IETF Logo Mail Archive

Re: [Cbor] draft-ietf-cbor-date-tag-02 - handling of time zone offsets

Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de> Fri, 03 July 2020 06:08 UTC

Return-Path: <j.schoenwaelder@jacobs-university.de>
X-Original-To: cbor@ietfa.amsl.com
Delivered-To: cbor@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E16CA3A0D2A; Thu, 2 Jul 2020 23:08:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D7MynTETPHAH; Thu, 2 Jul 2020 23:08:31 -0700 (PDT)
Received: from atlas5.jacobs-university.de (atlas5.jacobs-university.de [212.201.44.20]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 14FE93A0C75; Thu, 2 Jul 2020 23:08:29 -0700 (PDT)
Received: from localhost (demetrius5.irc-it.jacobs-university.de [10.70.0.222]) by atlas5.jacobs-university.de (Postfix) with ESMTP id 6EE24375; Fri, 3 Jul 2020 08:08:22 +0200 (CEST)
X-Virus-Scanned: amavisd-new at jacobs-university.de
Received: from atlas5.jacobs-university.de ([10.70.0.198]) by localhost (demetrius5.jacobs-university.de [10.70.0.222]) (amavisd-new, port 10032) with ESMTP id epQSidjAaOoK; Fri, 3 Jul 2020 08:08:22 +0200 (CEST)
Received: from hermes.jacobs-university.de (hermes.jacobs-university.de [212.201.44.23]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "hermes.jacobs-university.de", Issuer "DFN-Verein Global Issuing CA" (verified OK)) by atlas5.jacobs-university.de (Postfix) with ESMTPS; Fri, 3 Jul 2020 08:08:22 +0200 (CEST)
Received: from localhost (demetrius5.irc-it.jacobs-university.de [10.70.0.222]) by hermes.jacobs-university.de (Postfix) with ESMTP id 1284920154; Fri, 3 Jul 2020 08:08:22 +0200 (CEST)
X-Virus-Scanned: amavisd-new at jacobs-university.de
Received: from hermes.jacobs-university.de ([212.201.44.23]) by localhost (demetrius5.jacobs-university.de [10.70.0.222]) (amavisd-new, port 10028) with ESMTP id BRoq_eQjsCHe; Fri, 3 Jul 2020 08:08:21 +0200 (CEST)
Received: from localhost (anna.jacobs.jacobs-university.de [10.50.218.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by hermes.jacobs-university.de (Postfix) with ESMTPS id 8A5C1200E4; Fri, 3 Jul 2020 08:08:21 +0200 (CEST)
Date: Fri, 03 Jul 2020 08:08:20 +0200
From: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
To: Carsten Bormann <cabo@tzi.org>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, draft-ietf-cbor-date-tag@ietf.org, cbor@ietf.org
Message-ID: <20200703060820.ydmbdmp5fy2v6wgf@anna.jacobs.jacobs-university.de>
Reply-To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
References: <20200701072123.hnyhzemagtotnuyl@anna.jacobs.jacobs-university.de> <DD477DBD-3F3F-48FA-BADC-FF550CC3D4F7@tzi.org> <20200701090536.mqkfjebfzhz5phls@anna.jacobs.jacobs-university.de> <5244.1593618673@localhost> <04FEC6E5-F8E9-472D-A4D6-71C6C00D79E6@tzi.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <04FEC6E5-F8E9-472D-A4D6-71C6C00D79E6@tzi.org>
X-Clacks-Overhead: GNU Terry Pratchett
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/cbor/6Bicdo89-Hb_YDOoEnWijuiqP_k>
Subject: Re: [Cbor] draft-ietf-cbor-date-tag-02 - handling of time zone offsets
X-BeenThere: cbor@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Concise Binary Object Representation \(CBOR\)" <cbor.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cbor>, <mailto:cbor-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cbor/>
List-Post: <mailto:cbor@ietf.org>
List-Help: <mailto:cbor-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cbor>, <mailto:cbor-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Jul 2020 06:08:33 -0000

On Wed, Jul 01, 2020 at 06:23:30PM +0200, Carsten Bormann wrote:
> On 2020-07-01, at 17:51, Michael Richardson <mcr+ietf@sandelman.ca> wrote:
> > 
> > The failure of the Nipponese to declare war on the USA on December 8, 1941
> > (they date of the attack on Pearl Habou^Hr in Japan...) is perhaps a better
> > example of failures to get the time zone right.
> 
> … and then there is V-E Day which is on 1945-05-08 everywhere except in some countries usually more or less loosely related to the Soviet Union, where it is on 1945-05-09 (even though the actual capitulation document was signed on 21:20 Central European Summer Time, which I think was 22:20 in Moscow which didn’t follow DST at the time…  
> No time left to set up parades, so -05-09 it was :-).
> 
> I’m citing this as an example where a calendar date was chosen entirely by fiat, not based on the exact time of the actual event as adjusted for a specific place/time zone.  It does make sense to separate calendar dates from day-length periods anchored on a time scale, and this document is about representing calendar dates in CBOR.
>

You often associate an event with a date. If you ignore timezone, then

 (1) two systems may associate the same event with different dates and
 (2) comparisons of date values may lead to "wrong" results.

Since number of days since 1970-01-01 seems to be calculated in UTC
(the document refers to the POSIX epoch which seems to be in UTC)

 (3) a 'date' value and a 'number of days since 1970-01-01' value can
     be "inconsistent".

I think this deserves a clear warning. The -03 version has text in the
security considerations section scoped to access control decisions but
the fact that comparisons of date values and number of days since
1970-01-01 values may be surprising is not limited to access control,
i.e., I prefer to see this explicitly discussed in section 2.1,
perhaps including advice what should be done if proper comparison of
date values is desirable.

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1 | 28759 Bremen | Germany
Fax:   +49 421 200 3103         <https://www.jacobs-university.de/>

v2.23.0 | Report a Bug | By Email