IETF Logo Mail Archive

Re: [arch-d] I-D Action: draft-iab-protocol-maintenance-08.txt

David Schinazi <dschinazi.ietf@gmail.com> Thu, 28 July 2022 14:15 UTC

Return-Path: <dschinazi.ietf@gmail.com>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 82EF2C14F718 for <architecture-discuss@ietfa.amsl.com>; Thu, 28 Jul 2022 07:15:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.103
X-Spam-Level:
X-Spam-Status: No, score=-2.103 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8bQDn81eqQDr for <architecture-discuss@ietfa.amsl.com>; Thu, 28 Jul 2022 07:15:45 -0700 (PDT)
Received: from mail-yb1-xb2e.google.com (mail-yb1-xb2e.google.com [IPv6:2607:f8b0:4864:20::b2e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 23871C14CF01 for <architecture-discuss@ietf.org>; Thu, 28 Jul 2022 07:15:45 -0700 (PDT)
Received: by mail-yb1-xb2e.google.com with SMTP id y127so3451978yby.8 for <architecture-discuss@ietf.org>; Thu, 28 Jul 2022 07:15:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=LZdHUrBxg3c9Yt6XAdp2mKqkB5LX5cHlJVtRxjHEdy8=; b=cyYd/P1ii+tGpvGKbDGMoPJwskvgCLsX0CYjR8HEyy5dIcBPLdBW2ylFlWDKhn2TUo M+zKeaPdVUVjLbfXBKBnjniHOtWDrBkM5P2bynx8XldJpi7pst6zBTcIgpldW/QivIEZ 29gutJDx9cipQlEFGis7YNu4co6hGLd53xHZ87rjseum0jm5BftxNdn08A26FHVP6RJC nv3RmzEx9f0ueNrdCiiI0jTDEW+tYi5unpOL28whnARbhkimPw7L+lsecTTJLx7e0S/S Un+qCp8SncDnxoo3ahrKple7Nidr1wBlO7pHKfFucdL3B3ZlGqd8x/WeGOHh3sy416HS POvg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=LZdHUrBxg3c9Yt6XAdp2mKqkB5LX5cHlJVtRxjHEdy8=; b=NmV/x1CFDqNHrZcLUkJAC4SLhX/Lnm9n0q4mKOYrEi/Nvh5LDkgXS6f//fkuMzbgBx +WmDGF/nOnjjpHOnmjJAocRwL9fFAQ+4OZa23mzeH4Dx3DDZG9ZQijdmF+6i3lCYKs2d rTOBK6foSJ+Y6pgJsMZSwUYAghBj7qlJVKUY8Yx6UvZ9SM++OSwq6MvYiTJlJ+tcP4c0 7CI6Oxy0DmcIqO08DZH1scM5PeXiFWvH8W0GSlohS8deagVBSbMsDQju2FqkwpvOpEH0 mhvAT6janlbjjH23exXYX6DAUlZOdWsHn5TMYy9M9oB8f1QXPqZVPT5zrus0Y3wsW3Yt XTYw==
X-Gm-Message-State: AJIora+VpRMxsAyllDX2tRoPfSEEQ6C5xIJQDEi8ZV6zxaK+byBAIPzT g/rAJw57LHDhD9O+fUwQNXVAa9/4VmEhOzBEyvEA9nOe
X-Google-Smtp-Source: AGRyM1tU1JTiYJISA8T8USs2U2i7rC+wmDXAWBwu+dFmqcsqHtRlkgpTPk92jm/VWTGUkVRjVYsc7VpPLbOLo9ixgQ8=
X-Received: by 2002:a25:da13:0:b0:672:6a10:a033 with SMTP id n19-20020a25da13000000b006726a10a033mr4785481ybf.617.1659017743357; Thu, 28 Jul 2022 07:15:43 -0700 (PDT)
MIME-Version: 1.0
References: <a06000c5-939a-a896-9c0f-576e9e2ff97f@gmail.com> <D20FCDD6-3756-40E7-AD6A-416A2C464DF1@gmail.com> <dbee51f0-1913-af6e-de00-c3a7f5b77f68@gmail.com> <1A59B4B5-FA24-4AFD-91D5-14E620DD5E6E@strayalpha.com> <c45c45b6-4fe7-4cb7-b596-ed8315e8f7e0@beta.fastmail.com> <E8F342B5-0AE9-4899-87A2-A54AD86587A5@strayalpha.com> <BY5PR11MB41964EB5230CE8329B9ACBFAB58C9@BY5PR11MB4196.namprd11.prod.outlook.com>
In-Reply-To: <BY5PR11MB41964EB5230CE8329B9ACBFAB58C9@BY5PR11MB4196.namprd11.prod.outlook.com>
From: David Schinazi <dschinazi.ietf@gmail.com>
Date: Thu, 28 Jul 2022 10:15:31 -0400
Message-ID: <CAPDSy+65eCGoNZyif1PN=vgqat53Ek12aHGdPAwGiFXFGhzUMQ@mail.gmail.com>
To: "architecture-discuss@ietf.org" <architecture-discuss@ietf.org>
Cc: Martin Thomson <mt@lowentropy.net>, IAB <iab@iab.org>
Content-Type: multipart/alternative; boundary="00000000000044db1f05e4de2bc1"
Archived-At: <https://mailarchive.ietf.org/arch/msg/architecture-discuss/s_72nk9pSONStYJH6ZrC0Y24f9A>
Subject: Re: [arch-d] I-D Action: draft-iab-protocol-maintenance-08.txt
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jul 2022 14:15:49 -0000

