IETF Logo Mail Archive

Re: [Acme] Spec change to allow retrieval of Terms of Service URL

Matthew Holt <matthew.holt@gmail.com> Thu, 12 November 2015 15:30 UTC

Return-Path: <matthew.holt@gmail.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D95A1ACEE0 for <acme@ietfa.amsl.com>; Thu, 12 Nov 2015 07:30:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FxQN7lwJsFbs for <acme@ietfa.amsl.com>; Thu, 12 Nov 2015 07:30:56 -0800 (PST)
Received: from mail-yk0-x236.google.com (mail-yk0-x236.google.com [IPv6:2607:f8b0:4002:c07::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D1C721ACEDF for <acme@ietf.org>; Thu, 12 Nov 2015 07:30:55 -0800 (PST)
Received: by ykfs79 with SMTP id s79so98690278ykf.1 for <acme@ietf.org>; Thu, 12 Nov 2015 07:30:54 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :content-type; bh=5HPo+ZvcveA+AmWkOuz85IbxXurr5VcuedODB3EWzjY=; b=WRkVmdiuHlZBdRnIX3ya/Yle6kWCuHWBmNhOR12+str9aCWrdKTsnRnQ2u8sOlONpw hFsanX2lfHfYc+rucnm3Dwszp5NJygNdFI9IYOKOcCoYX7YK8EztYheUGqgCV4YwxWtN mkTxP0Hv9xo2IJWd1AsvrB4eQuWKYaPmey3DqdKm8GWtZEjGD0QF0qxOCN7dSPaYDR2Z lLpYSfTk/iPDmPl5lH1WKYDnVL1J0zcAfoEve3cwSrdlh8nhRIjcI9R8/S1ltdhaikIX iHCoqheYdo0DU3gqfkQ9qY9UkzyXiNhVq8mxCCddasXY3AF63J3mAdWIYTdG0jEO0Fpu 6+Cg==
X-Received: by 10.129.41.76 with SMTP id p73mr15152803ywp.32.1447342254260; Thu, 12 Nov 2015 07:30:54 -0800 (PST)
MIME-Version: 1.0
References: <CAPWFDXWx-STKyM-wUvg78onZyh7vROxXm0_8g2+6n79v9Qc+cQ@mail.gmail.com> <87mvuknf8u.fsf@alice.fifthhorseman.net>
In-Reply-To: <87mvuknf8u.fsf@alice.fifthhorseman.net>
From: Matthew Holt <matthew.holt@gmail.com>
Date: Thu, 12 Nov 2015 15:30:44 +0000
Message-ID: <CAPWFDXU9n2LZg9-i2+3ehXw+W-7YU8nDbucxdoHkxFcz2F+thg@mail.gmail.com>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>, acme@ietf.org
Content-Type: multipart/alternative; boundary="001a1141eb4eef0bdf052459a08f"
Archived-At: <http://mailarchive.ietf.org/arch/msg/acme/8HZr9SHIpWAJhOQaiE38mxOqAQY>
Subject: Re: [Acme] Spec change to allow retrieval of Terms of Service URL
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Nov 2015 15:30:58 -0000

On Wed, Nov 11, 2015 at 7:06 PM Daniel Kahn Gillmor <dkg@fifthhorseman.net>
wrote:

> Doesn't this depend on the nature of the data fetched at the given URL?
> I'd hope that any inclusion of some mechanism like this would be tightly
> constrained with guidance that makes the data both self-contained and
> immutable.  Something like:
>
>  a) all the necessary data to understand the subscriber agreement is
>     available from that specific URL, without requiring any additional
>     resource fetches, arbitrary code execution, etc.  I shouldn't need
>     to pull in external stylesheets or images, to run javascript,
>     receive or send cookies, etc. in order to be able to render the
>     document to the user.  You've used .pdf in your example above: there
>     are now PDFs that violate all these assumptions.  Maybe we could
>     limit to text/plain; charset=UTF-8, or (if PDF is needed) to PDF/A
>     or some similar archival-quality subset of PDF?
>

I agree; I only used pdf in my example because the current Let's Encrypt SA
is in PDF format:
https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf - indeed a
text document would be simpler and safer.

If the client leaves it up to the user to follow the link, then the format
shouldn't matter in terms of the ACME spec; it is up to the document
renderer (browser) to do so safely and correctly.

If the client were to actually download and show the document to the user,
then yes, plain text would be much better. Most terminal-based clients will
probably not want to show the full legal terms in the terminal window, but
would prefer a link. Simpler, less screen space required, accomplishes same
goal.


>  b) That the resource fetched from that URL will never change.  I don't
>     want to retrieve the URL at time T, display it to the user, and then
>     have the user continue the process at time T+2 when the document
>     changed at time T+1.
>

That's the idea. The URL to that version of the document should never
change (ideally, but I suppose that is up to the CAs), but if it does, it
means there is a new document, i.e. updated terms, the user must agree to.
So the URL would be assumed to be a key or token value representing the
actual legal text; if it changes, the user should be re-prompted.

v2.23.0 | Report a Bug | By Email