Sign in
Version 5.13.0, 2015-03-25
Report a bug

S/MIME Capabilities for Public Key Definitions

Note: This ballot was opened for revision 04 and is now closed.

Summary: Needs a YES.

Barry Leiba

Comment (2012-04-24 for -05)

[Update: the -05 version addresses all my substantive comments.]

Stephen Farrell

Comment (2012-04-24 for -05)

- I thought S/MIME capabilities were to allow a sender to
know what a receiver wanted/could handle, this says it the
other way around.

- 1 s/need to be/needs to be/ in last para before 1.1

[Adrian Farrel]

Comment (2012-04-25 for -05)

I am balloting No Objection on the assumption that the Security ADs
are on top of this work.

I do have a few nits I noticed along the way.





Please expand acronyms not marked with an asterisk in


Section 1

   but we did not currently have any way of
   doing so at the current time.
   but we did not have any way of doing so.


Section 1

s/structure need/structure needs/

[Russ Housley]

Comment (2012-05-17 for -07)

  Please reword the last sentence of the Abstract.  It says:
  > An example of where this is used is with the OCSP Agility draft.
  Can this be worded in a way that points to an RFC?  If not, can it be
  worded in a way that does not use "draft"?

  Section 2.1 says:
  >       RSAKeySize ::= INTEGER (1024 | 2048 | 3072 | 7680 | 15360 |
  >                            4096 | 8192, ...)
  The integer values appear in a surprising order.  While this will not
  impact code or interoperability, why not put them in ascending order?

  Should the capabilities in section 3.1 provide an optional way to
  specify sizes of P, Q, and G that are supported?

  Similarly, should the capabilities in section 3.2 provide an optional
  way to specify sizes of P and G that are supported?

  In Section 4.1 and 4.2 and 4.3, I suggest a list of named curves
  instead of the very rich structure that is currently specified.
  Several other documents have taken this approach.  Any popular curve
  can be assigned an object identifier to name it.

  In addition to my comments above, please consider the comments from
  the Gen-ART Review by Mary Barnes on 23-Apr-2012.  The review can be
  found here: