Re: [Acme] Spec change to allow retrieval of Terms of Service URL
Daniel Kahn Gillmor <dkg@fifthhorseman.net> Thu, 12 November 2015 21:57 UTC
Return-Path: <dkg@fifthhorseman.net>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9BCD21B37E9 for <acme@ietfa.amsl.com>; Thu, 12 Nov 2015 13:57:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tO0pgGlhAWeN for <acme@ietfa.amsl.com>; Thu, 12 Nov 2015 13:57:37 -0800 (PST)
Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108]) by ietfa.amsl.com (Postfix) with ESMTP id 35F1E1B37E8 for <acme@ietf.org>; Thu, 12 Nov 2015 13:57:37 -0800 (PST)
Received: from fifthhorseman.net (unknown [38.109.115.130]) by che.mayfirst.org (Postfix) with ESMTPSA id CD9B8F984; Thu, 12 Nov 2015 16:57:35 -0500 (EST)
Received: by fifthhorseman.net (Postfix, from userid 1000) id BA3AB1FECA; Thu, 12 Nov 2015 16:57:07 -0500 (EST)
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
To: Matthew Holt <matthew.holt@gmail.com>, acme@ietf.org
In-Reply-To: <CAPWFDXU9n2LZg9-i2+3ehXw+W-7YU8nDbucxdoHkxFcz2F+thg@mail.gmail.com>
References: <CAPWFDXWx-STKyM-wUvg78onZyh7vROxXm0_8g2+6n79v9Qc+cQ@mail.gmail.com> <87mvuknf8u.fsf@alice.fifthhorseman.net> <CAPWFDXU9n2LZg9-i2+3ehXw+W-7YU8nDbucxdoHkxFcz2F+thg@mail.gmail.com>
User-Agent: Notmuch/0.20.2 (http://notmuchmail.org) Emacs/24.5.1 (x86_64-pc-linux-gnu)
Date: Thu, 12 Nov 2015 16:57:07 -0500
Message-ID: <876116op8s.fsf@alice.fifthhorseman.net>
MIME-Version: 1.0
Content-Type: text/plain
Archived-At: <http://mailarchive.ietf.org/arch/msg/acme/1bjl6o0aHc3buFTZHIldQTvm27E>
Subject: Re: [Acme] Spec change to allow retrieval of Terms of Service URL
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Nov 2015 21:57:38 -0000
On Thu 2015-11-12 10:30:44 -0500, Matthew Holt wrote:
> If the client leaves it up to the user to follow the link, then the format
> shouldn't matter in terms of the ACME spec; it is up to the document
> renderer (browser) to do so safely and correctly.
if the spec has any implications that the user is agreeing to something
by proceeding with the process, then the spec needs to be really clear
what it means. If a document is unreadable by a user with (for example)
a browser that declines to execute javascript, or a browser cannot
access third-party resources, then the spec is encouraging both parties
(subscribers and CAs) to lie to each other.
> If the client were to actually download and show the document to the user,
> then yes, plain text would be much better. Most terminal-based clients will
> probably not want to show the full legal terms in the terminal window, but
> would prefer a link. Simpler, less screen space required, accomplishes same
> goal.
They don't appear to accomplish the same goal to me. Maybe we need to
spell out what the goal is more explicitly?
>> b) That the resource fetched from that URL will never change. I don't
>> want to retrieve the URL at time T, display it to the user, and then
>> have the user continue the process at time T+2 when the document
>> changed at time T+1.
>
> That's the idea. The URL to that version of the document should never
> change (ideally, but I suppose that is up to the CAs), but if it does, it
> means there is a new document, i.e. updated terms, the user must agree to.
> So the URL would be assumed to be a key or token value representing the
> actual legal text; if it changes, the user should be re-prompted.
If the intent is to be able to update the terms of service in
continuance of the subscriber relationship, then the immutability of the
provided statement needs to be much more carefully spelled out.
Terms of Service, notice, and consent are complex problems with effects
going all the way up the stack to layer 9. If ACME proposes to treat
them as in-scope for the specification, we need to be careful and
explicit about how they're being tied in.
I know "the IETF does not do UI", but we need to describe at least the
semantics of tasks that the UI needs to perform on behalf of the
subscriber (or, possibly, of the CA) if we expect this additional field
to be a meaningful part of the protocol.
--dkg
- [Acme] Spec change to allow retrieval of Terms of… Matthew Holt
- Re: [Acme] Spec change to allow retrieval of Term… Daniel Kahn Gillmor
- Re: [Acme] Spec change to allow retrieval of Term… Yoav Nir
- Re: [Acme] Spec change to allow retrieval of Term… Matthew Holt
- Re: [Acme] Spec change to allow retrieval of Term… Daniel Kahn Gillmor
- Re: [Acme] Spec change to allow retrieval of Term… Matthew Holt
- Re: [Acme] Spec change to allow retrieval of Term… Richard Barnes
- Re: [Acme] Spec change to allow retrieval of Term… Richard Barnes
- Re: [Acme] Spec change to allow retrieval of Term… Matthew Holt