1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
|
<pre>
Internet Engineering Task Force (IETF) P. Saint-Andre
Request for Comments: 8266 Jabber.org
Obsoletes: <a href="./rfc7700">7700</a> October 2017
Category: Standards Track
ISSN: 2070-1721
<span class="h1">Preparation, Enforcement, and Comparison of Internationalized Strings</span>
<span class="h1">Representing Nicknames</span>
Abstract
This document describes methods for handling Unicode strings
representing memorable, human-friendly names (called "nicknames",
"display names", or "petnames") for people, devices, accounts,
websites, and other entities. This document obsoletes <a href="./rfc7700">RFC 7700</a>.
Status of This Memo
This is an Internet Standards Track document.
This document is a product of the Internet Engineering Task Force
(IETF). It represents the consensus of the IETF community. It has
received public review and has been approved for publication by the
Internet Engineering Steering Group (IESG). Further information on
Internet Standards is available in <a href="./rfc7841#section-2">Section 2 of RFC 7841</a>.
Information about the current status of this document, any errata,
and how to provide feedback on it may be obtained at
<a href="https://www.rfc-editor.org/info/rfc8266">https://www.rfc-editor.org/info/rfc8266</a>.
Copyright Notice
Copyright (c) 2017 IETF Trust and the persons identified as the
document authors. All rights reserved.
This document is subject to <a href="https://www.rfc-editor.org/bcp/bcp78">BCP 78</a> and the IETF Trust's Legal
Provisions Relating to IETF Documents
(<a href="https://trustee.ietf.org/license-info">https://trustee.ietf.org/license-info</a>) in effect on the date of
publication of this document. Please review these documents
carefully, as they describe your rights and restrictions with respect
to this document. Code Components extracted from this document must
include Simplified BSD License text as described in Section 4.e of
the Trust Legal Provisions and are provided without warranty as
described in the Simplified BSD License.
<span class="grey">Saint-Andre Standards Track [Page 1]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-2" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
Table of Contents
<a href="#section-1">1</a>. Introduction . . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-2">2</a>
<a href="#section-1.1">1.1</a>. Overview . . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-2">2</a>
<a href="#section-1.2">1.2</a>. Terminology . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-3">3</a>
<a href="#section-2">2</a>. Nickname Profile . . . . . . . . . . . . . . . . . . . . . . <a href="#page-4">4</a>
<a href="#section-2.1">2.1</a>. Rules . . . . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-4">4</a>
<a href="#section-2.2">2.2</a>. Preparation . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-5">5</a>
<a href="#section-2.3">2.3</a>. Enforcement . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-5">5</a>
<a href="#section-2.4">2.4</a>. Comparison . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-6">6</a>
<a href="#section-3">3</a>. Examples . . . . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-6">6</a>
<a href="#section-4">4</a>. Use in Application Protocols . . . . . . . . . . . . . . . . <a href="#page-8">8</a>
<a href="#section-5">5</a>. IANA Considerations . . . . . . . . . . . . . . . . . . . . . <a href="#page-9">9</a>
<a href="#section-6">6</a>. Security Considerations . . . . . . . . . . . . . . . . . . . <a href="#page-9">9</a>
<a href="#section-6.1">6.1</a>. Authentication and Authorization . . . . . . . . . . . . <a href="#page-9">9</a>
<a href="#section-6.2">6.2</a>. Reuse of PRECIS . . . . . . . . . . . . . . . . . . . . . <a href="#page-10">10</a>
<a href="#section-6.3">6.3</a>. Reuse of Unicode . . . . . . . . . . . . . . . . . . . . <a href="#page-10">10</a>
<a href="#section-6.4">6.4</a>. Visually Similar Characters . . . . . . . . . . . . . . . <a href="#page-10">10</a>
<a href="#section-7">7</a>. References . . . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-10">10</a>
<a href="#section-7.1">7.1</a>. Normative References . . . . . . . . . . . . . . . . . . <a href="#page-10">10</a>
<a href="#section-7.2">7.2</a>. Informative References . . . . . . . . . . . . . . . . . <a href="#page-11">11</a>
<a href="#appendix-A">Appendix A</a>. Changes from <a href="./rfc7700">RFC 7700</a> . . . . . . . . . . . . . . . <a href="#page-12">12</a>
Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-12">12</a>
Author's Address . . . . . . . . . . . . . . . . . . . . . . . . <a href="#page-13">13</a>
<span class="h2"><a class="selflink" id="section-1" href="#section-1">1</a>. Introduction</span>
<span class="h3"><a class="selflink" id="section-1.1" href="#section-1.1">1.1</a>. Overview</span>
A number of technologies and applications provide the ability for a
person to choose a memorable, human-friendly name in a communications
context or to set such a name for another entity such as a device,
account, contact, or website. Such names are variously called
"nicknames" (e.g., in chat room applications), "display names" (e.g.,
in Internet mail), or "petnames" (see [<a href="#ref-PETNAME-SYSTEMS">PETNAME-SYSTEMS</a>]); for
consistency, these are all called "nicknames" in this document.
