-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 In RFC 6125, Jeff Hodges and I tried hard to define some terminology related to certificate checking in TLS. That terminology might not be ideal, but I'd like to see if we can align draft-ogud-dane-vocabulary with the RFC 6125 terms.
In particular, RFC 6125 uses the term "source domain" to refer to the fully qualified domain name that a TLS client expects to find in the certificate (or, in DANE, potentially the key) that is presented by the TLS server. RFC 6125 also uses the term "derived domain" to refer to a domain name (or host name) that the client has derived from the source domain in an automated fashion (e.g., via a DNS SRV record). As far as I can determine, draft-ogud-dane-vocabulary uses the terms "Query [Name]" and "Final [Name]" for something like "source domain" and "derived domain". However, draft-ogud-dane-vocabulary also uses the terms "Service Specification Records" and "Service Address Records" in a way that might be similar, although I confess that I don't really grok draft-ogud-dane-vocabulary in fullness and the latter two terms are unclear to me. Naming is hard, and I hope we can get it right. Peter - -- Peter Saint-Andre https://stpeter.im/ -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.19 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBAgAGBQJSnnSIAAoJEOoGpJErxa2pIPcP/3ynoIh5Xn1oBXMtf1Tj4yyZ sJc2kEoA1r49CLCz3TsqHaQonB/lK6tZP0WGYoNobj/C6Vd9U8RQW2TElWM7fVo1 ltZmBA0Tx6KHv/XQmnNsrKVbiueqMui5tWvyHDE/x/Wt18lJPM1n4LdY+xkR4O62 en7PCNTLNxAjkpjPKrEqbp0YYiI67rsnKxNOEJkjry3l+j9FOYlPyBtHAyRZISgV YKy6eIyIEGYOfIXtiiEYPx3UNgIuOLpozu5OWAmypdP6xTfXYmHpAX9HVD7lPPqK ZOGzz61RYDSid186uBQGizahaAabRvIwayQ8ZZTr7C+JYW//CckRRrC04R12h9K+ qNfnzSzf11x01VMfEK2V7muD2uqi28LBXsC/vY2E/r6FRxAp7BS1OZccFK224NnK xI+ETnMsl/ZaWIOKhyJk44bWODWr6ij1Gxen3UoEIsU90akFmzCuCEdbdgf0lATr wX71rVUi5O/ytHQZ/YfhOtc2j7qbrnfSc7KZcgr7X7IkhexP3/nVKtuziqdrbL4U i7pVh5xlgyTszEyowyKWIjr0+J98Llbdz0Xs1hTOTwEONW4cx7TsUd05cwdmoc4G KLabfuUTYKp4NslfIV4smBIl2uzrYUaz0ACjLQSrzk4dNGZAj0L6IlyS92g211Pl WEIrV0m+zIhv6K1ffWiS =VUnT -----END PGP SIGNATURE----- _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
