[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [idn] Debunking the ACE myth

To: "D. J. Bernstein" <djb@cr.yp.to>
Subject: Re: [idn] Debunking the ACE myth
From: Keith Moore <moore@cs.utk.edu>
Date: Wed, 18 Jul 2001 11:28:24 -0400
cc: idn@ops.ietf.org

> The ACE myth is that we can safely start using ACE IDNs before all the
> browsers, mail clients, etc. have been modified.

I don't think anyone has claimed that it's perfectly safe to do so -
only that there's less risk of leakage of native IDNs into environments
than can only deal with ASCII if we don't *deliberately* introduce 
native IDNs into protocols that were specified to deal with ASCII names.

> Here's a counterexample, elaborating on David Conrad's messages. This is
> an ACE failure involving a hypothetical ACE IDN, a hypothetical ACE
> browser, a real mail client under a real UTF-8 xterm, and a real MTA.

Your example assumes that the browser will decode the ACE in the
mailto: URL when copying the URL to the paste buffer, when in fact it's 
much safer to leave it as ACE.  I won't claim that the browser vendor
will always do the right thing (there are plenty of counterexamples
to that idea)  but at least it is possible for them to do something 
sensible.

Keith

Prev by Date: Re: [idn] Re: Back to work (Nameprep) (was: Re: Just send UTF-8 with nameprep (was: RE: [idn] Reality Check))
Next by Date: Re: Just send UTF-8 with nameprep (was: RE: [idn] Reality Check)
Prev by thread: [idn] Debunking the ACE myth
Next by thread: Re: [idn] Debunking the ACE myth
Index(es):
- Date
- Thread