IETF Logo Mail Archive

Re: [Acme] Spec change to allow retrieval of Terms of Service URL

Richard Barnes <rlb@ipv.sx> Mon, 28 December 2015 22:28 UTC

Return-Path: <rlb@ipv.sx>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9AAEB1ACD68 for <acme@ietfa.amsl.com>; Mon, 28 Dec 2015 14:28:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.423
X-Spam-Level: *
X-Spam-Status: No, score=1.423 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K_8hwzlrIQF4 for <acme@ietfa.amsl.com>; Mon, 28 Dec 2015 14:28:36 -0800 (PST)
Received: from mail-vk0-x22f.google.com (mail-vk0-x22f.google.com [IPv6:2607:f8b0:400c:c05::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 96F291ACD65 for <acme@ietf.org>; Mon, 28 Dec 2015 14:28:36 -0800 (PST)
Received: by mail-vk0-x22f.google.com with SMTP id f2so145956186vkb.3 for <acme@ietf.org>; Mon, 28 Dec 2015 14:28:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipv-sx.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=4rP170HFuF7d+qr4nwS6vsEGOdeSEf2f7tgnjg6E0Wc=; b=IkT5z2eQEBe/y8TI8OSpDD7q9czzPY4twzbegI68XnSY7O0f018QDhtpXs8c/wUvr6 XZsDB5AciZdNgyS1wkzib3CZ/CRvQUEzE1DTG1efysPN+fEDSbYJCRj5b538dwfJI5V/ 8o+X0KV/ZwvJslO/2JOdlWmNHh/fnsHF9fkd5FE7l+35SdOhR+kIdnwhBo5l18aJE5Hq gUfiSBq6jy75F3+GS1JloxliARS0ev+ZIVedZXwgNu+47ROm/gyUg3y9FX71izY7mJDe wn0KMf/Y2U4PfrBpvyzfh47I4P2Jmfdsw9/cqHxNdWOoJQx3B8SWtTG8nmHGj6x6+MY/ Tn1A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=4rP170HFuF7d+qr4nwS6vsEGOdeSEf2f7tgnjg6E0Wc=; b=kxIkEVoIAO1fFEtld3Q//ur35OngTimTpJRA7wYmafqsk+TuNsxIXRR6iW7oEaYzwf OJrHAztsS/lijGwh+vP1H3GGKPsXApJeikpiXKrS4WRFrcWueTs3omnQmS4ze5uJ/HeF KKnMifb5Thl7rqANslQsYsQVAmOV6qHVohXWHOhPCDv1e0XYvkYNJbj3uJYWL/aVPljp M4W4r/cI8IO8nya30gAAXGUSxGJr255EZ9y2VPY9yAlg5QIVvDVbaPqhNa6DoLiWEWZY Sr3ZDwEKT0F2/WU8v4aIszWRAblvHBzsACMx4stLpdoDBeqFttBIA0gRPZuCiQ04uxpU 3Huw==
X-Gm-Message-State: ALoCoQnR73VmSOInoXVgqHh0QuNBXbfKbnVPmucSvHQfGAZVGnp60KtKhU1DGe+NcFMH63GQMxTeDmpakCAHuyCfEqL1TMjIhA==
MIME-Version: 1.0
X-Received: by 10.31.156.129 with SMTP id f123mr3110046vke.40.1451341715687; Mon, 28 Dec 2015 14:28:35 -0800 (PST)
Received: by 10.31.11.81 with HTTP; Mon, 28 Dec 2015 14:28:35 -0800 (PST)
In-Reply-To: <876116op8s.fsf@alice.fifthhorseman.net>
References: <CAPWFDXWx-STKyM-wUvg78onZyh7vROxXm0_8g2+6n79v9Qc+cQ@mail.gmail.com> <87mvuknf8u.fsf@alice.fifthhorseman.net> <CAPWFDXU9n2LZg9-i2+3ehXw+W-7YU8nDbucxdoHkxFcz2F+thg@mail.gmail.com> <876116op8s.fsf@alice.fifthhorseman.net>
Date: Mon, 28 Dec 2015 17:28:35 -0500
Message-ID: <CAL02cgS2gdDgobeZA+1SaHsF+gW64E2EfTMQWS0sVNqzPK-z8A@mail.gmail.com>
From: Richard Barnes <rlb@ipv.sx>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Content-Type: multipart/alternative; boundary="001a1140f23c695e2c0527fcd357"
Archived-At: <http://mailarchive.ietf.org/arch/msg/acme/91RtiZ0i6EUVKFQubKgm6ULH7m8>
Cc: Matthew Holt <matthew.holt@gmail.com>, "acme@ietf.org" <acme@ietf.org>
Subject: Re: [Acme] Spec change to allow retrieval of Terms of Service URL
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Dec 2015 22:28:38 -0000

