it is described in [HASHSIG]. >=20 >=20 > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-lamps-cms-hash-sig/ >=20 > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-lamps-cms-hash-sig-02 > https://datatracker.ietf.org/doc/html/draft-ietf-lamps-cms-hash-sig-02 >=20 > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-lamps-cms-hash-sig-02 >=20 >=20 > Please note that it may take a couple of minutes from the time of = submission > until the htmlized version and diff are available at tools.ietf.org. >=20 > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ From nobody Thu Oct 18 10:04:16 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 46EFE128CE4 for ; Thu, 18 Oct 2018 10:04:14 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -5.166 X-Spam-Level: X-Spam-Status: No, score=-5.166 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, DKIMWL_WL_HIGH=-0.064, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=eff.org Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FX5SOT6VVlOY for ; Thu, 18 Oct 2018 10:04:13 -0700 (PDT) Received: from mail2.eff.org (mail2.eff.org [173.239.79.204]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1299A130DC0 for ; Thu, 18 Oct 2018 10:04:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=eff.org; s=mail2; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:MIME-Version: Date:Message-ID:From:References:Cc:To:Subject:Sender:Reply-To:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=6GPMwZU07f7QPRv2TFIk0JP5MwCUvdGZBpJoFs4jCPM=; b=NvafUIpoirUdW4jVejBhvC7yzR JFYryBBb2hKllLa3rPj6xAQh09x+BfpuXSWNmQSHBJCLQ9zLTFriWkX2m6RYnj4ncRiYtHhG4X+v3 L35iVZWo95sRvY8wzcuKMBkhRDeP+cV66e8wkb93iKrIrVqtagqe5L5alwWlqUmHSw68=; Received: ; Thu, 18 Oct 2018 10:04:10 -0700 To: Tim Hollebeek , Ryan Sleevi Cc: SPASM , Russ Housley References: From: Jacob Hoffman-Andrews Message-ID: <9d24ebe8-ad16-3f44-d8ee-b7cf80c32657@eff.org> Date: Thu, 18 Oct 2018 10:04:09 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2018 17:04:14 -0000 Just to add my voice to the choir: I don't think we should try to squeeze new things into 6844bis, but should work on getting it finalized. From nobody Fri Oct 19 12:00:47 2018 Return-Path: X-Original-To: spasm@ietf.org Delivered-To: spasm@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id CF906130FE8; Fri, 19 Oct 2018 11:56:33 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: "\"IETF Secretariat\"" To: , Cc: spasm@ietf.org, ekr@rtfm.com X-Test-IDTracker: no X-IETF-IDTracker: 6.87.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <153997539384.6592.14576121100020949171.idtracker@ietfa.amsl.com> Date: Fri, 19 Oct 2018 11:56:33 -0700 Archived-At: Subject: [lamps] lamps - Requested session has been scheduled for IETF 103 X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Oct 2018 18:56:42 -0000 Dear Russ Housley, The session(s) that you have requested have been scheduled. Below is the scheduled session information followed by the original request. lamps Session 1 (2:00 requested) Tuesday, 6 November 2018, Morning Session I 0900-1100 Room Name: Boromphimarn 3 size: 50 --------------------------------------------- iCalendar: https://datatracker.ietf.org/meeting/103/sessions/lamps.ics Request Information: --------------------------------------------------------- Working Group Name: Limited Additional Mechanisms for PKIX and SMIME Area Name: Security Area Session Requester: Russ Housley Number of Sessions: 1 Length of Session(s): 2 Hours Number of Attendees: 50 Conflicts to Avoid: First Priority: suit curdle quic perc saag sidrops sipbrandy tls ipwave stir acme ace rtcweb Second Priority: cfrg dprive oauth ipsecme People who must be present: Russell Housley Eric Rescorla Phillip Hallam-Baker Jim Schaad Tim Hollebeek Resources Requested: Special Requests: --------------------------------------------------------- From nobody Fri Oct 19 20:25:06 2018 Return-Path: X-Original-To: spasm@ietf.org Delivered-To: spasm@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 0DB23124D68; Fri, 19 Oct 2018 20:25:04 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: Cc: spasm@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 6.87.0 Auto-Submitted: auto-generated Precedence: bulk Reply-To: spasm@ietf.org Message-ID: <154000590401.20287.11458672027224457238@ietfa.amsl.com> Date: Fri, 19 Oct 2018 20:25:04 -0700 Archived-At: Subject: [lamps] I-D Action: draft-ietf-lamps-pkix-shake-03.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2018 03:25:04 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Limited Additional Mechanisms for PKIX and SMIME WG of the IETF. Title : Internet X.509 Public Key Infrastructure: Additional Algorithm Identifiers for RSASSA-PSS and ECDSA using SHAKEs as Hash Functions Authors : Panos Kampanakis Quynh Dang Filename : draft-ietf-lamps-pkix-shake-03.txt Pages : 16 Date : 2018-10-19 Abstract: Digital signatures are used to sign messages, X.509 certificates and CRLs (Certificate Revocation Lists). This document describes the conventions for using the SHAKE family of hash functions in the Internet X.509 as one-way hash functions with the RSA Probabilistic Signature Scheme and ECDSA signature algorithms. The conventions for the associated subject public keys are also described. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-pkix-shake/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-lamps-pkix-shake-03 https://datatracker.ietf.org/doc/html/draft-ietf-lamps-pkix-shake-03 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-lamps-pkix-shake-03 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Fri Oct 19 20:29:55 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 73051130DE2 for ; Fri, 19 Oct 2018 20:29:54 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.565 X-Spam-Level: X-Spam-Status: No, score=-14.565 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.064, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xTtKKLTo5b5y for ; Fri, 19 Oct 2018 20:29:52 -0700 (PDT) Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F32D9124D68 for ; Fri, 19 Oct 2018 20:29:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2254; q=dns/txt; s=iport; t=1540006191; x=1541215791; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=HB5e/46xEu2MHuf+25Gc6UzQapP2M3w1WBEZf28dihc=; b=GLmsi10zjKazB5uE+xkZmmyS2iGTHT7Pg5/ui5CDPnt+rDoRTrKpw5/x yibsoVrkTMZRVXHbxRm515OPmDkLFFgH7uy+lDq58fybaqqvX70C5wazm 3vt6+sQVnfeNTloILzF+0OsoDdFwZfbCUY5lKmocX0r/7q3NryKiajx4r k=; X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AEAAAWoMpb/5ldJa1kGgEBAQEBAgE?= =?us-ascii?q?BAQEHAgEBAQGBUQUBAQEBCwGCBGZ/KAqMA44olxSBegsBARgLhEkChQghNA0?= =?us-ascii?q?NAQMBAQIBAQJtHAELhToBAQEBAwEBODQLDAQCAQgRBAEBHxAnCx0IAgQOBQi?= =?us-ascii?q?DGoIBD6dmhDACDECFH4tPF4FBP4ERgxKDGwEBAgEBFoEghgECnkEJAoZeigg?= =?us-ascii?q?fgU9MhCeJZ4xVhl6CeQIRFIEmHTiBVXAVGiGCbAmCHBiIXIU+b4lWgS6BHwE?= =?us-ascii?q?B?= X-IronPort-AV: E=Sophos;i="5.54,402,1534809600"; d="scan'208";a="458698467" Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by rcdn-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 20 Oct 2018 03:29:50 +0000 Received: from XCH-RCD-009.cisco.com (xch-rcd-009.cisco.com [173.37.102.19]) by rcdn-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id w9K3ToWt010539 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Sat, 20 Oct 2018 03:29:50 GMT Received: from xch-aln-010.cisco.com (173.36.7.20) by XCH-RCD-009.cisco.com (173.37.102.19) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Fri, 19 Oct 2018 22:29:50 -0500 Received: from xch-aln-010.cisco.com ([173.36.7.20]) by XCH-ALN-010.cisco.com ([173.36.7.20]) with mapi id 15.00.1395.000; Fri, 19 Oct 2018 22:29:50 -0500 From: "Panos Kampanakis (pkampana)" To: "spasm@ietf.org" CC: "Dang, Quynh (Fed)" Thread-Topic: [lamps] I-D Action: draft-ietf-lamps-pkix-shake-03.txt Thread-Index: AQHUaCSCaDvDRu1KM0OXXTRlpcHG+aUneVjw Date: Sat, 20 Oct 2018 03:29:49 +0000 Message-ID: <78cade5fe934453ab46bd5c92ef3e116@XCH-ALN-010.cisco.com> References: <154000590401.20287.11458672027224457238@ietfa.amsl.com> In-Reply-To: <154000590401.20287.11458672027224457238@ietfa.amsl.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [10.82.252.235] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Outbound-SMTP-Client: 173.37.102.19, xch-rcd-009.cisco.com X-Outbound-Node: rcdn-core-2.cisco.com Archived-At: Subject: Re: [lamps] I-D Action: draft-ietf-lamps-pkix-shake-03.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Oct 2018 03:29:54 -0000 Hello all, This revision addresses all the comments from the WG so far and Jim's thoro= ugh review from July. Thank you Jim. It also add the ASN.1 in the appendix= .=20 Reviews welcome.=20 Rgs, Panos -----Original Message----- From: Spasm On Behalf Of internet-drafts@ietf.org Sent: Friday, October 19, 2018 11:25 PM To: i-d-announce@ietf.org Cc: spasm@ietf.org Subject: [lamps] I-D Action: draft-ietf-lamps-pkix-shake-03.txt A New Internet-Draft is available from the on-line Internet-Drafts director= ies. This draft is a work item of the Limited Additional Mechanisms for PKIX and= SMIME WG of the IETF. Title : Internet X.509 Public Key Infrastructure: Additio= nal Algorithm Identifiers for RSASSA-PSS and ECDSA using SHAKEs as Hash Fun= ctions Authors : Panos Kampanakis Quynh Dang Filename : draft-ietf-lamps-pkix-shake-03.txt Pages : 16 Date : 2018-10-19 Abstract: Digital signatures are used to sign messages, X.509 certificates and CRLs (Certificate Revocation Lists). This document describes the conventions for using the SHAKE family of hash functions in the Internet X.509 as one-way hash functions with the RSA Probabilistic Signature Scheme and ECDSA signature algorithms. The conventions for the associated subject public keys are also described. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-pkix-shake/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-lamps-pkix-shake-03 https://datatracker.ietf.org/doc/html/draft-ietf-lamps-pkix-shake-03 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-lamps-pkix-shake-03 Please note that it may take a couple of minutes from the time of submissio= n until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ Spasm mailing list Spasm@ietf.org https://www.ietf.org/mailman/listinfo/spasm From nobody Mon Oct 22 12:26:57 2018 Return-Path: X-Original-To: spasm@ietf.org Delivered-To: spasm@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id B22EB128CB7; Mon, 22 Oct 2018 12:26:47 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: Cc: spasm@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 6.87.1 Auto-Submitted: auto-generated Precedence: bulk Reply-To: spasm@ietf.org Message-ID: <154023640767.13425.14394671278019115377@ietfa.amsl.com> Date: Mon, 22 Oct 2018 12:26:47 -0700 Archived-At: Subject: [lamps] I-D Action: draft-ietf-lamps-cms-shakes-02.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Oct 2018 19:26:48 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Limited Additional Mechanisms for PKIX and SMIME WG of the IETF. Title : Use of the SHAKE One-way Hash Functions in the Cryptographic Message Syntax (CMS) Authors : Quynh Dang Panos Kampanakis Filename : draft-ietf-lamps-cms-shakes-02.txt Pages : 14 Date : 2018-10-22 Abstract: This document describes the conventions for using the SHAKE family of hash functions with the Cryptographic Message Syntax (CMS). The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-cms-shakes/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-lamps-cms-shakes-02 https://datatracker.ietf.org/doc/html/draft-ietf-lamps-cms-shakes-02 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-lamps-cms-shakes-02 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Mon Oct 22 12:50:59 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4FF90130E64; Mon, 22 Oct 2018 12:50:51 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.971 X-Spam-Level: X-Spam-Status: No, score=-14.971 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id G9UImGtYGfLv; Mon, 22 Oct 2018 12:50:49 -0700 (PDT) Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21B1F130E8F; Mon, 22 Oct 2018 12:50:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2024; q=dns/txt; s=iport; t=1540237849; x=1541447449; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=N0FrFQN79WdG85gxf5B31jQ28QryTyr1U2RjN+Sj4cs=; b=mKBS1ioZzAXUERtYjS4jct05cUqi9WFt7X3NmHC/NOeg96FPwblYkel5 aJhrZ6A3EyEPuYNKX5EAkt+72cBSClFyXFUW0V5y1U+jt0icRd17+Dpt7 wD3NzAXpCZnC8HmoAAwZOB9FhrENr8av9hZfVvEuWDVysPZS3GBYE/lwl U=; X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AFAABjKc5b/5JdJa1jGgEBAQEBAgE?= =?us-ascii?q?BAQEHAgEBAQGBUQUBAQEBCwGCBGZ/KAqMA4wbgg2XFYF6CwEBGAsJhEAChRU?= =?us-ascii?q?hNA0NAQMBAQIBAQJtHAyFOgEBAQQBATg0FwQCAQgRBAEBHxAnCx0IAgQBEgi?= =?us-ascii?q?DGoIBD6gphDACDECFIItSF4FBP4ERgxKDGwEBAgEBFoEghgECnkgJAoZgigg?= =?us-ascii?q?fgVJMhCeJaYxYhmSCegIRFIEmHTiBVXAVGiGCbAmCHBiIXIU+b4EoiGGBLgG?= =?us-ascii?q?BHgEB?= X-IronPort-AV: E=Sophos;i="5.54,413,1534809600"; d="scan'208";a="466893560" Received: from rcdn-core-10.cisco.com ([173.37.93.146]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 22 Oct 2018 19:50:47 +0000 Received: from XCH-ALN-007.cisco.com (xch-aln-007.cisco.com [173.36.7.17]) by rcdn-core-10.cisco.com (8.15.2/8.15.2) with ESMTPS id w9MJokSK018665 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 22 Oct 2018 19:50:46 GMT Received: from xch-aln-010.cisco.com (173.36.7.20) by XCH-ALN-007.cisco.com (173.36.7.17) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Mon, 22 Oct 2018 14:50:46 -0500 Received: from xch-aln-010.cisco.com ([173.36.7.20]) by XCH-ALN-010.cisco.com ([173.36.7.20]) with mapi id 15.00.1395.000; Mon, 22 Oct 2018 14:50:45 -0500 From: "Panos Kampanakis (pkampana)" To: "spasm@ietf.org" , "i-d-announce@ietf.org" Thread-Topic: [lamps] I-D Action: draft-ietf-lamps-cms-shakes-02.txt Thread-Index: AQHUaj1N2bsfVU9SeUWy1sfv5i6Vo6UrrBYg Date: Mon, 22 Oct 2018 19:50:45 +0000 Message-ID: <786b2e652e3f4da4812c723587cd53df@XCH-ALN-010.cisco.com> References: <154023640767.13425.14394671278019115377@ietfa.amsl.com> In-Reply-To: <154023640767.13425.14394671278019115377@ietfa.amsl.