IETF Logo Mail Archive

[art] Re: AD Evaluation: draft-barnes-sframe-iana-256-00

Aron Rosenberg <aron.rosenberg@apple.com> Wed, 21 January 2026 22:48 UTC

Return-Path: <aron.rosenberg@apple.com>
X-Original-To: art@mail2.ietf.org
Delivered-To: art@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id A46F7AB309C2 for <art@mail2.ietf.org>; Wed, 21 Jan 2026 14:48:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.798
X-Spam-Level:
X-Spam-Status: No, score=-2.798 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_NONE=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id w8aYPYKoLF-F for <art@mail2.ietf.org>; Wed, 21 Jan 2026 14:48:33 -0800 (PST)
Received: from rn-mx02.apple.com (rn-mx02.apple.com [17.132.108.1]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id E7973AB309A0 for <art@ietf.org>; Wed, 21 Jan 2026 14:48:32 -0800 (PST)
Received: from mr55p01nt-mtap04.apple.com (mr55p01nt-mtap04.ise.apple.com [10.170.185.200]) by mr55p01nt-mxp02.apple.com (Oracle Communications Messaging Server 8.1.0.28.20250821 64bit (built Aug 21 2025)) with ESMTPS id <0T9829038KOQQW20@mr55p01nt-mxp02.apple.com> for art@ietf.org; Wed, 21 Jan 2026 22:48:26 +0000 (GMT)
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1121,Hydra:6.1.20,FMLib:17.12.100.49 definitions=2026-01-21_04,2026-01-20_01,2025-10-01_01
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=cc : content-transfer-encoding : content-type : date : from : in-reply-to : message-id : mime-version : references : subject : to; s=20180706; bh=nHr5UDJqXKOepCgCMge6/SYHQs3aZSykzE2a71cQ558=; b=RZFsXNrtEmL7cmEEJS8+kqQI+1ycMsqzkzxL3KGdcIuMd5m+WeumbMKFOiRXZ93jTy9s P/r6Ya0dAV2lBJqOjMLZCl31r5bFuSvWcUWTURcK3mVKkjki8YhWOKFQ7hCN+RbxzGR2 aYUHYMtvatPThcv9SWcuLUs4i3o399CqYJyclcVaa1UDJ8Nw4R3UE4d52YTO0kQ1sjiQ 58/AFREJqX7eWCU5YQYdAZDi/1vpbiK/WJgY3Hzn+fAEABgpQA9nAqlN7LAgPix9nFmc eUlOrTrqFrtrvm2Ypg5mLtwNQaGDlEiNfpRO2a334jlY8JDo34aoqGtz9o9Jx82yAYEs RQ==
Received: from mr55p01nt-mmpp08.apple.com (mr55p01nt-mmpp08.ise.apple.com [10.170.185.194]) by mr55p01nt-mtap04.apple.com (Oracle Communications Messaging Server 8.1.0.28.20250821 64bit (built Aug 21 2025)) with ESMTPS id <0T980MVKMKOQDM00@mr55p01nt-mtap04.apple.com>; Wed, 21 Jan 2026 22:48:26 +0000 (GMT)
Received: from process_milters-daemon.mr55p01nt-mmpp08.apple.com by mr55p01nt-mmpp08.apple.com (Oracle Communications Messaging Server 8.1.0.28.20250821 64bit (built Aug 21 2025)) id <0T981GC00K1D3L00@mr55p01nt-mmpp08.apple.com>; Wed, 21 Jan 2026 22:48:26 +0000 (GMT)
X-Va-A:
X-Va-T-CD: 01a37c4388be431533d60b3d58eeb299
X-Va-E-CD: c276a6669bd221fba7e5c841b99fd309
X-Va-R-CD: 274f11975be3e57df2b860b46babe1ab
X-Va-ID: 65c0c753-15b7-468e-92a1-6848d569f4a0
X-Va-CD: 0
X-V-A:
X-V-T-CD: 01a37c4388be431533d60b3d58eeb299
X-V-E-CD: c276a6669bd221fba7e5c841b99fd309
X-V-R-CD: 274f11975be3e57df2b860b46babe1ab
X-V-ID: 054ea57a-148b-4d1f-b6f4-172882405d63
X-V-CD: 0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1121,Hydra:6.1.20,FMLib:17.12.100.49 definitions=2026-01-21_04,2026-01-20_01,2025-10-01_01
Received: from smtpclient.apple (unknown [17.11.166.154]) by mr55p01nt-mmpp08.apple.com (Oracle Communications Messaging Server 8.1.0.28.20250821 64bit (built Aug 21 2025)) with ESMTPSA id <0T981GBF1KOMW600@mr55p01nt-mmpp08.apple.com>; Wed, 21 Jan 2026 22:48:22 +0000 (GMT)
Content-type: text/plain; charset="utf-8"
MIME-version: 1.0 (Mac OS X Mail 16.0 \(3864.400.21\))
From: Aron Rosenberg <aron.rosenberg@apple.com>
In-reply-to: <2f534475-6db3-4cba-b15e-1482fbae9de1@betaapp.fastmail.com>
Date: Wed, 21 Jan 2026 14:48:12 -0800
Content-transfer-encoding: quoted-printable
Message-id: <7839C385-8DB4-485A-8F04-5DE7B85BB9B6@apple.com>
References: <CAMzqgoxa3wgBXMeSm0LiT+=7drs9nYjWVcG5EQ=qeGgRDDbHAw@mail.gmail.com> <CAMzqgownWtueaas4YWKgfPRqdk4Zqqy9Nz8fezcVE4t2UUWzzA@mail.gmail.com> <46863F88-C011-4D76-8F9E-A4BF8B376E38@apple.com> <CAMzqgowjOg4vmYoOx-UFNWtaiSrUf=GPK5LFC4cg6_H0+yiHNQ@mail.gmail.com> <B66DD02C-E808-479C-98F5-D4632AF020DE@apple.com> <2f534475-6db3-4cba-b15e-1482fbae9de1@betaapp.fastmail.com>
To: Martin Thomson <mt@lowentropy.net>
X-Mailer: Apple Mail (2.3864.400.21)
Message-ID-Hash: R2AULKAO3GJ3EOD6SFHAZB2YWSWEJOUO
X-Message-ID-Hash: R2AULKAO3GJ3EOD6SFHAZB2YWSWEJOUO
X-MailFrom: aron.rosenberg@apple.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-art.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Aron Rosenberg <aron.rosenberg=40apple.com@dmarc.ietf.org>, Orie <orie@or13.io>, Emad Omara <eomara@apple.com>, ART Area <art@ietf.org>, "<sec-ads@ietf.org>" <sec-ads@ietf.org>, draft-barnes-sframe-iana-256@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [art] Re: AD Evaluation: draft-barnes-sframe-iana-256-00
List-Id: Applications and Real-Time Area Discussion <art.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/art/sEHJkPPCZKLf6Z6ASnxT-req_pE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/art>
List-Help: <mailto:art-request@ietf.org?subject=help>
List-Owner: <mailto:art-owner@ietf.org>
List-Post: <mailto:art@ietf.org>
List-Subscribe: <mailto:art-join@ietf.org>
List-Unsubscribe: <mailto:art-leave@ietf.org>

