On Apr 5, 2015, at 7:19 PM, Paul Hoffman <[email protected]> wrote:
>>> Greetings again. The discussion about exact-match and discovery in >>> draft-ietf-dane-openpgpkey has been useful for finding out what the use >>> cases are, and it's time to settle on a design that works for most people >>> (we're never going to make everyone happy). >> >> How can we possibly do that without real experience in the field? > > How can we possibly get real experience in the field unless we get > at-least-rough consensus on a direction and publish a document? Then at the very least, the security section needs to call out explicitly the potential for hash collisions caused by the case-folding behaviour mandated by the draft. And that should include a specific reference to RFC 5322 section 3.4.1. (And an informative reference to 5322.)
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