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [64.102.57.115] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Outbound-SMTP-Client: 173.36.7.17, xch-aln-007.cisco.com X-Outbound-Node: rcdn-core-10.cisco.com Archived-At: Subject: Re: [lamps] I-D Action: draft-ietf-lamps-cms-shakes-02.txt X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Oct 2018 19:50:58 -0000 Hello all, This revision addresses all the comments from the WG so far and Jim's thoro= ugh review from July. Thank you Jim. =20 It also starts the ASN.1 module in the appendix. We need to add more ASN.1 = code though, it is not done yet. Coming in the next iteration.=20 Reviews welcome.=20 Rgs, Panos -----Original Message----- From: Spasm On Behalf Of internet-drafts@ietf.org Sent: Monday, October 22, 2018 3:27 PM To: i-d-announce@ietf.org Cc: spasm@ietf.org Subject: [lamps] I-D Action: draft-ietf-lamps-cms-shakes-02.txt A New Internet-Draft is available from the on-line Internet-Drafts director= ies. This draft is a work item of the Limited Additional Mechanisms for PKIX and= SMIME WG of the IETF. Title : Use of the SHAKE One-way Hash Functions in the Cr= yptographic Message Syntax (CMS) Authors : Quynh Dang Panos Kampanakis Filename : draft-ietf-lamps-cms-shakes-02.txt Pages : 14 Date : 2018-10-22 Abstract: This document describes the conventions for using the SHAKE family of hash functions with the Cryptographic Message Syntax (CMS). The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-cms-shakes/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-lamps-cms-shakes-02 https://datatracker.ietf.org/doc/html/draft-ietf-lamps-cms-shakes-02 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-lamps-cms-shakes-02 Please note that it may take a couple of minutes from the time of submissio= n until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ Spasm mailing list Spasm@ietf.org https://www.ietf.org/mailman/listinfo/spasm From nobody Thu Oct 25 14:53:35 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 16C4E130F00 for ; Thu, 25 Oct 2018 14:53:27 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -7.471 X-Spam-Level: X-Spam-Status: No, score=-7.471 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=eff.org Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8I7Ls-x5hoxm for ; Thu, 25 Oct 2018 14:53:25 -0700 (PDT) Received: from mail2.eff.org (mail2.eff.org [173.239.79.204]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B99FB130EF7 for ; Thu, 25 Oct 2018 14:53:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=eff.org; s=mail2; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:MIME-Version: Date:Message-ID:From:References:To:Subject:Sender:Reply-To:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=EQg8h08eWJj37czOgya5Ge63I6uUdri6meGLYGNHbSI=; b=mabpn3kQcTN28IAJf8spi4QZS+ aCaTSfF2jpB57+X+lJjD8YwQ3MtoH7HrT5lBiPtPK3TrfNuCF+Di+bKQMWRjO+LjcJN+moPcM7/uo KemBm1eKtbQtLM0tX8CSJ2Ausxg9iwaXTLdVlHDXFrERhc/jPWXxN6MfRuGa2IEOk/ck=; Received: ; Thu, 25 Oct 2018 14:53:23 -0700 To: spasm@ietf.org References: From: Jacob Hoffman-Andrews Message-ID: <6080ec6e-0b29-c470-5e66-04d0571e502c@eff.org> Date: Thu, 25 Oct 2018 14:53:23 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 Oct 2018 21:53:34 -0000 On 10/11/2018 11:01 AM, Russ Housley wrote: > Please review the document and send your comments to the list by 22 October 2018. > > If no concerns are raised, the document will be forwarded to the IESG with a request for publication as Proposed Standard. It's now 25 October 2018 and AFAICT no unaddressed concerns have been raised. Time to forward the document to IESG? Thanks, Jacob From nobody Fri Oct 26 12:11:06 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 059BD130DFC for ; Fri, 26 Oct 2018 12:11:05 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.472 X-Spam-Level: X-Spam-Status: No, score=-2.472 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uR1Ibdw9heYQ for ; Fri, 26 Oct 2018 12:11:02 -0700 (PDT) Received: from mail1.bemta23.messagelabs.com (mail1.bemta23.messagelabs.com [67.219.246.4]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B8A6B130DF3 for ; Fri, 26 Oct 2018 12:11:01 -0700 (PDT) Received: from [67.219.246.100] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-4.bemta.az-b.us-east-1.aws.symcld.net id 40/26-11320-4C663DB5; Fri, 26 Oct 2018 19:11:00 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA1WSaUwTYRCG+Xa32xVZspQqYxULTYwJZmtrFIl oYuIf4hXjP1CjW7u0NaWt3UWLiUhQ1KAcJlaxQTSCBvEgKkSi8Ug13iIWqYoXVfCKF+ARxKi7 bPHI9+eZed+ZbyYZCtfcJ3UU7xN5r4tzGshY4kFK01r2cm77EtP9QHzGnnsDZEZNeOVsLOtD3 ytVVl3dALYIy1E5XBa3b4XKfuzIVrWnapavt6ODKEIHMktRLEUw23Eoe/4UlwMNU4nBj8flSA meIfhw65MUjKBIxgThc1cxmbXMPAgf95MyJ0r5rtZnhJI3w4Nzh6I8AzaeujXkJ5gJ8KW4WlW KKIpmlsGgf5Wc1jBuONR5VC3zCCYTHjV/UcmMmNHw7cbRoVKcSYLO7n1DDIwWIndvkgqPgjcv fkb9S2Fvf5CU2wOTCg+bWcWSDKF924ZWAeaCGrqe/EKKwMInvx9XeAHUtZQSCocQ1NekKpwGB +qbVAo74WzFazSc33o5EJ1nPDSURQjlgzYcvg82RgvGQUv1qWjTLSTci4xUFrbCzgZ5ULmgEo eun/VYJUoL/LNoQNJwZj+CS6UvMFmgmQS4vqebUEwsnDl/EVdYD6ffV0uslngmNFmVbCrs3BZ RK5wOm1t7yf2IakDpFq/DZhfzOIeTNZtMrNk8hZWeabqRW8dajPkCy3OCyJqN3FrBKBTkrXRa jS5ePImkI7N6sDstqOGgLYjGUJhhFE3ktC/RxFvc1gI7J9iXe/OdvBBE4yjKAHQtL2kJXt7G+ 3IdTulSh2Wg4gxaOluWacHD5QkOmyLdQCxV/qikCtcQLreL1yXR72UTI5vs+a4/LYbvPYSSdY k0iomJ0cR5eG+eQ/xff4uSKGRIpOvkLnEOl/jnp7fSEJg0RFVKmzyEyP2VdEWo1tLzbWwoGJ8 UbFqoowpPpndu0q+pWOYp+1zz8cJXU37P60XrO2c26undh68/1iP3BjKyoX3qtCtkua/Pt2vu CZV2ztkTk4Kr+7VHXqWJsYG4d5kFtgn9a8Jv5rNkifV5OFycfG1xWa5j4m1/wQ59SmNXYTw7O VTSkf1S64sVlxsIwc6Z03CvwP0GjeA1yeoDAAA= X-Env-Sender: tim.hollebeek@digicert.com X-Msg-Ref: server-10.tower-384.messagelabs.com!1540581060!1003286!1 X-Originating-IP: [216.32.180.119] X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass X-StarScan-Received: X-StarScan-Version: 9.14.24; banners=-,-,- X-VirusChecked: Checked Received: (qmail 861 invoked from network); 26 Oct 2018 19:11:00 -0000 Received: from mail-bn3nam04lp0119.outbound.protection.outlook.com (HELO NAM04-BN3-obe.outbound.protection.outlook.com) (216.32.180.119) by server-10.tower-384.messagelabs.com with AES256-SHA256 encrypted SMTP; 26 Oct 2018 19:11:00 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=U29A+fYlxpO9NyPnRhnXGYsZtIcyNg6ZgUMLL70htNQ=; b=ZPoA4dR9k+11q7TuDkXEIYGPGgLAOB/RQEFuotyc8HJGI6Vi40VcgY0TbME+pw9jHkXRsLyGxa82N8Us1aAhC/A4PPgLk5xFmKyLX6n4SWKD4pXlMqU/2Hvgvnc/cCPXb7nDW2JbFvqvPKIcxb/BTVli2fi0JzQiVSQQap1TYqI= Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1217.namprd14.prod.outlook.com (10.173.162.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1250.30; Fri, 26 Oct 2018 19:10:58 +0000 Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::c068:bfe2:cb64:217c]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::c068:bfe2:cb64:217c%9]) with mapi id 15.20.1250.032; Fri, 26 Oct 2018 19:10:58 +0000 From: Tim Hollebeek To: Jacob Hoffman-Andrews , "spasm@ietf.org" Thread-Topic: [lamps] WG Last Call for rfc6844bis Thread-Index: AQHUYYx49OvVTNXTEUG4xpwbXU/0E6UwlzOAgAFk5DA= Date: Fri, 26 Oct 2018 19:10:58 +0000 Message-ID: References: <6080ec6e-0b29-c470-5e66-04d0571e502c@eff.org> In-Reply-To: <6080ec6e-0b29-c470-5e66-04d0571e502c@eff.org> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [98.111.253.32] x-ms-publictraffictype: Email x-microsoft-exchange-diagnostics: 1; BN6PR14MB1217; 6:QXsapXtCsy8UaVsx1ytVtnS42c4S/cGRl8snfsSeUfCwKZU6Bbxg4iK22/MnlSJGHkMiKePiXFaV+GrNB0Q75X3Fj0ud19EM1DVw0PGZaHnGNrTL+7YD9ggzt73Qnh2tPNqOMPaIh3SydCJ4gx9f3icbS641Mr7WFf6IOAa+++fcmOn1+BPYC7j4ekEzRAjy3nNB0OOSXvcFeBDdLGFNIkW18WrEpZa57tCq/EkZxLCpXcadDPeLXWd5QwaFHh9wdm0I7/C9qCYo1RLy1kLLs1xPlVMUD80rhw1kKy0Oil8xiX1cWhVCTHu/oM+r1HvTVrb+2ZKB+MnF/2IJw6qQflpM2lAe9qkjumdET92hrg1zwrB5HxG0ckzXHqOJmwz+VC5qaW26Atsh5uiry9Igjnsu8OVqFBo+fgENpjEURNdsTOk5fIsshpelYSDiQhl3QU98OHVUh5jSWfz1GkPQ7w==; 5:a2SAkbQjH+StpesW5Bzq7PLOxpYmIC3rtnpaJu/stBJhaGJXYo491U+n2Z6eZNGKklIztYVjiNU5u+WBu7aE0K7UgMkx5kxbk0uhHMfV6ucaekVUVVBuyuuFybJ2cZ5dbVmH6hfka+Sv96HRmoRgk/qlLMIXld/LzbE2vjMDW4Y=; 7:vN1/+APeHWnVz0tr4jW60hGihyBTLoDrRWa1lLm6siXtTWpRKd5Wo3WmTZZQ8pEGM6UpXkW3pesj3xN8Z0T3CGMSSpKRWe7B1vfzmk8yvnYxxiNPS1mSiT2MRAfKQKwhKeUZUrugavwyL71t/pGDY9BjJs0FvztnFvKmMO4wOdW+bI9+HkQMjOnYd6+bs+t9ZTNctuP7n5mDYaCONM6tqxKcZotI+qx/mtymd5c25JljERZtvwxhTL8xd03zTWUz x-ms-exchange-antispam-srfa-diagnostics: SOS; x-ms-office365-filtering-correlation-id: b640d5a2-8b27-4cd2-cdea-08d63b76c30b x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1217; x-ms-traffictypediagnostic: BN6PR14MB1217: x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:; x-ms-exchange-senderadcheck: 1 x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(3231355)(944501410)(4983020)(52105095)(3002001)(10201501046)(93006095)(93001095)(148016)(149066)(150057)(6041310)(20161123564045)(20161123562045)(20161123558120)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:BN6PR14MB1217; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1217; x-forefront-prvs: 083751FCA6 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39860400002)(396003)(136003)(346002)(366004)(376002)(199004)(189003)(13464003)(99286004)(53546011)(6246003)(256004)(86362001)(6506007)(14444005)(316002)(5660300001)(55016002)(25786009)(2906002)(68736007)(7696005)(66066001)(5250100002)(966005)(97736004)(6436002)(2501003)(33656002)(14454004)(229853002)(53936002)(486006)(305945005)(110136005)(8676002)(105586002)(9686003)(102836004)(478600001)(6306002)(81166006)(44832011)(8936002)(186003)(2900100001)(76176011)(11346002)(26005)(7736002)(476003)(446003)(3846002)(99936001)(6116002)(74316002)(71190400001)(71200400001)(81156014)(106356001); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1217; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1; received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts) x-microsoft-antispam-message-info: P5KcUIHwrVZro6/9Qf6L+QHb8n8/VtRbj/jhS9Vwhj1c4UZ5oin8qW//nyA6XPZ5UlsUPkb0OpXmMhQzh0IHWV6AdKoWg1fHxgVvP7NyLdKpQv+fGkiPc84ijS5PZcJhEFB24uVEjckgdj1lcbIRohSRMwvXnXotzvEhx3Zo2gb0Rir2N2a+CDeMtRo/lPD50SL8RnI6pIdT4dumtExV7zH9u5J5+pGxWh5MlB7/cRVr33kz/qzAF6CEunYOCCbTTxcdBBsoZ5SOvThM+2cwPlStUfopeLo3/DnPftsvwifqXEDyc+3ZfxftxJEnr5tHYGihjehK//SSxdp6bKGccLsesG+L4L8he1N8F8Ayxks= spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=2.16.840.1.101.3.4.2.1; boundary="----=_NextPart_000_0697_01D46D3E.15C4DC90" MIME-Version: 1.0 X-OriginatorOrg: digicert.com X-MS-Exchange-CrossTenant-Network-Message-Id: b640d5a2-8b27-4cd2-cdea-08d63b76c30b X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Oct 2018 19:10:58.2608 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1217 Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Oct 2018 19:11:05 -0000 ------=_NextPart_000_0697_01D46D3E.15C4DC90 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit I think so. -Tim > -----Original Message----- > From: Spasm On Behalf Of Jacob Hoffman- > Andrews > Sent: Thursday, October 25, 2018 5:53 PM > To: spasm@ietf.org > Subject: Re: [lamps] WG Last Call for rfc6844bis > > On 10/11/2018 11:01 AM, Russ Housley wrote: > > Please review the document and send your comments to the list by 22 > October 2018. > > > > If no concerns are raised, the document will be forwarded to the IESG with > a request for publication as Proposed Standard. > > It's now 25 October 2018 and AFAICT no unaddressed concerns have been > raised. Time to forward the document to IESG? > > Thanks, > Jacob > > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm ------=_NextPart_000_0697_01D46D3E.15C4DC90 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCD0sw ggO3MIICn6ADAgECAhAM5+DlF9hG/o/lYPwb8DA5MA0GCSqGSIb3DQEBBQUAMGUxCzAJBgNVBAYT AlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5jb20xJDAi BgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTEx MTAwMDAwMDBaMGUxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsT EHd3dy5kaWdpY2VydC5jb20xJDAiBgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK0OFc7kQ4BcsYfzt2D5cRKlrtwmlIiq9M71 IDkoWGAM+IDaqRWVMmE8tbEohIqK3J8KDIMXeo+QrIrneVNcMYQq9g+YMjZ2zN7dPKii72r7IfJS Yd+fINcf4rHZ/hhk0hJbX/lYGDW8R82hNvlrf9SwOD7BG8OMM9nYLxj+KA+zp4PWw25EwGE1lhb+ WZyLdm3X8aJLDSv/C3LanmDQjpA1xnhVhyChz+VtCshJfDGYM2wi6YfQMlqiuhOCEe05F52ZOnKh 5vqk2dUXMXWuhX0irj8BRob2KHnIsdrkVxfEfhwOsLSSplazvbKX7aqn8LfFqD+VFtD/oZbrCF8Y d08CAwEAAaNjMGEwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFEXr oq/0ksuCMS1Ri6enIZ3zbcgPMB8GA1UdIwQYMBaAFEXroq/0ksuCMS1Ri6enIZ3zbcgPMA0GCSqG SIb3DQEBBQUAA4IBAQCiDrzf4u3w43JzemSUv/dyZtgy5EJ1Yq6H6/LV2d5Ws5/MzhQouQ2XYFwS TFjk0z2DSUVYlzVpGqhH6lbGeasS2GeBhN9/CTyU5rgmLCC9PbMoifdf/yLil4Qf6WXvh+DfwWdJ s13rsgkq6ybteL59PyvztyY1bV+JAbZJW58BBZurPSXBzLZ/wvFvhsb6ZGjrgS2U60K3+owe3WLx vlBnt2y98/Efaww2BxZ/N3ypW2168RJGYIPXJwS+S86XvsNnKmgR34DnDDNmvxMNFG7zfx9jEB76 jRslbWyPpbdhAbHSoyahEHGdreLD+cOZUbcrBwjOLuZQsqf6CkUvovDyMIIFOjCCBCKgAwIBAgIQ Di7WjgxCjxTrYbReNHesEzANBgkqhkiG9w0BAQsFADBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMM RGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2Vy dCBTSEEyIEFzc3VyZWQgSUQgQ0EwHhcNMTcxMTI4MDAwMDAwWhcNMjIwMjI1MTIwMDAwWjBWMQsw CQYDVQQGEwJVUzENMAsGA1UECBMEVXRhaDENMAsGA1UEBxMETGVoaTERMA8GA1UEChMIRGlnaUNl cnQxFjAUBgNVBAMTDVRpbSBIb2xsZWJlZWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKUTIS9F3d7CfkCjsf4my28pYoZJDkEAiXVqGP4jzbFkszUQNfW3PYpFUo1GnKQykl/tM0qnzw 05bfVLo1+ce0e9fyAwYfulr+HaAVCPqx+PZw9CDY6c0NYd7Fc7S0scONxKekNF4q1mUucfGuGapW sEsyix0CuR0NMuJ4I+w8qMn9MzjzI7bvduG+uVLmZIi0p6D8+2R5BOQFy0tVeQ/aLfS91fG1DTYF YkPF+a/6JlFxzywPzCth8KW2Po4w8JqQWtam/ADKrgMaOnEJs9csefTW/FWRDeGQk5t3rnyS19FP