idnits 2.17.1 

draft-ietf-smime-compression-03.txt:

  Checking boilerplate required by RFC 5378 and the IETF Trust (see
  https://trustee.ietf.org/license-info):
  ----------------------------------------------------------------------------

  ** Looks like you're using RFC 2026 boilerplate.  This must be updated to
     follow RFC 3978/3979, as updated by RFC 4748.


  Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt:
  ----------------------------------------------------------------------------

  ** The document seems to lack a 1id_guidelines paragraph about 6 months
     document validity -- however, there's a paragraph with a matching
     beginning. Boilerplate error?

  == No 'Intended status' indicated for this document; assuming Proposed
     Standard

  == The page length should not exceed 58 lines per page, but there was 1
     longer page, the longest (page 1) being 193 lines


  Checking nits according to https://www.ietf.org/id-info/checklist :
  ----------------------------------------------------------------------------

  ** The document seems to lack an IANA Considerations section.  (See Section
     2.2 of https://www.ietf.org/id-info/checklist for how to handle the case
     when there are no actions for IANA.)

  ** The document seems to lack separate sections for Informative/Normative
     References.  All references will be assumed normative when checking for
     downward references.

  ** There are 2 instances of too long lines in the document, the longest one
     being 2 characters in excess of 72.

  ** The document seems to lack a both a reference to RFC 2119 and the
     recommended RFC 2119 boilerplate, even if it appears to use RFC 2119
     keywords -- however, there's a paragraph with a matching beginning.
     Boilerplate error?

     RFC 2119 keyword, line 48: '...of CMS SHOULD include this extension....'
     RFC 2119 keyword, line 76: '...sion number.  It MUST be 0.  Details o...'
     RFC 2119 keyword, line 87: '...Implementations SHOULD use the SMIMECa...'
     RFC 2119 keyword, line 97: '...CMS implementations SHOULD include ZLIB [RFC1950] [RFC1951], which is...'


  Miscellaneous warnings:
  ----------------------------------------------------------------------------

  == The copyright year in the RFC 3978 Section 5.4 Copyright Line does not
     match the current year

  == The "Author's Address" (or "Authors' Addresses") section title is
     misspelled.

  -- The document seems to lack a disclaimer for pre-RFC5378 work, but may
     have content which was first submitted before 10 November 2008.  If you
     have contacted all the original authors and they are all willing to grant
     the BCP78 rights to the IETF Trust, then this is fine, and you can ignore
     this comment.  If not, you may need to add the pre-RFC5378 disclaimer. 
     (See the Legal Provisions document at
     https://trustee.ietf.org/license-info for more information.)

  -- The document date (May 2001) is 8382 days in the past.  Is this
     intentional?


  Checking references for intended status: Proposed Standard
  ----------------------------------------------------------------------------

     (See RFCs 3967 and 4897 for information about using normative references
     to lower-maturity documents in RFCs)

  -- Missing reference section? 'RFC2630' on line 84 looks like a reference

  -- Missing reference section? 'ASN1' on line 50 looks like a reference

  -- Missing reference section? 'RFC2119' on line 55 looks like a reference

  -- Missing reference section? 'RFC1950' on line 97 looks like a reference

  -- Missing reference section? 'RFC1951' on line 97 looks like a reference


     Summary: 6 errors (**), 0 flaws (~~), 4 warnings (==), 7 comments (--).

     Run idnits with the --verbose option for more detailed information about
     the items above.

--------------------------------------------------------------------------------

1	Internet Draft                                      Editor: Peter Gutmann
2	draft-ietf-smime-compression-03.txt                 University of Auckland
3	November 21, 2000
4	Expires May 2001

6	                   Compressed Data Content Type for S/MIME

8	Status of this memo

10	This document is an Internet-Draft and is in full conformance with all
11	provisions of Section 10 of RFC2026.

13	Internet-Drafts are working documents of the Internet Engineering Task
14	Force (IETF), its areas, and its working groups.  Note that other
15	groups may also distribute working documents as Internet-Drafts.

17	Internet-Drafts are draft documents valid for a maximum of six months
18	and may be updated, replaced, or obsoleted by other documents at any
19	time.  It is inappropriate to use Internet- Drafts as reference
20	material or to cite them other than as "work in progress."

22	The list of current Internet-Drafts can be accessed at
23	http://www.ietf.org/ietf/1id-abstracts.txt

25	The list of Internet-Draft Shadow Directories can be accessed at
26	http://www.ietf.org/shadow.html.

28	Abstract

30	The Cryptographic Message Syntax data format doesn't currently contain
31	any provisions for compressing data before processing it. Compressing
32	data before transmission provides a number of advantages including the
33	elimination of data redundancy which could help an attacker, speeding
34	up processing by reducing the amount of data to be processed by later
35	steps such as signing or encryption, and reducing overall message
36	size. Although there have been proposals for adding compression at
37	other levels (for example at the MIME or SSL level) these don't
38	address the problem of compression of CMS content unless the
39	compression is supplied by an external means (for example by
40	intermixing MIME and CMS).  This document defines a format for using
41	compressed data as a CMS content type.

43	1. Introduction

45	This document describes a compressed data content type for S/MIME.
46	This is implemented as a new ContentInfo type and is an extension to
47	the types currently defined in CMS [RFC2630].  Future implementations
48	of CMS SHOULD include this extension.