Nicknames are commonly supported in technologies for textual chat
rooms, such as:
o Internet Relay Chat (IRC) [<a href="./rfc2811" title=""Internet Relay Chat: Channel Management"">RFC2811</a>]
o The Message Session Relay Protocol (MSRP) [<a href="./rfc4975" title=""The Message Session Relay Protocol (MSRP)"">RFC4975</a>] [<a href="./rfc7701" title=""Multi- party Chat Using the Message Session Relay Protocol (MSRP)"">RFC7701</a>]
o Centralized Conferencing (XCON) [<a href="./rfc5239" title=""A Framework for Centralized Conferencing"">RFC5239</a>] [<a href="#ref-XCON-SYSTEM">XCON-SYSTEM</a>]
o The Extensible Messaging and Presence Protocol (XMPP) [<a href="./rfc6120" title=""Extensible Messaging and Presence Protocol (XMPP): Core"">RFC6120</a>]
[<a href="#ref-XEP-0045">XEP-0045</a>]
<span class="grey">Saint-Andre Standards Track [Page 2]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-3" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
Recent chat room technologies also allow internationalized nicknames
because they support code points from outside the ASCII range
[<a href="./rfc20" title=""ASCII format for network interchange"">RFC20</a>], typically by means of the Unicode coded character set
[<a href="#ref-Unicode" title=""The Unicode Standard"">Unicode</a>]. Although such nicknames tend to be used primarily for
display purposes, they are sometimes used for programmatic purposes
as well (e.g., kicking users out of a chat room or avoiding nickname
conflicts).
A similar usage enables a person to set their own preferred display
name or to set a preferred display name for another user (e.g., the
"display-name" construct in the Internet message format [<a href="./rfc5322" title=""Internet Message Format"">RFC5322</a>] and
the <nick/> element in XMPP [<a href="#ref-XEP-0172">XEP-0172</a>]).
Memorable, human-friendly names are also used in contexts other than
personal messaging, such as names for devices (e.g., in a network
visualization application), websites (e.g., for bookmarks in a web
browser), accounts (e.g., in a web interface for a list of payees in
a bank account), people (e.g., in a contact list application), and
the like.
The rules specified in this document can be applied in all of the
foregoing contexts.
It is important to understand that a nickname is a personally
memorable name or handle for something that has a more stable,
underlying identity, such as a URI or a file path. To ensure secure
operation of applications that use nicknames, authentication and
authorization decisions MUST be made on the basis of the thing's
identity, not its nickname.
To increase the likelihood that memorable, human-friendly names will
work in ways that make sense for typical users throughout the world,
this document defines rules for handling nicknames in terms of the
preparation, enforcement, and comparison of internationalized strings
(PRECIS) framework specification [<a href="./rfc8264" title=""PRECIS Framework: Preparation, Enforcement, and Comparison of Internationalized Strings in Application Protocols"">RFC8264</a>].
<span class="h3"><a class="selflink" id="section-1.2" href="#section-1.2">1.2</a>. Terminology</span>
Many important terms used in this document are defined in [<a href="./rfc8264" title=""PRECIS Framework: Preparation, Enforcement, and Comparison of Internationalized Strings in Application Protocols"">RFC8264</a>],
[<a href="./rfc6365" title=""Terminology Used in Internationalization in the IETF"">RFC6365</a>], and [<a href="#ref-Unicode" title=""The Unicode Standard"">Unicode</a>].
