[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: I-D ACTION:draft-ietf-smime-certcapa-02.txt

To: "'Stefan Santesson'" <stefans@xxxxxxxxxxxxx>
Subject: RE: I-D ACTION:draft-ietf-smime-certcapa-02.txt
From: "Jim Schaad" <ietf@xxxxxxxxxxxxxxxxx>
Date: Mon, 13 Dec 2004 17:22:41 -0800
Cc: <ietf-smime@xxxxxxx>
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-id: <ietf-smime.imc.org>
List-unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
Reply-to: <ietf@xxxxxxxxxxxxxxxxx>
Sender: owner-ietf-smime@xxxxxxxxxxxx
Thread-index: AcThVgDLsdkA4wPQQfyexavEjElEBAAD9FcQAAHzoJAAA1Ac4A==

Stefan,

I believe that I could easily justify differences in behaviors here.
However I think you need to put in some text saying that there is no
difference as to what is included and a small justification for this.

jim 

> -----Original Message-----
> From: Stefan Santesson [mailto:stefans@xxxxxxxxxxxxx] 
> Sent: Monday, December 13, 2004 3:48 PM
> To: ietf@xxxxxxxxxxxxxxxxx
> Cc: ietf-smime@xxxxxxx
> Subject: RE: I-D ACTION:draft-ietf-smime-certcapa-02.txt
> 
> Thanks Jim,
> 
> I agree on 1 3 and 4 to be fixed.
> 
> I'm not so sure with 2. I think any such recommendations 
> should be handled in RFC 3851 where the S/MIME Capabilities 
> attribute is defined.
> No use of this extension in certificate should differ in any 
> way from its use as signed attribute in S/MIME messages.
> 
> I think that it would be confusing if we started to actually 
> specify/recommend the attribute content in 2 separate RFCs.
> 
> Stefan Santesson
> Microsoft Security Center of Excellence (SCOE)
>  
> 
> > -----Original Message-----
> > From: Jim Schaad [mailto:ietf@xxxxxxxxxxxxxxxxx]
> > Sent: den 13 december 2004 15:01
> > To: Stefan Santesson
> > Cc: ietf-smime@xxxxxxx
> > Subject: RE: I-D ACTION:draft-ietf-smime-certcapa-02.txt
> > 
> > Stefan,
> > 
> > A couple of small comments on the draft, although I believe that it
> could
> > go
> > to last call in its current state.
> > 
> > 1.  In section 2 you have the statement 'Algorithms should 
> be ordered
> by
> > preference.'  As I general rule I attempt to avoid the use of must,
> should
> > and may when writing documents to avoid confusion with MUST, SHOULD
> and
> > MAY
> > (did he just forget to capatilize it?).  A better statement 
> might be 
> > 'Algorithms are expected to be be ordered by preference'.
> > 
> > 2.  I would like to see the addition of a paragraph describing the
> types
> > of
> > capabilities that are expected to be listed.  It seems obious that
> bulk
> > encryption algorithms are listed as, potentially, are key 
> encryption 
> > algorithms (consider RSA-OAEP as an example).  However it 
> is not clear 
> > about some of the other potential capabililties.  What 
> about signature 
> > and
> hash
> > algorithms?  What about MAC algorithms?  What about S/MIME specifics
> such
> > as
> > id-cap-preferBinaryInside?
> > 
> > 3.  RFC 2199 is a reference, but the text refering to it is absent.
> > 
> > 4.  RFC 3280 is referenced only from the abstract.  Duplicate text
> should
> > be
> > placed in section 1.
> > 
> > 
> > jim
> > 
> 
> 
>

References:
- RE: I-D ACTION:draft-ietf-smime-certcapa-02.txt
  - From: Stefan Santesson

Prev by Date: RE: I-D ACTION:draft-ietf-smime-certcapa-02.txt
Previous by thread: RE: I-D ACTION:draft-ietf-smime-certcapa-02.txt
Index(es):
- Date
- Thread