[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [idn] stringprep comment 1

To: idn@ops.ietf.org
Subject: Re: [idn] stringprep comment 1
From: "Adam M. Costello" <idn.amc+0@nicemice.net.RemoveThisWord>
Date: Sat, 2 Feb 2002 07:19:45 +0000
In-reply-to: <0b4701c1ab82$2bcdcb90$08d8ea0c@c1340594a>
References: <7FC3066C236FD511BC5900508BAC86FE9195CE@trestles.internal.realnames.com> <006a01c1ab3c$376248a0$08d8ea0c@c1340594a> <00de01c1ab42$f8fd0fd0$ec1bd9d2@temp> <007201c1ab73$9c053420$08d8ea0c@c1340594a> <01a501c1ab7f$8daf3270$ec1bd9d2@temp> <0b4701c1ab82$2bcdcb90$08d8ea0c@c1340594a>
Reply-to: IETF idn working group <idn@ops.ietf.org>
User-agent: Mutt/1.3.25i

Mark Davis <mark@macchiato.com> wrote:

> When stringprep is used correctly, loose vs loose comparisons alone
> will never happen.

At the very least, we need to spell that out in the stringprep spec.  We
need to say that the ultimate purpose of the guidelines about "stored
strings" and "query strings" is to make sure that two loosely prepared
strings are never compared.  That will at least give people a better
chance of figuring out when they can safely use loose stringprep.

I also suggest adding an explicit requirement that applications must
use strict stringprep whenever there is doubt.  They may use loose
stringprep only when they know that the string will not be compared with
another loosely prepared string (for example, when they are putting
the string into a protocol slot that is used only for comparisons with
strictly prepared strings; DNS queries qualify if we add a requirement
to IDNA prohibiting DNS servers from serving loosely-prepared names).

I think that's the least we should do.  We could go even further and
always prohibit unassigned code points.  That would occasionally
inconvenience people (who would have to upgrade their software), but
would be a lot simpler and would avoid confusing people when new
characters silently fail to match.

AMC

References:
- RE: [idn] stringprep comment 1
  - From: Yves Arrouye <yves@realnames.com>
- Re: [idn] stringprep comment 1
  - From: "Mark Davis" <mark@macchiato.com>
- Re: [idn] stringprep comment 1
  - From: "Soobok Lee" <lsb@postel.co.kr>
- Re: [idn] stringprep comment 1
  - From: "Mark Davis" <mark@macchiato.com>
- Re: [idn] stringprep comment 1
  - From: "Soobok Lee" <lsb@postel.co.kr>
- Re: [idn] stringprep comment 1
  - From: "Mark Davis" <mark@macchiato.com>

Prev by Date: Re: [idn] IDN WG Last Call: draft-ietf-idn-idna-06.txt
Next by Date: Re: [idn] IDN WG Last Call: draft-ietf-idn-idna-06.txt
Previous by thread: Re: [idn] stringprep comment 1
Next by thread: RE: [idn] stringprep comment 1
Index(es):
- Date
- Thread