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
"SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and
"OPTIONAL" in this document are to be interpreted as described in
<a href="https://www.rfc-editor.org/bcp/bcp14">BCP 14</a> [<a href="./rfc2119" title=""Key words for use in RFCs to Indicate Requirement Levels"">RFC2119</a>] [<a href="./rfc8174" title=""Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words"">RFC8174</a>] when, and only when, they appear in all
capitals, as shown here.
<span class="grey">Saint-Andre Standards Track [Page 3]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-4" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
<span class="h2"><a class="selflink" id="section-2" href="#section-2">2</a>. Nickname Profile</span>
<span class="h3"><a class="selflink" id="section-2.1" href="#section-2.1">2.1</a>. Rules</span>
The following rules apply within the Nickname profile of the PRECIS
FreeformClass defined in the PRECIS framework specification
[<a href="./rfc8264" title=""PRECIS Framework: Preparation, Enforcement, and Comparison of Internationalized Strings in Application Protocols"">RFC8264</a>].
1. Width Mapping Rule: There is no width mapping rule (such a rule
is not necessary because width mapping is performed as part of
normalization using Normalization Form KC (NFKC) as specified
below).
2. Additional Mapping Rule: The additional mapping rule consists of
the following sub-rules.
a. Map any instances of non-ASCII space to SPACE (U+0020); a
non-ASCII space is any Unicode code point having a general
category of "Zs", naturally with the exception of SPACE
(U+0020). (The inclusion of only ASCII space prevents
confusion with various non-ASCII space code points, many of
which are difficult to reproduce across different input
methods.)
b. Remove any instances of the ASCII space character at the
beginning or end of a nickname (e.g., "stpeter " is mapped to
"stpeter").
c. Map interior sequences of more than one ASCII space character
to a single ASCII space character (e.g., "St Peter" is
mapped to "St Peter").
3. Case Mapping Rule: Apply the Unicode toLowerCase() operation, as
defined in the Unicode Standard [<a href="#ref-Unicode" title=""The Unicode Standard"">Unicode</a>]. In applications that
prohibit conflicting nicknames, this rule helps to reduce the
possibility of confusion by ensuring that nicknames differing
only by case (e.g., "stpeter" vs. "StPeter") would not be
presented to a human user at the same time. (As explained below,
this is typically appropriate only for comparison, not for
enforcement.)
4. Normalization Rule: Apply Unicode Normalization Form KC. Because
NFKC is more "aggressive" in finding matches than other
normalization forms (in the terminology of Unicode, it performs
both canonical and compatibility decomposition before recomposing
code points), this rule helps to reduce the possibility of
confusion by increasing the number of code points that would
<span class="grey">Saint-Andre Standards Track [Page 4]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-5" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
match; for example, the character "Ⅳ" (ROMAN NUMERAL FOUR,
U+2163) would match the combination of "I" (LATIN CAPITAL LETTER
I, U+0049) and "V" (LATIN CAPITAL LETTER V, U+0056).
5. Directionality Rule: There is no directionality rule. The "Bidi
Rule" (defined in [<a href="./rfc5893" title=""Right-to-Left Scripts for Internationalized Domain Names for Applications (IDNA)"">RFC5893</a>]) and similar rules are unnecessary
and inapplicable to nicknames, because it is perfectly acceptable
for a given nickname to be presented differently in different
layout systems (e.g., a user interface that is configured to
handle primarily a right-to-left script versus an interface that
is configured to handle primarily a left-to-right script), as
long as the presentation is consistent in any given layout
system.
Implementation experience has shown that applying the rules for the
Nickname profile is not an idempotent procedure for all code points.
Therefore, an implementation SHOULD apply the rules repeatedly until
the output string is stable; if the output string does not stabilize
after reapplying the rules three (3) additional times after the first
application, the implementation SHOULD terminate application of the
rules and reject the input string as invalid.
