Re: [auth48] [AD - Murray] Re: AUTH48: RFC-to-be 9458 <draft-ietf-ohai-ohttp-10> for your review
"Murray S. Kucherawy" <superuser@gmail.com> Thu, 11 January 2024 16:03 UTC
Return-Path: <superuser@gmail.com>
X-Original-To: auth48archive@ietfa.amsl.com
Delivered-To: auth48archive@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 12CE0C14F738; Thu, 11 Jan 2024 08:03:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hfZT3B4kAmb9; Thu, 11 Jan 2024 08:03:13 -0800 (PST)
Received: from mail-ej1-x62c.google.com (mail-ej1-x62c.google.com [IPv6:2a00:1450:4864:20::62c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7E69FC14F736; Thu, 11 Jan 2024 08:03:13 -0800 (PST)
Received: by mail-ej1-x62c.google.com with SMTP id a640c23a62f3a-a28cfca3c45so141363666b.1; Thu, 11 Jan 2024 08:03:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1704988991; x=1705593791; darn=rfc-editor.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=gK1P18NbXpYYS6Z0FM+HCQup102frXpwP/dU8T7tlJA=; b=eyK5oAUyM+MzViZE0k7T4LSrl3bBFmwidgxM7ztCQfr9Gg8Jqts2byRDYRFEfjHAtF 86fCYVZ5TyOjnWkdRto545WLlx2GyBouZKLUpdSEh29i0mF8xLa27pOVYd7mDu06PnrR OTFTjvZJCBQFN2wbjwY9j4JYDlFM1BRSJoRxdgDmyjA1paw1HVwQWdnVtHAbhCpH8cRe wyZ5XetQNDKy/Wu9G/+1zbrklGXnkc690HRHCobJAxOhcaUjto0dh0Ukij2RfZIHuQAM qJz9LBwTtBSlrkMxZYHLQvTVK4srjdHzjMo0Gso+MLjKE/RzfKyvhC4E2Ys7uELTEYsY sMEA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1704988991; x=1705593791; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=gK1P18NbXpYYS6Z0FM+HCQup102frXpwP/dU8T7tlJA=; b=LS1lQPiQ5695ZSxaBw3BILFO1GH2z98BPXVBaCrx+1RD63z4pumyftQI8ulv3QdfqK jWJiKeZl3qTt+z886BCpSTaWt1WyUsOubPVtn38RccVSINj0afqYA2rQB1WXlphvlu6W Tg3PfCbL3MsW4SiI/hYUX+0x6VuRhmTe2KmgPAogcA6pfPKTWWZBygrufbQ1QwxHxMvj rkWevqYtcXM0hTfIyLYsaIxHrY4e9tjWwY2g859t9n4+GYOSB5D0YDc9FDTq8QVbi+1U iig8ymkLpD+2qqlG37wEbAK+YdmJWIB6rHVUNUoaR28e39/HD4m+ypwfY72lQrwbzrYE c+vg==
X-Gm-Message-State: AOJu0YzldA2JQTm8AXMgOl1Wy644IoTcBDa78vNM6aJDs0hr6N5pgM3p nyxb6vN3c7iq8BNWLRaVALmsYLhzthrsQsgnvjU=
X-Google-Smtp-Source: AGHT+IEsIVJuq44d9k2Yqe25N86PtLP+aW+strdcze5HY6q8fjmeQ6KAndNACxhKGbTgM+J253slozHRTggor01SaiY=
X-Received: by 2002:a17:907:1b0d:b0:a27:76d1:aa66 with SMTP id mp13-20020a1709071b0d00b00a2776d1aa66mr2230422ejc.1.1704988986125; Thu, 11 Jan 2024 08:03:06 -0800 (PST)
MIME-Version: 1.0
References: <20231006220610.66E5918EA2FC@rfcpa.amsl.com> <e137010f-a2da-4ea2-b100-45f3986abc6d@betaapp.fastmail.com> <63ACA9B8-7D93-4A5B-A4BB-3FB738B9D9C1@amsl.com> <f3c73773-50db-4154-8a84-0739ee7b85da@betaapp.fastmail.com> <DA29270C-A44B-4A4E-BBC6-E506BB008A43@amsl.com> <5ea89e81-bcbe-41bc-aad9-f7e7df3d0900@betaapp.fastmail.com> <6565743B-0CD4-4642-8730-37B728E2F65A@amsl.com> <cbdb37ea-575c-48f3-a549-31bd19b31d5a@betaapp.fastmail.com> <5200B043-2FF9-44BB-BDFE-38A79B4E94F9@amsl.com> <903D364F-DDD1-4657-8E1B-384DB3169719@amsl.com> <d1fb186c-0a13-4f10-82f2-5603e13fb042@betaapp.fastmail.com> <175B287F-0047-4B5B-9FD1-4793627BF8FD@amsl.com> <00B8978E-2D81-42B6-9B1D-C6AD04B3BC06@amsl.com> <3605e0c7-afc0-494b-a2ca-7abf2b8d2218@betaapp.fastmail.com> <6C06B3D0-CCBC-4A29-9BFD-7823B910A605@amsl.com> <8e7f0bb8-48fb-4e46-9fb4-fd3772145cae@betaapp.fastmail.com> <06104533-C472-40F3-B5E4-E3C61CEB89F6@amsl.com> <254e55ca-5711-4d70-a524-657119e0c370@betaapp.fastmail.com> <389D3441-5C04-4F12-A605-A157DE80B827@amsl.com>
In-Reply-To: <389D3441-5C04-4F12-A605-A157DE80B827@amsl.com>
From: "Murray S. Kucherawy" <superuser@gmail.com>
Date: Thu, 11 Jan 2024 11:02:54 -0500
Message-ID: <CAL0qLwZMsPZSQu+nNH7HO+C1AZ1oyApiC=R1ZGa=pWfGu6bCZw@mail.gmail.com>
To: Sandy Ginoza <sginoza@amsl.com>
Cc: Martin Thomson <mt@lowentropy.net>, Shivan Kaul Sahib <shivankaulsahib@gmail.com>, auth48archive <auth48archive@rfc-editor.org>, ohai-ads@ietf.org, ohai-chairs@ietf.org, Christopher Wood <caw@heapingbits.net>, Francesca Palombini <francesca.palombini@ericsson.com>, RFC Editor <rfc-editor@rfc-editor.org>
Content-Type: multipart/alternative; boundary="000000000000dd302b060eadaebc"
Archived-At: <https://mailarchive.ietf.org/arch/msg/auth48archive/YXQvXMlz_zD1Z2ilPZdmhcCM2jM>
Subject: Re: [auth48] [AD - Murray] Re: AUTH48: RFC-to-be 9458 <draft-ietf-ohai-ohttp-10> for your review
X-BeenThere: auth48archive@rfc-editor.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Archiving AUTH48 exchanges between the RFC Production Center, the authors, and other related parties" <auth48archive.rfc-editor.org>
List-Unsubscribe: <https://mailman.rfc-editor.org/mailman/options/auth48archive>, <mailto:auth48archive-request@rfc-editor.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/auth48archive/>
List-Post: <mailto:auth48archive@rfc-editor.org>
List-Help: <mailto:auth48archive-request@rfc-editor.org?subject=help>
List-Subscribe: <https://mailman.rfc-editor.org/mailman/listinfo/auth48archive>, <mailto:auth48archive-request@rfc-editor.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Jan 2024 16:03:18 -0000
