[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt

To: enum at ietf.org
Subject: RE: [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt
From: "Peter Williams" <home_pw at msn.com>
Date: Mon, 10 Oct 2005 18:18:53 -0700
In-reply-to: <E1EP3es-0002Mc-1Z@newodin.ietf.org>
List-help: <mailto:enum-request@ietf.org?subject=help>
List-id: Enum Discussion List <enum.ietf.org>
List-post: <mailto:enum@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/enum>, <mailto:enum-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/enum>, <mailto:enum-request@ietf.org?subject=unsubscribe>
Sender: enum-bounces at ietf.org

I have not read the I-D, deliberately, but I did read anbd re-read the summary. If folks are willing, perhaps discuss the following issues, so I have retain open mind before I review the text formally:

The summary says: a validation token conveys (securely) information pertainting to the completion of a validation method, by a Validation Entity. Presumably, the token conveys the result of the validation, and induces the relying party to verify the authority of the token's issuer.

Becuase the security (of the token's communication) depends upon signed XML, we know that the token's origin authentication depends itself on the relying party first authenticating the token signature's verification key (assuming that the signing method for the XML stream depends on crypto).

(a) are we assuming that ENUM and/or secure DNS protocols shall be used to distributed information allowing relying parties to authenticate signature verification keys, identifed as being associated with the authority of particular Verification Entities to issue Verification Tokens?

(b) is reliance on a Verification Token a matter for the public, or is reliance on the signature/token intended to be limited to only those parties authorized by the Verification Entity?

(c) are we assuming that trust model for distributing the signing/issuing authority of Verification Entities shall be "tied to" (or derived from) the the number issuing hierarchy, for the identities being Verified?

(d) What IETF disclosures, discussions or contacts have there been between IAB and ISO concerning the relationship of the trust model, providing for authentication of the tokens conveying an Verification Entities confirmation of the domain-name<->E.164 identity?

From: Internet-Drafts at ietf.org To: i-d-announce at ietf.org CC: enum at ietf.org Subject: [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt Date: Mon, 10 Oct 2005 15:50:02 -0400

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Telephone Number Mapping Working Group of the IETF.
	Title		: ENUM Validation Token Format Definition
	Author(s)	: O. Lendl
	Filename	: draft-ietf-enum-validation-token-00.txt
	Pages		: 16
	Date		: 2005-10-10
   An ENUM domain name is tightly coupled with the underlying E.164
   number.  The process of verifying whether the Registrant of an ENUM
   domain name is identical to the Assignee of the corresponding E.164
   number is commonly called "validation".  This document describes an
   signed XML data format -- the Validation Token -- with which
   Validation Entities can convey successful completion of a validation
   procedure in a secure fashion.


_______________________________________________
enum mailing list
enum at ietf.org
https://www1.ietf.org/mailman/listinfo/enum

Follow-Ups:
- Re: [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt
  - From: Otmar Lendl

References:
- [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt
  - From: Internet-Drafts

Prev by Date: [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt
Next by Date: Re: [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt
Previous by thread: [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt
Next by thread: Re: [Enum] I-D ACTION:draft-ietf-enum-validation-token-00.txt
Index(es):
- Date
- Thread