Re: [CDNi] Early AD review of draft-ietf-cdni-metadata-17
Alexey Melnikov <aamelnikov@fastmail.fm> Fri, 03 June 2016 11:59 UTC
Return-Path: <aamelnikov@fastmail.fm>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 030DC12D146 for <cdni@ietfa.amsl.com>; Fri, 3 Jun 2016 04:59:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.72
X-Spam-Level:
X-Spam-Status: No, score=-2.72 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=fastmail.fm header.b=dLGrf6Oj; dkim=pass (1024-bit key) header.d=messagingengine.com header.b=F1iRqYuO
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oVUwVQpVlKCZ for <cdni@ietfa.amsl.com>; Fri, 3 Jun 2016 04:59:26 -0700 (PDT)
Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BF28F12D110 for <cdni@ietf.org>; Fri, 3 Jun 2016 04:59:26 -0700 (PDT)
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.nyi.internal (Postfix) with ESMTP id F3CE121CF2; Fri, 3 Jun 2016 07:59:25 -0400 (EDT)
Received: from web5 ([10.202.2.215]) by compute3.internal (MEProxy); Fri, 03 Jun 2016 07:59:26 -0400
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=fastmail.fm; h= content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-sasl-enc :x-sasl-enc; s=mesmtp; bh=DyIscx9OrijtNlhx6/gnDpIcb6k=; b=dLGrf6 Oj/acJIvQtgxNuX3JSoMFCDuTPt4bMcsbf0k904/nvfIGuROV692G4Ff7t0i+XMk FGECP40vlvH7DxWNXlDwDIe+I4hLYo6aS/Icw+zyLtRerbj0yU43TydJdtqiHq77 oa0nTiLoN7wM4DgXjer8XEvlxrkMXLfUDac4Y=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-sasl-enc:x-sasl-enc; s=smtpout; bh=DyIscx9OrijtNlh x6/gnDpIcb6k=; b=F1iRqYuOR5OzTs8Co9CYRuAP7Mmk1YUrBzPDoUPjscRVltH K2u+fzb2AVoIbv5bOJ/CaF+PvqILUyDUr0GmuLTs1+q6tgmkHFI8fyjm6ueU0Ot8 xCpF7nQ2wNEZoBtHI6CS2lG/5g+RYsmRcpTDBEaxaHzEPYtkgbxMaJ7aG4Zo=
Received: by mailuser.nyi.internal (Postfix, from userid 99) id B5939A87E7; Fri, 3 Jun 2016 07:59:25 -0400 (EDT)
Message-Id: <1464955165.2560710.626896049.52EA8E0B@webmail.messagingengine.com>
X-Sasl-Enc: SCCJfbIDVBRix8R7KU50escwNjQe8/bUrYUZInSU8E4r 1464955165
From: Alexey Melnikov <aamelnikov@fastmail.fm>
To: Kevin Ma J <kevin.j.ma@ericsson.com>, cdni@ietf.org
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain
X-Mailer: MessagingEngine.com Webmail Interface - ajax-38f217ef
In-Reply-To: <A419F67F880AB2468214E154CB8A556206DFE072@eusaamb103.ericsson.se>
References: <A419F67F880AB2468214E154CB8A556206DE1909@eusaamb103.ericsson.se> <1464861734.1246901.625717065.0912CC9E@webmail.messagingengine.com> <A419F67F880AB2468214E154CB8A556206DFE072@eusaamb103.ericsson.se>
Date: Fri, 03 Jun 2016 12:59:25 +0100
Archived-At: <http://mailarchive.ietf.org/arch/msg/cdni/1kVppuJo0Aio0r2PF4GbOIwBQSk>
Subject: Re: [CDNi] Early AD review of draft-ietf-cdni-metadata-17
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Jun 2016 11:59:29 -0000
Hi Kevin, On Thu, Jun 2, 2016, at 08:51 PM, Kevin Ma J wrote: > Hi Alexey, > > inline: > > > -----Original Message----- > > From: CDNi [mailto:cdni-bounces@ietf.org] On Behalf Of Alexey Melnikov > > Sent: Thursday, June 02, 2016 6:02 AM > > To: cdni@ietf.org > > Subject: [CDNi] Early AD review of draft-ietf-cdni-metadata-17 > > > > In order to speed up publication of this draft, I decided to do early AD > > review. Here are my comments. My apologies if they are a bit cryptic, if > > you are unsure of what I meant, please ask! > > > > In 1.2: content can only be delivered using HTTP/1.1 and not HTTP/1.1 > > over TLS? Is last para saying that this is an unsolved problem (e.g. > > LURK BOF solution is needed)? > > Essentially, yes. We had considered trying to define a way to pass certs > and keys around, but in general it seemed like a bad idea. A LURK-like > solution would help. Ok. > > In 4.1.2: hostname