On Thu, Jan 29, 2015 at 11:48:44AM -0700, Peter Saint-Andre - &yet wrote:
> BTW, Matt Miller and I plan to meet in person next week to work through
> Viktor's feedback on DANE-SRV, too.
Thanks. Once concern beyond the SRV draft itself, is that in UTA
I see an XMPP draft, that delegates all the DANE bits to the SRV
draft, but the SRV draft is not XMPP-specific, and in particular
does not fully lay out requirements for opportunistic clients (as
in server-to-server XMPP where even if TLS may be required,
authentication is IIRC optional and opportunistic).
So there seems to be a specification gap between the generic SRV
document and the actual requirements of XMPP. It seems to me that
DANE for XMPP is under-specified. Many of the detailed issues
addressed by the SMTP draft might reasonably apply also to (server
to server) XMPP if the spec were more complete.
Who's doing the XMPP server DANE implementation? Perhaps the
problem is that either the implementations are not mature and have
tackled all the issues yet, or the implementors have not raised them
to the spec writers...
Or perhaps I my SMTP draft is unnecessarily detailed, and people
should be able to figure all the messy bits out for themselves?
This is again about XMPP, not the SRV draft, but if the SRV draft
is to serve as a complete spec for XMPP with DANE there may be more
than needs to be said (opportunistic authentication use-case, DANE
vs. PKIX usages, ...).
Perhaps the UTA XMPP draft is the place to fill any residual gaps.
--
Viktor.
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
