[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt

To: ietf-openpgp@xxxxxxx
Subject: Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
From: Duane at e164 dot org <duane@xxxxxxxx>
Date: Sat, 23 Aug 2008 12:27:20 +1000
In-reply-to: <48A94E69.4040609@xxxxxxxx>
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
References: <48A4E7E9.8020309@xxxxxxxx> <87r68qqptt.fsf@xxxxxxxxxxxxxxxxxxx> <48A59E34.4030501@xxxxxxxx> <87y72xq4gl.fsf@xxxxxxxxxxxxxxxxxxx> <48A639EA.4050003@xxxxxxxx> <87r68pnu0j.fsf@xxxxxxxxxxxxxxxxxxx> <48A6D1F0.7030708@xxxxxxxx> <87y72wr8zz.fsf@xxxxxxxxxxxxxxxxx> <8763pymxp8.fsf@xxxxxxxxxxxxxxxxxxx> <48A94E69.4040609@xxxxxxxx>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.16 (X11/20080724)

Duane at e164 dot org wrote:
> Simon Josefsson wrote:
>> Florian Weimer <fw@xxxxxxxxxxxxx> writes:
>>
>>> * Duane at:
>>>
>>>> Server uses of which TLS is going to be the biggest use case is the main
>>>> objective at present, most server certificates in the X.509 world have a
>>>> lot more than just dnsName, such as company name, maybe a contact, the
>>>> country, state/territory/province, town/suburb and so on and so forth.
>>> This data is not mechanically processed (at least not in a way which is
>>> consistent across implementations), so you can put it into notation data
>>> subpackets.
>> Right, however, the TLS server name needs to be mechanically processed,
>> so it needs a different mechanism -- such as a new OpenPGP extension
>> that contains a single UTF-8 string intended for identification of
>> TLS+OpenPGP servers.
> 
> The other information needs to be verified in a similar manner as well,
> otherwise the information is much less useful.
> 
> Also a single website can have multiple hostnames.

If all the information submitted needs verifying before being signed by
others is notation data sub packets the most suitable way to do this?

-- 

Best regards,
 Duane

References:
- Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Duane at e164 dot org
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Simon Josefsson
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Duane at e164 dot org
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Simon Josefsson
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Duane at e164 dot org
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Simon Josefsson
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Duane at e164 dot org
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Florian Weimer
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Simon Josefsson
- Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
  - From: Duane at e164 dot org

Prev by Date: Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
Previous by thread: Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
Next by thread: Re: Please adopt http://www.ietf.org/internet-drafts/draft-groth-openpgp-attribute-extension-00.txt
Index(es):
- Date
- Thread