IETF Logo Mail Archive

Re: [art] draft-ietf-dnsop-attrleaf

John C Klensin <john-ietf@jck.com> Fri, 28 July 2017 16:13 UTC

Return-Path: <john-ietf@jck.com>
X-Original-To: art@ietfa.amsl.com
Delivered-To: art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 990841276AF; Fri, 28 Jul 2017 09:13:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FUAauQlDvItS; Fri, 28 Jul 2017 09:13:04 -0700 (PDT)
Received: from bsa2.jck.com (bsa2.jck.com [70.88.254.51]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6634412EC3F; Fri, 28 Jul 2017 09:13:04 -0700 (PDT)
Received: from [198.252.137.10] (helo=PSB) by bsa2.jck.com with esmtp (Exim 4.82 (FreeBSD)) (envelope-from <john-ietf@jck.com>) id 1db7sp-0006El-73; Fri, 28 Jul 2017 12:12:59 -0400
Date: Fri, 28 Jul 2017 12:12:53 -0400
From: John C Klensin <john-ietf@jck.com>
To: Cullen Jennings <fluffy@iii.ca>, tjw ietf <tjw.ietf@gmail.com>
cc: art@ietf.org, dnsop-chairs@ietf.org, dnsops@ietf.org
Message-ID: <27C709A8477170E52D8F48E1@PSB>
In-Reply-To: <43437154-AD8C-4041-86B7-A33F8A5F15CC@iii.ca>
References: <CADyWQ+HiVOz1zrhNeEYnzy4hryrhFu+v5GNWqcXdOqQBeB9Cig@mail.gmail.com> <43437154-AD8C-4041-86B7-A33F8A5F15CC@iii.ca>
X-Mailer: Mulberry/4.0.8 (Win32)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-SA-Exim-Connect-IP: 198.252.137.10
X-SA-Exim-Mail-From: john-ietf@jck.com
X-SA-Exim-Scanned: No (on bsa2.jck.com); SAEximRunCond expanded to false
Archived-At: <https://mailarchive.ietf.org/arch/msg/art/A8uVoGv4W_Sjyg8dNBpD7M7Umqs>
Subject: Re: [art] draft-ietf-dnsop-attrleaf
X-BeenThere: art@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Applications and Real-Time Area Discussion <art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/art>, <mailto:art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/art/>
List-Post: <mailto:art@ietf.org>
List-Help: <mailto:art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/art>, <mailto:art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jul 2017 16:13:06 -0000

Cullen,

IIR, we introduced the concept of a "recognized standards
organization" (note "recognized", which is important) with media
types, deliberately left it vague, and did so for one primary
reason.  At least in the media type case, there were issues of
probably-legitimate registrations in which it was clear that the
IETF had absolutely no expertise as to the substance or subject
matter of such a request.  As an extreme example, if an
international body responsible for chemical names or plant
taxonomy wanted to establish a media type to be consistent with
the terminology rules they were setting, having amateurs (at
best) in the IETF try to second-guess their decisions was a
rather strange idea and probably an unprofessional and insulting
one.  Sadly, experience indicates that we might try, possibly
proving the value of adages such as a little knowledge being a
dangerous thing.  Our (quite explicit) assumption was that the
IESG would need to figure out who was and was not a recognized
SDO.  More on that below.

An important part of the idea is that "recognized SDO" was an
alternative to another, IETF-centric process.   While I don't
think we ever documented it (perhaps deliberately --- I don't
remember), the IESG can always say "no" on the basis that the
IETF is fully qualified to evaluate a particular request or
family of requests and should do so.   At the same time, we
understood and recognized that, if some standards body out there
was well-established and more recognized in it own field and
area of expertise, IETF decisions that were inconsistent with
theirs were likely to be ignored or, worse, lead to inconsistent
and competing standards used by different sub-communities.  All
a matter of tradeoffs.   Whether the IESG can get them right or
not, we don't have any body or mechanism that would be likely to
consistently do much better.

Whether we got the principle and its expression right is another
question -- it is a bit of a subjective notion and the IETF and
IANA should probably have some input into whether the
request/application conforms to whatever we have decided is
needed for a request to be complete.   We also concluded, after
considerable discussion, that what was and was not to be
"recognized" should be left to IESG discretion on a case-by-case
basis rather than descending into the rathole of trying to lay
out criteria and cover even most of the edge cases.   Perhaps
not a perfect solution, but we had the expectation that the IESG
could do, or arrange to have done, a certain amount of due
diligence and make an acceptable (and conservative) decision.
One of the important properties of most identifiers or type
encodings is stability and we were also aware of the potential
for DoS attacks in this area.  We thought it was reasonable to
trust the IESG to distinguish between established bodies that
were likely to be around and ad hoc arrangements and between
legitimate bodies and, e.g., the Fraternal Order of Trolls or
other potentially-hostile parties and even to sort out
situations in which there were multiple claimants to be the
recognized international standards body in some particular area.
It did not appear to us that debating those issues on the IETF
list would be helpful, especially given that possibility of DoS
attacks and the ease with which conversations on the IETF list
in which there is little expertise but many opinions converse on
N/S ratios with near-infinite values.

All of these differs from "specification required" because it is
expected that some authoritative and consensus body take
responsibility for (and be accountable for) the substantive
content of that specification.   If it isn't working that way,
that is a problem with the IESG's implementation of the
principle, not the principle itself.

Whether that principle, and rules derived from it, are
appropriate for a particular case is another issue.  We used it
very recently in RFC 8141 and I don't recall significant
concerns.  I don't have an opinion as to whether it is
appropriate for this particular draft, just that we should not
abandon the concept of recognizing work by other standards
bodies in their area of expertise because of a perception that
it doesn't work.  It has worked in a number of important cases
and continues to do so.

    john



--On Friday, July 28, 2017 08:56 -0600 Cullen Jennings
<fluffy@iii.ca> wrote:

> The IANA registration policy of  "or are documented by a
> specification published by another    standards organization"
> seems very undefined to me and hard for IANA to execute. Could
> you give specific advice on what is a standards organization? 
> 
> I have seen previous efforts to to this and eventually it
> comes up looking more or less the same as our usual
> "specification required".

v2.23.0 | Report a Bug | By Email