and IP addresses need to have defined syntaxes (at > > least by reference). You also need to say whether IDN domain names are > > allowed here. > > I actually just removed the references, since they seemed redundant. The > host property is of type "Endpoint" which is defined in 4.3.3. I can add > it back if you feel it's not readable as is. I would rather you do. I like references :-). > > In 4.1.5: does "case insensitive" only applies to ASCII range? I.e., > > encoded UTF-8 sequences in URIs are not affected. > > I would expect this to apply to the percent encoded values, not the > decoded values, i.e., I would expect "%4A" to be compared as "%4a" and > not "j". Is that what you mean? > > Ben, do you agree? > > We can clarify that. > > > In 4.2.6: URI needs a Normative Reference (RFC 3986). > > Done. I assume you mean wrt the ignore-query-string property description > "URI query string parameters"? Yes. > > In 4.3.7: need a reference to a document/registry defining ASNs. > > Added reference to RFC6793. > > > In 6.1: need a reference to HTTP/1.1 spec. > > Added a reference to RFC7230. > > > Should OPTIONS method be allowed? > > I'll defer to Ben on this one. > > > In 6.2/6.3: Is discovery of the initial URI truly out of scope? You can > > define a .well-known URI to allow bootstrapping. > > If it is defined, is it likely to be used? > > This is similar to Triggers > (https://tools.ietf.org/html/draft-ietf-cdni-control-triggers-15#section-4) > in that it is assumes the CDNs would exchange that information > out-of-band, or that some other bootstrap API would be defined. > > wrt .well-known, the dCDN (in the case of metadata; the uCDN in the case > of triggers) would still need to have a hostname configured? There was > some discussion a while back > (https://mailarchive.ietf.org/arch/msg/cdni/9JUdlQk0fD4_0Lhm1lj7_U7QfcM) > about using a "well-known" URI for retrieving bootstrap information for > all interfaces, but it was not followed up. Ok, I will read this. > > In 7.3: Nit: HTTP/1.1 over TLS needs 2 references, not just one. > > The other reference being? > What if we just used 7230? + RFC 2818. > More generally, though, do you think we need to adjust the registry > structure to have a list of Protocol Specs? I am not sure what you mean. The current table looks fine to me (other than missing references). > > In 7.4: I think I am sad that you haven't defined any initial > > authentication mechanism. Has this been discussed in the WG? > > > > In 8.1, last para: a requirement to implement mutual authentication is > > underspecified. Do you mean TLS mutual authentication? If yes, say so. > > If other mechanisms can be used, say so as well. > > If you meant to reference 8.5 here, please do so. > > > > Why is this only a SHOULD (and not a MUST)? > > Sections 8.1-8.4 were intended to lead into 8.5 > Changed the SHOULDs to MUSTs and added references to 8.5 > > thanx. Much better! > -- Kevin J. Ma > > > In 8.2: similarly, how can the SHOULD be satisfied? Do you mean TLS or > > something else? Reference 8.5? > > > > In 8.3: similar issue. > > > > Also encryption doesn't necessarily provide integrity of data, so the > > last sentence sounds wrong. > > > > In 8.4: similar issue.
- [CDNi] Working Group Last Call on draft-ietf-cdni… Kevin Ma J
- [CDNi] Early AD review of draft-ietf-cdni-metadat… Alexey Melnikov
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Alexey Melnikov
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Working Group Last Call on draft-ietf-… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Ben Niven-Jenkins
- [CDNi] Early AD review of draft-ietf-cdni-metadat… Alexey Melnikov