QfpyPPau4ChB5xokfRcg3VEwqfOoIIexjUhZY5X9AgMBAAGjggHzMIIB7zAfBgNVHSMEGDAWgBTn AiOAAE/Y17yUC9k/dDlJMjyKeTAdBgNVHQ4EFgQUjqBhf3GcBV6YGYSmp2iS4Wi/3N4wDAYDVR0T AQH/BAIwADAlBgNVHREEHjAcgRp0aW0uaG9sbGViZWVrQGRpZ2ljZXJ0LmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMEMEMGA1UdIAQ8MDowOAYKYIZIAYb9 bAQBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGIBgNVHR8E gYAwfjA9oDugOYY3aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFzc3VyZWRJ RENBLWcyLmNybDA9oDugOYY3aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFz c3VyZWRJRENBLWcyLmNybDB5BggrBgEFBQcBAQRtMGswJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBDBggrBgEFBQcwAoY3aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMkFzc3VyZWRJRENBLmNydDANBgkqhkiG9w0BAQsFAAOCAQEAmOLw9+cVMHn8tJ0k 76baCfFZwkvfvxSAlCXo+Fcsv55/og0V065Rpb4HvVTi0e0qKCMbBxc71NWxhMvKJHt+sfSmVatX mAOPNDRvtVvJBkcd0bvzMut/r3npQqs1wezHLtAq+MlQZDjgiJB+DkNblnnphzEQSp7q/4K9oMoP KViRxBv+/kseA8GOfhHU6EVmeu9xQrBqexH1DPUrUSGpNGDyvtUaU+bBy8Kz2hQfOu6f/73wLqUx e583C9y2Gqn1xCB77yPxXqRSLLRC6FbrToJbKiFYQJ4znZZyhPYJHL0SOpWyXfVKp4PEO54A/xr5 oVyPhEQhOtasoIRCLtHZrzCCBk4wggU2oAMCAQICEASueWBmZpAaucV/pmxb3M0wDQYJKoZIhvcN AQELBQAwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3 LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgQXNzdXJlZCBJRCBSb290IENBMB4XDTEz MTEwNTEyMDAwMFoXDTI4MTEwNTEyMDAwMFowZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lD ZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hB MiBBc3N1cmVkIElEIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PgRIz9qte/A J3kbLQWHohBDMd8O1BUbT3ekIs4+jHDwvgeO3ScqvAEdtiwKyt1pWB9B7WoFH9pjeFkeIiwr+Lp+ yTU7VvEffEJ+JbAjGcZFONc9RPkgfGCuHLBaGAS+jzv3qfCUmqYMY0m2QRdTQDK9T+ZQelAfJUXo 8Ymvzf9e/1Dz8BcR/73FifW9YrnY+45FBIVtmc3FSE39JqsCNkXqNtdfauIagkEK3OnZ9ZEXjsYh rTg8E+Yef2ac1U3ZRtr2z1KnfTskw7TBUTXGm+vU737kewPhRL16CzfgT8uCig1xGOSm4IksG/Oy czzBsJKeGH29q33FfQihLMKfcwIDAQABo4IC+DCCAvQwEgYDVR0TAQH/BAgwBgEB/wIBADAOBgNV HQ8BAf8EBAMCAYYwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wgYEGA1UdHwR6MHgwOqA4oDaGNGh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdp Q2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwOqA4oDaGNGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwME MIIBswYDVR0gBIIBqjCCAaYwggGiBgpghkgBhv1sAAIEMIIBkjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCCAWQGCCsGAQUFBwICMIIBVh6CAVIAQQBuAHkAIAB1AHMA ZQAgAG8AZgAgAHQAaABpAHMAIABDAGUAcgB0AGkAZgBpAGMAYQB0AGUAIABjAG8AbgBzAHQAaQB0 AHUAdABlAHMAIABhAGMAYwBlAHAAdABhAG4AYwBlACAAbwBmACAAdABoAGUAIABEAGkAZwBpAEMA ZQByAHQAIABDAFAALwBDAFAAUwAgAGEAbgBkACAAdABoAGUAIABSAGUAbAB5AGkAbgBnACAAUABh AHIAdAB5ACAAQQBnAHIAZQBlAG0AZQBuAHQAIAB3AGgAaQBjAGgAIABsAGkAbQBpAHQAIABsAGkA YQBiAGkAbABpAHQAeQAgAGEAbgBkACAAYQByAGUAIABpAG4AYwBvAHIAcABvAHIAYQB0AGUAZAAg AGgAZQByAGUAaQBuACAAYgB5ACAAcgBlAGYAZQByAGUAbgBjAGUALjAdBgNVHQ4EFgQU5wIjgABP 2Ne8lAvZP3Q5STI8inkwHwYDVR0jBBgwFoAUReuir/SSy4IxLVGLp6chnfNtyA8wDQYJKoZIhvcN AQELBQADggEBAE7UiSe5/R2Hd34PKAWQ8QovyTs+vZOckMav+pFRhzJUa+jKwXFRXJmOtfrgYhmZ pgeafBMn2+UCooQS2RX2CkRXxDSPbXMfOtagAT3e44LkRWuy6yX9gF4dOZC+W0L2zpFg4/mgVgxI EM4zaHvNk6vwastPWA+5e10bBIGepyLiV0kn7pKTCL5pCFMCOi5dyBn0UIBOAtmwXZG0k4f5lpaB VUCOZu2C2LsoX+1MYe0GWCgZUxFEvEcgKbIEbNiJVJk7ddtneCweknjGVT1YEhEybr1DDE0023vG QtvsvqubYUwGkuOO3yEqUFcEwGCiNdUknmY3CUnP1fhls+DibsIxggO/MIIDuwIBATB5MGUxCzAJ BgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xJDAiBgNVBAMTG0RpZ2lDZXJ0IFNIQTIgQXNzdXJlZCBJRCBDQQIQDi7WjgxCjxTrYbReNHes EzANBglghkgBZQMEAgEFAKCCAhcwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0B CQUxDxcNMTgxMDI2MTkxMDUyWjAvBgkqhkiG9w0BCQQxIgQgQ5QK/rUVhkM3Z5n0yx3SAAaLlRgd xVEehX4+bNEKirkwgYgGCSsGAQQBgjcQBDF7MHkwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERp Z2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQg U0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOthtF40d6wTMIGKBgsqhkiG9w0BCRACCzF7oHkw ZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2lj ZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOth tF40d6wTMIGTBgkqhkiG9w0BCQ8xgYUwgYIwCwYJYIZIAWUDBAEqMAsGCWCGSAFlAwQBFjAKBggq hkiG9w0DBzALBglghkgBZQMEAQIwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAsGCWCG SAFlAwQCATALBglghkgBZQMEAgMwCwYJYIZIAWUDBAICMAcGBSsOAwIaMA0GCSqGSIb3DQEBAQUA BIIBACyNoVHyVS2BczqyZmOhzq5qoQbxbqyKlQHwI/SI3OZduKTnK2N7GjsXo8/pWy42nD02ebCB YOU62B3Ac8NwUOZun7J/VapiR8cl1WdA2BQIWNuMS9uu6VuDImgsDC7cUTc5IEf1Tc3a+HpCo8Lk nFbmU8BfncTro+sD6FUxVYDv6Fl4C++GRKXYdoAvG949cDpi2ZWuxQCHUIjmeFPrZN7R1l2rdFPe ed+J3YFbpEIxgj9YrX8HzZ6wL1jzWOgXfS3JqpaCVX3LxZM8BzVjptN0rjGrt/H+NB9oW81WYfAK KeYxuCq2iC4cNKQ50YRNBAo8U/FjHCz0D+QFB4vaLJUAAAAAAAA= ------=_NextPart_000_0697_01D46D3E.15C4DC90-- From nobody Fri Oct 26 14:39:57 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E872D130E5B for ; Fri, 26 Oct 2018 14:39:48 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DTawopop4g_d for ; Fri, 26 Oct 2018 14:39:47 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2756D130E62 for ; Fri, 26 Oct 2018 14:39:47 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id D923E300A50 for ; Fri, 26 Oct 2018 17:39:44 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id jlLeFQ5l5zMD for ; Fri, 26 Oct 2018 17:39:44 -0400 (EDT) Received: from a860b60074bd.fios-router.home (pool-71-178-45-35.washdc.fios.verizon.net [71.178.45.35]) by mail.smeinc.net (Postfix) with ESMTPSA id F23AA300580; Fri, 26 Oct 2018 17:39:43 -0400 (EDT) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) From: Russ Housley In-Reply-To: <6080ec6e-0b29-c470-5e66-04d0571e502c@eff.org> Date: Fri, 26 Oct 2018 17:39:44 -0400 Cc: spasm@ietf.org Content-Transfer-Encoding: quoted-printable Message-Id: <476D9EED-9A6D-40AA-AB2E-57EF6E6EDC3A@vigilsec.com> References: <6080ec6e-0b29-c470-5e66-04d0571e502c@eff.org> To: Jacob Hoffman-Andrews X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: Re: [lamps] WG Last Call for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Oct 2018 21:39:56 -0000 Jacob: >=20 > On 10/11/2018 11:01 AM, Russ Housley wrote: >> Please review the document and send your comments to the list by 22 = October 2018. >> If no concerns are raised, the document will be forwarded to the = IESG with a request for publication as Proposed Standard. >=20 > It's now 25 October 2018 and AFAICT no unaddressed concerns have been = raised. Time to forward the document to IESG? I agree. A shepherd write-up is the next step. Either Tim or I will = work on that. Russ From nobody Mon Oct 29 14:23:21 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E0A1D130F58 for ; Mon, 29 Oct 2018 14:23:18 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.47 X-Spam-Level: X-Spam-Status: No, score=-2.47 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FnqSwIHPe15h for ; Mon, 29 Oct 2018 14:23:16 -0700 (PDT) Received: from mail1.bemta23.messagelabs.com (mail1.bemta23.messagelabs.com [67.219.246.214]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8407C131016 for ; Mon, 29 Oct 2018 14:23:16 -0700 (PDT) Received: from [67.219.246.196] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-2.bemta.az-c.us-east-1.aws.symcld.net id E8/37-10908-34A77DB5; Mon, 29 Oct 2018 21:23:15 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA1WTaUwTQRTHme7RVVldC8qzAY8mxnNr62288Ih HPOMHYvDAha5tTVuabtFijFGrgPUIiVYrihZFJHhiiRoUo3gQxZMQUdQgAsYTwSOeoLvs4vFl 8pv3/795b15mKEzTSmop3uPmXQ7OpiM74g97F51kp6yuWmR4lIdG73+QFItm5OZ+U81H8YTVk ZjsWUZYWi+fRM4dcz3Hf3qJdWjTLB/qSOHMVgyami+rpI2GyVRB6GKR2oc6iJsaBN+fjZKYZA zwoKRMJXEk0xc+lJdhEkcwk+FcyKeW49PhVmGj4tHD0eALUmJc9Nf7PyGJaWYJHLn/rM2PmO7 w5eaxNj/GREF1/YE2BiYSau+XkzJ3g1d1rYTsXwzZH0uVeE94vvE0LnMMVBzYgqQLAFNFQmZd nSKw0OT3YzLPAV+2F5dNFQiCew8r1QbCw9tvCZlt0OC/oFSwQ3HhI9RerWBbrZJ8D4Mr10OKE A3nt+aQstBEQP5tn0qenQl2FpQqQiYGuWU+Qh6YFp5WbkYyR8PLJyVEJuqf9c8MssQcjAkiqP /lJbLahtYVbuypx7MQJQrxEHg7QPazUHzxEiZzLzj7bp/CgyGtplzhQZCX80ZktcjjoMgkR/v Azi21aplHQtqdZjKIOhWgEYkuq9nitnNWG2s0GFijcSg7ih06TM+tZpP0KQLLc4KbNeq5VYJe SLUn2Ux6B+8+jcT3Z3Kqo86hlnRzKepBqXTd6JmxVYs0nROTTakWTrAkuFJsvFCKoilKB/SsV FHr6uLNvGe51SY+4nYZqHBdJD1NkmnBydkFq1mWbqIx1PbHmwIY9TyQIa6N0qrBHckOXhtF75 ISGCnBkuL4c1z7t6hAMdoIGoWFhWnCnbzLbnX/r79GURTSRdDVHvGUcKvD/afqa7EhldjQIU2 l1JCb+ytp16ETaYYPqfgN9rp3TUJ+TMbCfXH+uSuzd+efN2+ubEhYERh7aMEt53qi6in7mWwu NrYcHHLqUs7s8d6YSfA+dK0xvTrusbdXSSy39Gte9YZ3hV2mNtALm/oG7575DIfXBtJf3Y0/P vxq3rxPoT35nWruLVjfryUu48yP7HH2HWsmqieYj+hwwcIZB2IugfsNWSG/WhEEAAA= X-Env-Sender: tim.hollebeek@digicert.com X-Msg-Ref: server-26.tower-404.messagelabs.com!1540848194!1090830!1 X-Originating-IP: [216.32.180.175] X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass X-StarScan-Received: X-StarScan-Version: 9.14.24; banners=-,-,- X-VirusChecked: Checked Received: (qmail 32016 invoked from network); 29 Oct 2018 21:23:15 -0000 Received: from mail-bn3nam01lp0175.outbound.protection.outlook.com (HELO NAM01-BN3-obe.outbound.protection.outlook.com) (216.32.180.175) by server-26.tower-404.messagelabs.com with AES256-SHA256 encrypted SMTP; 29 Oct 2018 21:23:15 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=RUcTc0R0lo85lKeQR1ZHQixTHQPEQO/AETpI6wXevoI=; b=Lju1w46Lw921GSu6FcSstRNDQGw2l3LY5Tx8qMAHQYbRqn9I6qLsFhvZWBjV0ghhCEsFkt8TtisC6JrsTdMeUNjZqpRVcobwFKGsS3xYQMn3jiQGRWQcH4kBNqtlEDKTj/pH8Hsw0ERTO3dnkkam0nDqTUqFqyqkhg/KYb2isEw= Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1793.namprd14.prod.outlook.com (10.171.177.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1273.21; Mon, 29 Oct 2018 21:23:13 +0000 Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::c068:bfe2:cb64:217c]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::c068:bfe2:cb64:217c%9]) with mapi id 15.20.1273.027; Mon, 29 Oct 2018 21:23:13 +0000 From: Tim Hollebeek To: "spasm@ietf.org" Thread-Topic: WG Last call: draft-ietf-lamps-hash-of-root-key-cert-extn Thread-Index: AdRvzPBBtR4bZ3L/Qwawcc4P5WUlfQ== Date: Mon, 29 Oct 2018 21:23:13 +0000 Message-ID: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [8.46.76.30] x-ms-publictraffictype: Email x-microsoft-exchange-diagnostics: 1; BN6PR14MB1793; 6:QUWVma4wjymI210NrLEUEA88p2QZijlDzMLXDTbsXQYAhTqaBWzdT9rO6GbC4dFNzrDR+dHA4wFxAZM481DA4d3Kv6HRNCsGng5UmqEJUjrWM/YFJ7rFYapqvMFjLdNeivhehakjc7bhyB7huDbPzp3cTRoNl9gSjGyQQR+M6lkIkcYvAlbmSWBgI5tf314Nex1R+dOjNKXRdJfBiUhRQV35q1K70B7bp3tVx6BGTDFTvS6nq10g/XNP/1EHQP4QGG3lFtvgGDQJkjY9zVwrzOSIePeMXxzbDpXHQLtfqdvxF5OT+SVPWnsQDdCJ3Sb4tPg0QtbpGkPqGqZ0AXJqYaDJ/QlymLfy1coWeA0tMWClsHvltTuOHU4l55EU0uHzeSQcT71RgoUb4/vvNqQ9vx4GYUDI/GInWVVOCXA+NJXoSoDKTAyD2l5YlL5Kis+mdavHpiP9bbu0QJr3InWmOw==; 5:j2QXPFgDKdipUuPQNYuEOj+dKQXDV9jbEhmzanu2FMiAhfDdAt22CsQ6Y/f0M7em0PPXzDkWuj+EMSe1xx0wKt5QBvn30HNORD0GpsCePb2kLubCgrGXvW5X7KQ3o9fymfm7x6uypTVFgEvsBqoIYG/j1iCD8Zya4r7Tmptwmx4=; 7:SoL5Kma8XlU4+LwueNqTfKtBlngKhXwkhPJjISf2gkX2cyZwuI/KuDtA8tklHaTScVP3RlFmbla++CEGSOc6rKAJRdRZYR6faygm4MhEolSZhoerwdbRQ8bfTn9Ej7eCAvcexFkd3S+wNz2zV6evNQ== x-ms-exchange-antispam-srfa-diagnostics: SOS; x-ms-office365-filtering-correlation-id: e1d26e40-cb54-41c4-750b-08d63de4bc1b x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1793; x-ms-traffictypediagnostic: BN6PR14MB1793: x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(21748063052155)(28532068793085)(190501279198761)(227612066756510); x-ms-exchange-senderadcheck: 1 x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(5005006)(8121501046)(3231382)(944501410)(4983020)(52105095)(93006095)(93001095)(3002001)(10201501046)(148016)(149066)(150057)(6041310)(20161123560045)(20161123564045)(20161123562045)(20161123558120)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:BN6PR14MB1793; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1793; x-forefront-prvs: 084080FC15 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(396003)(136003)(376002)(39860400002)(346002)(189003)(199004)(8676002)(5640700003)(71190400001)(6916009)(790700001)(6116002)(53936002)(66066001)(3846002)(316002)(105586002)(71200400001)(6436002)(25786009)(33656002)(55016002)(5630700001)(5660300001)(6306002)(9686003)(54896002)(478600001)(5250100002)(106356001)(2351001)(14454004)(86362001)(68736007)(99936001)(186003)(256004)(2906002)(476003)(486006)(14444005)(2501003)(6506007)(99286004)(81166006)(7736002)(74316002)(2900100001)(26005)(102836004)(1730700003)(97736004)(81156014)(8936002)(7696005)(44832011); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1793; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts) x-microsoft-antispam-message-info: kzTXgOLwPtJQ3uqHlJlikkIG3f9olLI07RtdImvcpxwb9tuWDMZ/WaQpCsZOW7gzDt0Am8wzWnHFYljLFmAIqBy7jU7a7GxNfa76BdPtBo8Jomqpxk318K4xWhl3bRcgeD87pjo4wPlQx1vxsxj54nADY5mBVFcaXl5/gs+d7OSACbaSnYU/rZPndZHdZsG2mJ3NZmEdiYSS9q4O5g1qx4MV5v0jieoz7rdxGNEfVJKGmwlfEsXTdOZvogPusyLZfBSsW8Mhrp4FIocs3elgq7Maoyqv8Db2w/xpGE6Iy9nTW5b5EDj1Lvptcofv0tGpp0xXXzC2Avc76Xs1eBlsTx5JeOyXcctmuJLv9g3Tjtg= spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=2.16.840.1.101.3.4.2.1; boundary="----=_NextPart_000_070C_01D46FAC.0B4709D0" MIME-Version: 1.0 X-OriginatorOrg: digicert.com X-MS-Exchange-CrossTenant-Network-Message-Id: e1d26e40-cb54-41c4-750b-08d63de4bc1b X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Oct 2018 21:23:13.5846 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1793 Archived-At: Subject: [lamps] WG Last call: draft-ietf-lamps-hash-of-root-key-cert-extn X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Oct 2018 21:23:19 -0000 ------=_NextPart_000_070C_01D46FAC.0B4709D0 Content-Type: multipart/alternative; boundary="----=_NextPart_001_070D_01D46FAC.0B4709D0" ------=_NextPart_001_070D_01D46FAC.0B4709D0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit This is the LAMPS WG Last Call for "Hash Of Root Key Certificate Extension" . Please review the document and send your comments to the list by 12 November 2018. If no concerns are raised, the document will be forwarded to the IESG with a request for publication as Proposed Standard. -Tim ------=_NextPart_001_070D_01D46FAC.0B4709D0 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

