Re: [CDNi] FW: I-D Action: draft-ietf-cdni-https-delegation-subcerts-02.txt
Christoph Neumann <Christoph.Neumann@broadpeak.tv> Thu, 04 May 2023 09:06 UTC
Return-Path: <Christoph.Neumann@broadpeak.tv>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F4DCC14CE25 for <cdni@ietfa.amsl.com>; Thu, 4 May 2023 02:06:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.786
X-Spam-Level:
X-Spam-Status: No, score=-1.786 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, T_SPF_PERMERROR=0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=broadpeakshare.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5yz7_tvPE3oP for <cdni@ietfa.amsl.com>; Thu, 4 May 2023 02:06:13 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on20729.outbound.protection.outlook.com [IPv6:2a01:111:f400:7e1b::729]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 63756C14CF1D for <cdni@ietf.org>; Thu, 4 May 2023 02:06:12 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jvDqWTEUTkn5JOZGxvAQksbM6+w3f3PK/b+h6SCaqnUdHrE1MacwVVoYt6UVpWiZj8IsKWLsDwrvMHgwZbGeGOsQMaaq9AlN2dfI9jyoqWxW0+BVNKd7L8JT59Uc5A2kap/Mx/M3FOul4c+Dg6STi+K8zbZ6cbBmvPsAE5KIhC2xFUuRtRiwTuJaRUj33utPLrED7+ndo5eo56+Tv0ujQ43Jx6offN8NrCFSxH9dG+yk+u5s/IW0sYHhhBG5xHp0PIU9V/dXJHtkZSzdp0b9osjzNfijEwsmG9nXUBvjf9QzHm6ef/Adw6xa7lC52tQalLb/LcZU622IwvnzTMcidA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=iOvMKy1YYnMdE3fAgnZxgXHFsCAHmIjXtzt4lGg1ToU=; b=goflg07YGaFZtbNJrmuS/kdh53kvcBEiH//n4qMZnXo4R2gxLhR0dAZ/ILJ2HNdp6MYT/ElKVVZHJHOheDEDzir7o4Txpa7TgAlAOxBt3Etja2N1f9+5+yef9VXf3qPFDnd1k6Dd6ChHMjr6962QZWDlf6vKvXY6MAuVfyCOiWkeQgrUZ4X0S0Qxc8yA+NiUnk6AEwGq+qGGyY1NstJA6K1Y05j0yWgQuAK1X4V2c1pn/EtLUB0UKB1MzAkGhQfIeeLeIMe0pE/w44jDnA82FY2IvYfr2j4SUFiu1ImbHrvS5wwOy2smdAadH2dBunhQKT4daOWSH5JNFoawafJkNQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=broadpeak.tv; dmarc=pass action=none header.from=broadpeak.tv; dkim=pass header.d=broadpeak.tv; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=broadpeakshare.onmicrosoft.com; s=selector2-broadpeakshare-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=iOvMKy1YYnMdE3fAgnZxgXHFsCAHmIjXtzt4lGg1ToU=; b=OuKehMOBzUF3HuveaB3nbCfb1rI+wvz2+fJEjmB/THApISBbhxmWeTLl5c3Umg+FWUImgCu3WPYCeYov5o5S3KpDjzuLbpilDsRALCaXPkY5al2gpTXnLlEha2RHMvxYuPHVq1DEgh5GxShEMoRg8Z5Bp+1CifiNX97GDr+tVak=
Received: from AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:1cd::13) by DB3PR10MB6882.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:10:42a::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6363.21; Thu, 4 May 2023 09:06:06 +0000
Received: from AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM ([fe80::9852:a0d9:a0d1:a194]) by AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM ([fe80::9852:a0d9:a0d1:a194%5]) with mapi id 15.20.6363.022; Thu, 4 May 2023 09:06:05 +0000
From: Christoph Neumann <Christoph.Neumann@broadpeak.tv>
To: Kevin Ma <kevin.j.ma.ietf@gmail.com>
CC: "cdni@ietf.org" <cdni@ietf.org>
Thread-Topic: [CDNi] FW: I-D Action: draft-ietf-cdni-https-delegation-subcerts-02.txt
Thread-Index: AQHZVveNo6cH5Y2TZ0eXh9ArcDU4j69KHHLQ
Date: Thu, 04 May 2023 09:06:05 +0000
Message-ID: <AM9PR10MB41523991993BDEB646CE83808F6D9@AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM>
References: <167818593781.54218.16264489637250871713@ietfa.amsl.com> <AM9PR10MB415266CBD959C35029904B518FB79@AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM> <CAMrHYE0rgYCCfn3NybZap-H47HBunhQdzp0Z4GULjJ96DtQMhg@mail.gmail.com>
In-Reply-To: <CAMrHYE0rgYCCfn3NybZap-H47HBunhQdzp0Z4GULjJ96DtQMhg@mail.gmail.com>
Accept-Language: en-US, fr-FR
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=broadpeak.tv;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AM9PR10MB4152:EE_|DB3PR10MB6882:EE_
x-ms-office365-filtering-correlation-id: 1e3fd4e8-d78f-496c-f30b-08db4c7ecaee
