Re: [CDNi] Alexey Melnikov's Yes on draft-ietf-cdni-control-triggers-13: (with COMMENT)
"Murray, Rob (Nokia - GB)" <rob.murray@nokia.com> Tue, 03 May 2016 12:44 UTC
Return-Path: <rob.murray@nokia.com>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F72E12D7E4; Tue, 3 May 2016 05:44:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.921
X-Spam-Level:
X-Spam-Status: No, score=-6.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NAeGVFULkn8O; Tue, 3 May 2016 05:44:40 -0700 (PDT)
Received: from smtp-fr.alcatel-lucent.com (fr-hpida-esg-02.alcatel-lucent.com [135.245.210.21]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4D6F112D7E3; Tue, 3 May 2016 05:44:40 -0700 (PDT)
Received: from fr712umx3.dmz.alcatel-lucent.com (unknown [135.245.210.42]) by Websense Email Security Gateway with ESMTPS id B7C07E5BF316C; Tue, 3 May 2016 12:44:35 +0000 (GMT)
Received: from fr711usmtp1.zeu.alcatel-lucent.com (fr711usmtp1.zeu.alcatel-lucent.com [135.239.2.122]) by fr712umx3.dmz.alcatel-lucent.com (GMO-o) with ESMTP id u43CicA8005167 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Tue, 3 May 2016 12:44:38 GMT
Received: from FR712WXCHHUB03.zeu.alcatel-lucent.com (fr712wxchhub03.zeu.alcatel-lucent.com [135.239.2.74]) by fr711usmtp1.zeu.alcatel-lucent.com (GMO) with ESMTP id u43CiZpp011266 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 3 May 2016 14:44:38 +0200
Received: from FR711WXCHMBA02.zeu.alcatel-lucent.com ([169.254.2.95]) by FR712WXCHHUB03.zeu.alcatel-lucent.com ([135.239.2.74]) with mapi id 14.03.0195.001; Tue, 3 May 2016 14:44:29 +0200
From: "Murray, Rob (Nokia - GB)" <rob.murray@nokia.com>
To: EXT Alexey Melnikov <aamelnikov@fastmail.fm>
Thread-Topic: [CDNi] Alexey Melnikov's Yes on draft-ietf-cdni-control-triggers-13: (with COMMENT)
Thread-Index: AQHRoWukaGlhrjnUfkqZp76qronUSZ+fxpmAgADPC4CABontAA==
Date: Tue, 03 May 2016 12:44:28 +0000
Message-ID: <D4EDE551-7963-4B81-93AB-751C4D25BC3B@alcatel-lucent.com>
References: <20160428163251.27832.10001.idtracker@ietfa.amsl.com> <810FA1FE-BAC3-400B-8076-EBD5359DBF1A@alcatel-lucent.com> <1461923619.253905.593217961.1A4E752D@webmail.messagingengine.com>
In-Reply-To: <1461923619.253905.593217961.1A4E752D@webmail.messagingengine.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.15.1.160411
x-originating-ip: [135.239.27.41]
Content-Type: text/plain; charset="utf-8"
Content-ID: <795D6C3E9C84954BB3752AD33C0030FD@exchange.lucent.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/cdni/UnT_ClDjhu9jrBfw-W6jKoMsbXI>
Cc: "flefauch@cisco.com" <flefauch@cisco.com>, "cdni@ietf.org" <cdni@ietf.org>, The IESG <iesg@ietf.org>, "draft-ietf-cdni-control-triggers@ietf.org" <draft-ietf-cdni-control-triggers@ietf.org>, "cdni-chairs@ietf.org" <cdni-chairs@ietf.org>
Subject: Re: [CDNi] Alexey Melnikov's Yes on draft-ietf-cdni-control-triggers-13: (with COMMENT)
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 May 2016 12:44:42 -0000
On 29/04/2016, 10:53, "EXT Alexey Melnikov" <aamelnikov@fastmail.fm> wrote: [snip] >> >In 4.6: a normative reference that defines AS is needed here. >> >> Would RFC 1930 be the right choice? > >I think so. Are you using 16bit or 32bit version? I don't think it matters. AS number was chosen as a unique identifier for the network, it's not being used by CI/T or any of the other CDNI protocols as an AS number. >> >How is HTTP Authentication done? >> >> Sorry, not sure what the context is. Section 8.1 says: >> >> TLS MUST be used by the server-side (dCDN) and the client-side (uCDN) >> of the CI/T interface, including authentication of the remote end >> [...] >> >> (But I think I'm missing your point?) > >I think this section needs more details on how client and server >identities are verified. In particular what should the client side look >for in server certificates? The Security Considerations text has been the subject of a lot of wordsmithing and rounds of security review in several CDNI drafts, CI/T is aligned with those other drafts (logging, redirection, metadata). I think the feeling is that CDNI drafts are not the place to try to define TLS best practice, which changes over time and is discussed authoritatively elsewhere by people who know what they're talking about (!). So, like the other CDNI drafts, as well as the "including authentication of the remote end" para above the draft currently says: When TLS is used, the general TLS usage guidance in [RFC7525] MUST be followed. Does that cover it for you? If not, what specifics are you thinking about? [snip] >> >Media type: should it have +json suffix? Is the currently defined media >> >type deployed? >> >> Not sure, I thought it was JSON by-definition, but happy to be corrected. >> I don't think it's deployed. > >I think it might be useful to stick +json at the end (and update all >examples to match). Ok. >> >On page 36 - should the URL include "pending", not "complete" (as per the >> >description before this and the previous request/response). >> >> That's section 6.2.5, the example where "/triggers/0" gets deleted? >> >> I think "complete" is right, section 6.2.4 follows it through >> "pending" to "complete" (on page 35). > >At the bottom of page 34 there is the following text: > >When the CI/T Trigger Command is complete, the contents of the > filtered collections will be updated along with their Entity Tags. > For example, when the two example CI/T Trigger Commands are complete, > the collections of pending and complete Trigger Status Resources > might look like: > >after that there are 2 examples on pages 35 and 36, both with URI >"/triggers/complete". I think one of the should be " /triggers/pending, >I think it is the one on page 35. Ah, yes I see, thank you - looks like I've pasted in the wrong example. I'll find the right one while I'm "+json"-ing them. > >Best Regards, >Alexey
- [CDNi] Alexey Melnikov's Yes on draft-ietf-cdni-c… Alexey Melnikov
- Re: [CDNi] Alexey Melnikov's Yes on draft-ietf-cd… Murray, Rob (Nokia - GB)
- Re: [CDNi] Alexey Melnikov's Yes on draft-ietf-cd… Alexey Melnikov
- Re: [CDNi] Alexey Melnikov's Yes on draft-ietf-cd… Murray, Rob (Nokia - GB)