Re: [art] [Last-Call] Artart last call review of draft-ietf-jmap-contacts-06
John C Klensin <john-ietf@jck.com> Mon, 08 April 2024 13:57 UTC
Return-Path: <john-ietf@jck.com>
X-Original-To: art@ietfa.amsl.com
Delivered-To: art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9375AC14CEFF; Mon, 8 Apr 2024 06:57:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x95tu_3rVauK; Mon, 8 Apr 2024 06:57:15 -0700 (PDT)
Received: from bsa2.jck.com (bsa2.jck.com [70.88.254.51]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B49BDC14F74E; Mon, 8 Apr 2024 06:57:08 -0700 (PDT)
Received: from [198.252.137.10] (helo=PSB) by bsa2.jck.com with esmtp (Exim 4.82 (FreeBSD)) (envelope-from <john-ietf@jck.com>) id 1rtpUS-0006i0-Tf; Mon, 08 Apr 2024 09:56:52 -0400
Date: Mon, 08 Apr 2024 09:56:46 -0400
From: John C Klensin <john-ietf@jck.com>
To: Carsten Bormann <cabo@tzi.org>, Bron Gondwana <brong=40fastmailteam.com@dmarc.ietf.org>
cc: Peter Saint-Andre <stpeter@stpeter.im>, art@ietf.org, draft-ietf-jmap-contacts.all@ietf.org, IETF JMAP Mailing List <jmap@ietf.org>, last-call@ietf.org
Message-ID: <48ACBF0C07D869A2B7CE1151@PSB>
In-Reply-To: <407F5BC2-BEFE-4F6B-872D-FB31934740A3@tzi.org>
References: <171112316193.8644.5801107423421446407@ietfa.amsl.com> <1C02FE5D-624B-4BBE-A7F3-91EDF54CDE4F@tzi.org> <b5fac088-9eb3-4ede-a266-f943aeaab076@stpeter.im> <4E9A8148-9EFE-4448-B94E-96FBDB6A2B9A@tzi.org> <06c317c8-8d14-4d78-a4c9-9c44cfc3ec31@stpeter.im> <03ef2b74-19d2-43c1-9c5b-b0aa315c8738@dogfoodapp.fastmail.com> <5c10be7c-8913-46f5-a0bd-e28102624d88@stpeter.im> <C42C278BC5CB8F3EE2920E99@PSB> <521b092a-6490-4fe2-9126-961335a1892b@stpeter.im> <94FE04C6853F55BF4B1C1FFB@PSB> <58438804-1a10-4a86-8f87-d449c0db542a@betaapp.fastmail.com> <407F5BC2-BEFE-4F6B-872D-FB31934740A3@tzi.org>
X-Mailer: Mulberry/4.0.8 (Win32)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
X-SA-Exim-Connect-IP: 198.252.137.10
X-SA-Exim-Mail-From: john-ietf@jck.com
X-SA-Exim-Scanned: No (on bsa2.jck.com); SAEximRunCond expanded to false
Archived-At: <https://mailarchive.ietf.org/arch/msg/art/-us-GZMl1djulI0XZXeaqQwfh3s>
Subject: Re: [art] [Last-Call] Artart last call review of draft-ietf-jmap-contacts-06
X-BeenThere: art@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Applications and Real-Time Area Discussion <art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/art>, <mailto:art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/art/>
List-Post: <mailto:art@ietf.org>
List-Help: <mailto:art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/art>, <mailto:art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Apr 2024 13:57:17 -0000
--On Monday, April 8, 2024 06:40 +0200 Carsten Bormann <cabo@tzi.org> wrote: > On 8. Apr 2024, at 06:06, Bron Gondwana > <brong=40fastmailteam.com@dmarc.ietf.org> wrote: >> >> I suggest saying something like this in the security >> considerations: >> >> […] SHOULD […] > > The security considerations section is not the place to make > normative statements about the protocol. What *is* the security > consideration that would lead to such a set of statement? Carsten, I thought about that too but decided it was a separate issue that the authors and WG could work out with each other and the community. I share your preference for avoiding normative statements there, but it is a principle that has been violated enough times in the past that it is hard to claim that it is a hard rule. A tweak to the "experience has shown" text I suggested to Bron could clearly suggest a security consideration. Or one could pull the text Bron suggested out (with or without my addition) and put it somewhere else, perhaps in the little-used "Internationalization Considerations" section. As he suggested, I think we should leave it to the authors to make a more specific proposal rather than trying micro-edit the document on this list. > (I also think that this would be a rather heavy late change of the > protocol. Has the "Freeform Class as defined in PRECIS" been > examined to actually be useful for this application? [Quick, does > it say all the right things about bidirectional strings for contact > information?] Why is the server only to be restricted about setting > "names" while the client is restricted about displaying any > strings?) I think Bron covered the more substantive part of this but it seems to me that, if our model is that AD review after publication is requested followed by IETF Last Call are actually the first points at which we expect the IESG and the broader community to carefully review the document, this is no such thing as a too-heavy late change if those reviews spot a non-trivial deficiency or other problem. As I have said in other contexts, if the only substantive changes that can be made after IETF LC starts are to prevent earthshaking catastrophes, then we should stop claiming IETF Stream documents represent IETF consensus and start being more clear that they represent the consensus of a (possibly quite homogeneous) WG that the IETF community has had a chance to review and check. best, john
- Re: [art] [Last-Call] Artart last call review of … Carsten Bormann
- [art] Artart last call review of draft-ietf-jmap-… Tim Bray via Datatracker
- Re: [art] [Last-Call] Artart last call review of … Peter Saint-Andre
- Re: [art] [Last-Call] Artart last call review of … Carsten Bormann
- Re: [art] [Last-Call] Artart last call review of … Peter Saint-Andre
- Re: [art] [Last-Call] Artart last call review of … Neil Jenkins
- Re: [art] [Last-Call] Artart last call review of … Peter Saint-Andre
- Re: [art] [Last-Call] Artart last call review of … John C Klensin
- Re: [art] [Last-Call] Artart last call review of … Rob Sayre
- Re: [art] [Last-Call] Artart last call review of … John C Klensin
- Re: [art] [Last-Call] Artart last call review of … Rob Sayre
- Re: [art] [Last-Call] Artart last call review of … Carsten Bormann
- Re: [art] [Last-Call] Artart last call review of … Peter Saint-Andre
- Re: [art] [Last-Call] Artart last call review of … John C Klensin
- Re: [art] [Last-Call] Artart last call review of … Bron Gondwana
- Re: [art] [Last-Call] Artart last call review of … Carsten Bormann
- Re: [art] [Last-Call] Artart last call review of … John C Klensin
- Re: [art] [Last-Call] Artart last call review of … Bron Gondwana
- Re: [art] [Last-Call] Artart last call review of … John C Klensin
- Re: [art] [Last-Call] Artart last call review of … Carsten Bormann
- Re: [art] [Last-Call] Artart last call review of … John C Klensin
- Re: [art] [Last-Call] Artart last call review of … Neil Jenkins
- Re: [art] [Last-Call] Artart last call review of … Rob Sayre