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230028)(4636009)(396003)(366004)(346002)(39840400004)(376002)(136003)(451199021)(45080400002)(186003)(478600001)(6506007)(9686003)(26005)(53546011)(71200400001)(66574015)(7696005)(966005)(4326008)(6916009)(66446008)(41300700001)(66556008)(76116006)(66476007)(66946007)(64756008)(316002)(83380400001)(66899021)(5660300002)(8676002)(52536014)(8936002)(122000001)(30864003)(2906002)(38100700002)(166002)(38070700005)(55016003)(33656002)(86362001)(15974865002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_AM9PR10MB41523991993BDEB646CE83808F6D9AM9PR10MB4152EURP_"
MIME-Version: 1.0
X-OriginatorOrg: broadpeak.tv
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 1e3fd4e8-d78f-496c-f30b-08db4c7ecaee
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 May 2023 09:06:05.7207 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0ebe44ea-c9c9-438d-a040-7e699f358ed4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: BsSpyZXclEln58k5l7nd0gXHON4MNdFDwJgTIbWa/fjCzLd5WXAgGC9pSd3ShoOClTLBVtwg8WhuGvbM0buu/ZWlHqQu2fCpVz+pkoS4/Yc=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB3PR10MB6882
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/r9GTXy89VmTnVzQxvHC4eHuc0Dk>
Subject: Re: [CDNi] FW: I-D Action: draft-ietf-cdni-https-delegation-subcerts-02.txt
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 May 2023 09:06:18 -0000
Hi Kevin, all, I worked on a new version of the draft to address all your comments and submitted the document. All, please review the document and provide comments and feedbacks. Below is the detail of the modifications according to Kevin comments. Christoph > The RFC2119 boilerplate is missing Done > general: "i.e." -> "i.e.," Done > general: "e.g." -> "e.g.," Done > I think the second paragraph of section 1 is unnecessary Removed. Done > I think we can remove section 2.1 now Removed. one > I'm not sure if the ACME discussion in section 3 is relevant? Agreed. I removed Section 3. > section 4.1: "allows to announce" -> "enables advertising" Done > section 4.1: i would add another example with the MI.DelegatedCredentials metadata object advertisement, since it is mentioned in section 4.0 Done > section 4.2: "When uCDN queries and retrieves" -> "When the uCDN receives", since CDNI does not officially support an FCI request interface Done > section 4.2: "within a dCDN" -> "within a dCDN," Done > section 4.2: "This choice depends" -> "This choice is at the discretion of the dCDN and depends" Done > section 4.2: "FCI.DelegationCredentials is not used to cope with" -> "The FCI.DelegationCredentials object does not address" Done > section 4.2: "MI interface, uCDN" -> "MI, the uCDN" Done > section 4.2: "The uCDN knowing the expiry times" -> "As the uCDN knows the expiry times" Done > section 4.2: is the "must" in this section an RFC2119 "MUST"? and is it further a "MUST" that the uCDN refresh the certs? I think for both cases it is a SHOULD. There might be valid reasons for a uCDN not to keep track of certificate validy periodsand refresh the certs (e.g., single shot deployments, deprovisioning of dCDN) > section 5: i don't think the "must" is an RFC2119 "MUST"? can we reword it? Reworded as descriptive text recalling the subcert mechanism instead of normative sepcification text. > section 5: "the object, MI.DelegatedCredentials" -> "the MI.DelegatedCredentials object" Done > section 5: i think it would be cleaner to define an object that has the two properties: delegated-credential and private-key, and give the delegated-credentials object a "Type: Array of <object_name> objects" Done > section 5: "of the array of the property delegated-credentials" -> "of the property delegated-credentials array" Changed by naming the object > section 5: the delegated-credential and private-key properties need a "Type: String" ? Added the type