Yes, that's approved. Sorry for the delay. -MSK, ART AD On Mon, Jan 8, 2024 at 12:56 PM Sandy Ginoza <sginoza@amsl.com> wrote: > Hi Martin, Chris, Murray*, > > Thanks for your patience as we worked through the process! Martin, I have > marked your approval on the AUTH48 page. Chris, you previously approved > the document - we are very close to done! > > *Murray, as mentioned on Friday, I’m hoping you can review the last > sentence of paragraph 2 in Section 7 and let us know if you approve. This > change can be viewed in the following diff file: > https://www.rfc-editor.org/authors/rfc9458-auth48diff.html > > Thanks, > Sandy > > > > > > > On Jan 2, 2024, at 5:19 PM, Martin Thomson <mt@lowentropy.net> wrote: > > > > LGTM > > > > Thanks Sandy. > > > > On Sat, Dec 23, 2023, at 09:39, Sandy Ginoza wrote: > >> Hi Martin, > >> > >> Thanks for your understanding. I’m guessing we already missed you - > >> perhaps you and Christopher can be the first published in 2024. > >> > >> We have removed the index and updated the links within the file. > >> Please review the current files here: > >> https://www.rfc-editor.org/authors/rfc9458.xml > >> https://www.rfc-editor.org/authors/rfc9458.txt > >> https://www.rfc-editor.org/authors/rfc9458.pdf > >> https://www.rfc-editor.org/authors/rfc9458.html > >> > >> Diffs highlighting the most recent updates only: > >> https://www.rfc-editor.org/authors/rfc9458-lastdiff.html > >> https://www.rfc-editor.org/authors/rfc9458-lastrfcdiff.html (side by > side) > >> https://www.rfc-editor.org/authors/rfc9458-lastxmldiff.html (side by > side) > >> > >> AUTH48 diff: > >> https://www.rfc-editor.org/authors/rfc9458-auth48diff.html > >> > >> Comprehensive diffs: > >> https://www.rfc-editor.org/authors/rfc9458-diff.html > >> https://www.rfc-editor.org/authors/rfc9458-rfcdiff.html (side by > side) > >> > >> > >> Notes about the links: > >> - generally linked upon first mention in each section > >> - Section 2.2 (terms): linked to each term defined when it appears in > >> descriptive text of other terms being defined > >> - terms are linked again after figures (assuming readers may need quick > >> links when landing on figures) > >> - we did not link instances of “Encapsulated Request and Response” > >> - Section 9 (IANA): removed links that appeared within a template > >> (seems unnecessary) > >> - Appendix A: we restarted linking about midway through. > >> > >> Please let us know if you have any questions about the linking. > >> > >> > >> In addition, please consider if any changes are needed regarding the > >> following; > >> - Section 6.9: is the occurrence of "Oblivious Target Resource” > >> correct? > >> - Should the capitalization of “key identifier” be made consistent? We > >> see the capitalized form in Figure 2 and Figure 4, and in the text > >> immediately following Figure 4. The rest of the document seems to use > >> the lowercase form. (It’s not clear if #289 > >> < > https://github.com/ietf-wg-ohai/oblivious-http/pull/289/commits/065aea98caa7ca2191bcbe54ba997e521199955d> > > >> intentionally left capitalization as is.) > >> > >> Thanks, > >> Sandy > >> > >> > >> > >> > >> > >>> On Dec 18, 2023, at 7:44 PM, Martin Thomson <mt@lowentropy.net> wrote: > >>> > >>> No problem Sandy. > >>> > >>> I'll be on leave, but I might be able to check before then. > >>> > >>> (I'm not seeing much evidence to suggest that my views about better > tooling are wrong. We should definitely invest some effort in improving > the situation somehow.) > >>> > >>> On Tue, Dec 19, 2023, at 14:40, Sandy Ginoza wrote: > >>>> Hi Martin, > >>>> > >>>> Just an update. I’m sorry for the delay - I had hoped to provide a > >>>> fully updated doc for your to review last week. I am working on it > and > >>>> will have to you in the next day or so. > >>>> > >>>> Thanks! > >>>> Sandy > >>>> > >>>> > >>>>> On Dec 10, 2023, at 7:41 PM, Martin Thomson <mt@lowentropy.net> > wrote: > >>>>> > >>>>> As Paul noted, it's not clear what sort of approach has been taken > in terms of what is highlighted. That's not so much due to the stuff in > Section 4 onwards, but the use of linking in Section 2 doesn't appear to > match what you say in (b). > >>>>> > >>>>> I think that building an index is a waste of your time. If this > requires manual intervention, I would suggest that you delete the index > entirely. Then we can take our time to discuss improvements to > kramdown-rfc and xml2rfc that make sense (along the lines you have > identified). > >>>>> > >>>>> With those amendments, I'm fine with the outcome. At some time, I > might be in a position to contribute to efforts to improve the situation; I > just have not had time recently. > >>>>> > >>>>> Cheers, > >>>>> Martin > >>>>> > >>>>> On Sat, Dec 9, 2023, at 04:52, Sandy Ginoza wrote: > >>>>>> Hi Martin, Chris, ADs, > >>>>>> > >>>>>> We created a sample of what we hope is a reasonable compromise for > your > >>>>>> consideration. Please review the following aspects in the sample > file > >>>>>> (https://www.rfc-editor.org/authors/rfc9458-link-test.html): > >>>>>> > >>>>>> a) restored link color > >>>>>> b) curated linking through Section 3. (Specifically, a term links > to > >>>>>> its definition upon first use in a section and when the definition > >>>>>> might be useful. For example, terms are intentionally linked again > >>>>>> following Figure 1 > >>>>>> c) index entries (more details below) > >>>>>> > >>>>>> We propose index entries be formatted as in the example below for > ease > >>>>>> of the reader. In the updated document, you can see subentries > under > >>>>>> key configuration for encoding and media type. > >>>>>> > >>>>>> key configuration Section 3 > >>>>>> encoding Section 3.1 > >>>>>> example of Appendix A > >>>>>> forward secrecy Section 6.6 > >>>>>> integrity protection of Section 6.1 > >>>>>> media type Section 3.2, Section 6.9, Section 9.1 > >>>>>> policy application Section 6.1 > >>>>>> privacy considerations Section 7 > >>>>>> problems with Section 5.3, Section 9.4, Section 9.5 > >>>>>> request encapsulation Section 4.3 > >>>>>> > >>>>>> > >>>>>> Note that we are happy to create the index for this document. For > >>>>>> future documents, we understand and sympathize with the desire to > >>>>>> autogenerate an index. We intend to provide guidance about index > >>>>>> usefulness that can be added to the Style Guide, and we will take > >>>>>> autogeneration into consideration in crafting that guidance. In > >>>>>> addition, Jean reviewed the index functionality available in > kramdown > >>>>>> and will request some updates to the documentation. > >>>>>> > >>>>>> Please review and let us know if you agree with this path forward. > >>>>>> > >>>>>> Thanks, > >>>>>> Sandy > >>>>>> > >>>>>> > >>>>>> > >>>>>> > >>>>>> > >>>>>> > >>>>>>> On Nov 17, 2023, at 1:17 PM, Sandy Ginoza <sginoza@amsl.com> > wrote: > >>>>>>> > >>>>>>> Hi Martin, > >>>>>>> > >>>>>>> Thanks for your review. I restored the DOI for ODOH-PETS (thanks > for catching that) and I posted the files with our usual naming > conventions: > >>>>>>> > >>>>>>> https://www.rfc-editor.org/authors/rfc9458.xml > >>>>>>> https://www.rfc-editor.org/authors/rfc9458.txt > >>>>>>> https://www.rfc-editor.org/authors/rfc9458.pdf > >>>>>>> https://www.rfc-editor.org/authors/rfc9458.html > >>>>>>> > >>>>>>> Diffs highlighting the most recent updates only: > >>>>>>> https://www.rfc-editor.org/authors/rfc9458-lastdiff.html > >>>>>>> https://www.rfc-editor.org/authors/rfc9458-lastrfcdiff.html > >>>>>>> > >>>>>>> > >>>>>>> Diff between the author-submitted XML and the current XML: > >>>>>>> > https://www.rfc-editor.org/authors/rfc9458-authors-17nov-rfcdiff.html > >>>>>>> > >>>>>>> > >>>>>>> AUTH48 diff: > >>>>>>> https://www.rfc-editor.org/authors/rfc9458-auth48diff.html > >>>>>>> > >>>>>>> Comprehensive diffs: > >>>>>>> https://www.rfc-editor.org/authors/rfc9458-diff.html > >>>>>>> https://www.rfc-editor.org/authors/rfc9458-rfcdiff.html > >>>>>>> > >>>>>>> > >>>>>>> I have not marked your approval on the AUTH48 page, as we await > the following: > >>>>>>> - a response from RSAB regarding the links and index. FYI: They > have requested some additional information which we are gathering. > >>>>>>> - a new release of xml2rfc that includes “deduplicate index > entries” <https://github.com/ietf-tools/xml2rfc/pull/1050>. > >>>>>>> > >>>>>>> > >>>>>>> Thanks, > >>>>>>> Sandy > >>>>>>> > >>>>>>> > >>>>>>>> On Nov 16, 2023, at 7:08 PM, Martin Thomson <mt@lowentropy.net> > wrote: > >>>>>>>> > >>>>>>>> Hi Sandy, > >>>>>>>> > >>>>>>>> Thanks for doing this. I realize that this is a lot of work. > >>>>>>>> > >>>>>>>> I see a few tweaks to make on my end to reduce the drift further, > but this is a very clean diff and it matches what we produced fairly > closely. > >>>>>>>> > >>>>>>>> I see only one possible error, but I can approve of this either > way: > >>>>>>>> * The ODOH-PETS paper reference lost a DOI: > 10.2478/popets-2021-0085 > >>>>>>>> > >>>>>>>> Cheers, > >>>>>>>> Martin > >>>>>>>> > >>>>>>>> On Fri, Nov 17, 2023, at 10:56, Sandy Ginoza wrote: > >>>>>>>>> Hi Martin, > >>>>>>>>> > >>>>>>>>> I think the following XML file resolves most of the formatting > issues > >>>>>>>>> that were causing such hard-to-review diffs: > >>>>>>>>> > >>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-sg.xml > >>>>>>>>> > >>>>>>>>> This diff highlights the differences between the XML you > provided and > >>>>>>>>> the file mentioned above: > >>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-mt-sg-rfcdiff.html > >>>>>>>>> > >>>>>>>>> The outputs are available here: > >>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-sg.html > >>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-sg.pdf > >>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-sg.txt > >>>>>>>>> > >>>>>>>>> FYI: I left the references as you updated them (rather than us > >>>>>>>>> xi:include), but I added anchors. We also restored the full > name > >>>>>>>>> attribute (but included the surname and initial attributes also) > and > >>>>>>>>> refcontent element. > >>>>>>>>> > >>>>>>>>> We made some additional updates that may have been lost in the > sea of > >>>>>>>>> diffs. Please review and let us know if you have any concerns. > >>>>>>>>> > >>>>>>>>> Thanks, > >>>>>>>>> Sandy > >>>>>>>>> > >>>>>>>>> > >>>>>>>>> > >>>>>>>>> > >>>>>>>>>> On Nov 2, 2023, at 1:54 PM, Sandy Ginoza <sginoza@amsl.com> > wrote: > >>>>>>>>>> > >>>>>>>>>> Hi Martin, > >>>>>>>>>> > >>>>>>>>>>> On Oct 23, 2023, at 2:58 AM, Martin Thomson <mt@lowentropy.net> > wrote: > >>>>>>>>>>> > >>>>>>>>>>> I checked the XML. The changes to line wrapping make it very > hard for me to be certain that the changes are correct. > >>>>>>>>>>> > >>>>>>>>>>> Some observations: > >>>>>>>>>>> > >>>>>>>>>>> 1. There are quite a few tab characters inserted in the > document. This is probably the result of reformatting. It's inconsistent > though. > >>>>>>>>>> > >>>>>>>>>> We see what you’re saying; we’ll fix the file. We’re looking > into how the tabs were inserted. > >>>>>>>>>> > >>>>>>>>>> > >>>>>>>>>>> 2. In the second-level of the IANA media type registrations, > the "Macintosh file type code(s)" item has an extra <t> around the text > (i.e., "<dd><t>N/A</t></dd>"). This seems unnecessary. > >>>>>>>>>> > >>>>>>>>>> Ack - we’ll remove them. > >>>>>>>>>> > >>>>>>>>>> > >>>>>>>>>> > >>>>>>>>>>> 3. There is some weird whitespace preservation thing going on > with some of the attributes. It's probably reformatting-related, but I see > `<iref item="Target Resource"/><` with nine spaces and a number of > similar problems. The file I submitted doesn't have this problem, so it > suggests two lots of reformatting. > >>>>>>>>>> > >>>>>>>>>> We believe this is related to item 1 - we’re working on it. > >>>>>>>>>> > >>>>>>>>>> > >>>>>>>>>>> > >>>>>>>>>>> 4. Our copy supplies fullname attributes for authors in > references. These have been turned into initials+surname, which is > unnecessary and removes information that we might use to