IETF Logo Mail Archive

Re: [Bimi] [rfc-i] SVG P/S Feedback

Leonard Rosenthol <lrosenth@adobe.com> Fri, 28 August 2020 16:13 UTC

Return-Path: <lrosenth@adobe.com>
X-Original-To: bimi@ietfa.amsl.com
Delivered-To: bimi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1DB353A0DDD for <bimi@ietfa.amsl.com>; Fri, 28 Aug 2020 09:13:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.102
X-Spam-Level:
X-Spam-Status: No, score=-2.102 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=adobe.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3sYcdTlTr2yz for <bimi@ietfa.amsl.com>; Fri, 28 Aug 2020 09:13:25 -0700 (PDT)
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (mail-bn7nam10on2058.outbound.protection.outlook.com [40.107.92.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D76C3A0D79 for <bimi@ietf.org>; Fri, 28 Aug 2020 09:13:25 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=eU+1utkEtzAujhJ+MxDKmP+HkpkKcBX2pzDJrDMIrFAsXA66UVzK3UAG3XeDQQ6d9ptm7onHQBAhYNQ4TAB2ALZuc13Qa+0Cit0H7FVqD3C+JIGfbCb9318DYUPrc3BvLiRGDwnlc9XihNApRV3z1EFWm/Yf4zJa+NzkPxoqBB3T9qYE9ocwuqDnWOGvSDBIXsmK+yxdgsBeBVwQUvXnlj8K+56Z77Z/CUvv4fj9mV6GnRQO7q20Mu2JKcMZK6sujQhN2wUw8h9eDJLPeG4goPsdnKFjiiqNC7byxBJjj0n7p0H0ocIxcukOu6EwsgS/N02UlpNzfDxRFs2c7B1cwQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/XEsTfde/XfEdQ91nX45wMUnCCpYYndmOrMTXezHrvg=; b=Up5mkNhlXWevi92HK3uX3X8Jwt+x1QArjA3r+5qJH9qMOS2W7BvuzEgDXR5xPAe7v5JN4hWmvTC5ZizJ20MQABSWtAtMDZdrR6laZpUL5W3JhQTmU0mv6PNOgFWk0vfN98D3q6EQ3DmRXYGiKBhwrd0VrAWtdqUgU4Xd2GSbA3BnzUd2GapeE8waxicX5NUOngyMstU7leZhDsm/M3JzSEaVpty3d31KDepqEmD/x9PEC3MrqAmeZOoPhsxftT9Z6tmcQMxSBA9khHYlz0dhbbaX770SoSHJkV1E2nmwWerMktAF7z9BA85n15Z+HeFts9+6lgU1iZuDdfCeSNAcsQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=adobe.com; dmarc=pass action=none header.from=adobe.com; dkim=pass header.d=adobe.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=adobe.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/XEsTfde/XfEdQ91nX45wMUnCCpYYndmOrMTXezHrvg=; b=FTbegtU1j/q66M4moaRchqOOs4iY6pqGUFMmV930kMsbkXTPdFNlZYpOct/dJEGhgIfB35wwk5pfF7/c1uw90Gq+BPRz4/UVo1ctB7ALKNbhG71MpgyuQ0VruimARjhPLymaSR1ghlY3QCQI5rjiTrJzivqkSJ7/nLXFBJ2vn0g=
Received: from MN2PR02MB6992.namprd02.prod.outlook.com (2603:10b6:208:1f5::10) by MN2PR02MB6894.namprd02.prod.outlook.com (2603:10b6:208:202::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3326.21; Fri, 28 Aug 2020 16:13:23 +0000
Received: from MN2PR02MB6992.namprd02.prod.outlook.com ([fe80::cd1c:e912:82ff:8ea6]) by MN2PR02MB6992.namprd02.prod.outlook.com ([fe80::cd1c:e912:82ff:8ea6%3]) with mapi id 15.20.3326.021; Fri, 28 Aug 2020 16:13:23 +0000
From: Leonard Rosenthol <lrosenth@adobe.com>
To: "Brotman, Alex" <Alex_Brotman@comcast.com>, "rfc-interest@rfc-editor.org" <rfc-interest@rfc-editor.org>
CC: "BIMI (IETF) (bimi@ietf.org)" <bimi@ietf.org>
Thread-Topic: [rfc-i] SVG P/S Feedback
Thread-Index: AQHWfVYn55/LZSJDuUOxfg4Gw3jxXA==
Date: Fri, 28 Aug 2020 16:13:23 +0000
Message-ID: <04985C8C-F189-4B3F-8535-7B65BD56EEB1@adobe.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.40.20081201
authentication-results: comcast.com; dkim=none (message not signed) header.d=none;comcast.com; dmarc=none action=none header.from=adobe.com;
x-originating-ip: [24.0.194.111]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 1dac62f6-581c-4fb7-ff07-08d84b6d49ba
x-ms-traffictypediagnostic: MN2PR02MB6894:
x-microsoft-antispam-prvs: <MN2PR02MB6894A85F9564D2107B48C941CD520@MN2PR02MB6894.namprd02.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: oHIkP37aWGsyMRefnM5lEbzXlukZHvOxn1X86CFCyAa7SiKzSWdUpwK1x57Y0RbjZ7qTHXzXZt7mFN4uiZWnh7Wz9newP8dsHPnj4DG8ak4r2H+sqK+SkKS+YRQTmbOChKLpDXH0SAGSapdsHi+TGnzjHmWFm3mJ00MXpMg4xKtz7qm55espAKU51zKHoSyyNHzKEDiKdd/oDFTO20bgaZ13qIoGrIDZcSqlpNDBE05/BWA8XF3yG0Gfj2VI3zmFQukpLnEAdp9Y6ybRpK548sorCzTh+HxNYZ2f/d18F2Mu93mQTD49oCUp1RBG7aw1Fzw/9Cx5gsWlRNjChpwIFxIzd+pFIe6CwEC1yULqyy9kaqhY6GEOT0MTTIQ6MCmw0z/5ot13n9k+YyFep4bawQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR02MB6992.namprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(39860400002)(346002)(376002)(136003)(396003)(2906002)(786003)(966005)(8936002)(316002)(6506007)(86362001)(110136005)(76116006)(66946007)(26005)(186003)(8676002)(64756008)(66556008)(66476007)(6512007)(45080400002)(33656002)(5660300002)(71200400001)(4326008)(478600001)(83380400001)(2616005)(6486002)(36756003)(66446008); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <168D299FA1BC5248AF8ECBC95289A000@namprd02.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: adobe.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR02MB6992.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 1dac62f6-581c-4fb7-ff07-08d84b6d49ba
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Aug 2020 16:13:23.1852 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: fa7b1b5a-7b34-4387-94ae-d2c178decee1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: KrLiBSispq5UP9BlTH6UcBRignuJrJvhPRX+By6gt1h86xhgTU1wQGWz45bh2NjNSySbLZqtJv3fVerMulnIUw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR02MB6894
Archived-At: <https://mailarchive.ietf.org/arch/msg/bimi/Biu8xqCwwrbYLsMHqP4iYuTBDoA>
Subject: Re: [Bimi] [rfc-i] SVG P/S Feedback
X-BeenThere: bimi@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Brand Indicators for Message Identification <bimi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bimi>, <mailto:bimi-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bimi/>
List-Post: <mailto:bimi@ietf.org>
List-Help: <mailto:bimi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bimi>, <mailto:bimi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Aug 2020 16:13:34 -0000