 

This is the = LAMPS WG Last Call for “Hash Of Root Key Certificate = Extension” = <draft-ietf-lamps-hash-of-root-key-cert-extn-00>.

 

Please = review the document and send your comments to the list by 12 November = 2018.

If no concerns are raised, the document will be = forwarded to the IESG with a request for publication as Proposed = Standard.

 

-Tim

 

------=_NextPart_001_070D_01D46FAC.0B4709D0-- ------=_NextPart_000_070C_01D46FAC.0B4709D0 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCD0sw ggO3MIICn6ADAgECAhAM5+DlF9hG/o/lYPwb8DA5MA0GCSqGSIb3DQEBBQUAMGUxCzAJBgNVBAYT AlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5jb20xJDAi BgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTEx MTAwMDAwMDBaMGUxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsT EHd3dy5kaWdpY2VydC5jb20xJDAiBgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK0OFc7kQ4BcsYfzt2D5cRKlrtwmlIiq9M71 IDkoWGAM+IDaqRWVMmE8tbEohIqK3J8KDIMXeo+QrIrneVNcMYQq9g+YMjZ2zN7dPKii72r7IfJS Yd+fINcf4rHZ/hhk0hJbX/lYGDW8R82hNvlrf9SwOD7BG8OMM9nYLxj+KA+zp4PWw25EwGE1lhb+ WZyLdm3X8aJLDSv/C3LanmDQjpA1xnhVhyChz+VtCshJfDGYM2wi6YfQMlqiuhOCEe05F52ZOnKh 5vqk2dUXMXWuhX0irj8BRob2KHnIsdrkVxfEfhwOsLSSplazvbKX7aqn8LfFqD+VFtD/oZbrCF8Y d08CAwEAAaNjMGEwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFEXr oq/0ksuCMS1Ri6enIZ3zbcgPMB8GA1UdIwQYMBaAFEXroq/0ksuCMS1Ri6enIZ3zbcgPMA0GCSqG SIb3DQEBBQUAA4IBAQCiDrzf4u3w43JzemSUv/dyZtgy5EJ1Yq6H6/LV2d5Ws5/MzhQouQ2XYFwS TFjk0z2DSUVYlzVpGqhH6lbGeasS2GeBhN9/CTyU5rgmLCC9PbMoifdf/yLil4Qf6WXvh+DfwWdJ s13rsgkq6ybteL59PyvztyY1bV+JAbZJW58BBZurPSXBzLZ/wvFvhsb6ZGjrgS2U60K3+owe3WLx vlBnt2y98/Efaww2BxZ/N3ypW2168RJGYIPXJwS+S86XvsNnKmgR34DnDDNmvxMNFG7zfx9jEB76 jRslbWyPpbdhAbHSoyahEHGdreLD+cOZUbcrBwjOLuZQsqf6CkUvovDyMIIFOjCCBCKgAwIBAgIQ Di7WjgxCjxTrYbReNHesEzANBgkqhkiG9w0BAQsFADBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMM RGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2Vy dCBTSEEyIEFzc3VyZWQgSUQgQ0EwHhcNMTcxMTI4MDAwMDAwWhcNMjIwMjI1MTIwMDAwWjBWMQsw CQYDVQQGEwJVUzENMAsGA1UECBMEVXRhaDENMAsGA1UEBxMETGVoaTERMA8GA1UEChMIRGlnaUNl cnQxFjAUBgNVBAMTDVRpbSBIb2xsZWJlZWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKUTIS9F3d7CfkCjsf4my28pYoZJDkEAiXVqGP4jzbFkszUQNfW3PYpFUo1GnKQykl/tM0qnzw 05bfVLo1+ce0e9fyAwYfulr+HaAVCPqx+PZw9CDY6c0NYd7Fc7S0scONxKekNF4q1mUucfGuGapW sEsyix0CuR0NMuJ4I+w8qMn9MzjzI7bvduG+uVLmZIi0p6D8+2R5BOQFy0tVeQ/aLfS91fG1DTYF YkPF+a/6JlFxzywPzCth8KW2Po4w8JqQWtam/ADKrgMaOnEJs9csefTW/FWRDeGQk5t3rnyS19FP QfpyPPau4ChB5xokfRcg3VEwqfOoIIexjUhZY5X9AgMBAAGjggHzMIIB7zAfBgNVHSMEGDAWgBTn AiOAAE/Y17yUC9k/dDlJMjyKeTAdBgNVHQ4EFgQUjqBhf3GcBV6YGYSmp2iS4Wi/3N4wDAYDVR0T AQH/BAIwADAlBgNVHREEHjAcgRp0aW0uaG9sbGViZWVrQGRpZ2ljZXJ0LmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMEMEMGA1UdIAQ8MDowOAYKYIZIAYb9 bAQBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGIBgNVHR8E gYAwfjA9oDugOYY3aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFzc3VyZWRJ RENBLWcyLmNybDA9oDugOYY3aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFz c3VyZWRJRENBLWcyLmNybDB5BggrBgEFBQcBAQRtMGswJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBDBggrBgEFBQcwAoY3aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMkFzc3VyZWRJRENBLmNydDANBgkqhkiG9w0BAQsFAAOCAQEAmOLw9+cVMHn8tJ0k 76baCfFZwkvfvxSAlCXo+Fcsv55/og0V065Rpb4HvVTi0e0qKCMbBxc71NWxhMvKJHt+sfSmVatX mAOPNDRvtVvJBkcd0bvzMut/r3npQqs1wezHLtAq+MlQZDjgiJB+DkNblnnphzEQSp7q/4K9oMoP KViRxBv+/kseA8GOfhHU6EVmeu9xQrBqexH1DPUrUSGpNGDyvtUaU+bBy8Kz2hQfOu6f/73wLqUx e583C9y2Gqn1xCB77yPxXqRSLLRC6FbrToJbKiFYQJ4znZZyhPYJHL0SOpWyXfVKp4PEO54A/xr5 oVyPhEQhOtasoIRCLtHZrzCCBk4wggU2oAMCAQICEASueWBmZpAaucV/pmxb3M0wDQYJKoZIhvcN AQELBQAwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3 LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgQXNzdXJlZCBJRCBSb290IENBMB4XDTEz MTEwNTEyMDAwMFoXDTI4MTEwNTEyMDAwMFowZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lD ZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hB MiBBc3N1cmVkIElEIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PgRIz9qte/A J3kbLQWHohBDMd8O1BUbT3ekIs4+jHDwvgeO3ScqvAEdtiwKyt1pWB9B7WoFH9pjeFkeIiwr+Lp+ yTU7VvEffEJ+JbAjGcZFONc9RPkgfGCuHLBaGAS+jzv3qfCUmqYMY0m2QRdTQDK9T+ZQelAfJUXo 8Ymvzf9e/1Dz8BcR/73FifW9YrnY+45FBIVtmc3FSE39JqsCNkXqNtdfauIagkEK3OnZ9ZEXjsYh rTg8E+Yef2ac1U3ZRtr2z1KnfTskw7TBUTXGm+vU737kewPhRL16CzfgT8uCig1xGOSm4IksG/Oy czzBsJKeGH29q33FfQihLMKfcwIDAQABo4IC+DCCAvQwEgYDVR0TAQH/BAgwBgEB/wIBADAOBgNV HQ8BAf8EBAMCAYYwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wgYEGA1UdHwR6MHgwOqA4oDaGNGh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdp Q2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwOqA4oDaGNGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwME MIIBswYDVR0gBIIBqjCCAaYwggGiBgpghkgBhv1sAAIEMIIBkjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCCAWQGCCsGAQUFBwICMIIBVh6CAVIAQQBuAHkAIAB1AHMA ZQAgAG8AZgAgAHQAaABpAHMAIABDAGUAcgB0AGkAZgBpAGMAYQB0AGUAIABjAG8AbgBzAHQAaQB0 AHUAdABlAHMAIABhAGMAYwBlAHAAdABhAG4AYwBlACAAbwBmACAAdABoAGUAIABEAGkAZwBpAEMA ZQByAHQAIABDAFAALwBDAFAAUwAgAGEAbgBkACAAdABoAGUAIABSAGUAbAB5AGkAbgBnACAAUABh AHIAdAB5ACAAQQBnAHIAZQBlAG0AZQBuAHQAIAB3AGgAaQBjAGgAIABsAGkAbQBpAHQAIABsAGkA YQBiAGkAbABpAHQAeQAgAGEAbgBkACAAYQByAGUAIABpAG4AYwBvAHIAcABvAHIAYQB0AGUAZAAg AGgAZQByAGUAaQBuACAAYgB5ACAAcgBlAGYAZQByAGUAbgBjAGUALjAdBgNVHQ4EFgQU5wIjgABP 2Ne8lAvZP3Q5STI8inkwHwYDVR0jBBgwFoAUReuir/SSy4IxLVGLp6chnfNtyA8wDQYJKoZIhvcN AQELBQADggEBAE7UiSe5/R2Hd34PKAWQ8QovyTs+vZOckMav+pFRhzJUa+jKwXFRXJmOtfrgYhmZ pgeafBMn2+UCooQS2RX2CkRXxDSPbXMfOtagAT3e44LkRWuy6yX9gF4dOZC+W0L2zpFg4/mgVgxI EM4zaHvNk6vwastPWA+5e10bBIGepyLiV0kn7pKTCL5pCFMCOi5dyBn0UIBOAtmwXZG0k4f5lpaB VUCOZu2C2LsoX+1MYe0GWCgZUxFEvEcgKbIEbNiJVJk7ddtneCweknjGVT1YEhEybr1DDE0023vG QtvsvqubYUwGkuOO3yEqUFcEwGCiNdUknmY3CUnP1fhls+DibsIxggO/MIIDuwIBATB5MGUxCzAJ BgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xJDAiBgNVBAMTG0RpZ2lDZXJ0IFNIQTIgQXNzdXJlZCBJRCBDQQIQDi7WjgxCjxTrYbReNHes EzANBglghkgBZQMEAgEFAKCCAhcwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0B CQUxDxcNMTgxMDI5MjEyMzAxWjAvBgkqhkiG9w0BCQQxIgQgkexoCP0oxQjyN0zRJAFl9yb16Fk6 XoKEoEVBimem9cAwgYgGCSsGAQQBgjcQBDF7MHkwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERp Z2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQg U0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOthtF40d6wTMIGKBgsqhkiG9w0BCRACCzF7oHkw ZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2lj ZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOth tF40d6wTMIGTBgkqhkiG9w0BCQ8xgYUwgYIwCwYJYIZIAWUDBAEqMAsGCWCGSAFlAwQBFjAKBggq hkiG9w0DBzALBglghkgBZQMEAQIwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAsGCWCG SAFlAwQCATALBglghkgBZQMEAgMwCwYJYIZIAWUDBAICMAcGBSsOAwIaMA0GCSqGSIb3DQEBAQUA BIIBADdcbU/P66AQQBKqQcy8JjWmHvpvGJuRA7KVl6uQyh6677ytjjIAg8xgPnSTJhVuYgT/hNS3 GZcVYrg/yqRRbI04G9vA1+ecN2fGGquR9rC7828KhL1G/2dl2+wXKSHgE0hCnKLhhnCct+QxOdVE UqQOcqQkgnbEKe0ORmENcLBN9aTNcwYtC40kR9wdR/SA/nJpuouu3na/0iujqJKwSVyvgORdgj0R 0J+LPAOUss47fqGB8n4hZPeUFZx+PxiyyHHsqcBBEWKC6KuYPmhaSr+/e0cadqcE9CiGA1gM0YuR ltjo0fIXornU/7cA83ZgyH36vOGOrsJ3yZ9Jqo4RAnIAAAAAAAA= ------=_NextPart_000_070C_01D46FAC.0B4709D0-- From nobody Mon Oct 29 14:30:54 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8A47B131028 for ; Mon, 29 Oct 2018 14:30:52 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.898 X-Spam-Level: X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X3WN69YkwoWj for ; Mon, 29 Oct 2018 14:30:50 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5AE9F131027 for ; Mon, 29 Oct 2018 14:30:50 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 31CE4300AA6 for ; Mon, 29 Oct 2018 17:30:48 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id NQq3I9eOCbSI for ; Mon, 29 Oct 2018 17:30:47 -0400 (EDT) Received: from a860b60074bd.fios-router.home (pool-71-178-45-35.washdc.fios.verizon.net [71.178.45.35]) by mail.smeinc.net (Postfix) with ESMTPSA id 25EE0300523; Mon, 29 Oct 2018 17:30:47 -0400 (EDT) From: Russ Housley Message-Id: <9B060EFB-B2C8-407C-9CFC-CE11D8EC7B31@vigilsec.com> Content-Type: multipart/signed; boundary="Apple-Mail=_1A9DA36C-4D43-4C30-A532-8EAFD7C38EDA"; protocol="application/pkcs7-signature"; micalg=sha1 Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) Date: Mon, 29 Oct 2018 17:30:47 -0400 In-Reply-To: Cc: "spasm@ietf.org" To: Tim Hollebeek References: X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: Re: [lamps] WG Last call: draft-ietf-lamps-hash-of-root-key-cert-extn X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Oct 2018 21:30:53 -0000 --Apple-Mail=_1A9DA36C-4D43-4C30-A532-8EAFD7C38EDA Content-Type: multipart/alternative; boundary="Apple-Mail=_2182FDDD-4AC8-4098-9BB0-EF437108113F" --Apple-Mail=_2182FDDD-4AC8-4098-9BB0-EF437108113F Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 I was thinking this would be an Informational RFC. If the WG would = prefer it on the Standards Track, that is fine with me. I'll resubmit = with a change to the title page header if that is desired at the end of = WG Last Call. Russ > On Oct 29, 2018, at 5:23 PM, Tim Hollebeek = wrote: >=20 > =20 > This is the LAMPS WG Last Call for =E2=80=9CHash Of Root Key = Certificate Extension=E2=80=9D = . > =20 > Please review the document and send your comments to the list by 12 = November 2018. > If no concerns are raised, the document will be forwarded to the IESG = with a request for publication as Proposed Standard. > =20 > -Tim --Apple-Mail=_2182FDDD-4AC8-4098-9BB0-EF437108113F Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 I = was thinking this would be an Informational RFC.  If the WG would = prefer it on the Standards Track, that is fine with me.  I'll = resubmit with a change to the title page header if that is desired at = the end of WG Last Call.