On Thu, Nov 12, 2015 at 4:57 PM, Daniel Kahn Gillmor <dkg@fifthhorseman.net>
wrote:

> On Thu 2015-11-12 10:30:44 -0500, Matthew Holt wrote:
> > If the client leaves it up to the user to follow the link, then the
> format
> > shouldn't matter in terms of the ACME spec; it is up to the document
> > renderer (browser) to do so safely and correctly.
>
> if the spec has any implications that the user is agreeing to something
> by proceeding with the process, then the spec needs to be really clear
> what it means.  If a document is unreadable by a user with (for example)
> a browser that declines to execute javascript, or a browser cannot
> access third-party resources, then the spec is encouraging both parties
> (subscribers and CAs) to lie to each other.
>
> > If the client were to actually download and show the document to the
> user,
> > then yes, plain text would be much better. Most terminal-based clients
> will
> > probably not want to show the full legal terms in the terminal window,
> but
> > would prefer a link. Simpler, less screen space required, accomplishes
> same
> > goal.
>
> They don't appear to accomplish the same goal to me.  Maybe we need to
> spell out what the goal is more explicitly?
>
> >>  b) That the resource fetched from that URL will never change.  I don't
> >>     want to retrieve the URL at time T, display it to the user, and then
> >>     have the user continue the process at time T+2 when the document
> >>     changed at time T+1.
> >
> > That's the idea. The URL to that version of the document should never
> > change (ideally, but I suppose that is up to the CAs), but if it does, it
> > means there is a new document, i.e. updated terms, the user must agree
> to.
> > So the URL would be assumed to be a key or token value representing the
> > actual legal text; if it changes, the user should be re-prompted.
>
> If the intent is to be able to update the terms of service in
> continuance of the subscriber relationship, then the immutability of the
> provided statement needs to be much more carefully spelled out.
>
> Terms of Service, notice, and consent are complex problems with effects
> going all the way up the stack to layer 9.  If ACME proposes to treat
> them as in-scope for the specification, we need to be careful and
> explicit about how they're being tied in.
>
> I know "the IETF does not do UI", but we need to describe at least the
> semantics of tasks that the UI needs to perform on behalf of the
> subscriber (or, possibly, of the CA) if we expect this additional field
> to be a meaningful part of the protocol.
>

ISTM that what we need to do here is provide tools that will be configured
by layer 9 :)

There are a few basic operations to facilitate:
1. Enable the client to present the TOS to the user
2. Enable the client to indicate the user's agreement with the TOS
3. Enable the client to detect when the TOS changes
4. Enable the server to indicate when the client needs to re-agree

For (1) and (3), having a URI for the terms seems sufficient, without
further constraints.  It's up to the CA to figure out how to present the
terms in a way that clients can handle, and up to clients to figure out how
to handle a reasonable array of stuff.  (I expect in most cases it will get
punted to a browser anyway.)

For (2), we have the "agreement" field in the registration POST.

I think (4) is adequately addressed by the text added in #52 (
https://github.com/ietf-wg-acme/acme/pull/52).

So I'm not seeing a whole lot of need for new mechanism here.

--Richard




>
>          --dkg
>
> _______________________________________________
> Acme mailing list
> Acme@ietf.org
> https://www.ietf.org/mailman/listinfo/acme
>

v2.23.0 | Report a Bug | By Email