fix references in > future. > >>>>>>>>>> > >>>>>>>>>> Agree - we’ll restore the fullname attribute. > >>>>>>>>>> > >>>>>>>>>> We’ll let you know when an updated file is available. > >>>>>>>>>> > >>>>>>>>>> Thanks, > >>>>>>>>>> Sandy > >>>>>>>>>> > >>>>>>>>>> > >>>>>>>>>> > >>>>>>>>>>> Otherwise, I don't see any problems. Though not seeing > doesn't mean that they aren't there, given the level of obfuscation. > >>>>>>>>>>> > >>>>>>>>>>> On Thu, Oct 19, 2023, at 03:39, Sarah Tarrant wrote: > >>>>>>>>>>>> Hello Martin, > >>>>>>>>>>>> > >>>>>>>>>>>> Thank you for your reply. We have updated our files with the > changes > >>>>>>>>>>>> you provided. We have one followup comment. > >>>>>>>>>>>> > >>>>>>>>>>>> 1) Regarding this comment: > >>>>>>>>>>>> > >>>>>>>>>>>>> I have an author for [OHTTP-ANALYSIS], but as a git > repository, perhaps your policy is to avoid attribution in general (I'd > prefer to include the name if possible). > >>>>>>>>>>>> > >>>>>>>>>>>> We updated per “Referencing Web-Based Public Code > Repositories (e.g., > >>>>>>>>>>>> GitHub)” in the "Web Portion of the Style Guide” > >>>>>>>>>>>> (https://www.rfc-editor.org/styleguide/part2/#ref_repo). > >>>>>>>>>>>> > >>>>>>>>>>>> > >>>>>>>>>>>> Updated XML file: > >>>>>>>>>>>> http://www.rfc-editor.org/authors/rfc9458.xml > >>>>>>>>>>>> > >>>>>>>>>>>> Updated output files: > >>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.html > >>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.txt > >>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.pdf > >>>>>>>>>>>> > >>>>>>>>>>>> Diff file showing all changes made during AUTH48: > >>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-auth48diff.html > >>>>>>>>>>>> > https://www.rfc-editor.org/authors/rfc9458-auth48-rfcdiff.html > >>>>>>>>>>>> (side-by-side diff) > >>>>>>>>>>>> > >>>>>>>>>>>> Comprehensive Diffs: > >>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-diff.html > >>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-rfcdiff.html > (side-by-side diff) > >>>>>>>>>>>> > >>>>>>>>>>>> Note that it may be necessary for you to refresh your browser > to view > >>>>>>>>>>>> the most recent version. > >>>>>>>>>>>> > >>>>>>>>>>>> For the AUTH48 status of this document, please see: > >>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9458 > >>>>>>>>>>>> > >>>>>>>>>>>> Thank you, > >>>>>>>>>>>> RFC Editor/st > >>>>>>>>>>>> > >>>>>>>>>>>>> On Oct 16, 2023, at 9:39 PM, Martin Thomson < > mt@lowentropy.net> wrote: > >>>>>>>>>>>>> > >>>>>>>>>>>>> Bullet 5 in S 4.3 > >>>>>>>>>>>>> > >>>>>>>>>>>>> - Encrypted Request (enc_request). > >>>>>>>>>>>>> + Encapsulated Request (enc_request). > >>>>>>>>>>>>> > >>>>>>>>>>>>> S 4.4 uses inconstent comma/paren groupings: > >>>>>>>>>>>>> > >>>>>>>>>>>>> - context, rctxt, as the HPKE context (context) as follows: > >>>>>>>>>>>>> + context (rctxt) as the HPKE context (context) as follows: > >>>>>>>>>>>>> > >>>>>>>>>>>>> S 6.2.3 missed a capitalization: > >>>>>>>>>>>>> > >>>>>>>>>>>>> - The time at which Encapsulated Request or response > messages are sent > >>>>>>>>>>>>> + The time at which Encapsulated Request or Response > messages are sent > >>>>>>>>>>>>> > >>>>>>>>>>>>> I have an author for [OHTTP-ANALYSIS], but as a git > repository, perhaps your policy is to avoid attribution in general (I'd > prefer to include the name if possible). > >>>>>>>>>>>>> > >>>>>>>>>>>>> [ODOH-PETS] is marked "Volume 2021, Issue 4, pp. 575-592", > but I think that it should be "PoPETS Volume ..." instead. > >>>>>>>>>>>>> > >>>>>>>>>>>>> [UWT] should be "W3C TAG Finding" rather than just "W3C TAG". > >>>>>>>>>>>>> > >>>>>>>>>>>>> Reviewing the XML of this document is essentially > impossible. A whole bunch of line folding was introduced. I'll need some > more time for that. > >>>>>>>>>>>>> > >>>>>>>>>>>>> On Tue, Oct 17, 2023, at 07:54, Sarah Tarrant wrote: > >>>>>>>>>>>>>> Hello Martin and Murray*, > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Murray* - please review the last sentence of paragraph 2 in > Section 7 > >>>>>>>>>>>>>> and let us know if you approve. This change is best viewed > in this diff > >>>>>>>>>>>>>> file: > https://www.rfc-editor.org/authors/rfc9458-auth48diff.html > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Martin, thank you for your reply. We have updated our xml > file with the > >>>>>>>>>>>>>> changes you provided. All of our questions have been > addressed. > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Regarding this comment: > >>>>>>>>>>>>>> > >>>>>>>>>>>>>>> I don't know how to ensure that links are formatted > correctly. This is an XML-level change that I'm deferring, but I wanted to > point out that we're using anchors ( > https://www.iana.org/assignments/hpke/hpke.xhtml#hpke-aead-ids) where you > changed to bare URLs (https://www.iana.org/assignments/hpke in the same > place). I wanted to confirm whether this was deliberate. > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Yes, this change was deliberate. IANA has asked us to use > the bare URLs > >>>>>>>>>>>>>> (without anchors) as they are more stable. We use the bare > IANA URLs in > >>>>>>>>>>>>>> running text and in IANA reference entries. See > “Referencing IANA > >>>>>>>>>>>>>> Registries” in the “Web Portion of the Style Guide” > >>>>>>>>>>>>>> (https://www.rfc-editor.org/styleguide/part2/#ref_iana_reg > ). > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Updated XML file: > >>>>>>>>>>>>>> http://www.rfc-editor.org/authors/rfc9458.xml > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Updated output files: > >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.html > >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.txt > >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.pdf > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Diff file showing all changes made during AUTH48: > >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-auth48diff.html > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Comprehensive Diffs: > >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-diff.html > >>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458-rfcdiff.html > (side-by-side diff) > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Note that it may be necessary for you to refresh your > browser to view > >>>>>>>>>>>>>> the most recent version. > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> For the AUTH48 status of this document, please see: > >>>>>>>>>>>>>> https://www.rfc-editor.org/auth48/rfc9458 > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> Thank you, > >>>>>>>>>>>>>> RFC Editor/st > >>>>>>>>>>>>>> > >>>>>>>>>>>>>> > >>>>>>>>>>>>>>> On Oct 15, 2023, at 5:56 PM, Martin Thomson < > mt@lowentropy.net> wrote: > >>>>>>>>>>>>>>> > >>>>>>>>>>>>>>> Hi Sandy, > >>>>>>>>>>>>>>> > >>>>>>>>>>>>>>> These links should not be displayed with any decoration. > They don't appear to be as far as I can see, in any of the styles we > presently use. Is there a version of this document that I'm unaware of and > that is being styled differently? > >>>>>>>>>>>>>>> > >>>>>>>>>>>>>>> The fact that xml2rfc generates multiple index entries is > a bug: https://github.com/ietf-tools/xml2rfc/issues/988 > >>>>>>>>>>>>>>> > >>>>>>>>>>>>>>> The use of cref is automated in our authoring tools and > would be difficult to apply selectively. > >>>>>>>>>>>>>>> > >>>>>>>>>>>>>>> Cheers, > >>>>>>>>>>>>>>> Martin > >>>>>>>>>>>>>>> > >>>>>>>>>>>>>>> On Sat, Oct 14, 2023, at 04:39, Sandy Ginoza wrote: > >>>>>>>>>>>>>>>> Authors, > >>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>> The goal of links and an index in a document is to help > the reader > >>>>>>>>>>>>>>>> navigate that document. This document includes links that > are not > >>>>>>>>>>>>>>>> visually differentiable from the surrounding text (except > upon hover), > >>>>>>>>>>>>>>>> so it is difficult for the reader to discover them. > >>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>> However, once the links are shown with color, their > current > >>>>>>>>>>>>>>>> overabundance can be distracting and confusing to the > reader. In > >>>>>>>>>>>>>>>> addition, the large number of index entries makes it > difficult for the > >>>>>>>>>>>>>>>> reader to determine where they should look for > information. For > >>>>>>>>>>>>>>>> example, there are 91 entries for Oblivious Gateway > Resource, and many > >>>>>>>>>>>>>>>> instances appear within the same paragraph and subsequent > paragraphs > >>>>>>>>>>>>>>>> (e.g., "Section 6, Paragraph 8; Section 6, Paragraph 8; > Section 6.2, > >>>>>>>>>>>>>>>> Paragraph 1; Section 6.2, Paragraph 1"). Similarly, there > are 150 > >>>>>>>>>>>>>>>> entries for Client and 52 more for Clients. For some of > the terms, they > >>>>>>>>>>>>>>>> are linked in close proximity, and some are even linked > within their > >>>>>>>>>>>>>>>> own definitions. We recommend trimming both links and > index entries > >>>>>>>>>>>>>>>> down to instances that aid the reader. In addition to > having a more > >>>>>>>>>>>>>>>> useful index, link color will no longer be distracting. > >>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>> Thanks, > >>>>>>>>>>>>>>>> Sandy > >>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> On Oct 9, 2023, at 6:37 PM, Martin Thomson < > mt@lowentropy.net> wrote: > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Hi, > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Thanks for sending this over. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> https://github.com/ietf-wg-ohai/oblivious-http/pull/289 > is where we're tracking changes for our own review. I've started to port > your changes over there and have attached an updated XML file that should > match yours (mostly). > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> I have only reviewed the text diff at this stage, so > things like references will be very different in this version of the XML. I > plan to go over XML changes once this round of edits is sorted out. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Responses inline below, but first I have a few things to > point out. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> I don't know how to ensure that links are formatted > correctly. This is an XML-level change that I'm deferring, but I wanted to > point out that we're using anchors ( > https://www.iana.org/assignments/hpke/hpke.xhtml#hpke-aead-ids) where you > changed to bare URLs (https://www.iana.org/assignments/hpke in the same > place). I wanted to confirm whether this was deliberate. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Chris and I have rejected some changes: > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> S5: > >>>>>>>>>>>>>>>>> - request, which the Client makes to the Target > Resource, diverges from > >>>>>>>>>>>>>>>>> + request, which the Clients make to the Target > Resource, diverges from > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> (There is only one capital-C Oblivious HTTP Client as > the subject of this statement. This might have been confused as the > preceding statement talked about that Client being an HTTP client in two > separate contexts.) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> S5.1: > >>>>>>>>>>>>>>>>> - This encapsulation does not permit progressive > processing of > >>>>>>>>>>>>>>>>> + This encapsulation does not permit the progressive > processing of > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> In IANA considerations, the media type registrations are > extremely long if a compact list is not used. I've made tweaks to layout > based on your changes that should improve things like line wrapping, but I > think that this is better left in a compact form. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> There are also a few other minor edits for consistency, > as noted below. These relate to capitalization (client->Client in > particular) and more use of parentheses in algorithms. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Cheers, > >>>>>>>>>>>>>>>>> Martin > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> On Sat, Oct 7, 2023, at 09:06, rfc-editor@rfc-editor.org > wrote: > >>>>>>>>>>>>>>>>>> 1) <!--[rfced] Note that the updates that were approved > by the AD in > >>>>>>>>>>>>>>>>>> versions -09 and -10 have been incorporated. Please > review and > >>>>>>>>>>>>>>>>>> let us know if any further updates are needed. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> I can confirm that the changes are in place. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 2) <!-- [rfced] Please insert any keywords (beyond > those that appear in the > >>>>>>>>>>>>>>>>>> title) for use on https://www.rfc-editor.org/search. > >>>>>>>>>>>>>>>>>> --> > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Added privacy, proxy, partitioning, tunnel > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 3) <!-- [rfced] The SVG figures in Sections 2 and 6.5.2 > have width or height > >>>>>>>>>>>>>>>>>> specified, which will make the artwork not scale. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Yes, this is fine. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 4) <!-- [rfced] Please review the following questions > related to the use > >>>>>>>>>>>>>>>>>> of "<tt>". > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> a) In the html and pdf outputs, the text enclosed in > <tt> is > >>>>>>>>>>>>>>>>>> output in fixed-width font. In the txt output, there > are no > >>>>>>>>>>>>>>>>>> changes to the font, and the quotation marks have been > >>>>>>>>>>>>>>>>>> removed. Please review carefully and let us know if the > output is > >>>>>>>>>>>>>>>>>> acceptable or if any updates are needed. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> This is acceptable. We use this for function names and > HTTP field names, which are generally able to be distinguished based on > context and the use of CapTaliZaTiOn. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> b) Should any of the following terms be formatted with > <tt> > >>>>>>>>>>>>>>>>>> for consistency? > >>>>>>>>>>>>>>>>>> c) We notice that the "Date" and "Vary" header fields > are enclosed > >>>>>>>>>>>>>>>>>> with <tt>. Should any of the other header field names > be enclosed > >>>>>>>>>>>>>>>>>> with <tt> for consistency? > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Yes, for all of these. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> d) Is it intentional for some terms to be enclosed with > both <tt> > >>>>>>>>>>>>>>>>>> and quotation marks? For example: "message/ohttp-req" > and > >>>>>>>>>>>>>>>>>> "message/ohttp-res". Please let us know if any updates > are needed. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> This was deliberate. Quotes are safe to use with media > types and it is my belief that these require this additional marking for > documents in text format as they lack the case distinctions of the former. > I'm not firm on this though, the quotes could probably be dropped (what I > really want is something to stop these from wrapping unnecessarily). > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 5) <!-- [rfced] Please review the "type" attribute of > each sourcecode > >>>>>>>>>>>>>>>>>> element in the XML file to ensure correctness. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Verified. I've marked some as pseudocode. However, you > note two instance of tls-syntax, where I was able to spot only one. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 6) <!--[rfced] Section 3.1. We updated the "HPKE KDF > Identifiers" > >>>>>>>>>>>>>>>>>> registry to the "HPKE KEM Identifiers" registry since > it applies > >>>>>>>>>>>>>>>>>> to the "HPKE KEM ID". Please let us know if this is not > correct. > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> Original: > >>>>>>>>>>>>>>>>>> HPKE KEM ID: > >>>>>>>>>>>>>>>>>> A 16 bit value that identifies the Key Encapsulation > Method > >>>>>>>>>>>>>>>>>> (KEM) used for the identified key as defined in Section > 7.1 > >>>>>>>>>>>>>>>>>> of [HPKE] or the HPKE KDF IANA registry. > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> Current: > >>>>>>>>>>>>>>>>>> HPKE KEM ID: > >>>>>>>>>>>>>>>>>> A 16-bit value that identifies the KEM used for the > identified key > >>>>>>>>>>>>>>>>>> as defined in Section 7.1 of [HPKE] or the "HPKE KEM > Identifiers" > >>>>>>>>>>>>>>>>>> IANA registry <https://www.iana.org/assignments/hpke>. > >>>>>>>>>>>>>>>>>> --> > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> I have this using <eref, which renders using parentheses > rather than angle brackets. Otherwise, I think we're good. I think that > this is a change that was made in our repository that didn't make it into > -10. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 7) <!