String. Done. > section 5: is the private-key base64 encoded? Yes. I also changed the encoding of the delgated credential to Base64 as this is more efficient. > section 5: "If not used, we suppose that" -> "If not specified, it is assumed that the" Done > section 5: "mechanism outside of this specification" -> "out of band mechanism" Done > section 6: "We suppose" -> "It is assumed" (in multiple places) Done > section 6, bullet 6: "CDNI the Metadata interface to push" -> "the MI to provide", since CDNI does not technically support metadata push Done > section 7.1: the "Encoding" should reference section 5.0 Done > section 7.2: the "Encoding" should reference section 4.1 Done > section 8: "allow to provide" -> "enable providing" Done > section 8: i think we need to say something about sending keys in metadata, e.g., though the keys are short lived, passing key material through the MI is dangerous and should be avoided I reformulated the Section 8 accordingly > section 10.1: i don't think the ACME RFCs or the ACME draft are normative. i also don't think RFC8007 is a normative reference? ACME RFC and RFC8007 are both normative. The RFC coming out of the ACME draft will also be normative. Done From: Kevin Ma <kevin.j.ma.ietf@gmail.com> Sent: Wednesday, March 15, 2023 5:35 AM To: Christoph Neumann <Christoph.Neumann@broadpeak.tv> Cc: cdni@ietf.org Subject: Re: [CDNi] FW: I-D Action: draft-ietf-cdni-https-delegation-subcerts-02.txt Hi Christoph, Thanks for the update. With the ACME draft now in WGLC, I think we can similarly tighten up the text for the subcerts draft, make it more concise, and push it across the line. I've included some comments below. thanx! -- Kevin J. Ma - The RFC2119 boilerplate is missing - general: "i.e." -> "i.e.," - general: "e.g." -> "e.g.," - I think the second paragraph of section 1 is unnecessary - I think we can remove section 2.1 now - I'm not sure if the ACME discussion in section 3 is relevant? - section 4.1: "allows to announce" -> "enables advertising" - section 4.1: i would add another example with the MI.DelegatedCredentials metadata object advertisement, since it is mentioned in section 4.0 - section 4.2: "When uCDN queries and retrieves" -> "When the uCDN receives", since CDNI does not officially support an FCI request interface - section 4.2: "within a dCDN" -> "within a dCDN," - section 4.2: "This choice depends" -> "This choice is at the discretion of the dCDN and depends" - section 4.2: "FCI.DelegationCredentials is not used to cope with" -> "The FCI.DelegationCredentials object does not address" - section 4.2: "MI interface, uCDN" -> "MI, the uCDN" - section 4.2: "The uCDN knowing the expiry times" -> "As the uCDN knows the expiry times" - section 4.2: is the "must" in this section an RFC2119 "MUST"? and is it further a "MUST" that the uCDN refresh the certs? - section 5: i don't think the "must" is an RFC2119 "MUST"? can we reword it? - section 5: "the object, MI.DelegatedCredentials" -> "the MI.DelegatedCredentials object" - section 5: i think it would be cleaner to define an object that has the two properties: delegated-credential and private-key, and give the delegated-credentials object a "Type: Array of <object_name> objects" - section 5: "of the array of the property delegated-credentials" -> "of the property delegated-credentials array" - section 5: the delegated-credential and private-key properties need a "Type: String" ? - section 5: is the private-key base64 encoded? - section 5: "If not used, we suppose that" -> "If not specified, it is assumed that the" - section 5: "mechanism outside of this specification" -> "out of band mechanism" - section 6: "We suppose" -> "It is assumed" (in multiple places) - section 6, bullet 6: "CDNI the Metadata interface to push" -> "the MI to provide", since CDNI does not technically support