Russ


On Oct = 29, 2018, at 5:23 PM, Tim Hollebeek <tim.hollebeek@digicert.com> wrote:

 
This is = the LAMPS WG Last Call for =E2=80=9CHash Of Root Key Certificate = Extension=E2=80=9D = <draft-ietf-lamps-hash-of-root-key-cert-extn-00>.
 
Please = review the document and send your comments to the list by 12 November = 2018.
If no = concerns are raised, the document will be forwarded to the IESG with a = request for publication as Proposed Standard.
 
-Tim

= --Apple-Mail=_2182FDDD-4AC8-4098-9BB0-EF437108113F-- --Apple-Mail=_1A9DA36C-4D43-4C30-A532-8EAFD7C38EDA Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIILITCCBTMw ggQboAMCAQICEFcbb6PmnhYLV+jqUdyIV+0wDQYJKoZIhvcNAQELBQAwgZcxCzAJBgNVBAYTAkdC MRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoT EUNPTU9ETyBDQSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNh dGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBMB4XDTE4MDYyNTAwMDAwMFoXDTE5MDYyNTIzNTk1OVow JTEjMCEGCSqGSIb3DQEJARYUaG91c2xleUB2aWdpbHNlYy5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnEvCLwPYmBVNn5g2+eLGRfG1tJMoocKbQzJeWmo3n2rJsc1eSbbCUDObn 4BfU1w+TsMsaWvP7jwHyOysmN2ekekp4XAd9yhgiLAkmb6F29U7acvrydb+iWJTKx176SdTXJZsz x8PyLddbPcOlS9TwbcgbPlzGHUzM5P/yaSClaZ+n9bFohGVOticKjj1JqQ67HuH7x0fNptRS6Sv4 tq3JWNqQRLb2DDvej57F67uVxOZKF+vgmyCr63giTBZm0gdBG1ugCMBj3UUx0PACXrvuF/2Bwnzp 6HupfUpnq7Mx/h+OzHDdXzVZiVDxP1BKHTp9pMqdK0jA+7rG+TzYGnoVAgMBAAGjggHqMIIB5jAf BgNVHSMEGDAWgBSCr2yM+MX+lmF86B89K3FIXsSLwDAdBgNVHQ4EFgQUXRm7se08nq8s9iX0jfft j3xBicUwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwIAYDVR0lBBkwFwYIKwYBBQUHAwQG CysGAQQBsjEBAwUCMBEGCWCGSAGG+EIBAQQEAwIFIDBGBgNVHSAEPzA9MDsGDCsGAQQBsjEBAgEB ATArMCkGCCsGAQUFBwIBFh1odHRwczovL3NlY3VyZS5jb21vZG8ubmV0L0NQUzBaBgNVHR8EUzBR ME+gTaBLhklodHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9DT01PRE9SU0FDbGllbnRBdXRoZW50aWNh dGlvbmFuZFNlY3VyZUVtYWlsQ0EuY3JsMIGLBggrBgEFBQcBAQR/MH0wVQYIKwYBBQUHMAKGSWh0 dHA6Ly9jcnQuY29tb2RvY2EuY29tL0NPTU9ET1JTQUNsaWVudEF1dGhlbnRpY2F0aW9uYW5kU2Vj dXJlRW1haWxDQS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAfBgNV HREEGDAWgRRob3VzbGV5QHZpZ2lsc2VjLmNvbTANBgkqhkiG9w0BAQsFAAOCAQEAf1YQTsTrXOFr bAbmYGHOh7+BEPKSkL+5sxDsKgJ5WGfKy0TXxlBIdOQ6UmxA7BJGz/+SEG/D8/X3GAKRYv6RBbAk 3wkF0/RwNqZoSPiSpy9DOrSAYmgPGyvZK6xmTN0omfamQ8vYOOa6vHcER9a/Wg37Pbuft0X6+/vh LOgEdv3ZKGhlv7nZdrOaoWMIkNdHVSMmFqJB6vGi74lGS7TgTWeO1NH8Jsu0VJyCrvruzmkacsDQ TlANxUatYuRXNdApXj2AVcPNdrkKEb2/8o66WweokfQrBwSwDe1pVvdANvwI2bcxugTbjGlmY1Ic d3xiq4wPhrDujT5vOOW767Xz7jCCBeYwggPOoAMCAQICEGqb4Tg7/ytrnwHV2binUlYwDQYJKoZI hvcNAQEMBQAwgYUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMSswKQYDVQQDEyJDT01P RE8gUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTEzMDExMDAwMDAwMFoXDTI4MDEwOTIz NTk1OVowgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNV BAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8g UlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrOeV6wodnVAFsc4A5jTxhh2IVDzJXkLTLWg0X06WD6cpzEu p/Y0dtmEatrQPTRI5Or1u6zf+bGBSyD9aH95dDSmeny1nxdlYCeXIoymMv6pQHJGNcIDpFDIMypV pVSRsivlJTRENf+RKwrB6vcfWlP8dSsE3Rfywq09N0ZfxcBa39V0wsGtkGWC+eQKiz4pBZYKjrc5 NOpG9qrxpZxyb4o4yNNwTqzaaPpGRqXB7IMjtf7tTmU2jqPMLxFNe1VXj9XB1rHvbRikw8lBoNoS WY66nJN/VCJv5ym6Q0mdCbDKCMPybTjoNCQuelc0IAaO4nLUXk0BOSxSxt8kCvsUtQIDAQABo4IB PDCCATgwHwYDVR0jBBgwFoAUu69+Aj36pvE8hI6t7jiY7NkyMtQwHQYDVR0OBBYEFIKvbIz4xf6W YXzoHz0rcUhexIvAMA4GA1UdDwEB/wQEAwIBhjASBgNVHRMBAf8ECDAGAQH/AgEAMBEGA1UdIAQK MAgwBgYEVR0gADBMBgNVHR8ERTBDMEGgP6A9hjtodHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9DT01P RE9SU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDBxBggrBgEFBQcBAQRlMGMwOwYIKwYBBQUH MAKGL2h0dHA6Ly9jcnQuY29tb2RvY2EuY29tL0NPTU9ET1JTQUFkZFRydXN0Q0EuY3J0MCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5jb21vZG9jYS5jb20wDQYJKoZIhvcNAQEMBQADggIBAHhcsoEo NE887l9Wzp+XVuyPomsX9vP2SQgG1NgvNc3fQP7TcePo7EIMERoh42awGGsma65u/ITse2hKZHzT 0CBxhuhb6txM1n/y78e/4ZOs0j8CGpfb+SJA3GaBQ+394k+z3ZByWPQedXLL1OdK8aRINTsjk/H5 Ns77zwbjOKkDamxlpZ4TKSDMKVmU/PUWNMKSTvtlenlxBhh7ETrN543j/Q6qqgCWgWuMAXijnRgl p9fyadqGOncjZjaaSOGTTFB+E2pvOUtY+hPebuPtTbq7vODqzCM6ryEhNhzf+enm0zlpXK7q332n XttNtjv7VFNYG+I31gnMrwfHM5tdhYF/8v5UY5g2xANPECTQdu9vWPoqNSGDt87b3gXb1AiGGaI0 6vzgkejL580ul+9hz9D0S0U4jkhJiA7EuTecP/CFtR72uYRBcunwwH3fciPjviDDAI9SnC/2aPY8 ydehzuZutLbZdRJ5PDEJM/1tyZR2niOYihZ+FCbtf3D9mB12D4ln9icgc7CwaxpNSCPt8i/GqK2H sOgkL3VYnwtx7cJUmpvVdZ4ognzgXtgtdk3ShrtOS1iAN2ZBXFiRmjVzmehoMof06r1xub+85hFQ zVxZx5/bRaTKTlL8YXLI8nAbR9HWdFqzcOoB/hxfEyIQpx9/s81rgzdEZOofSlZHynoSMYIDtzCC A7MCAQEwgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMT0wOwYDVQQDEzRDT01P RE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBAhBXG2+j5p4W C1fo6lHciFftMAkGBSsOAwIaBQCgggHfMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZI hvcNAQkFMQ8XDTE4MTAyOTIxMzA0N1owIwYJKoZIhvcNAQkEMRYEFCARLqmJ1GEpOCrp7OJu7IIP MN+XMIG9BgkrBgEEAYI3EAQxga8wgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVy IE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVk MT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVt YWlsIENBAhBXG2+j5p4WC1fo6lHciFftMIG/BgsqhkiG9w0BCRACCzGBr6CBrDCBlzELMAkGA1UE BhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgG A1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPTA7BgNVBAMTNENPTU9ETyBSU0EgQ2xpZW50IEF1dGhl bnRpY2F0aW9uIGFuZCBTZWN1cmUgRW1haWwgQ0ECEFcbb6PmnhYLV+jqUdyIV+0wDQYJKoZIhvcN AQEBBQAEggEAEZn9sOjdxL1H2+xWlCqQExhMb3Bzfka/h48pSuDoAtf7vAZ4J18bJ8aewXCQjiJi 8DBfDZX4M8bKF25H1XlAV3zVs4vZUy0kKxMSYLNTTLN80368k2MxEOOUl1okLA2w//B8Ffm3uwUj tqLAdCPtvL6WG9t5y9IyXZADP+/ARVhqVM9Lrm/TKl4BJHiPHv8E9XR3EmvbgK1aIXbXxo8/pZ4W o62O1B0g4U+gFHmdPjbeb/u85hwCrU6Uh6nxfv/ppxui4/ZWc+a8crOwsw/MYaZV406Y6mYlUIRe jxn78Q97b9aovU1Cf0sVbAaOe9Zxbi67OWjCT/nCgPAZCO733AAAAAAAAA== --Apple-Mail=_1A9DA36C-4D43-4C30-A532-8EAFD7C38EDA-- From nobody Mon Oct 29 14:33:50 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F2D7F130FBD for ; Mon, 29 Oct 2018 14:33:48 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.47 X-Spam-Level: X-Spam-Status: No, score=-2.47 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=digicert.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M5f1M0eNaB1B for ; Mon, 29 Oct 2018 14:33:46 -0700 (PDT) Received: from mail1.bemta24.messagelabs.com (mail1.bemta24.messagelabs.com [67.219.250.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 97969131028 for ; Mon, 29 Oct 2018 14:33:45 -0700 (PDT) Received: from [67.219.250.196] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-2.bemta.az-b.us-west-2.aws.symcld.net id BB/30-11706-8BC77DB5; Mon, 29 Oct 2018 21:33:44 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupkl+JIrShJLcpLzFFi42K5obC1UHdHzfV og59JFq9e3GS3mHct2YHJY8mSn0weq+58YQ1gimLNzEvKr0hgzbizeT1jwavUip7dF9gaGNsS uhi5OFgEepglTjT0M4M4QgL9TBLX9m5ihXDuM0o8W3CSrYuRk4NNwAAocZwJxBYRUJf4O/8CO 4jNLKAqMbdvDguILSzgJ7H3bQszRE2AxLynj1ggbCuJ6V/3g9ksQPVburrBbF6BWIn2phesIL aQwCRGiU27jEBsTgEHiXeH1oDNZxQQk/h+ag0TxC5xiVtP5oPZEgIiEg8vnmaDsEUlXj7+xwp RHyMx9/MhqLicxKOWTSwQtqzEpfndjCCPSQhcZ5OYdK+BGSKhK/Fh6lQo21diZ+8PJoiiS4wS C141skMktCS2TjoBNSlHYlLjf6h4rsSujTcZYbat6n3IAtF8gVmi/UgPVEJGYnfPQjaIRCubx NRTyxkhfk6RmLLqENsERu1ZSN6bBVTHLLCAUaL9x3vWWeBwEpQ4OfMJC0RRlMT2O+tYIWwtia lrX0HFtSWWLXzNPIuRA8jWlDh2WQlVmB3ItpHYkgIRVZSY0v2QHcI2k2g795FtASP3KkbzpKL M9IyS3MTMHF1DAwNdQ0MjXUNjE10LA73EKt0kvdJi3fLU4hJdI73E8mK94src5JwUvbzUkk2M wKSYUtAWsIPxZkv6IUZJDiYlUV5Ph+vRQnxJ+SmVGYnFGfFFpTmpxYcYZTg4lCR4tauBcoJFq empFWmZOcD0DJOW4OBREuFNBknzFhck5hZnpkOkTjFacvTdbp3BzPFoRgeQfAcihVjy8vNSpc R580AaBEAaMkrz4MbBcsglRlkpYV5GBgYGIZ6C1KLczBJU+VeM4hyMSsK8L0Cm8GTmlcBtfQV 0EBPQQYuFroAcVJKIkJJqYBQ5VtGwotDAN9S3cNaa2XsjZBgc7yzTDk1X1bidajp1NY9A2/3G f1y/P02ubpY7cEvm18TX4hFtD705nc4k58rUC+RW/X4m7mntGWsjuU3GwemF6FHJqJvcVxo2i HM/37LxXX7EbM2WjAV2hwL3V8h13b7885zrzZJ3+xdnrzxwpORvxYHp25VYijMSDbWYi4oTAd oJcjocBAAA X-Env-Sender: tim.hollebeek@digicert.com X-Msg-Ref: server-19.tower-344.messagelabs.com!1540848822!1264314!1 X-Originating-IP: [216.32.181.113] X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass X-StarScan-Received: X-StarScan-Version: 9.14.24; banners=-,-,- X-VirusChecked: Checked Received: (qmail 3338 invoked from network); 29 Oct 2018 21:33:43 -0000 Received: from mail-dm3nam05lp0113.outbound.protection.outlook.com (HELO NAM05-DM3-obe.outbound.protection.outlook.com) (216.32.181.113) by server-19.tower-344.messagelabs.com with AES256-SHA256 encrypted SMTP; 29 Oct 2018 21:33:43 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=7ErkshF+DNYLM1iHSlpz/85fOJJF6828aeIySqn7Qtw=; b=V8Fr96gBVmd9zA/tz4lAEv+Yaj8a7ZRDwDbSCP2gHUSthtWFKL9nb9VbTFrrf+GUKA8uCa1IVKnb9oGf06Aws0FUVz15oFkrg0SHkJDEvrrL9eM6UmaruBcWFvklFDDgmlIjJS3xEOB/TNsXAzD0dz8VsGYX2KLw2LqVavyOcZo= Received: from BN6PR14MB1106.namprd14.prod.outlook.com (10.173.161.15) by BN6PR14MB1395.namprd14.prod.outlook.com (10.172.150.9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1273.26; Mon, 29 Oct 2018 21:33:40 +0000 Received: from BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::c068:bfe2:cb64:217c]) by BN6PR14MB1106.namprd14.prod.outlook.com ([fe80::c068:bfe2:cb64:217c%9]) with mapi id 15.20.1273.027; Mon, 29 Oct 2018 21:33:40 +0000 From: Tim Hollebeek To: Russ Housley CC: "spasm@ietf.org" Thread-Topic: [lamps] WG Last call: draft-ietf-lamps-hash-of-root-key-cert-extn Thread-Index: AdRvzPBBtR4bZ3L/Qwawcc4P5WUlfQAAbeOAAAAH2/A= Date: Mon, 29 Oct 2018 21:33:40 +0000 Message-ID: References: <9B060EFB-B2C8-407C-9CFC-CE11D8EC7B31@vigilsec.com> In-Reply-To: <9B060EFB-B2C8-407C-9CFC-CE11D8EC7B31@vigilsec.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [8.46.76.30] x-ms-publictraffictype: Email x-microsoft-exchange-diagnostics: 1; BN6PR14MB1395; 6:9fsxKIDDiRQGlBlDbE8M3eqAs73Nv5jAi8jMyX/gGMLCT4uvlIY5GqR2rgjL6Olghbc0llLMGeupg170m9e+Vk2UbmFb7hp24xrIBzHStfYHnF6h9YG5hgCBQ3aUyuyQQ/4hFbYndY/K7USJIjxIec3F6B56TxmhmSClQUfoQVV3brDu/vUI30mfhCwV3U2tpx+Xhup39SsZbvP6McAk67m0Cih1NjOPIWER5aeJF2HE54gujK6+bX/vyc/KDKQcrZoqfg81ZYsFbbRFqpbHqFKHzaO8ifz3W0rUaUvoGrqLeFtc5D1dp+Zd/HFcICSTHbcPtETeilwrO9xGQ1tpG5DjyiOg6M5x/JuAreyUt7QFm/adZAkf73UjIBAzNfCL0DY+eqGtOSo0mwuqMORedbflArj9nPHGSn4YLuLLgEbpeNeyPT2zmuXwYqcBMQl/0OCgIL2MQKl+SlLoguj8xA==; 5:TqjZ8+0aDGOicon0JZViFo+0zUsMVGUAQseVvSEhKREH6aScdYEsN9zONLu8aoE67xjbq4n61z+738xdvkLwKugsAoNsQ9+Puhbt8lOCihbzQ6swPJ+pQ+qHMsupM6IZkB9bNSKdx2unlFWtDtSy/C1d4JHaxe2PwnL+jadSajA=; 7:rd5HL7Jdxhb62wIlVbbLy85EDJyUCWZmxv2rraOOV4kpyRdnNvmiZbLEiykYG/XKdsd3h/NYs6nrMWWgMlp/Crs+x61i+ijhVItuxU0rp4+ZbRoraVUVIiz+KQPOqjjLepK4e0Hs3X8X1fL3f76q5w== x-ms-exchange-antispam-srfa-diagnostics: SOS; x-ms-office365-filtering-correlation-id: 4721e87b-eac8-4313-3766-08d63de631b1 x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(49563074)(7193020); SRVR:BN6PR14MB1395; x-ms-traffictypediagnostic: BN6PR14MB1395: x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(21748063052155)(28532068793085)(190501279198761)(227612066756510); x-ms-exchange-senderadcheck: 1 x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(10201501046)(3002001)(93006095)(93001095)(3231382)(944501410)(4983020)(52105095)(148016)(149066)(150057)(6041310)(20161123564045)(20161123562045)(20161123558120)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:BN6PR14MB1395; BCL:0; PCL:0; RULEID:; SRVR:BN6PR14MB1395; x-forefront-prvs: 084080FC15 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(136003)(396003)(366004)(39860400002)(346002)(376002)(189003)(199004)(68736007)(74316002)(105586002)(256004)(81156014)(316002)(81166006)(8936002)(14454004)(8676002)(7736002)(33656002)(102836004)(106356001)(11346002)(99286004)(486006)(478600001)(476003)(2906002)(14444005)(44832011)(4326008)(446003)(66066001)(71200400001)(71190400001)(229853002)(6436002)(2900100001)(6246003)(6916009)(76176011)(5250100002)(5660300001)(26005)(99936001)(790700001)(97736004)(3846002)(6116002)(6506007)(53546011)(53936002)(25786009)(7696005)(86362001)(186003)(6306002)(54896002)(55016002)(9686003)(236005); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR14MB1395; H:BN6PR14MB1106.namprd14.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: digicert.com does not designate permitted sender hosts) x-microsoft-antispam-message-info: vL8Xrxxo6H5E+vdrg/jdcGcjczwJAcWzS8VOgWHmwTbrECut5/08PgTPV7tez5Nixa2vp3MSYjZdj0mFJapyIAJf17AUINW9NWmolxqgBMweQvlh6Ajzcu5UrrPCeEzSKesEjHE9g7EYaGDO5novNLCNxfBaejYlr9JuPTt8v8t9wS57RaMxAP7+kskTNPIZNvOXCZdxsHRWfQai1LFO0MN4zM33hp7mA77e1hnbOr4nOMbxy4pA8S30Gz3J01+E8fq/Lc+X8WJUuIkH6SMWM2AwqLkbGcKbnDx6K1qS9oB7I83trp/hOyhZOd0I4yxmSIEZcWri4aEshBHoFtVmqUIJ7DcDa/pycxP0cSmUHpc= spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=2.16.840.1.101.3.4.2.1; boundary="----=_NextPart_000_071D_01D46FAD.803F89A0" MIME-Version: 1.0 X-OriginatorOrg: digicert.com X-MS-Exchange-CrossTenant-Network-Message-Id: 4721e87b-eac8-4313-3766-08d63de631b1 X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Oct 2018 21:33:40.3042 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR14MB1395 Archived-At: Subject: Re: [lamps] WG Last call: draft-ietf-lamps-hash-of-root-key-cert-extn X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Oct 2018 21:33:49 -0000 ------=_NextPart_000_071D_01D46FAD.803F89A0 Content-Type: multipart/alternative; boundary="----=_NextPart_001_071E_01D46FAD.803F89A0" ------=_NextPart_001_071E_01D46FAD.803F89A0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Oops, my mistake. That was an unintentional change. =20 If anyone would like to see it be standards track, please speak up. = Otherwise we will stick with the author=E2=80=99s intent, which is for = the RFC to be Informational. =20 -Tim =20 From: Russ Housley =20 Sent: Monday, October 29, 2018 5:31 PM To: Tim Hollebeek Cc: spasm@ietf.org Subject: Re: [lamps] WG Last call: = draft-ietf-lamps-hash-of-root-key-cert-extn =20 I was thinking this would be an Informational RFC. If the WG would = prefer it on the Standards Track, that is fine with me. I'll resubmit = with a change to the title page header if that is desired at the end of = WG Last Call. =20 Russ =20 On Oct 29, 2018, at 5:23 PM, Tim Hollebeek > wrote: =20 =20 This is the LAMPS WG Last Call for =E2=80=9CHash Of Root Key Certificate = Extension=E2=80=9D . =20 Please review the document and send your comments to the list by 12 = November 2018. If no concerns are raised, the document will be forwarded to the IESG = with a request for publication as Proposed Standard. =20 -Tim =20 ------=_NextPart_001_071E_01D46FAD.803F89A0 Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: quoted-printable