<span class="h3"><a class="selflink" id="section-2.2" href="#section-2.2">2.2</a>. Preparation</span>
An entity that prepares an input string for subsequent enforcement
according to this profile MUST ensure that the string consists only
of Unicode code points that conform to the FreeformClass string class
defined in [<a href="./rfc8264" title=""PRECIS Framework: Preparation, Enforcement, and Comparison of Internationalized Strings in Application Protocols"">RFC8264</a>].
<span class="h3"><a class="selflink" id="section-2.3" href="#section-2.3">2.3</a>. Enforcement</span>
An entity that performs enforcement according to this profile MUST
prepare an input string as described in <a href="#section-2.2">Section 2.2</a> and MUST also
apply the following rules specified in <a href="#section-2.1">Section 2.1</a> in the order
shown:
1. Additional Mapping Rule
2. Normalization Rule
Note: An entity SHOULD apply the Case Mapping Rule only during
comparison.
After all of the foregoing rules have been enforced, the entity MUST
ensure that the nickname is not zero bytes in length (this is done
after enforcing the rules to prevent applications from mistakenly
omitting a nickname entirely, because when internationalized strings
are accepted a non-empty sequence of characters can result in a zero-
length nickname after canonicalization).
<span class="grey">Saint-Andre Standards Track [Page 5]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-6" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
The result of the foregoing operations is an output string that
conforms to the Nickname profile. Until an implementation produces
such an output string, it MUST NOT treat the string as conforming (in
particular, it MUST NOT assume that an input string is conforming
before the enforcement operation has been completed).
<span class="h3"><a class="selflink" id="section-2.4" href="#section-2.4">2.4</a>. Comparison</span>
An entity that performs comparison of two strings according to this
profile MUST prepare each input string as specified in <a href="#section-2.2">Section 2.2</a>
and MUST apply the following rules specified in <a href="#section-2.1">Section 2.1</a> in the
order shown:
1. Additional Mapping Rule
2. Case Mapping Rule
3. Normalization Rule
The two strings are to be considered equivalent if and only if they
are an exact octet-for-octet match (sometimes called "bit-string
identity").
Until an implementation determines whether two strings are to be
considered equivalent, it MUST NOT treat them as equivalent (in
particular, it MUST NOT assume that two input strings are equivalent
before the comparison operation has been completed).
<span class="h2"><a class="selflink" id="section-3" href="#section-3">3</a>. Examples</span>
The following examples illustrate a small number of nicknames that
are consistent with the format defined above, along with the output
string resulting from application of the PRECIS rules for comparison
purposes (note that the characters "<" and ">" are used to delineate
the actual nickname and are not part of the nickname strings).
<span class="grey">Saint-Andre Standards Track [Page 6]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-7" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
+---------------------------+-------------------------------------+
| # | Nickname | Output for Comparison |
+---------------------------+-------------------------------------+
| 1 | <Foo> | <foo> |
+---------------------------+-------------------------------------+
| 2 | <foo> | <foo> |
+---------------------------+-------------------------------------+
| 3 | <Foo Bar> | <foo bar> |
+---------------------------+-------------------------------------+
| 4 | <foo bar> | <foo bar> |
+---------------------------+-------------------------------------+
| 5 | <Σ> | σ (GREEK SMALL LETTER SIGMA, |
| | | U+03C3) |
+---------------------------+-------------------------------------+
| 6 | <σ> | σ (GREEK SMALL LETTER SIGMA, |
| | | U+03C3) |
+---------------------------+-------------------------------------+
| 7 | <ς> | ς (GREEK SMALL LETTER FINAL SIGMA, |
| | | U+03C2) |
+---------------------------+-------------------------------------+
| 8 | <ϔ> | ϋ (GREEK SMALL LETTER UPSILON |
| | | WITH DIALYTIKA, U+03CB) |
+---------------------------+-------------------------------------+
| 9 | <∞> | ∞ (INFINITY, U+221E) |
+---------------------------+-------------------------------------+
| 10 | <Richard Ⅳ> | <richard iv> |
+---------------------------+-------------------------------------+
Table 1: A Sample of Legal Nicknames
Regarding examples 5, 6, and 7: applying the Unicode toLowerCase()
operation to the character "Σ" (GREEK CAPITAL LETTER SIGMA, U+03A3)
results in the character "σ" (GREEK SMALL LETTER SIGMA, U+03C3);
however, the toLowerCase() operation does not modify the character
"ς" (GREEK SMALL LETTER FINAL SIGMA, U+03C2). Therefore, the
comparison operation defined in <a href="#section-2.4">Section 2.4</a> would result in matching
of the nicknames in examples 5 and 6 but not the nicknames in
examples 5 and 7 or 6 and 7.
