[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt

To: Duane at e164 dot org <duane@xxxxxxxx>
Subject: Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
From: Simon Josefsson <simon@xxxxxxxxxxxxx>
Date: Fri, 15 Aug 2008 17:07:42 +0200
Cc: ietf-openpgp@xxxxxxx
In-reply-to: <48A4E7E9.8020309@xxxxxxxx> (Duane at's message of "Fri, 15 Aug 2008 12:20:25 +1000")
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
Openpgp: id=B565716F; url=http://josefsson.org/key.txt
References: <48A4E7E9.8020309@xxxxxxxx>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx
User-agent: Gnus/5.110011 (No Gnus v0.11) Emacs/22.2 (gnu/linux)

Duane at e164 dot org <duane@xxxxxxxx> writes:

> Please adopt
> http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
> as a working group document. This document is trying to describe how to
> utilise ASN.1 attributes with OpenPGP keys, the focus is to further
> promote the use of OpenPGP keys for server purposes, however some people
> expressed interest in other extensions that are more appropriate for
> individuals.

Your document reuse subjectAltNames from PKIX.  While I think that is a
nice idea that allows to re-use their flexibility, I think the wisdom of
using ASN.1/DER and PKIX in OpenPGP should be challenged.

Let me propose that your document specify an OpenPGP attribute 'dnsName'
that contains a UTF-8 string with a DNS domain name, and explain how
wildcard *.example.com names should be dealt with.  No ASN.1/DER
encodings and no PKIX terminology.

This would solve your use case, RFC 5081, without having OpenPGP
implementations need to implement PKIX.

Thoughts?

Thanks,
Simon

Follow-Ups:
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Duane at e164 dot org

References:
- Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Duane at e164 dot org

Prev by Date: Camellia draft
Next by Date: Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
Previous by thread: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
Next by thread: Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
Index(es):
- Date
- Thread