Oops, my = mistake.=C2=A0 That was an unintentional change.

 

If anyone = would like to see it be standards track, please speak up.=C2=A0 = Otherwise we will stick with the author=E2=80=99s intent, which is for = the RFC to be Informational.

 

-Tim

 

From: Russ = Housley <housley@vigilsec.com>
Sent: Monday, October = 29, 2018 5:31 PM
To: Tim Hollebeek = <tim.hollebeek@digicert.com>
Cc: = spasm@ietf.org
Subject: Re: [lamps] WG Last call: = draft-ietf-lamps-hash-of-root-key-cert-extn

 

I was = thinking this would be an Informational RFC.  If the WG would = prefer it on the Standards Track, that is fine with me.  I'll = resubmit with a change to the title page header if that is desired at = the end of WG Last Call.

 

Russ

 



On Oct 29, 2018, at 5:23 PM, Tim Hollebeek <tim.hollebeek@digicert.com= > wrote:

 

 

This is the LAMPS WG Last Call for =E2=80=9CHash Of = Root Key Certificate Extension=E2=80=9D = <draft-ietf-lamps-hash-of-root-key-cert-extn-00>.

 

Please review the document and send your comments to = the list by 12 November 2018.

If no concerns are raised, the document will be = forwarded to the IESG with a request for publication as Proposed = Standard.

 

-Tim

 