50	The format of the messages are described in ASN.1 [ASN1].

52	The key words "MUST", "MUST NOT", "REQUIRED", "SHOULD", "SHOULD NOT",
53	"RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be
54	interpreted as described in [RFC2119].

56	1.1 Compressed Data Content Type

58	The compressed-data content type consists of content of any type
59	compressed using a specified algorithm.  The following object
60	identifier identifies the compressed-data content type:

62	  id-ct-compressedData OBJECT IDENTIFIER ::= { iso(1) member-body(2)
63	    us(840) rsadsi(113549) pkcs(1) pkcs-9(9) smime(16) ct(1) 9 }

65	The compressed-data content type shall have ASN.1 type
66	CompressedData:

68	  CompressedData ::= SEQUENCE {
69	    version CMSVersion,
70	    compressionAlgorithm CompressionAlgorithmIdentifier,
71	    encapContentInfo EncapsulatedContentInfo
72	    }

74	The fields of type CompressedData have the following meanings:

76	    version is the syntax version number.  It MUST be 0.  Details of
77	    the CMSVersion type are discussed in CMS [RFC2630], section
78	    10.2.5.

80	    compressionAlgorithm is a compression algorithm identifier, as
81	    defined in section 2.

83	    encapContentInfo is the content which is compressed.  Details of
84	    the EncapsulatedContentInfo type are discussed in CMS [RFC2630],
85	    section 5.2.

87	Implementations SHOULD use the SMIMECapabilities attribute to indicate
88	their ability to process compressed content types.  A compression
89	SMIMECapability consists of the AlgorithmIdentifier for the supported
90	compression algorithm, in the case of the algorithm specified in this
91	document this is id-alg-zlibCompression with parameters NULL.
92	Alternatively, the use of compression may be handled by prior
93	arrangement (for example as part of an interoperability profile).

95	2. Compression Types

97	CMS implementations SHOULD include ZLIB [RFC1950] [RFC1951], which is
98	free of any intellectual property restrictions and has a freely-
99	available, portable and efficient reference implementation.  The
100	following object identifier identifies ZLIB:

102	  id-alg-zlibCompress OBJECT IDENTIFIER ::= { iso(1) member-body(2)
103	    us(840) rsadsi(113549) pkcs(1) pkcs-9(9) smime(16) alg(3) 8 }

105	The parameters for this algorithm are NULL.

107	3. Security Considerations

109	This RFC is not concerned with security, except for the fact that
110	compressing data before encryption can enhance the security provided
111	by other processing steps by reducing the quantity of known plaintext
112	available to an attacker.

114	Author Address

116	Peter Gutmann
117	University of Auckland
118	Private Bag 92019
119	Auckland, New Zealand
120	pgut001@cs.auckland.ac.nz

122	References

124	  ASN1  CCITT Recommendation X.208: Specification of Abstract Syntax
125	        Notation One (ASN.1), 1988.

127	  RFC2119 Key Words for Use in RFC's to Indicate Requirement Levels,
128	        S.Bradner, March 1997.

130	  RFC1950 ZLIB Compressed Data Format Specification version 3.3,
131	        P.Deutsch and J-L Gailly, May 1996.

133	  RFC1951 DEFLATE Compressed Data Format Specification version 1.3,
134	        P.Deutsch, May 1996.

136	  RFC2630 Cryptographic Message Syntax, R.Housley, June 1999.

138	Appendix A: ASN.1 Module

140	CompressedDataContent
141	  { iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-9(9)
142	    smime(16) modules(0) compress(11) }

144	DEFINITIONS IMPLICIT TAGS ::=
145	BEGIN

147	IMPORTS
148	  CMSVersion, EncapsulatedContentInfo FROM CryptographicMessageSyntax
149	    { iso(1) member-body(2) us(840) rsadsi(113549)
150	      pkcs(1) pkcs-9(9) smime(16) modules(0) cms(1) },
151	  AlgorithmIdentifier FROM AuthenticationFramework
152	    { joint-iso-itu-t ds(5) module(1) authenticationFramework(7) 3 };

154	CompressedData ::= SEQUENCE {
155	  version CMSVersion,       -- Always set to 0
156	  compressionAlgorithm CompressionAlgorithmIdentifier,
157	  encapContentInfo EncapsulatedContentInfo
158	  }

160	CompressionAlgorithmIdentifer ::= AlgorithmIdentifier

162	END

164	Full Copyright Statement

166	Copyright (C) The Internet Society 2000.  All Rights Reserved.

168	This document and translations of it may be copied and furnished to
169	others, and derivative works that comment on or otherwise explain it
170	or assist in its implementation may be prepared, copied, published and
171	distributed, in whole or in part, without restriction of any kind,
172	provided that the above copyright notice and this paragraph are
173	included on all such copies and derivative works. However, this
174	document itself may not be modified in any way, such as by removing
175	the copyright notice or references to the Internet Society or other
176	Internet organizations, except as needed for the purpose of developing
177	Internet standards in which case the procedures for copyrights defined
178	in the Internet Standards process must be followed, or as required to
179	translate it into languages other than English.

181	The limited permissions granted above are perpetual and will not be
182	revoked by the Internet Society or its successors or assigns.

184	This document and the information contained herein is provided on an
185	"AS IS" basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING
186	TASK FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT
187	NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN
188	WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF
189	MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.