<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Mar 15, 2017 at 2:17 PM, Rick Andrews via Public <span dir="ltr"><<a href="mailto:public@cabforum.org" target="_blank">public@cabforum.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Gerv,<br>
<br>
There's another "bug" that I hope you'll consider clarifying regarding iodef<br>
records.<br>
<br>
Part of the ballot says "CAs MUST process the issue, issuewild, and iodef<br>
property tags"<br>
<br>
Another part says " CAs... SHOULD dispatch reports of such issuance requests<br>
to the contact(s) stipulated in the CAA iodef record(s), if present."<br>
<br>
I assume you meant that CAs MUST dispatch reports to the contacts in iodef<br>
records, otherwise "processing" an iodef tag is the same as ignoring it.<br></blockquote><div><br></div><div>Not quite.</div><div><br></div><div>A compliant CAA implementation MUST understand the semantics of these fields and not break if they're marked critical. However, that does not mean an implementation must do what is in that field - for example, sending an iodef.</div><div><br></div><div>This is no different from X.509v3, so it should be very easy for CAs to understand the concept. </div></div></div></div>