------=_NextPart_001_071E_01D46FAD.803F89A0-- ------=_NextPart_000_071D_01D46FAD.803F89A0 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCD0sw ggO3MIICn6ADAgECAhAM5+DlF9hG/o/lYPwb8DA5MA0GCSqGSIb3DQEBBQUAMGUxCzAJBgNVBAYT AlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5jb20xJDAi BgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTEx MTAwMDAwMDBaMGUxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsT EHd3dy5kaWdpY2VydC5jb20xJDAiBgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBDQTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK0OFc7kQ4BcsYfzt2D5cRKlrtwmlIiq9M71 IDkoWGAM+IDaqRWVMmE8tbEohIqK3J8KDIMXeo+QrIrneVNcMYQq9g+YMjZ2zN7dPKii72r7IfJS Yd+fINcf4rHZ/hhk0hJbX/lYGDW8R82hNvlrf9SwOD7BG8OMM9nYLxj+KA+zp4PWw25EwGE1lhb+ WZyLdm3X8aJLDSv/C3LanmDQjpA1xnhVhyChz+VtCshJfDGYM2wi6YfQMlqiuhOCEe05F52ZOnKh 5vqk2dUXMXWuhX0irj8BRob2KHnIsdrkVxfEfhwOsLSSplazvbKX7aqn8LfFqD+VFtD/oZbrCF8Y d08CAwEAAaNjMGEwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFEXr oq/0ksuCMS1Ri6enIZ3zbcgPMB8GA1UdIwQYMBaAFEXroq/0ksuCMS1Ri6enIZ3zbcgPMA0GCSqG SIb3DQEBBQUAA4IBAQCiDrzf4u3w43JzemSUv/dyZtgy5EJ1Yq6H6/LV2d5Ws5/MzhQouQ2XYFwS TFjk0z2DSUVYlzVpGqhH6lbGeasS2GeBhN9/CTyU5rgmLCC9PbMoifdf/yLil4Qf6WXvh+DfwWdJ s13rsgkq6ybteL59PyvztyY1bV+JAbZJW58BBZurPSXBzLZ/wvFvhsb6ZGjrgS2U60K3+owe3WLx vlBnt2y98/Efaww2BxZ/N3ypW2168RJGYIPXJwS+S86XvsNnKmgR34DnDDNmvxMNFG7zfx9jEB76 jRslbWyPpbdhAbHSoyahEHGdreLD+cOZUbcrBwjOLuZQsqf6CkUvovDyMIIFOjCCBCKgAwIBAgIQ Di7WjgxCjxTrYbReNHesEzANBgkqhkiG9w0BAQsFADBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMM RGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2Vy dCBTSEEyIEFzc3VyZWQgSUQgQ0EwHhcNMTcxMTI4MDAwMDAwWhcNMjIwMjI1MTIwMDAwWjBWMQsw CQYDVQQGEwJVUzENMAsGA1UECBMEVXRhaDENMAsGA1UEBxMETGVoaTERMA8GA1UEChMIRGlnaUNl cnQxFjAUBgNVBAMTDVRpbSBIb2xsZWJlZWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKUTIS9F3d7CfkCjsf4my28pYoZJDkEAiXVqGP4jzbFkszUQNfW3PYpFUo1GnKQykl/tM0qnzw 05bfVLo1+ce0e9fyAwYfulr+HaAVCPqx+PZw9CDY6c0NYd7Fc7S0scONxKekNF4q1mUucfGuGapW sEsyix0CuR0NMuJ4I+w8qMn9MzjzI7bvduG+uVLmZIi0p6D8+2R5BOQFy0tVeQ/aLfS91fG1DTYF YkPF+a/6JlFxzywPzCth8KW2Po4w8JqQWtam/ADKrgMaOnEJs9csefTW/FWRDeGQk5t3rnyS19FP QfpyPPau4ChB5xokfRcg3VEwqfOoIIexjUhZY5X9AgMBAAGjggHzMIIB7zAfBgNVHSMEGDAWgBTn AiOAAE/Y17yUC9k/dDlJMjyKeTAdBgNVHQ4EFgQUjqBhf3GcBV6YGYSmp2iS4Wi/3N4wDAYDVR0T AQH/BAIwADAlBgNVHREEHjAcgRp0aW0uaG9sbGViZWVrQGRpZ2ljZXJ0LmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMEMEMGA1UdIAQ8MDowOAYKYIZIAYb9 bAQBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGIBgNVHR8E gYAwfjA9oDugOYY3aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFzc3VyZWRJ RENBLWcyLmNybDA9oDugOYY3aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkFz c3VyZWRJRENBLWcyLmNybDB5BggrBgEFBQcBAQRtMGswJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBDBggrBgEFBQcwAoY3aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMkFzc3VyZWRJRENBLmNydDANBgkqhkiG9w0BAQsFAAOCAQEAmOLw9+cVMHn8tJ0k 76baCfFZwkvfvxSAlCXo+Fcsv55/og0V065Rpb4HvVTi0e0qKCMbBxc71NWxhMvKJHt+sfSmVatX mAOPNDRvtVvJBkcd0bvzMut/r3npQqs1wezHLtAq+MlQZDjgiJB+DkNblnnphzEQSp7q/4K9oMoP KViRxBv+/kseA8GOfhHU6EVmeu9xQrBqexH1DPUrUSGpNGDyvtUaU+bBy8Kz2hQfOu6f/73wLqUx e583C9y2Gqn1xCB77yPxXqRSLLRC6FbrToJbKiFYQJ4znZZyhPYJHL0SOpWyXfVKp4PEO54A/xr5 oVyPhEQhOtasoIRCLtHZrzCCBk4wggU2oAMCAQICEASueWBmZpAaucV/pmxb3M0wDQYJKoZIhvcN AQELBQAwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3 LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgQXNzdXJlZCBJRCBSb290IENBMB4XDTEz MTEwNTEyMDAwMFoXDTI4MTEwNTEyMDAwMFowZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lD ZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hB MiBBc3N1cmVkIElEIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PgRIz9qte/A J3kbLQWHohBDMd8O1BUbT3ekIs4+jHDwvgeO3ScqvAEdtiwKyt1pWB9B7WoFH9pjeFkeIiwr+Lp+ yTU7VvEffEJ+JbAjGcZFONc9RPkgfGCuHLBaGAS+jzv3qfCUmqYMY0m2QRdTQDK9T+ZQelAfJUXo 8Ymvzf9e/1Dz8BcR/73FifW9YrnY+45FBIVtmc3FSE39JqsCNkXqNtdfauIagkEK3OnZ9ZEXjsYh rTg8E+Yef2ac1U3ZRtr2z1KnfTskw7TBUTXGm+vU737kewPhRL16CzfgT8uCig1xGOSm4IksG/Oy czzBsJKeGH29q33FfQihLMKfcwIDAQABo4IC+DCCAvQwEgYDVR0TAQH/BAgwBgEB/wIBADAOBgNV HQ8BAf8EBAMCAYYwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wgYEGA1UdHwR6MHgwOqA4oDaGNGh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdp Q2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwOqA4oDaGNGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydEFzc3VyZWRJRFJvb3RDQS5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwME MIIBswYDVR0gBIIBqjCCAaYwggGiBgpghkgBhv1sAAIEMIIBkjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCCAWQGCCsGAQUFBwICMIIBVh6CAVIAQQBuAHkAIAB1AHMA ZQAgAG8AZgAgAHQAaABpAHMAIABDAGUAcgB0AGkAZgBpAGMAYQB0AGUAIABjAG8AbgBzAHQAaQB0 AHUAdABlAHMAIABhAGMAYwBlAHAAdABhAG4AYwBlACAAbwBmACAAdABoAGUAIABEAGkAZwBpAEMA ZQByAHQAIABDAFAALwBDAFAAUwAgAGEAbgBkACAAdABoAGUAIABSAGUAbAB5AGkAbgBnACAAUABh AHIAdAB5ACAAQQBnAHIAZQBlAG0AZQBuAHQAIAB3AGgAaQBjAGgAIABsAGkAbQBpAHQAIABsAGkA YQBiAGkAbABpAHQAeQAgAGEAbgBkACAAYQByAGUAIABpAG4AYwBvAHIAcABvAHIAYQB0AGUAZAAg AGgAZQByAGUAaQBuACAAYgB5ACAAcgBlAGYAZQByAGUAbgBjAGUALjAdBgNVHQ4EFgQU5wIjgABP 2Ne8lAvZP3Q5STI8inkwHwYDVR0jBBgwFoAUReuir/SSy4IxLVGLp6chnfNtyA8wDQYJKoZIhvcN AQELBQADggEBAE7UiSe5/R2Hd34PKAWQ8QovyTs+vZOckMav+pFRhzJUa+jKwXFRXJmOtfrgYhmZ pgeafBMn2+UCooQS2RX2CkRXxDSPbXMfOtagAT3e44LkRWuy6yX9gF4dOZC+W0L2zpFg4/mgVgxI EM4zaHvNk6vwastPWA+5e10bBIGepyLiV0kn7pKTCL5pCFMCOi5dyBn0UIBOAtmwXZG0k4f5lpaB VUCOZu2C2LsoX+1MYe0GWCgZUxFEvEcgKbIEbNiJVJk7ddtneCweknjGVT1YEhEybr1DDE0023vG QtvsvqubYUwGkuOO3yEqUFcEwGCiNdUknmY3CUnP1fhls+DibsIxggO/MIIDuwIBATB5MGUxCzAJ BgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xJDAiBgNVBAMTG0RpZ2lDZXJ0IFNIQTIgQXNzdXJlZCBJRCBDQQIQDi7WjgxCjxTrYbReNHes EzANBglghkgBZQMEAgEFAKCCAhcwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0B CQUxDxcNMTgxMDI5MjEzMzI3WjAvBgkqhkiG9w0BCQQxIgQglKsCU8ocyc+RJh+3OVwwRcwBi4Kp XcCrbm+n0AMjO6wwgYgGCSsGAQQBgjcQBDF7MHkwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERp Z2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQg U0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOthtF40d6wTMIGKBgsqhkiG9w0BCRACCzF7oHkw ZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3LmRpZ2lj ZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgU0hBMiBBc3N1cmVkIElEIENBAhAOLtaODEKPFOth tF40d6wTMIGTBgkqhkiG9w0BCQ8xgYUwgYIwCwYJYIZIAWUDBAEqMAsGCWCGSAFlAwQBFjAKBggq hkiG9w0DBzALBglghkgBZQMEAQIwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAsGCWCG SAFlAwQCATALBglghkgBZQMEAgMwCwYJYIZIAWUDBAICMAcGBSsOAwIaMA0GCSqGSIb3DQEBAQUA BIIBAD/s6hUonRxeUrfFJHDvlHeprjpHjKTnBtF2dl5srSzzoh9QmUmIhPi4NkEyHFyqHvAZ0qh4 ARcDc1c950qzjgOS1UNEgqOEy4sm8LH6FZnnB179qQt6g7IHUhmWFCjVi+aaTpRvyVq2YAyFMLhk Qeq7KBWo+YPSAFdYQZj7r0ML4+IOnE/vpGaF/BeQn2Ba0lePXhXcBldpEWSl4PI7xbDqadROn71W hw+J0dQdytkddXaXJdc3usZ6Z3vo2FSVIvGbgR8tqOV47JebkArZiwYBnTPI1xgNnv2a8fdOoGeD A1JZnkH6q8Bwarnswcv964d0lH+xXGrMHEomHrbfvLsAAAAAAAA= ------=_NextPart_000_071D_01D46FAD.803F89A0-- From nobody Tue Oct 30 10:04:50 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61922130E0F for ; Tue, 30 Oct 2018 10:04:36 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T_Kxz-kw5T5S for ; Tue, 30 Oct 2018 10:04:34 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40652130DFC for ; Tue, 30 Oct 2018 10:04:34 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id E2AE4300AB1 for ; Tue, 30 Oct 2018 13:04:31 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id ZfQ760KEHwfH for ; Tue, 30 Oct 2018 13:04:30 -0400 (EDT) Received: from a860b60074bd.fios-router.home (pool-71-178-45-35.washdc.fios.verizon.net [71.178.45.35]) by mail.smeinc.net (Postfix) with ESMTPSA id DCA00300A46; Tue, 30 Oct 2018 13:04:29 -0400 (EDT) From: Russ Housley Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable X-Priority: 1 Date: Tue, 30 Oct 2018 13:04:30 -0400 Message-Id: <7FC03EEB-0D87-4454-805C-62DBCBA845C3@vigilsec.com> Cc: SPASM To: Rob Stradling , jsha@letsencrypt.org, Phillip Hallam-Baker Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: [lamps] Preparing the shepherd write-up for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Oct 2018 17:04:49 -0000 IDnits reports the following problems: idnits 2.16.0=20 Checking nits according to https://www.ietf.org/id-info/checklist : = --------------------------------------------------------------------------= -- =3D=3D The 'Obsoletes: ' line in the draft header should list only the _numbers_ of the RFCs which will be obsoleted by this document (if approved); it should not include the word 'RFC' in the list. {{{ Easy to fix, and I would not say anything if this was the only = issue. }}} -- The draft header indicates that this document obsoletes RFC6844, = but the abstract doesn't seem to mention this, which it should. {{{ Please add a sentence to the Abstract. }}} Checking references for intended status: Proposed Standard = --------------------------------------------------------------------------= -- (See RFCs 3967 and 4897 for information about using normative = references to lower-maturity documents in RFCs) =3D=3D Missing Reference: 'STD13' is mentioned on line 194, but not = defined {{{ Perhaps you meant to reference RFC 1035 here. }}} ** Downref: Normative reference to an Informational RFC: RFC 3647 {{{ Can this be moved to an Informational reference? }}} ** Obsolete normative reference: RFC 5070 (Obsoleted by RFC 7970) {{{ Is there a reason to not reference RFC 7970? }}} ** Obsolete normative reference: RFC 5226 (Obsoleted by RFC 8126) {{{ Is there a reason to not reference RFC 8126? }}} Russ From nobody Tue Oct 30 10:23:16 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5DB90130D7A for ; Tue, 30 Oct 2018 10:23:14 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.171 X-Spam-Level: X-Spam-Status: No, score=-1.171 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, KHOP_DYNAMIC=1.999, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id c3WVQwjRX5GD for ; Tue, 30 Oct 2018 10:23:13 -0700 (PDT) Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0BCC912D4EA for ; Tue, 30 Oct 2018 10:23:13 -0700 (PDT) Received: from pps.filterd (m0050093.ppops.net [127.0.0.1]) by m0050093.ppops.net-00190b01. (8.16.0.23/8.16.0.23) with SMTP id w9UHN0OF016541; Tue, 30 Oct 2018 17:23:11 GMT DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : subject : date : message-id : content-type : mime-version; s=jan2016.eng; bh=SOd5q5E001PB62QX3hdbZcqxJ3VEzzMLUtiYly9e8Js=; b=kG8wEIuhXwEVdyb2bBB96nf5+iegahDgV1+3wKNfJOsd8c1RsjlpqlQ71sZPWTkRBYyb S8krYmZiM3MlxRP9ZX4DlPTKRcfVAaua2wjKlUXwcVXRuou7zfQMFSpy056u0bkuYLx7 P9lXEt+OqGVCQBTOHjhqNAazm2/Cw5ZWJSIzdokYGyKO17pAUdOCTNxHCga8aquG14Si G9L2IC3utXEPmBjB14FP+WRC54oB1BzblOmQ1BXBtDIdl3oDQv35JJaqC6LBJjGvdoQ7 ZVvwVOU0iyp5ezvMtoql/Tj8G1MwAoIQD9m5dfqBHrLui+rdgZjKbifTHzj04WCOW0eV vQ== Received: from prod-mail-ppoint2 (prod-mail-ppoint2.akamai.com [184.51.33.19]) by m0050093.ppops.net-00190b01. with ESMTP id 2nejcs9au3-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 30 Oct 2018 17:23:11 +0000 Received: from pps.filterd (prod-mail-ppoint2.akamai.com [127.0.0.1]) by prod-mail-ppoint2.akamai.com (8.16.0.21/8.16.0.21) with SMTP id w9UHKpaB017947; Tue, 30 Oct 2018 13:23:09 -0400 Received: from email.msg.corp.akamai.com ([172.27.123.33]) by prod-mail-ppoint2.akamai.com with ESMTP id 2nckcap290-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Tue, 30 Oct 2018 13:23:09 -0400 Received: from USMA1EX-DAG1MB5.msg.corp.akamai.com (172.27.123.105) by usma1ex-dag1mb1.msg.corp.akamai.com (172.27.123.101) with Microsoft SMTP Server (TLS) id 15.0.1365.1; Tue, 30 Oct 2018 13:23:09 -0400 Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com (172.27.123.101) by usma1ex-dag1mb5.msg.corp.akamai.com (172.27.123.105) with Microsoft SMTP Server (TLS) id 15.0.1365.1; Tue, 30 Oct 2018 13:23:09 -0400 Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com ([172.27.123.101]) by usma1ex-dag1mb1.msg.corp.akamai.com ([172.27.123.101]) with mapi id 15.00.1365.000; Tue, 30 Oct 2018 13:23:09 -0400 From: "Salz, Rich" To: Tim Hollebeek , "spasm@ietf.org" Thread-Topic: [lamps] WG Last call: draft-ietf-lamps-hash-of-root-key-cert-extn Thread-Index: AQHUcHU5tR4bZ3L/Qwawcc4P5WUlfQ== Date: Tue, 30 Oct 2018 17:23:08 +0000 Message-ID: <98609DB2-C332-478B-884D-4DDFD2C2CE3B@akamai.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/10.12.0.181014 x-ms-exchange-messagesentrepresentingtype: 1 x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [172.19.39.82] Content-Type: multipart/alternative; boundary="_000_98609DB2C332478B884D4DDFD2C2CE3Bakamaicom_" MIME-Version: 1.0 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-10-30_11:, , signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 malwarescore=0 phishscore=0 bulkscore=0 spamscore=0 mlxscore=0 mlxlogscore=805 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1807170000 definitions=main-1810300147 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-10-30_11:, , signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=791 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1807170000 definitions=main-1810300147 Archived-At: Subject: Re: [lamps] WG Last call: draft-ietf-lamps-hash-of-root-key-cert-extn X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Oct 2018 17:23:14 -0000 --_000_98609DB2C332478B884D4DDFD2C2CE3Bakamaicom_ Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 SSByZS1yZWFkIGl0LiAgSSBhbSBpbiBmYXZvciBvZiBtb3ZpbmcgaXQgZm9yd2FyZC4NCg== --_000_98609DB2C332478B884D4DDFD2C2CE3Bakamaicom_ Content-Type: text/html; charset="utf-8" Content-ID: <35DDE14E2442A44A910841008D24CD63@akamai.com> Content-Transfer-Encoding: base64 PGh0bWwgeG1sbnM6bz0idXJuOnNjaGVtYXMtbWljcm9zb2Z0LWNvbTpvZmZpY2U6b2ZmaWNlIiB4 bWxuczp3PSJ1cm46c2NoZW1hcy1taWNyb3NvZnQtY29tOm9mZmljZTp3b3JkIiB4bWxuczptPSJo dHRwOi8vc2NoZW1hcy5taWNyb3NvZnQuY29tL29mZmljZS8yMDA0LzEyL29tbWwiIHhtbG5zPSJo dHRwOi8vd3d3LnczLm9yZy9UUi9SRUMtaHRtbDQwIj4NCjxoZWFkPg0KPG1ldGEgaHR0cC1lcXVp dj0iQ29udGVudC1UeXBlIiBjb250ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9dXRmLTgiPg0KPG1l dGEgbmFtZT0iR2VuZXJhdG9yIiBjb250ZW50PSJNaWNyb3NvZnQgV29yZCAxNSAoZmlsdGVyZWQg bWVkaXVtKSI+DQo8c3R5bGU+PCEtLQ0KLyogRm9udCBEZWZpbml0aW9ucyAqLw0KQGZvbnQtZmFj ZQ0KCXtmb250LWZhbWlseToiQ2FtYnJpYSBNYXRoIjsNCglwYW5vc2UtMToyIDQgNSAzIDUgNCA2 IDMgMiA0O30NCkBmb250LWZhY2UNCgl7Zm9udC1mYW1pbHk6Q2FsaWJyaTsNCglwYW5vc2UtMToy IDE1IDUgMiAyIDIgNCAzIDIgNDt9DQovKiBTdHlsZSBEZWZpbml0aW9ucyAqLw0KcC5Nc29Ob3Jt YWwsIGxpLk1zb05vcm1hbCwgZGl2Lk1zb05vcm1hbA0KCXttYXJnaW46MGluOw0KCW1hcmdpbi1i