Regarding example 8: this is an instance where applying the rules for
the Nickname profile is not an idempotent procedure (see
<a href="#section-2.1">Section 2.1</a>). In particular:
1. Applying toLowerCase() to the character "ϔ" (GREEK UPSILON WITH
DIARESIS AND HOOK SYMBOL, U+03D4) results in no changes, and
applying NFKC to that character results in the character "Ϋ"
(GREEK CAPITAL LETTER UPSILON WITH DIALYTIKA, U+03AB).
<span class="grey">Saint-Andre Standards Track [Page 7]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-8" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
2. Applying toLowerCase() to "Ϋ" (GREEK CAPITAL LETTER UPSILON WITH
DIALYTIKA, U+03AB) results in the character "ϋ" (GREEK SMALL
LETTER UPSILON WITH DIALYTIKA, U+03CB), and applying NFKC to that
character results in no changes.
Regarding example 9: symbol characters such as "∞" (INFINITY, U+221E)
are allowed by the PRECIS FreeformClass and thus can be used in
nicknames.
Regarding example 10: applying the Unicode toLowerCase() operation to
the character "Ⅳ" (ROMAN NUMERAL FOUR, U+2163) results in the
character "ⅳ" (SMALL ROMAN NUMERAL FOUR, U+2173), and applying NFKC
to the character "ⅳ" (SMALL ROMAN NUMERAL FOUR, U+2173) results in
the characters "i" (LATIN SMALL LETTER I, U+0069) and "v" (LATIN
SMALL LETTER V, U+0076).
<span class="h2"><a class="selflink" id="section-4" href="#section-4">4</a>. Use in Application Protocols</span>
This specification defines only the PRECIS-based rules for handling
of nickname strings. It is the responsibility of an application
protocol (e.g., MSRP, XCON, or XMPP) or application definition to
specify the protocol slots in which nickname strings can appear, the
entities that are expected to enforce the rules governing nickname
strings, and the point during protocol processing or interface
handling when the rules need to be enforced. See <a href="./rfc8264#section-6">Section 6 of
[RFC8264]</a> for guidelines about using PRECIS profiles in applications.
Above and beyond the PRECIS-based rules specified here, application
protocols can also define application-specific rules governing
nickname strings (rules regarding the minimum or maximum length of
nicknames, further restrictions on allowable code points or character
ranges, safeguards to mitigate the effects of visually similar
characters, etc.).
Naturally, application protocols can also specify rules governing the
actual use of nicknames in applications (reserved nicknames,
authorization requirements for using nicknames, whether certain
nicknames can be prohibited, handling of duplicates, the relationship
between nicknames and underlying identifiers such as SIP URIs or
Jabber IDs, etc.).
Entities that enforce the rules specified in this document are
encouraged to be liberal in what they accept by following this
procedure:
1. Where possible, map characters (e.g., through width mapping,
additional mapping, case mapping, or normalization) and accept
the mapped string.
<span class="grey">Saint-Andre Standards Track [Page 8]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-9" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
2. If mapping is not possible (e.g., because a character is
disallowed in the FreeformClass), reject the string.
<span class="h2"><a class="selflink" id="section-5" href="#section-5">5</a>. IANA Considerations</span>
IANA has added the following entry to the "PRECIS Profiles" registry:
Name: Nickname.
Base Class: FreeformClass.
Applicability: Nicknames or display names in messaging and text
conferencing technologies; petnames for devices, accounts, and
people; and other uses of nicknames, display names, or petnames.
Replaces: None.
Width Mapping Rule: None (handled via NFKC).
Additional Mapping Rule: Map non-ASCII space characters to SPACE
(U+0020), strip leading and trailing space characters, and map
interior sequences of multiple space characters to a single
instance of SPACE (U+0020).
