Return-Path: Received: from eikenes.alvestrand.no ([unix socket]) by eikenes.alvestrand.no (Cyrus v2.1.11-Mandrake-RPM-2.1.11-1mdk) with LMTP; Sun, 27 Feb 2005 23:58:40 +0100 X-Sieve: CMU Sieve 2.2 Return-Path: Received: from localhost (localhost.localdomain [127.0.0.1]) by eikenes.alvestrand.no (Postfix) with ESMTP id 0B74761BE7 for ; Sun, 27 Feb 2005 23:58:40 +0100 (CET) Received: from eikenes.alvestrand.no ([127.0.0.1]) by localhost (eikenes.alvestrand.no [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 32611-10 for ; Sun, 27 Feb 2005 23:58:38 +0100 (CET) Received: from psg.com (psg.com [147.28.0.62]) by eikenes.alvestrand.no (Postfix) with ESMTP id ED5C561BB4 for ; Sun, 27 Feb 2005 23:58:37 +0100 (CET) Received: from majordom by psg.com with local (Exim 4.44 (FreeBSD)) id 1D5XKT-0009Yf-Mu for idn-data@psg.com; Sun, 27 Feb 2005 22:56:01 +0000 Received: from [63.247.74.122] (helo=montage.altserver.com) by psg.com with esmtp (Exim 4.44 (FreeBSD)) id 1D5XKS-0009YO-JH for idn@ops.ietf.org; Sun, 27 Feb 2005 22:56:00 +0000 Received: from lns-p19-1-idf-82-251-93-168.adsl.proxad.net ([82.251.93.168] helo=jfc.afrac.org) by montage.altserver.com with esmtpa (Exim 4.44) id 1D5XKQ-0005HH-UD; Sun, 27 Feb 2005 14:55:59 -0800 Message-Id: <6.1.2.0.2.20050227203118.02f22eb0@mail.jefsey.com> X-Sender: jefsey+jefsey.com@mail.jefsey.com X-Mailer: QUALCOMM Windows Eudora Version 6.1.2.0 Date: Sun, 27 Feb 2005 23:55:47 +0100 To: Erik van der Poel , IETF idn working group From: "JFC (Jefsey) Morfin" Subject: Re: [idn] Re: dichotomies In-Reply-To: <42221C34.2060505@vanderpoel.org> References: <421D8411.9030006@vanderpoel.org> <421E0D0C.2000309@vanderpoel.org> <421E30F2.1040408@vanderpoel.org> <0E7F74C71945B923C52211F3@scan.jck.com> <421EA0C9.1010500@vanderpoel.org> <00a401c51af3$7863aae0$030aa8c0@DEWELL> <20050226081913.GD14956~@nicemice.net> <42221AB7.9070000@vanderpoel.org> <42221C34.2060505@vanderpoel.org> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - montage.altserver.com X-AntiAbuse: Original Domain - ops.ietf.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - jefsey.com X-Source: X-Source-Args: X-Source-Dir: Sender: owner-idn@ops.ietf.org Precedence: bulk X-Virus-Scanned: by amavisd-new at alvestrand.no (I will correct Erik's "xn--s" proposed notation into "xs--" not to create havoc in punycode) One of the reason why I disagreed with IDNA is it creates a possibly conflicting left-to-right hierarchy while the DNS hierarchy is right-to-left. Erik's proposition makes a lot of sense. But it means that a label at the same time: - belongs to a DNS zone - belongs to a zone of encoding (ascii, punycode, his punysecure, new versions, tables, other transcoding, etc. ) - may belong to a zone of encoding different from the zone of encoding of other labels (ex.: "xn--abc.xs-def.tld"). This does not simplify understanding, management, security. Why not to just use DNS zones? I have not yet understood why it was opposed. IMHO the future of ML.ML names are in the form "name2.name.xx--chicom.com" where "xx-nn.com" will print as ".com" in Chinese and name, name2 etc. will all have to use codes from the Chinese Table of ".com". jfc At 20:15 27/02/2005, Erik van der Poel wrote: >Erik van der Poel wrote: >>Another bifurcation that could be considered somewhat analogous is that >>of http vs https. We might even want to consider bringing the topic of >>security into the ACE prefix discussion. One could imagine a world where >>two different ACE prefixes co-exist, one new prefix for "secure" domain >>labels, the other (old) prefix for less secure labels. > >Sorry, I forgot to say that a Web site would choose the new secure ACE >prefix when they use https. In fact, they would make that choice for >similar reasons, i.e. to allow the user agent to distinguish this site >from a less secure one, similar to Mozilla's current choice of using the >padlock icon and a different color near the URI at the top for https. > >Erik