b3R0b206LjAwMDFwdDsNCglmb250LXNpemU6MTEuMHB0Ow0KCWZvbnQtZmFtaWx5OiJDYWxpYnJp IixzYW5zLXNlcmlmO30NCmE6bGluaywgc3Bhbi5Nc29IeXBlcmxpbmsNCgl7bXNvLXN0eWxlLXBy aW9yaXR5Ojk5Ow0KCWNvbG9yOiMwNTYzQzE7DQoJdGV4dC1kZWNvcmF0aW9uOnVuZGVybGluZTt9 DQphOnZpc2l0ZWQsIHNwYW4uTXNvSHlwZXJsaW5rRm9sbG93ZWQNCgl7bXNvLXN0eWxlLXByaW9y aXR5Ojk5Ow0KCWNvbG9yOiM5NTRGNzI7DQoJdGV4dC1kZWNvcmF0aW9uOnVuZGVybGluZTt9DQpw Lm1zb25vcm1hbDAsIGxpLm1zb25vcm1hbDAsIGRpdi5tc29ub3JtYWwwDQoJe21zby1zdHlsZS1u YW1lOm1zb25vcm1hbDsNCgltc28tbWFyZ2luLXRvcC1hbHQ6YXV0bzsNCgltYXJnaW4tcmlnaHQ6 MGluOw0KCW1zby1tYXJnaW4tYm90dG9tLWFsdDphdXRvOw0KCW1hcmdpbi1sZWZ0OjBpbjsNCglm b250LXNpemU6MTEuMHB0Ow0KCWZvbnQtZmFtaWx5OiJDYWxpYnJpIixzYW5zLXNlcmlmO30NCnNw YW4uRW1haWxTdHlsZTE4DQoJe21zby1zdHlsZS10eXBlOnBlcnNvbmFsOw0KCWZvbnQtZmFtaWx5 OiJDYWxpYnJpIixzYW5zLXNlcmlmO30NCnNwYW4uRW1haWxTdHlsZTE5DQoJe21zby1zdHlsZS10 eXBlOnBlcnNvbmFsLXJlcGx5Ow0KCWZvbnQtZmFtaWx5OiJDYWxpYnJpIixzYW5zLXNlcmlmO30N Ci5Nc29DaHBEZWZhdWx0DQoJe21zby1zdHlsZS10eXBlOmV4cG9ydC1vbmx5Ow0KCWZvbnQtc2l6 ZToxMC4wcHQ7fQ0KQHBhZ2UgV29yZFNlY3Rpb24xDQoJe3NpemU6OC41aW4gMTEuMGluOw0KCW1h cmdpbjoxLjBpbiAxLjBpbiAxLjBpbiAxLjBpbjt9DQpkaXYuV29yZFNlY3Rpb24xDQoJe3BhZ2U6 V29yZFNlY3Rpb24xO30NCi0tPjwvc3R5bGU+DQo8L2hlYWQ+DQo8Ym9keSBsYW5nPSJFTi1VUyIg bGluaz0iIzA1NjNDMSIgdmxpbms9IiM5NTRGNzIiPg0KPGRpdiBjbGFzcz0iV29yZFNlY3Rpb24x Ij4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPkkgcmUtcmVhZCBpdC4mbmJzcDsgSSBhbSBpbiBmYXZv ciBvZiBtb3ZpbmcgaXQgZm9yd2FyZC48bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9ib2R5Pg0K PC9odG1sPg0K --_000_98609DB2C332478B884D4DDFD2C2CE3Bakamaicom_-- From nobody Tue Oct 30 10:38:17 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B244312D4EA for ; Tue, 30 Oct 2018 10:38:15 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -7.471 X-Spam-Level: X-Spam-Status: No, score=-7.471 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=eff.org Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZxVgUWlqR05u for ; Tue, 30 Oct 2018 10:38:13 -0700 (PDT) Received: from mail2.eff.org (mail2.eff.org [173.239.79.204]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C557A127333 for ; Tue, 30 Oct 2018 10:38:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=eff.org; s=mail2; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:MIME-Version: Date:Message-ID:From:References:Cc:To:Subject:Sender:Reply-To:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=AEmun0qblfNYGIApRSHJpIuTjVGL/BtfG4S0HlR2Ruw=; b=2tEMpRZ1IwYbYJ7Hn0YAg6y5IA r8WVaYiZv9TqQ9/ClwG9v+SHfjWoCCs1Y2IET6i3TFba0V7K+NSo9BVxaJ4HiWoc/DiwGsB864luG zW+rC8nnW+ugdTAvxa3og61YGeod7PSeEEt32mpHUwSjnrqwsdP6xCAE7k+rQcWxULEA=; Received: ; Tue, 30 Oct 2018 10:38:12 -0700 To: Russ Housley , Rob Stradling , jsha@letsencrypt.org, Phillip Hallam-Baker Cc: SPASM References: <7FC03EEB-0D87-4454-805C-62DBCBA845C3@vigilsec.com> From: Jacob Hoffman-Andrews Message-ID: <1d4bb827-462b-c732-e5bd-a017fe18dd28@eff.org> Date: Tue, 30 Oct 2018 10:38:12 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.2.1 MIME-Version: 1.0 In-Reply-To: <7FC03EEB-0D87-4454-805C-62DBCBA845C3@vigilsec.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US Archived-At: Subject: Re: [lamps] Preparing the shepherd write-up for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Oct 2018 17:38:16 -0000 I'll fix these, thanks! On 10/30/18 10:04 AM, Russ Housley wrote: > IDnits reports the following problems: > > idnits 2.16.0 > > Checking nits according to https://www.ietf.org/id-info/checklist : > ---------------------------------------------------------------------------- > > == The 'Obsoletes: ' line in the draft header should list only the > _numbers_ of the RFCs which will be obsoleted by this document (if > approved); it should not include the word 'RFC' in the list. > > {{{ Easy to fix, and I would not say anything if this was the only issue. }}} > > > -- The draft header indicates that this document obsoletes RFC6844, but the > abstract doesn't seem to mention this, which it should. > > {{{ Please add a sentence to the Abstract. }}} > > > Checking references for intended status: Proposed Standard > ---------------------------------------------------------------------------- > > (See RFCs 3967 and 4897 for information about using normative references > to lower-maturity documents in RFCs) > > == Missing Reference: 'STD13' is mentioned on line 194, but not defined > > {{{ Perhaps you meant to reference RFC 1035 here. }}} > > > ** Downref: Normative reference to an Informational RFC: RFC 3647 > > {{{ Can this be moved to an Informational reference? }}} > > > ** Obsolete normative reference: RFC 5070 (Obsoleted by RFC 7970) > > {{{ Is there a reason to not reference RFC 7970? }}} > > > ** Obsolete normative reference: RFC 5226 (Obsoleted by RFC 8126) > > {{{ Is there a reason to not reference RFC 8126? }}} > > Russ > > > From nobody Tue Oct 30 15:45:25 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA1F9127133 for ; Tue, 30 Oct 2018 15:45:22 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -7.471 X-Spam-Level: X-Spam-Status: No, score=-7.471 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=eff.org Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lhTdKG_IX6vq for ; Tue, 30 Oct 2018 15:45:21 -0700 (PDT) Received: from mail2.eff.org (mail2.eff.org [173.239.79.204]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6FC68124BE5 for ; Tue, 30 Oct 2018 15:45:19 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=eff.org; s=mail2; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:MIME-Version: Date:Message-ID:From:References:Cc:To:Subject:Sender:Reply-To:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=AeFbwvfTdP++//kogTY6y21TEC9IVysqIZa69eeFHfY=; b=4X0js6PACbfxFla56DNiflUo+F vXPGqmbsTtlZ2vdDnEFFlAV4z+TpuaiqlPStX84rALXjcfJZgsM5D/4VprmU9j4GwgT1kGDyI4XRW dcGHS+xaOpUz/i0wDG924GDMgrv4hBqu7H2/xwS8ExAnbMKsM4eSZE9iclWiEJ6ZgaGo=; Received: ; Tue, 30 Oct 2018 15:45:17 -0700 To: Russ Housley , Rob Stradling , jsha@letsencrypt.org, Phillip Hallam-Baker Cc: SPASM References: <7FC03EEB-0D87-4454-805C-62DBCBA845C3@vigilsec.com> From: Jacob Hoffman-Andrews Message-ID: <87bde21f-f685-9d2b-78e3-ef459554c724@eff.org> Date: Tue, 30 Oct 2018 15:45:17 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.2.1 MIME-Version: 1.0 In-Reply-To: <7FC03EEB-0D87-4454-805C-62DBCBA845C3@vigilsec.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US Archived-At: Subject: Re: [lamps] Preparing the shepherd write-up for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Oct 2018 22:45:23 -0000 I've now made these fixes in the latest working copy at https://github.com/jsha/caa-simplification/blob/master/draft-ietf-lamps-rfc6844bis.md. The uploading tool is closed until 2018-11-03 23:59 +07, so I can't upload a fresh draft. I can provide rendered .txt or .xml format of the current working copy to anyone who would prefer to read in those formats. On 10/30/18 10:04 AM, Russ Housley wrote: > IDnits reports the following problems: > > idnits 2.16.0 > > Checking nits according to https://www.ietf.org/id-info/checklist : > ---------------------------------------------------------------------------- > > == The 'Obsoletes: ' line in the draft header should list only the > _numbers_ of the RFCs which will be obsoleted by this document (if > approved); it should not include the word 'RFC' in the list. > > {{{ Easy to fix, and I would not say anything if this was the only issue. }}} > > > -- The draft header indicates that this document obsoletes RFC6844, but the > abstract doesn't seem to mention this, which it should. > > {{{ Please add a sentence to the Abstract. }}} > > > Checking references for intended status: Proposed Standard > ---------------------------------------------------------------------------- > > (See RFCs 3967 and 4897 for information about using normative references > to lower-maturity documents in RFCs) > > == Missing Reference: 'STD13' is mentioned on line 194, but not defined > > {{{ Perhaps you meant to reference RFC 1035 here. }}} > > > ** Downref: Normative reference to an Informational RFC: RFC 3647 > > {{{ Can this be moved to an Informational reference? }}} > > > ** Obsolete normative reference: RFC 5070 (Obsoleted by RFC 7970) > > {{{ Is there a reason to not reference RFC 7970? }}} > > > ** Obsolete normative reference: RFC 5226 (Obsoleted by RFC 8126) > > {{{ Is there a reason to not reference RFC 8126? }}} > > Russ > > > From nobody Wed Oct 31 12:49:11 2018 Return-Path: X-Original-To: spasm@ietfa.amsl.com Delivered-To: spasm@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 89AF0128766 for ; Wed, 31 Oct 2018 12:49:09 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rdYlSIhcY414 for ; Wed, 31 Oct 2018 12:49:07 -0700 (PDT) Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3DC1C1277C8 for ; Wed, 31 Oct 2018 12:49:07 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id DB2653002C1 for ; Wed, 31 Oct 2018 15:49:04 -0400 (EDT) X-Virus-Scanned: amavisd-new at mail.smeinc.net Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id khk9Y7pZn_TP for ; Wed, 31 Oct 2018 15:49:03 -0400 (EDT) Received: from a860b60074bd.fios-router.home (pool-71-178-45-35.washdc.fios.verizon.net [71.178.45.35]) by mail.smeinc.net (Postfix) with ESMTPSA id 8CD17300A46; Wed, 31 Oct 2018 15:49:02 -0400 (EDT) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) From: Russ Housley In-Reply-To: <87bde21f-f685-9d2b-78e3-ef459554c724@eff.org> Date: Wed, 31 Oct 2018 15:49:02 -0400 Cc: Rob Stradling , jsha@letsencrypt.org, Phillip Hallam-Baker , SPASM Content-Transfer-Encoding: quoted-printable Message-Id: <323CEDEA-1693-4137-A7D1-4815E05B1612@vigilsec.com> References: <7FC03EEB-0D87-4454-805C-62DBCBA845C3@vigilsec.com> <87bde21f-f685-9d2b-78e3-ef459554c724@eff.org> To: Jacob Hoffman-Andrews X-Mailer: Apple Mail (2.3445.9.1) Archived-At: Subject: Re: [lamps] Preparing the shepherd write-up for rfc6844bis X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 31 Oct 2018 19:49:09 -0000 The document is missing a revision number. I am assuming that will get = filled in properly when you do the post. Otherwise, it looks good to me. Russ > On Oct 30, 2018, at 6:45 PM, Jacob Hoffman-Andrews = wrote: >=20 > I've now made these fixes in the latest working copy at = https://github.com/jsha/caa-simplification/blob/master/draft-ietf-lamps-rf= c6844bis.md. The uploading tool is closed until 2018-11-03 23:59 +07, so = I can't upload a fresh draft. I can provide rendered .txt or .xml format = of the current working copy to anyone who would prefer to read in those = formats. >=20 > On 10/30/18 10:04 AM, Russ Housley wrote: >> IDnits reports the following problems: >>=20 >> idnits 2.16.0 >>=20 >> Checking nits according to https://www.ietf.org/id-info/checklist : >> = --------------------------------------------------------------------------= -- >>=20 >> =3D=3D The 'Obsoletes: ' line in the draft header should list only = the >> _numbers_ of the RFCs which will be obsoleted by this document = (if >> approved); it should not include the word 'RFC' in the list. >>=20 >> {{{ Easy to fix, and I would not say anything if this was the only = issue. }}} >>=20 >>=20 >> -- The draft header indicates that this document obsoletes RFC6844, = but the >> abstract doesn't seem to mention this, which it should. >>=20 >> {{{ Please add a sentence to the Abstract. }}} >>=20 >>=20 >> Checking references for intended status: Proposed Standard >> = --------------------------------------------------------------------------= -- >>=20 >> (See RFCs 3967 and 4897 for information about using normative = references >> to lower-maturity documents in RFCs) >>=20 >> =3D=3D Missing Reference: 'STD13' is mentioned on line 194, but not = defined >>=20 >> {{{ Perhaps you meant to reference RFC 1035 here. }}} >>=20 >>=20 >> ** Downref: Normative reference to an Informational RFC: RFC 3647 >>=20 >> {{{ Can this be moved to an Informational reference? }}} >>=20 >>=20 >> ** Obsolete normative reference: RFC 5070 (Obsoleted by RFC 7970) >>=20 >> {{{ Is there a reason to not reference RFC 7970? }}} >>=20 >>=20 >> ** Obsolete normative reference: RFC 5226 (Obsoleted by RFC 8126) >>=20 >> {{{ Is there a reason to not reference RFC 8126? }}} >>=20 >> Russ >>=20 >>=20 >>=20 >=20 > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm From nobody Wed Oct 31 17:45:18 2018 Return-Path: X-Original-To: spasm@ietf.org Delivered-To: spasm@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 859EB12008A; Wed, 31 Oct 2018 17:45:01 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: The IESG To: "IETF-Announce" X-Test-IDTracker: no X-IETF-IDTracker: 6.87.2 Auto-Submitted: auto-generated Precedence: bulk Cc: lamps-chairs@ietf.org, ekr@rtfm.com, Russ Housley , housley@vigilsec.com, draft-ietf-lamps-rfc5750-bis@ietf.org, spasm@ietf.org, The IESG , rfc-editor@rfc-editor.org MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Message-ID: <154103310153.5365.15878906898277243447.idtracker@ietfa.amsl.com> Date: Wed, 31 Oct 2018 17:45:01 -0700 Archived-At: Subject: [lamps] Protocol Action: 'Secure/Multipurpose Internet Mail Extensions (S/ MIME) Version 4.0 Certificate Handling' to Proposed Standard (draft-ietf-lamps-rfc5750-bis-08.txt) X-BeenThere: spasm@ietf.org X-Mailman-Version: 2.1.29 List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Nov 2018 00:45:02 -0000 The IESG has approved the following document: - 'Secure/Multipurpose Internet Mail Extensions (S/ MIME) Version 4.0 Certificate Handling' (draft-ietf-lamps-rfc5750-bis-08.txt) as Proposed Standard This document is the product of the Limited Additional Mechanisms for PKIX and SMIME Working Group. The IESG contact persons are Benjamin Kaduk and Eric Rescorla. A URL of this Internet Draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-rfc5750-bis/ Technical Summary: This document specifies the certificate handling for S/MIME 4.0. The changes since S/MIME 3.2 include required support for EAI (internationalized email addresses), increased RSA key sizes, moving old one-way hash functions to historic status, and requiring support for ECDSA with P-256 and Ed25519. Working Group Summary: There is strong consensus for this document in the LAMPS WG. Document Quality: S/MIME has wide support, and several implementers have said that they will implement the new features in this document. Personnel: Russ Housley is the document shepherd. Eric Rescorla is the responsible area director.