[apps-discuss] draft-ietf-weirds-bootstrap-00 and our lawn -- feedback?

Mark Nottingham <mnot@mnot.net> Tue, 11 February 2014 07:03 UTC

Return-Path: <mnot@mnot.net>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D05351A08CF for <apps-discuss@ietfa.amsl.com>; Mon, 10 Feb 2014 23:03:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cHPwzQmfHUy6 for <apps-discuss@ietfa.amsl.com>; Mon, 10 Feb 2014 23:03:47 -0800 (PST)
Received: from mxout-07.mxes.net (mxout-07.mxes.net [216.86.168.182]) by ietfa.amsl.com (Postfix) with ESMTP id 534B11A08D7 for <apps-discuss@ietf.org>; Mon, 10 Feb 2014 23:03:47 -0800 (PST)
Received: from [192.168.1.55] (unknown [118.209.47.254]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by smtp.mxes.net (Postfix) with ESMTPSA id B3AD722E1F3 for <apps-discuss@ietf.org>; Tue, 11 Feb 2014 02:03:40 -0500 (EST)
From: Mark Nottingham <mnot@mnot.net>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
Message-Id: <40E62D1E-983E-465A-A169-2104BCFA587B@mnot.net>
Date: Tue, 11 Feb 2014 18:03:35 +1100
To: IETF Apps Discuss <apps-discuss@ietf.org>
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
X-Mailer: Apple Mail (2.1827)
Subject: [apps-discuss] draft-ietf-weirds-bootstrap-00 and our lawn -- feedback?
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss/>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Feb 2014 07:03:49 -0000

I've been in an on-again, off-again discussion with some of the WEIRDS folks about their work and its relationship to <http://tools.ietf.org/html/draft-ietf-appsawg-uri-get-off-my-lawn>.

That seemed to precipitate <http://tools.ietf.org/html/draft-ietf-weirds-bootstrap-00>, which describes a way to "bootstrap" a WEIRDS interaction, and I've been asked for feedback.

Reading through it, I have some issues, but I since uri-get-off-my-lawn is a product of this WG, not just my draft, I'd rather get a sense of what the WG thinks overall, rather than just giving my own feedback.

AIUI, the bootstrap draft uses a number of IANA registries to contain a mapping of (domain names, IPv4 networks, IPv6 networks, AS numbers) to URLs for their RDAP services. 

Those URLs are then used as base URIs for further interactions; for example, if example.com had a registry value of "http://example.com/lookup", you'd look up "foo.example.com" as "http://example.com/lookup/domain/foo.example.com".

To me, this seems better than the previous solution (where you assumed that example.com had something available at a certain path), but it still "bakes" URLs into the spec, relative to that base URI. I.e., the "/domain/whatever" bit above is locked into the spec and unchangeable, AIUI.

So, while they avoid collisions (probably), they still risk the other problems that the "get off my lawn" draft cautions against, AFAICT.

If I were doing this protocol and I still wanted to use a registry (questionable IMHO), I'd allow each entry to contain a set of URL templates, identified by link relations, that allows a one-step lookup without baking in any URLs. 

E.g., 

domain: example.com
    rel: domainlookup    href-template: http://example.com/lookup/{domain}

I'm very curious to hear what other APPS folks think about this -- especially those of a Web bent. We're trying to line up some conversations about this in London, and I'd like to inform them with the WG's perspective, rather than just my own.

Cheers,

--
Mark Nottingham   http://www.mnot.net/