[CDNi] Early AD review of draft-ietf-cdni-metadata-18
Alexey Melnikov <aamelnikov@fastmail.fm> Mon, 13 June 2016 12:52 UTC
Return-Path: <aamelnikov@fastmail.fm>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AAFC812B065 for <cdni@ietfa.amsl.com>; Mon, 13 Jun 2016 05:52:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.72
X-Spam-Level:
X-Spam-Status: No, score=-2.72 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=fastmail.fm header.b=LoBfQo+R; dkim=pass (1024-bit key) header.d=messagingengine.com header.b=MQ4nGIIv
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uctmUSGd1ohj for <cdni@ietfa.amsl.com>; Mon, 13 Jun 2016 05:52:57 -0700 (PDT)
Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E678C12B036 for <cdni@ietf.org>; Mon, 13 Jun 2016 05:52:56 -0700 (PDT)
Received: from compute2.internal (compute2.nyi.internal [10.202.2.42]) by mailout.nyi.internal (Postfix) with ESMTP id 6089720C31 for <cdni@ietf.org>; Mon, 13 Jun 2016 08:52:56 -0400 (EDT)
Received: from web5 ([10.202.2.215]) by compute2.internal (MEProxy); Mon, 13 Jun 2016 08:52:56 -0400
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=fastmail.fm; h= content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-sasl-enc :x-sasl-enc; s=mesmtp; bh=MG4R56w01h07N19SBHkmjcHmpwk=; b=LoBfQo +RF/Nj153Y/wQij3B5meaoR2fu1QZA2BZJv6kzOwX6EiWuxeWoSdOw/YP9MgjmGx KKXQLxxAk9UNz84hw16eWxyRi72wldaTmkOS0gthVYupV7LOorx2LAaHARE4E5PP 4kzzLQzhvyCoAVyK3h273ckBrBnE7jSrgC/E4=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-sasl-enc:x-sasl-enc; s=smtpout; bh=MG4R56w01h07N19 SBHkmjcHmpwk=; b=MQ4nGIIvBvkg+2z47eLbS6JCX6JbYlKIoubyCjkUYdwIwrJ ltQ16vawNsQDOqQ7QAgX6hAcLOB0pXD4wFrR4XzQrqWvvSZztUus5BftKZnzN1ah Wz9/bC5wB6PvhL3WSSZc13PM1iEppz4Rb+BW68u9KxSC2ay3cF/vbiq5BMRw=
Received: by mailuser.nyi.internal (Postfix, from userid 99) id 2E873A906F; Mon, 13 Jun 2016 08:52:56 -0400 (EDT)
Message-Id: <1465822376.2345831.636047169.2F7E30C4@webmail.messagingengine.com>
X-Sasl-Enc: IofdxJdH94rBM5X5nd115kJLFmZcP2KRbNZQ4o0gPjAL 1465822376
From: Alexey Melnikov <aamelnikov@fastmail.fm>
To: cdni@ietf.org
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain
X-Mailer: MessagingEngine.com Webmail Interface - ajax-aff28cd1
Date: Mon, 13 Jun 2016 13:52:56 +0100
In-Reply-To: <1464861734.1246901.625717065.0912CC9E@webmail.messagingengine.com>
References: <A419F67F880AB2468214E154CB8A556206DE1909@eusaamb103.ericsson.se> <1464861734.1246901.625717065.0912CC9E@webmail.messagingengine.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/krMrktT-U7jmpRtonmJO9rUr3EE>
Subject: [CDNi] Early AD review of draft-ietf-cdni-metadata-18
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Jun 2016 12:53:00 -0000
Thank you for addressing most of my concerns. Here is the updated list of issues: In 4.1.2: hostname need to have defined syntax (at least by reference). You also need to say whether IDN domain names are allowed here. In 6.1: The CDNI metadata interface specified in this document is a read-only interface. Therefore support for other HTTP methods such as PUT, POST, DELETE, etc. is not specified. A server implementation of the CDNI metadata interface MUST reject all methods other than GET and HEAD. I think the change to the MUST is too strong and is a wrong thing to do, because that means that existing HTTP/1.1 software might have to be modified to support this specification. So I would prefer that you either delete the last sentence or reword to say "doesn't have to support any methods other that ..." In 8.3: An implementation of the CDNI metadata interface MUST use strong encryption and mutual authentication to prevent undetectable Encryption doesn't necessarily provide integrity of data, so I would change "strong encryption" to TLS. modification of metadata (see Section 8.5). On Thu, Jun 2, 2016, at 11:02 AM, Alexey Melnikov wrote: > In order to speed up publication of this draft, I decided to do early AD > review. Here are my comments. My apologies if they are a bit cryptic, if > you are unsure of what I meant, please ask! > > In 1.2: content can only be delivered using HTTP/1.1 and not HTTP/1.1 > over TLS? Is last para saying that this is an unsolved problem (e.g. > LURK BOF solution is needed)? > > In 4.1.2: hostname and IP addresses need to have defined syntaxes (at > least by reference). You also need to say whether IDN domain names are > allowed here. > > In 4.1.5: does "case insensitive" only applies to ASCII range? I.e., > encoded UTF-8 sequences in URIs are not affected. > > In 4.2.6: URI needs a Normative Reference (RFC 3986). > > In 4.3.7: need a reference to a document/registry defining ASNs. > > In 6.1: need a reference to HTTP/1.1 spec. > > Should OPTIONS method be allowed? > > In 6.2/6.3: Is discovery of the initial URI truly out of scope? You can > define a .well-known URI to allow bootstrapping. > If it is defined, is it likely to be used? > > In 7.3: Nit: HTTP/1.1 over TLS needs 2 references, not just one. > > In 7.4: I think I am sad that you haven't defined any initial > authentication mechanism. Has this been discussed in the WG? > > In 8.1, last para: a requirement to implement mutual authentication is > underspecified. Do you mean TLS mutual authentication? If yes, say so. > If other mechanisms can be used, say so as well. > If you meant to reference 8.5 here, please do so. > > Why is this only a SHOULD (and not a MUST)? > > In 8.2: similarly, how can the SHOULD be satisfied? Do you mean TLS or > something else? Reference 8.5? > > In 8.3: similar issue. > > Also encryption doesn't necessarily provide integrity of data, so the > last sentence sounds wrong. > > In 8.4: similar issue.
- [CDNi] Working Group Last Call on draft-ietf-cdni… Kevin Ma J
- [CDNi] Early AD review of draft-ietf-cdni-metadat… Alexey Melnikov
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Alexey Melnikov
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Working Group Last Call on draft-ietf-… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Kevin Ma J
- Re: [CDNi] Early AD review of draft-ietf-cdni-met… Ben Niven-Jenkins
- [CDNi] Early AD review of draft-ietf-cdni-metadat… Alexey Melnikov