metadata push - section 7.1: the "Encoding" should reference section 5.0 - section 7.2: the "Encoding" should reference section 4.1 - section 8: "allow to provide" -> "enable providing" - section 8: i think we need to say something about sending keys in metadata, e.g., though the keys are short lived, passing key material through the MI is dangerous and should be avoided - section 10.1: i don't think the ACME RFCs or the ACME draft are normative. i also don't think RFC8007 is a normative reference? On Tue, Mar 7, 2023 at 5:53 AM Christoph Neumann <Christoph.Neumann@broadpeak.tv<mailto:Christoph.Neumann@broadpeak.tv>> wrote: Hi all, I submitted a new version of the internet draft covering delegated credentials. The edits are minor and mostly address typos and reformulations. Christoph -----Original Message----- From: CDNi <cdni-bounces@ietf.org<mailto:cdni-bounces@ietf.org>> On Behalf Of internet-drafts@ietf.org<mailto:internet-drafts@ietf.org> Sent: mardi 7 mars 2023 11:46 To: i-d-announce@ietf.org<mailto:i-d-announce@ietf.org> Cc: cdni@ietf.org<mailto:cdni@ietf.org> Subject: [CDNi] I-D Action: draft-ietf-cdni-https-delegation-subcerts-02.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This Internet-Draft is a work item of the Content Delivery Networks Interconnection WG of the IETF. Title : CDNI Metadata for Delegated Credentials Authors : Frederic Fieau Emile Stephan Guillaume Bichot Christoph Neumann Filename : draft-ietf-cdni-https-delegation-subcerts-02.txt Pages : 12 Date : 2023-03-07 Abstract: The delivery of content over HTTPS involving multiple CDNs raises credential management issues. This document defines metadata in CDNI Control and Metadata interface to setup HTTPS delegation using Delegated Credentials from an Upstream CDN (uCDN) to a Downstream CDN (dCDN). The IETF datatracker status page for this Internet-Draft is: https://fra01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-cdni-https-delegation-subcerts%2F&data=05%7C01%7Cchristoph.neumann%40broadpeak.tv%7C226365e4b0594e0378a208db1ef92e5d%7C0ebe44eac9c9438da0407e699f358ed4%7C0%7C0%7C638137827956490497%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000%7C%7C%7C&sdata=w0y%2FzqwicSXneLWBF3ywOoDYFNHdIAyQYohXwaLg79E%3D&reserved=0<https://datatracker.ietf.org/doc/draft-ietf-cdni-https-delegation-subcerts/> There is also an htmlized version available at: https://fra01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-ietf-cdni-https-delegation-subcerts-02&data=05%7C01%7Cchristoph.neumann%40broadpeak.tv%7C226365e4b0594e0378a208db1ef92e5d%7C0ebe44eac9c9438da0407e699f358ed4%7C0%7C0%7C638137827956490497%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000%7C%7C%7C&sdata=GEHIk7O6rRlEmpT9Vbv%2Fi50ut5MaQx%2FuK9I5nbtVI7U%3D&reserved=0<https://datatracker.ietf.org/doc/html/draft-ietf-cdni-https-delegation-subcerts-02> A diff from the previous version is available at: https://fra01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fauthor-tools.ietf.org%2Fiddiff%3Furl2%3Ddraft-ietf-cdni-https-delegation-subcerts-02&data=05%7C01%7Cchristoph.neumann%40broadpeak.tv%7C226365e4b0594e0378a208db1ef92e5d%7C0ebe44eac9c9438da0407e699f358ed4%7C0%7C0%7C638137827956490497%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000%7C%7C%7C&sdata=4xqxIzt%2F2VCjBs2xMhSkytQR98rw8dHRwuFrAweUvsw%3D&reserved=0<https://author-tools.ietf.org/iddiff?url2=draft-ietf-cdni-https-delegation-subcerts-02> Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts _______________________________________________ CDNi mailing list CDNi@ietf.org<mailto:CDNi@ietf.org> https://fra01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fcdni&data=05%7C01%7Cchristoph.neumann%40broadpeak.tv%7C226365e4b0594e0378a208db1ef92e5d%7C0ebe44eac9c9438da0407e699f358ed4%7C0%7C0%7C638137827956646711%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000%7C%7C%7C&sdata=2eUetO7RzD7xJZfJJoxp6EaTcGFj3MRVo%2Fuhlpc5V3c%3D&reserved=0<https://www.ietf.org/mailman/listinfo/cdni> Broadpeak, S.A. Registered