[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [idn] Legacy charset conversion in draft-ietf-idn-idna-08.txt

To: Simon Josefsson <simon+idn@josefsson.org>, idn@ops.ietf.org
Subject: Re: [idn] Legacy charset conversion in draft-ietf-idn-idna-08.txt
From: Paul Hoffman / IMC <phoffman@imc.org>
Date: Mon, 27 May 2002 08:55:59 -0700
In-reply-to: <iluk7pp67u3.fsf@latte.josefsson.org>
References: <200205231129.HAA04661@ietf.org><iluk7pp67u3.fsf@latte.josefsson.org>

At 3:25 PM +0200 5/27/02, Simon Josefsson wrote:
>I think the third paragraph of the security consideration should more
>clearly express that IDNA actually is vulnerable to the attack if
>machines, like most machines on the Internet, use legacy encodings.

It isn't clear what "the attack" is. There is clearly a problem for 
the user when System A transcodes text from Encoding X into Unicode 
differently than System B does, but I don't see what the security 
issue is. Could you provide some suggested wording for the security 
consideration?

--Paul Hoffman, Director
--Internet Mail Consortium

Follow-Ups:
- [idn] Re: Legacy charset conversion in draft-ietf-idn-idna-08.txt
  - From: Simon Josefsson <simon+idn@josefsson.org>

References:
- [idn] I-D ACTION:draft-ietf-idn-idna-08.txt
  - From: Internet-Drafts@ietf.org
- [idn] Legacy charset conversion in draft-ietf-idn-idna-08.txt
  - From: Simon Josefsson <simon+idn@josefsson.org>

Prev by Date: Re: [idn] I-D ACTION:draft-ietf-idn-idna-08.txt
Next by Date: Re: [idn] I-D ACTION:draft-ietf-idn-idna-08.txt
Previous by thread: [idn] Re: Legacy charset conversion in draft-ietf-idn-idna-08.txt
Next by thread: [idn] Re: Legacy charset conversion in draft-ietf-idn-idna-08.txt
Index(es):
- Date
- Thread