So here's a few comments. Thanks Valery for the reminder!
* The DTLS reference should change to DTLS 1.3.
* See Appendix A of [VERIFY]
* The rules are brief - it's not clear from the text if this is a summary of
the totality of the new RFC, or just the changes from the previosu version.
* No definition is given for "FQDN" even though the name being an FQDN is a
major component of the document's scope. Specifically, are enterprise hostnames
(that are not on the public DNS) in scope? Are .local names?
* Similarly, it is not clear to me whether certs obtained through DANE are in
or out of scope.
* And the same question for delegated credentials (draft-ietf-tls-subcerts).
* The Common Name RDN... can appear more than once in the subjectName. I'm
probably missing something, but how is this different from multiple server
names appearing in SAN when the certificate protects multiple services?
* XMPP backward compatibility: does the XmppAddr still need to be mentioned in
-bis?
* the service provider SHOULD request [...] an SRV-ID or URI-ID that limits the
deployment scope of the certificate to only the defined application service
type. This is only somewhat accurate, because an HTTP client would happily
accept the DNS-ID, no matter what other SRV-IDs are found there.
* Which identifier types a client includes in its list of reference
identifiers, and their priority, is a matter of local policy - given the
situation today, can we have a normative recommendation for clients to be
strict in constructing their reference list? If we don't include such normative
text, we're basically telling people to make the easier choice and build
lenient clients.
Thanks,
Yaron
On 6/24/22, 09:01, "Uta on behalf of Valery Smyslov" <uta-boun...@ietf.org on
behalf of val...@smyslov.net> wrote:
Hi,
this is a reminder, that WGLC for draft-ietf-uta-rfc6125bis-06
is still in progress and we received no single message
in response to the call. Please, consider reviewing the draft
(possibly once again) and sending your opinion about its shape.
We hope people do care.
Regards,
Leif & Valery.
> -----Original Message-----
> From: Valery Smyslov [mailto:val...@smyslov.net]
> Sent: Sunday, June 12, 2022 11:39 PM
> To: uta@ietf.org; draft-ietf-uta-rfc6125...@ietf.org
> Cc: uta-cha...@ietf.org
> Subject: WGLC for draft-ietf-uta-rfc6125bis-06
>
> Hi,
>
> this message starts a Working Group Last Call for
> draft-ietf-uta-rfc6125bis-06:
> https://datatracker.ietf.org/doc/draft-ietf-uta-rfc6125bis/
>
> The WGLC will last for two weeks and will end June the 27th.
> Please send your comments to the list before this date.
>
> Regards,
> Leif & Valery.
>
_______________________________________________
Uta mailing list
Uta@ietf.org
https://www.ietf.org/mailman/listinfo/uta
_______________________________________________
Uta mailing list
Uta@ietf.org
https://www.ietf.org/mailman/listinfo/uta