Case Mapping Rule: Map uppercase and titlecase code points to
lowercase using the Unicode toLowerCase() operation.
Normalization Rule: NFKC.
Directionality Rule: None.
Enforcement: To be specified by applications.
Specification: <a href="./rfc8266">RFC 8266</a>.
<span class="h2"><a class="selflink" id="section-6" href="#section-6">6</a>. Security Considerations</span>
<span class="h3"><a class="selflink" id="section-6.1" href="#section-6.1">6.1</a>. Authentication and Authorization</span>
It is important to understand that a nickname is a personally
memorable name or handle for something that has a more stable,
underlying identity, such as a URI or a file path. To ensure secure
operation of applications that use nicknames, authentication and
authorization decisions MUST be made on the basis of the thing's
identity, not its nickname.
<span class="grey">Saint-Andre Standards Track [Page 9]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-10" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
<span class="h3"><a class="selflink" id="section-6.2" href="#section-6.2">6.2</a>. Reuse of PRECIS</span>
The security considerations described in [<a href="./rfc8264" title=""PRECIS Framework: Preparation, Enforcement, and Comparison of Internationalized Strings in Application Protocols"">RFC8264</a>] apply to the
FreeformClass string class used in this document for nicknames.
<span class="h3"><a class="selflink" id="section-6.3" href="#section-6.3">6.3</a>. Reuse of Unicode</span>
The security considerations described in [<a href="#ref-UTS39" title=""Unicode Security Mechanisms"">UTS39</a>] apply to the use of
Unicode code points in nicknames.
<span class="h3"><a class="selflink" id="section-6.4" href="#section-6.4">6.4</a>. Visually Similar Characters</span>
[<a id="ref-RFC8264">RFC8264</a>] describes some of the security considerations related to
visually similar characters, also called "confusable characters" or
"confusables", and provides some examples of such characters.
Although the mapping rules defined in <a href="#section-2">Section 2</a> of this document are
designed, in part, to reduce the possibility of confusion about
nicknames, this document does not provide more-detailed
recommendations regarding the handling of visually similar
characters, such as those provided in [<a href="#ref-UTS39" title=""Unicode Security Mechanisms"">UTS39</a>].
<span class="h2"><a class="selflink" id="section-7" href="#section-7">7</a>. References</span>
<span class="h3"><a class="selflink" id="section-7.1" href="#section-7.1">7.1</a>. Normative References</span>
[<a id="ref-RFC2119">RFC2119</a>] Bradner, S., "Key words for use in RFCs to Indicate
Requirement Levels", <a href="https://www.rfc-editor.org/bcp/bcp14">BCP 14</a>, <a href="./rfc2119">RFC 2119</a>,
DOI 10.17487/RFC2119, March 1997,
<<a href="https://www.rfc-editor.org/info/rfc2119">https://www.rfc-editor.org/info/rfc2119</a>>.
[<a id="ref-RFC5893">RFC5893</a>] Alvestrand, H., Ed. and C. Karp, "Right-to-Left Scripts
for Internationalized Domain Names for Applications
(IDNA)", <a href="./rfc5893">RFC 5893</a>, DOI 10.17487/RFC5893, August 2010,
<<a href="https://www.rfc-editor.org/info/rfc5893">https://www.rfc-editor.org/info/rfc5893</a>>.
[<a id="ref-RFC6365">RFC6365</a>] Hoffman, P. and J. Klensin, "Terminology Used in
Internationalization in the IETF", <a href="https://www.rfc-editor.org/bcp/bcp166">BCP 166</a>, <a href="./rfc6365">RFC 6365</a>,
DOI 10.17487/RFC6365, September 2011,
<<a href="https://www.rfc-editor.org/info/rfc6365">https://www.rfc-editor.org/info/rfc6365</a>>.
[<a id="ref-RFC8174">RFC8174</a>] Leiba, B., "Ambiguity of Uppercase vs Lowercase in <a href="./rfc2119">RFC</a>
<a href="./rfc2119">2119</a> Key Words", <a href="https://www.rfc-editor.org/bcp/bcp14">BCP 14</a>, <a href="./rfc8174">RFC 8174</a>, DOI 10.17487/RFC8174,
May 2017, <<a href="https://www.rfc-editor.org/info/rfc8174">https://www.rfc-editor.org/info/rfc8174</a>>.