offices at 15 rue Claude Chappe, Zone des Champs Blancs, 35510 Cesson-Sévigné, France | Rennes Trade Register: 524 473 063 This e-mail and its attachments contain confidential information from Broadpeak S.A. and/or its affiliates (Broadpeak), which is intended only for the person to whom it is addressed. If you are not the intended recipient of this email, please notify immediately the sender by phone or email and delete it. Any use of the information contained herein in any way, including, but not limited to, total or partial disclosure, reproduction, or dissemination, by persons other than the intended recipient(s) is prohibited, unless expressly authorized by Broadpeak. Broadpeak, S.A. and its affiliates respect privacy laws, and is committed to the protection of personal data. Emails and/or attachments thereof exchanged between us may include your personal data which may be processed by Broadpeak and/or its affiliates according to applicable privacy laws & regulations. In compliance with Regulation (EU) 2016/679 (GDPR) and applicable implementation in local legislations, you can exercise at any time your rights of access, rectification or erasure of your personal data, as well as your rights to restriction, portability or object to the processing. For such purpose, or to know more about how Broadpeak processes your personal data, you may contact Broadpeak by email privacy@broadpeak.tv<mailto:privacy@broadpeak.tv>. Local authority : Commission Nationale Informatique et Libertés (CNIL): 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07 or www.cnil.fr<http://www.cnil.fr/> _______________________________________________ CDNi mailing list CDNi@ietf.org<mailto:CDNi@ietf.org> https://www.ietf.org/mailman/listinfo/cdni Broadpeak, S.A. Registered offices at 15 rue Claude Chappe, Zone des Champs Blancs, 35510 Cesson-Sévigné, France | Rennes Trade Register: 524 473 063 This e-mail and its attachments contain confidential information from Broadpeak S.A. and/or its affiliates (Broadpeak), which is intended only for the person to whom it is addressed. If you are not the intended recipient of this email, please notify immediately the sender by phone or email and delete it. Any use of the information contained herein in any way, including, but not limited to, total or partial disclosure, reproduction, or dissemination, by persons other than the intended recipient(s) is prohibited, unless expressly authorized by Broadpeak. Broadpeak, S.A. and its affiliates respect privacy laws, and is committed to the protection of personal data. Emails and/or attachments thereof exchanged between us may include your personal data which may be processed by Broadpeak and/or its affiliates according to applicable privacy laws & regulations. In compliance with Regulation (EU) 2016/679 (GDPR) and applicable implementation in local legislations, you can exercise at any time your rights of access, rectification or erasure of your personal data, as well as your rights to restriction, portability or object to the processing. For such purpose, or to know more about how Broadpeak processes your personal data, you may contact Broadpeak by email privacy@broadpeak.tv. Local authority : Commission Nationale Informatique et Libertés (CNIL): 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07 or www.cnil.fr
- [CDNi] I-D Action: draft-ietf-cdni-https-delegati… internet-drafts
- [CDNi] FW: I-D Action: draft-ietf-cdni-https-dele… Christoph Neumann
- Re: [CDNi] FW: I-D Action: draft-ietf-cdni-https-… Kevin Ma
- Re: [CDNi] FW: I-D Action: draft-ietf-cdni-https-… Christoph Neumann
- Re: [CDNi] FW: I-D Action: draft-ietf-cdni-https-… Kevin J. Ma