> On Jan 18, 2026, at 4:08 PM, Martin Thomson <mt@lowentropy.net> wrote:
> 
> On Sat, Jan 17, 2026, at 03:41, Aron Rosenberg wrote:
>> We changed the Change Controller portion of the registry because it was 
>> not actually the original intent of the original authors to require a 
>> new RFC for introducing a new cipher suite definition.
> 
> That's a misunderstanding of what the change controller is for.
> 
> If the IETF is responsible for maintaining an entry, then it is the change controller.
> 
> But if an independent entity (Apple as an organization or just the individual Richard Barnes) wants to register an entry, they can become the change controller.  The question the field answers is "who does IANA ask to approve a change to that entry?"  That's an important field for maintaining the registry.
> 
> The registry operates under "specification required", which is the same "expert review" plus a requirement to have a specification.  If you think a specification is too onerous, I'd like to understand why.  You have defined the three new entries in this document in a single small paragraph, meeting the requirement easily.  I don't think that it could be made much easier without compromising the openness of the protocol.


The new draft isn’t asking to change the underlying controller requirements, I was just providing background on what the original intent was and how it wasn’t expressed correctly in the final RFC. However, since RFC 9605 is issued and mandates specification required as the only way to get new entries added to the registry, there was no point in having a Change Controller column that always listed IETF, since there is no way for any other entities to register or change the values. Most of the recent RFC’s that establish Cipher Suite IANA registries don’t include a Change Controller column in them (see MLS, COAP, EDHOC, and others). Since we had to modify the registry to support the new cipher suites and the new columns, we decided it was worth dropping this un-needed column at the same time.

If this is not the correct way to proceed, I am fine with leaving the column and updating the draft. The expert review was a tangent and not related to why the column was actually dropped.

Aron

v2.46.0 | Report a Bug | By Email | System Status