Hi, On 29/06/15 20:41 PM, Olafur Gudmundsson wrote: > > Dear Colleagues The editors of draft-ietf-dane-smime have requested > that draft be put on hold for at least a year to see how the OPENPGP > “experiment” works out. The chairs have agreed with this request.
that has been coming out of the blue.
The SMIME-draft shares a great deal of issues with the OPENPGPKEY draft
(e.g. the local-part discussion), and my hope was that whatever changes
are applied to OPENPGPKEY would be merged into the SMIME-draft as well,
and both would advance.
In my view, the SMIME/DANE specification is already usable ("not
perfect, but good enough") once there is a decision for the local part
(and as I said on the discussion on OPENPGPKEY, I'm fine with the SHA256
hashing, but also with base32 if needbe).
Both drafts are important, but SMIME has more relevance to bring
user-friendly encryption to mainstream users. SMIME is more widely
supported in mail-clients "out-of-the-box".
Postponing the work on this draft does not help with the IETF goal of
making the Internet protocols more secure against pervasive monitoring
(RFC 7258). The mail users out there need secure email sooner than later.
There are some ISPs here in Germany that already have running code for
SMIME/DANE to go into production with that service for their customers.
Not having an DNS Type code from IANA is one of the major road-blocks
for going live.
Going into production with SMIME/DANE with a private DNS Type (as
currently used with the Thunderbird Add-on and the SMIME-Milter) would
be possible, but ugly. Migrating from the private DNS type to a standard
DNS type later will be work and pain for admins and users.
Would it be possible to at least update the SMIME draft with the latest
changes on OPENPGPKEY, and get a DNS type code for SMIMEA records from
IANA, before sending the draft to sleep?
(if it needs be sleeping at all, I'm not convinced about that)
Carsten Strotmann
signature.asc
Description: OpenPGP digital signature
_______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
