[04:17:14] Max Pritikin joins the room [04:17:27] Max Pritikin leaves the room [10:57:14] Simon Josefsson joins the room [11:00:21] David Cooper joins the room [11:02:20] Stefan Santesson joins the room [11:10:36] RFC5280 clarifications went through last call a long time ago. So, I don't know why nothing has happened with that document. [11:12:22] jabber-wile joins the room [11:12:47] jabber-wile leaves the room [11:29:23] mrex joins the room [11:30:34] (Having Tim Polk state his name is useful for the audiocast -- not everyone recognizes him by voice) [11:34:03] mrex has set the subject to: PKIX-WG @ IETF-80, 28-Mar-2011, 13:00-15:00 (GMT-2) [11:34:57] mrex has set the subject to: PKIX-WG @ IETF-80, 28-Mar-2011, 13:00-15:00 (GMT+2) [11:44:16] I just posted http://www.ietf.org/id/draft-ietf-pkix-rfc5280-clarifications-02.txt. No changes from draft -01. [11:47:06] Perhaps you're talking about the userNotice policy qualifier in which every certificate I found used the VisibleString encoding. [11:47:46] dNSName SAN as IA5String makes much more sense than UTF8String [11:47:49] polk.tim joins the room [11:51:51] Max Pritikin joins the room [11:53:09] using UTF8 Email addresses seems like a bad idea. We don't have an ASCII address shortage as in the case with IPv4 vs. IPv6. But UTF8String Email addresses have limited connectivity because no of the existing Software that can not handle non-ASCII Email will interoperate [11:54:50] Melinda joins the room [11:55:36] bweishome joins the room [11:56:49] bweishome leaves the room [11:57:36] Brian Weis joins the room [12:10:09] sftcd joins the room [12:10:09] jimsch1 joins the room [12:10:25] hi. yes, i am. [12:10:50] spturner joins the room [12:11:05] btw - were on to the EST draft [12:13:16] on to EST motivation slide [12:19:50] the concept can be expanded by adding additional url's or messages [12:19:58] the idea was to focus on the enrollment methods now [12:20:57] a larger suite of message definitions can be defined but the key idea is: how simple can we get. [12:21:29] this is *very* constrained! [12:21:51] it is only the "simple PKI request" and barely the "simple PKI response" [12:27:56] the EST document uses a secure transport. that drops "transport independence" (e.g. message oriented issues) from the enrollment. [12:28:14] who is speaking? [12:28:22] phill hallam-baker [12:28:27] thx tim [12:29:48] channel binding is currently NOT included but is called out in the security considerations to obtain feedback [12:35:02] i didn't catch the last speaker (re: requirement for better HTTPS specification) [12:35:07] thank you all [12:35:36] sftcd leaves the room [12:35:44] Melinda leaves the room [12:36:03] jimsch1 leaves the room [12:37:41] spturner leaves the room [12:43:26] Brian Weis leaves the room [12:44:44] David Cooper leaves the room [12:45:08] polk.tim leaves the room [12:46:44] Stefan Santesson leaves the room [12:54:33] Simon Josefsson leaves the room [13:05:07] mrex leaves the room [13:08:49] spturner joins the room [13:09:13] spturner leaves the room [13:12:58] Max Pritikin leaves the room [13:13:58] Simon Josefsson joins the room [13:22:55] polk.tim joins the room [13:23:00] polk.tim leaves the room [13:23:33] Stefan Santesson joins the room [13:25:21] Stefan Santesson leaves the room [13:25:58] Stefan Santesson joins the room [13:35:12] Stefan Santesson leaves the room [13:38:09] Stefan Santesson joins the room [14:20:03] Simon Josefsson leaves the room [14:35:21] Stefan Santesson leaves the room [14:40:07] Stefan Santesson joins the room [14:42:30] Stefan Santesson leaves the room [14:54:42] Stefan Santesson joins the room [15:00:21] Simon Josefsson joins the room [15:23:41] Stefan Santesson leaves the room [15:38:50] Simon Josefsson leaves the room [15:48:18] Stefan Santesson joins the room [17:29:05] Stefan Santesson leaves the room