Hi everyone,

I just wanted to share that we had a very productive meeting of the EDM
programme this morning where draft-iab-protocol-maintenance was discussed.
The editors got incredibly constructive feedback that we plan on
incorporating in the near future. Give us a few weeks to do that and submit
a new revision and then we'll notify this list.

Thanks,
David

On Mon, Jul 18, 2022 at 8:46 AM Rob Wilton (rwilton) <rwilton=
40cisco.com@dmarc.ietf.org> wrote:

>
>
>
>
> *From:* Architecture-discuss <architecture-discuss-bounces@ietf.org> *On
> Behalf Of *touch@strayalpha.com
> *Sent:* 13 July 2022 16:18
> *To:* Martin Thomson <mt@lowentropy.net>
> *Cc:* architecture-discuss@ietf.org
> *Subject:* Re: [arch-d] I-D Action: draft-iab-protocol-maintenance-08.txt
>
>
>
>
>
> —
>
> Dr. Joe Touch, temporal epistemologist
>
> www.strayalpha.com
>
>
>
> On Jul 13, 2022, at 5:52 AM, Martin Thomson <mt@lowentropy.net> wrote:
>
>
>
> On Wed, Jul 13, 2022, at 15:08, touch@strayalpha.com wrote:
>
> Additionally, there’s the difference between the state machine and the
> implementation; the idea at one point was to generate both the state
> machine and the protocol implementation from the same description, but
> it never fully developed.
>
>
> Like miTLS[1]? That's a functional implementation based on a verified
> state machine. It's not a practical implementation, but it comes pretty
> close. There's a gap, sure, but it isn't as big as you might think.
>
> [1] https://mitls.org/ (same folks as last time)
>
>
>
> Verified = does what the protocol says, which is not the same as testing
> for specification errors that could cause races or other corner cases.
>
>
>
> Going a bit off topic, but a colleague of mine gave an interesting talk on
> TLA+ (TLA+ - Wikipedia <https://en.wikipedia.org/wiki/TLA%2B>), which can
> be used to write formal specifications, and IIRC, it was definitely able to
> spot race conditions and bugs in the specifications (e.g., if the system
> transitioned to a state that was not valid).
>
>
>
> Of course, it doesn’t speak to whether a particular implementation
> conforms to a valid specification or not.
>
>
>
> Rob
>
>
>
>
>
> Additionally, “not a practical implementation” is a show-stopper; there’s
> little point to an implementation that “proves you can derive code from a
> spec” when you operationally don’t end up using that code. The fact that
> the release is written in two languages - one for spec, one for
> implementation, neither of which is the one used for verification,
> basically underscores my observation.
>
>
>
> Joe
> _______________________________________________
> Architecture-discuss mailing list
> Architecture-discuss@ietf.org
> https://www.ietf.org/mailman/listinfo/architecture-discuss
>

v2.23.0 | Report a Bug | By Email