<span class="grey">Saint-Andre Standards Track [Page 10]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-11" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
[<a id="ref-RFC8264">RFC8264</a>] Saint-Andre, P. and M. Blanchet, "PRECIS Framework:
Preparation, Enforcement, and Comparison of
Internationalized Strings in Application Protocols",
<a href="./rfc8264">RFC 8264</a>, DOI 10.17487/RFC8264, October 2017,
<<a href="https://www.rfc-editor.org/info/rfc8264">https://www.rfc-editor.org/info/rfc8264</a>>.
[<a id="ref-Unicode">Unicode</a>] The Unicode Consortium, "The Unicode Standard",
<<a href="http://www.unicode.org/versions/latest/">http://www.unicode.org/versions/latest/</a>>.
[<a id="ref-UTS39">UTS39</a>] Unicode Technical Standard #39, "Unicode Security
Mechanisms", edited by Mark Davis and Michel Suignard,
<<a href="http://unicode.org/reports/tr39/">http://unicode.org/reports/tr39/</a>>.
<span class="h3"><a class="selflink" id="section-7.2" href="#section-7.2">7.2</a>. Informative References</span>
[<a id="ref-Err4570">Err4570</a>] RFC Errata, Erratum ID 4570, <a href="./rfc7700">RFC 7700</a>,
<<a href="https://www.rfc-editor.org/errata/eid4570">https://www.rfc-editor.org/errata/eid4570</a>>.
[<a id="ref-PETNAME-SYSTEMS">PETNAME-SYSTEMS</a>]
Stiegler, M., "An Introduction to Petname Systems",
updated June 2010, February 2005,
<<a href="http://www.skyhunter.com/marcs/petnames/IntroPetNames.html">http://www.skyhunter.com/marcs/petnames/</a>
<a href="http://www.skyhunter.com/marcs/petnames/IntroPetNames.html">IntroPetNames.html</a>>.
[<a id="ref-RFC20">RFC20</a>] Cerf, V., "ASCII format for network interchange", STD 80,
<a href="./rfc20">RFC 20</a>, DOI 10.17487/RFC0020, October 1969,
<<a href="https://www.rfc-editor.org/info/rfc20">https://www.rfc-editor.org/info/rfc20</a>>.
[<a id="ref-RFC2811">RFC2811</a>] Kalt, C., "Internet Relay Chat: Channel Management",
<a href="./rfc2811">RFC 2811</a>, DOI 10.17487/RFC2811, April 2000,
<<a href="https://www.rfc-editor.org/info/rfc2811">https://www.rfc-editor.org/info/rfc2811</a>>.
[<a id="ref-RFC4975">RFC4975</a>] Campbell, B., Ed., Mahy, R., Ed., and C. Jennings, Ed.,
"The Message Session Relay Protocol (MSRP)", <a href="./rfc4975">RFC 4975</a>,
DOI 10.17487/RFC4975, September 2007,
<<a href="https://www.rfc-editor.org/info/rfc4975">https://www.rfc-editor.org/info/rfc4975</a>>.
[<a id="ref-RFC5239">RFC5239</a>] Barnes, M., Boulton, C., and O. Levin, "A Framework for
Centralized Conferencing", <a href="./rfc5239">RFC 5239</a>, DOI 10.17487/RFC5239,
June 2008, <<a href="https://www.rfc-editor.org/info/rfc5239">https://www.rfc-editor.org/info/rfc5239</a>>.
[<a id="ref-RFC5322">RFC5322</a>] Resnick, P., Ed., "Internet Message Format", <a href="./rfc5322">RFC 5322</a>,
DOI 10.17487/RFC5322, October 2008,
<<a href="https://www.rfc-editor.org/info/rfc5322">https://www.rfc-editor.org/info/rfc5322</a>>.