--[rfced] Section 4.3. May we add parentheses to > this bullet point > >>>>>>>>>>>>>>>>>> as follows for easier readability? Please let us know > your > >>>>>>>>>>>>>>>>>> preference. > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> Original: > >>>>>>>>>>>>>>>>>> * a combination of KDF, identified by kdf_id, and > AEAD, identified > >>>>>>>>>>>>>>>>>> by aead_id, that the Client selects from those in the > key > >>>>>>>>>>>>>>>>>> configuration. > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> Perhaps: > >>>>>>>>>>>>>>>>>> * a combination of KDF (identified by kdf_id) and AEAD > (identified > >>>>>>>>>>>>>>>>>> by aead_id) that the Client selects from those in the > key > >>>>>>>>>>>>>>>>>> configuration. > >>>>>>>>>>>>>>>>>> --> > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> There is a consistency issue here. Other bullets used > commas. I think that we can lean on parentheses more if we're careful. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 8) <!-- [rfced] Please review whether any of the notes > in this document > >>>>>>>>>>>>>>>>>> should be in the <aside> element. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> It's hard to answer this question without an example. I > could find a couple of places where it might work, but those were in lists, > where I'm less confident about what that might render as. I don't see any > places where this would help. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 9) > >>>>>>>>>>>>>>>>>> Perhaps: > >>>>>>>>>>>>>>>>>> 2. Builds info by concatenating the ASCII-encoded > string "message/ > >>>>>>>>>>>>>>>>>> bhttp request"; a zero-byte; key_id as an 8-bit > integer; and > >>>>>>>>>>>>>>>>>> kem_id, kdf_id, and aead_id as three 16-bit integers. > >>>>>>>>>>>>>>>>>> --> > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Semi-colons can act as comma's big sister here, sure. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 10) > >>>>>>>>>>>>>>>>>> Perhaps: > >>>>>>>>>>>>>>>>>> 6. Encrypt response, passing the AEAD function Seal > with the values > >>>>>>>>>>>>>>>>>> of aead_key, aead_nonce, an empty aad, and a pt input > of response, > >>>>>>>>>>>>>>>>>> which yields ct. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Maybe instead: > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Encrypt `response` by passing the AEAD function Seal the > values of > >>>>>>>>>>>>>>>>> `aead_key`, `aead_nonce`, an empty `aad`, and a `pt` > input of > >>>>>>>>>>>>>>>>> `response`. This yields `ct`. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 11) > >>>>>>>>>>>>>>>>>> Current: > >>>>>>>>>>>>>>>>>> The request, which the Clients make to the Target > Resource, > >>>>>>>>>>>>>>>>>> diverges from typical HTTP assumptions about the use of > a > >>>>>>>>>>>>>>>>>> connection (see Section 3.3 of [HTTP]) in that the > request > >>>>>>>>>>>>>>>>>> and response are encrypted rather than sent over a > connection. > >>>>>>>>>>>>>>>>>> --> > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> I've gone with: > >>>>>>>>>>>>>>>>> The request, which the Client makes to the Target > Resource, diverges > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 12) > >>>>>>>>>>>>>>>>>> Current: > >>>>>>>>>>>>>>>>>> The problem type [PROBLEM] of " > https://iana.org/assignments/http- > >>>>>>>>>>>>>>>>>> problem-types#ohttp-key" is defined in this section. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Sure. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 13) > >>>>>>>>>>>>>>>>>> Perhaps: > >>>>>>>>>>>>>>>>>> This ensures that Oblivious Gateway Resources are not > >>>>>>>>>>>>>>>>>> misused to forward traffic to arbitrary Target > >>>>>>>>>>>>>>>>>> Resources. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Yes, good. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 14) > >>>>>>>>>>>>>>>>>> Perhaps: > >>>>>>>>>>>>>>>>>> While TLS might be > >>>>>>>>>>>>>>>>>> intercepted successfully, intercepted middlebox devices > might not > >>>>>>>>>>>>>>>>>> receive updates that would allow Oblivious HTTP to be > correctly > >>>>>>>>>>>>>>>>>> identified using the media types defined in Sections > 9.2 and 9.3. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> This is a middlebox that exist to intercept, so I > believe "interception middlebox devices" is correct. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 15) <!-- [rfced] Some author comments are present in > the XML. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Yes, this exist to aid us in drafting, specifically to > help regenerate examples when things change. We don't need (or want) those > to be published. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 16) <!-- [rfced] Terminology > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> a) Throughout the text, the following terminology > appears to be capitalized > >>>>>>>>>>>>>>>>>> inconsistently. Please review these occurrences and let > us know if/how they > >>>>>>>>>>>>>>>>>> may be made consistent. > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> client vs. Client: > >>>>>>>>>>>>>>>>>> Client > >>>>>>>>>>>>>>>>>> client > >>>>>>>>>>>>>>>>>> HTTP client > >>>>>>>>>>>>>>>>>> Oblivious HTTP Client > >>>>>>>>>>>>>>>>>> per-Client > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> This is tricky, but here are the rules we're following: > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> 1. HTTP uses "client", we use "HTTP client" when we > refer specifically to something that is exclusively performing HTTP > functions. This was consistent. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> 2. Oblivious HTTP uses "Client" when referring to the > rule it defines (which is mostly just an HTTP client) and so that is > capitalized everywhere. (That is the first, fourth, and fifth items on > this list.) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> 3. Some of the introductory text talks generically about > clients, which are things that make requests of servers. There, because it > is talking about a generic concept, these are just "client" without > qualification.. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> key identifier vs. Key Identifier vs. key ID > >>>>>>>>>>>>>>>>>> key identifier (9) > >>>>>>>>>>>>>>>>>> Key Identifier (5) > >>>>>>>>>>>>>>>>>> key ID (1) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> The capitalized form refers exclusively to a field as > encoded. Otherwise, we're using lowercase. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> nonce vs. Nonce vs. Nonce field > >>>>>>>>>>>>>>>>>> Nonce (3) > >>>>>>>>>>>>>>>>>> nonce (29) > >>>>>>>>>>>>>>>>>> Nonce field (1) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Again, the capitalized form refers exclusively to the > field in the message. I've tweaked the text to make this clearer. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> plaintext Request (1) vs. > >>>>>>>>>>>>>>>>>> plaintext request (1) vs. > >>>>>>>>>>>>>>>>>> plaintext Response (1) vs. > >>>>>>>>>>>>>>>>>> plaintext request and response (1) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> This was indeed correct, because the odd capitalization > was referring to structures in messages as shown in diagrams, with case > that matched. I've tweaked this a little to make that clearer by > re-captioning the message and using matching words to highlight the > parallelism. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> b) We updated the following terms to the latter forms > shown below for > >>>>>>>>>>>>>>>>>> consistency. Please let us know of any concerns. > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> encapsulated KEM shared secret -> Encapsulated KEM > Shared Secret (1) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Please revert, RFC 9180 uses "enc is an encapsulated KEM > shared secret". > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> encapsulated request -> Encapsulated Request (2) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Great. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> encapsulated response -> Encapsulated Response (5) > >>>>>>>>>>>>>>>>>> Encapsulated Requests and responses -> Encapsulated > Requests and Responses (1) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Also good. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> b) Please confirm if the case for these terms is okay > as is > >>>>>>>>>>>>>>>>>> or if you would like to make any changes. > >>>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> Client request (both words are lowercase in RFC 9110) > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> The cases I see are specific on the first (this is an > OHTTP Client) and non-specific on the second (this is just a request in the > abstract). That's probably sloppy, but I see no need to fix that. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> encrypted request (lowercase in all RFCs) > >>>>>>>>>>>>>>>>>> encrypted requests and responses > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> In some cases, those needed to be Encapsulated > Request(s), which I've corrected. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> HTTP request (lowercase in RFC 9110) > >>>>>>>>>>>>>>>>>> HTTP requests and responses > >>>>>>>>>>>>>>>>>> HTTP request-response > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> This is correct. When talking about HTTP, we use HTTP > lowercasing. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> 17) <!-- [rfced] Please review the "Inclusive Language" > portion of the online > >>>>>>>>>>>>>>>>>> Style Guide < > https://www.rfc-editor.org/styleguide/part2/#inclusive_language> > >>>>>>>>>>>>>>>>>> and let us know if any changes are needed. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>> Acknowledged and validated. I couldn't see anything > either. > >>>>>>>>>>>>>>>>> > >>>>>>>>>>>>>>>>>> The files are available here: > >>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.xml > >>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.html > >>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.pdf > >>>>>>>>>>>>>>>>>> https://www.rfc-editor.org/authors/rfc9458.txt > >>>>>>>>>>>>>>>>> <draft-ietf-ohai-ohttp.xml> > > >
- [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-ohai-… rfc-editor
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… rfc-editor
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] *[AD] AUTH48: RFC-to-be 9458 <draft-… Sarah Tarrant
- Re: [auth48] *[AD] AUTH48: RFC-to-be 9458 <draft-… Christopher Wood
- Re: [auth48] *[AD] AUTH48: RFC-to-be 9458 <draft-… Sarah Tarrant
- Re: [auth48] *[AD] AUTH48: RFC-to-be 9458 <draft-… Christopher Wood
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] *[AD] AUTH48: RFC-to-be 9458 <draft-… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sarah Tarrant
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Paul Wouters
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- [auth48] [AD - Murray] Re: AUTH48: RFC-to-be 9458… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] [AD - Murray] Re: AUTH48: RFC-to-be … Murray S. Kucherawy
- Re: [auth48] [AD - Murray] AUTH48: RFC-to-be 9458… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Martin Thomson
- Re: [auth48] [AD - Murray] AUTH48: RFC-to-be 9458… Sandy Ginoza
- Re: [auth48] AUTH48: RFC-to-be 9458 <draft-ietf-o… Sandy Ginoza
- Re: [auth48] [AD - Murray] AUTH48: RFC-to-be 9458… Martin Thomson