The SVG working group has been working on a similar project for a while now called SVG Native (https://svgwg.org/specs/svg-native/).  Seems like it would be better for you to leverage that work - including any contributions you believe are necessary - rather than create another (very similar) document.

Leonard

On 8/28/20, 8:57 AM, "rfc-interest on behalf of Brotman, Alex" <rfc-interest-bounces@rfc-editor.org on behalf of Alex_Brotman@comcast.com> wrote:

    Hello,

    [Apologies for the cross-posting]

    As part of a separate project, we wanted to create a smaller SVG profile[1].  It is based on SVG Tiny 1.2, with several components removed.  The goal is to try to keep the document self-contained, remove animations, and generally more portable and secure (hence P/S).  Personally, I've been curious if we should be trying to create a new baseProfile as we've specified, given that it may behoove a developer to only target this subset of Tiny features, reducing footprint and attack surface.  We also welcome feedback about the text and font elements that we've permitted in the draft, and their security implications.

    We thank you for any advice or feedback you can provide.

    [1] https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-svg-tiny-ps-abrotman%2F&amp;data=02%7C01%7Clrosenth%40adobe.com%7C1e0e0a4500844cfd94d308d84b51ed91%7Cfa7b1b5a7b34438794aed2c178decee1%7C0%7C1%7C637342162549841131&amp;sdata=VMyuvgeI4f%2F5bNPSsdNq0kVaY1VDFAAk4N3OpE%2BELII%3D&amp;reserved=0

    --
    Alex Brotman
    Sr. Engineer, Anti-Abuse & Messaging Policy
    Comcast

    _______________________________________________
    rfc-interest mailing list
    rfc-interest@rfc-editor.org
    https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.rfc-editor.org%2Fmailman%2Flistinfo%2Frfc-interest&amp;data=02%7C01%7Clrosenth%40adobe.com%7C1e0e0a4500844cfd94d308d84b51ed91%7Cfa7b1b5a7b34438794aed2c178decee1%7C0%7C1%7C637342162549841131&amp;sdata=HfGQxw5Aj%2FbXXICoJLnSLUqdHboqFUX9FoFc499r8gs%3D&amp;reserved=0

v2.23.0 | Report a Bug | By Email