[<a id="ref-RFC6120">RFC6120</a>] Saint-Andre, P., "Extensible Messaging and Presence
Protocol (XMPP): Core", <a href="./rfc6120">RFC 6120</a>, DOI 10.17487/RFC6120,
March 2011, <<a href="https://www.rfc-editor.org/info/rfc6120">https://www.rfc-editor.org/info/rfc6120</a>>.
<span class="grey">Saint-Andre Standards Track [Page 11]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-12" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
[<a id="ref-RFC7700">RFC7700</a>] Saint-Andre, P., "Preparation, Enforcement, and Comparison
of Internationalized Strings Representing Nicknames",
<a href="./rfc7700">RFC 7700</a>, DOI 10.17487/RFC7700, December 2015,
<<a href="https://www.rfc-editor.org/info/rfc7700">https://www.rfc-editor.org/info/rfc7700</a>>.
[<a id="ref-RFC7701">RFC7701</a>] Niemi, A., Garcia-Martin, M., and G. Sandbakken, "Multi-
party Chat Using the Message Session Relay Protocol
(MSRP)", <a href="./rfc7701">RFC 7701</a>, DOI 10.17487/RFC7701, December 2015,
<<a href="https://www.rfc-editor.org/info/rfc7701">https://www.rfc-editor.org/info/rfc7701</a>>.
[<a id="ref-XCON-SYSTEM">XCON-SYSTEM</a>]
Barnes, M., Boulton, C., and S. Loreto, "Chatrooms within
a Centralized Conferencing (XCON) System", Work in
Progress, <a href="./draft-boulton-xcon-session-chat-08">draft-boulton-xcon-session-chat-08</a>, July 2012.
[<a id="ref-XEP-0045">XEP-0045</a>]
Saint-Andre, P., "Multi-User Chat", XSF XEP 0045,
September 2017,
<<a href="https://xmpp.org/extensions/xep-0045.html">https://xmpp.org/extensions/xep-0045.html</a>>.
[<a id="ref-XEP-0172">XEP-0172</a>]
Saint-Andre, P. and V. Mercier, "User Nickname", XSF
XEP 0172, March 2012,
<<a href="https://xmpp.org/extensions/xep-0172.html">https://xmpp.org/extensions/xep-0172.html</a>>.
<span class="h2"><a class="selflink" id="appendix-A" href="#appendix-A">Appendix A</a>. Changes from <a href="./rfc7700">RFC 7700</a></span>
The following changes were made from [<a href="./rfc7700" title=""Preparation, Enforcement, and Comparison of Internationalized Strings Representing Nicknames"">RFC7700</a>].
o Addressed [<a href="#ref-Err4570" title="RFC 7700">Err4570</a>] by removing the directionality rule from
Sections <a href="#section-2.3">2.3</a> and <a href="#section-2.4">2.4</a>.
o In accordance with working group discussions and updates to
[<a href="./rfc8264" title=""PRECIS Framework: Preparation, Enforcement, and Comparison of Internationalized Strings in Application Protocols"">RFC8264</a>], removed the use of the Unicode toCaseFold() operation
in favor of the Unicode toLowerCase() operation.
o Clarified several editorial matters.
o Updated references.
Acknowledgements
Thanks to William Fisher for his implementation feedback, especially
regarding idempotence.
Thanks to Sam Whited for his feedback and for submitting [<a href="#ref-Err4570" title="RFC 7700">Err4570</a>].
<span class="grey">Saint-Andre Standards Track [Page 12]</span></pre>
<hr class='noprint'/><!--NewPage--><pre class='newpage'><span id="page-13" ></span>
<span class="grey"><a href="./rfc8266">RFC 8266</a> PRECIS: Nicknames October 2017</span>
See [<a href="./rfc7700" title=""Preparation, Enforcement, and Comparison of Internationalized Strings Representing Nicknames"">RFC7700</a>] for acknowledgements related to the specification that
this document supersedes.
Author's Address
Peter Saint-Andre
Jabber.org
P.O. Box 787
Parker, CO 80134
United States of America
Phone: +1 720 256 6756
Email: stpeter@jabber.org
URI: <a href="https://www.jabber.org/">https://www.jabber.org/</a>
Saint-Andre Standards Track [Page 13]
</pre>
|
