- Tuesday, December 2, 2014

dane@jabber.ietf.org

Tuesday, December 2, 2014< ^ >

stpeter has set the subject to: DANE WG | http://tools.ietf.org/wg/dane/

Room Configuration

Room Occupants

GMT+0
[14:39:12] Warren Kumari joins the room
[14:49:56] Jakob Schlyter joins the room
[14:50:18] Jakob Schlyter has set the subject to: DANE WG Interim virtual Meeting: SMIME Usage cases and Requirements
[14:53:16] <Jakob Schlyter> greetings fellow danes
[14:54:38] <Warren Kumari> Hi all. So, I *think* I'm sharing the "Interim DANE WG" slides - can folk see that?
[14:54:45] <Warren Kumari> or am I sharing my whole screen?!
[14:54:49] dblacka leaves the room
[14:55:00] <Jakob Schlyter> yes, slides are looking good.
[14:55:10] <Warren Kumari> … and only slides, yes?
[14:55:21] <Jakob Schlyter> yes, and you typing
[14:55:39] <Warren Kumari> Phew. OK…. Thanks: -)
[14:57:05] ogud joins the room
[14:58:56] phoffman joins the room
[14:59:04] <Jakob Schlyter> webex died.
[15:01:21] <ogud> Start of meeting in few just waiting for more people
[15:01:34] <Jakob Schlyter> knock knock, who's there?
[15:01:57] <ogud> Voldimort
[15:02:00] <Warren Kumari> Orange.
[15:02:24] <Warren Kumari> Orange who?
[15:02:26] <Warren Kumari> Orange you going to let me in?
[15:03:16] <Warren Kumari> We'll be starting soon… giving folk another few minutes...
[15:07:14] <ogud> meeting starting
[15:07:21] <ogud> roster read
[15:07:47] <ogud> Call-in-user3 == Victor
[15:07:54] m&m joins the room
[15:08:21] vdukhovni@gmail.com joins the room
[15:08:23] Mankin, Allison joins the room
[15:08:53] Jakob Schlyter Note well on the slides
[15:09:06] john.levine joins the room
[15:10:27] <ogud> agenda slide
[15:11:51] <Warren Kumari> ANyone? Anyone? Beuller?
[15:11:54] <Warren Kumari> Thanks!
[15:12:59] <ogud> Discussion open
[15:17:04] scott_rose joins the room
[15:17:40] <Warren Kumari> Ok, fair.
[15:17:48] <Jakob Schlyter> Another example of a conflict would be when the cert keyUsage says it can be used for encryption and signing, but SMIMEA says the cert is to be used for signing only. May I encrypt?
[15:19:04] <Warren Kumari> Whoops. I was pontificating…
[15:19:12] <scott_rose> That may also be Certificate Usage specific. For CU=0,1,2 yes, for 3, no?
[15:20:29] <scott_rose> “?” because I’m not sure that’s a good thing but might be seen a lot
[15:20:53] <ogud> Due we want to allow same "usage" to be specifiable both in cert and DANE ?
[15:21:20] <Warren Kumari> Some financial organizations (apparently) need to be able to keep unencrypted copies of all sent mail, and so need to be able to say "Signing, but no encryption"
[15:27:13] <Warren Kumari> I could also see an S/MIME cert, used for encrypting mail *inside an organization*, but not from exernal. This would mean that the usage allows encryption, but DANE could reject that.
[15:27:14] <ogud> Eric: DANE can restrict what a cert can do per protocol ?
[15:34:24] <Warren Kumari> Off-topic: Apolgies for background noise when I'm unmuted. Headset has mic on wire, which rubs on shirt…
[15:37:13] <Warren Kumari> Question: If there is conflicing uage info, what about taking the *minimal* set?
[15:45:49] <john.levine> It would be a big help to me if we could write down all these usage scenarios and then perhaps try and say which ones DANE handles under what conditions.
[15:46:13] <Jakob Schlyter> +1 for what Victor is saying
[15:49:01] <Jakob Schlyter> It is a split between "CERTs I trust thanks to DANE" and "CERTs I trust for some other reason"
[15:49:52] <Warren Kumari> I think I'm trying to say:
[15:51:10] <Warren Kumari> (whoops, hit send too early)
[15:51:31] <Warren Kumari> We end in 10 minutes...
[15:52:40] <Warren Kumari> So Viktor, disavowing identity bad, disavowing a key for a usage ok? (checking if I understood)
[16:00:34] <phoffman> Meeting over
[16:00:38] phoffman leaves the room
[16:00:44] scott_rose leaves the room
[16:01:33] <Warren Kumari> Thank you everyone - that was really helpful, and (IMO) a good meeting.
[16:02:21] Jakob Schlyter leaves the room
[16:07:43] john.levine leaves the room
[17:07:38] Mankin, Allison leaves the room
[17:11:16] Mankin, Allison joins the room
[17:38:29] Mankin, Allison leaves the room
[17:42:42] Mankin, Allison joins the room
[17:44:40] Mankin, Allison leaves the room
[17:53:40] Mankin, Allison joins the room
[18:20:00] Mankin, Allison leaves the room
[18:25:09] Mankin, Allison joins the room
[18:35:12] Mankin, Allison leaves the room
[19:06:33] Warren Kumari leaves the room
[19:07:00] Mankin, Allison joins the room
[19:49:40] Mankin, Allison leaves the room
[19:49:43] Mankin, Allison joins the room
[19:54:48] Mankin, Allison leaves the room
[20:05:39] vdukhovni@gmail.com leaves the room
[22:00:18] Mankin, Allison joins the room
[22:00:59] Mankin, Allison leaves the room
[22:25:24] Mankin, Allison joins the room
[22:28:44] Mankin, Allison leaves the room
[22:42:30] Mankin, Allison joins the room
[22:45:15] Mankin, Allison leaves the room
[23:47:27] m&m leaves the room: Disconnected: session closed