Re: [core] Questions and comments against the github version
Lauri Piikivi <Lauri.Piikivi@arm.com> Wed, 12 December 2018 09:56 UTC
Return-Path: <Lauri.Piikivi@arm.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9875B13114C; Wed, 12 Dec 2018 01:56:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.358
X-Spam-Level:
X-Spam-Status: No, score=-3.358 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-1.459, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iBjZQji4z4Lm; Wed, 12 Dec 2018 01:56:06 -0800 (PST)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-eopbgr140082.outbound.protection.outlook.com [40.107.14.82]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 11EC7131164; Wed, 12 Dec 2018 01:56:05 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=OMFYLULLxIhznPV2Yk+LtcMTDrqfHia5tRh+boqMbh4=; b=LyZSBl/XvWYzN1t54gUEvmhSP30lJre4Bki73oRqtqPfmrU3pJT9cXCouIbvXiopP3jWfGYTaAAP7XwKd5zFhaw3A8c5fimUliE3Exo/WIDfP7IM3zJNXbxB/c/OXR0OSEhxZXr0X/cV3Iksasrot2DLcziGyJFCx6jcl8dUcGY=
Received: from VI1PR08MB3710.eurprd08.prod.outlook.com (20.178.14.78) by VI1PR08MB0784.eurprd08.prod.outlook.com (10.164.93.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1425.19; Wed, 12 Dec 2018 09:55:58 +0000
Received: from VI1PR08MB3710.eurprd08.prod.outlook.com ([fe80::4c40:190:4ae6:de16]) by VI1PR08MB3710.eurprd08.prod.outlook.com ([fe80::4c40:190:4ae6:de16%3]) with mapi id 15.20.1404.026; Wed, 12 Dec 2018 09:55:58 +0000
From: Lauri Piikivi <Lauri.Piikivi@arm.com>
To: "consultancy@vanderstok.org" <consultancy@vanderstok.org>, Jim Schaad <ietf@augustcellars.com>
CC: "draft-ietf-core-resource-directory@ietf.org" <draft-ietf-core-resource-directory@ietf.org>, "core@ietf.org" <core@ietf.org>
Thread-Topic: [core] Questions and comments against the github version
Thread-Index: AdSQ3PYM1bz/vMt1Qp6I1pzWuFt+hwAUsuoAABI7MYAAHr5/gAADEJ5U
Date: Wed, 12 Dec 2018 09:55:58 +0000
Message-ID: <VI1PR08MB37106E3F129E5012E9737D0CEBA70@VI1PR08MB3710.eurprd08.prod.outlook.com>
References: <02dd01d490f8$6aea0dc0$40be2940$@augustcellars.com> <d00ab991b089fb28625cb455ab7c5bec@bbhmail.nl> <035e01d49178$b08a3e60$119ebb20$@augustcellars.com>, <4ea547c2c838536e260fd222651ae446@bbhmail.nl>
In-Reply-To: <4ea547c2c838536e260fd222651ae446@bbhmail.nl>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Lauri.Piikivi@arm.com;
x-originating-ip: [40.119.148.85]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; VI1PR08MB0784; 6:s+NsSF++r9Rwc/hosmf6leOGfi5cGuEpCZkVThZcx7JoJR1akK2tpqRmtNsiHUt6XUtRNxts0qaNAnHi0NRxx2aYs5yT7SB8c08Jhgcg1MZ0KTTfRlp4yfDs0y1sY5JslSHY3qogd0e5kFjyxlr1DCQ4p/0ZqePc2NFyvUUB4XdwSqRlVIjvfsO78LdmKsOX1vMG1J2kQeSqKDx8LZuFYS1qQ+cg8wYBeJlAA2vnoC3Byd/Ra56ZXz3drvDDpSSTCBplQ4UGzHRrN1BzAJ2vplWB+GpIAd2CZ5mCGhOe9B0ZJYONWftcH1aGyE4/T/RDwuuLGwuoYmJCsbhFMgE5gTLI4NR11Ea1ipZddVFpxgjqbsXDlrpC+T0H2TPRXFzcOKKnTZN/3qGtw/VYuiOpJOVTzybvIXetDfpbDMVJ5KMP+bQ+db4Mfbop4gJ1Ur0FbqAUDn7IGqC9hBtCVcXz0A==; 5:TGnjoWJwRUqYkOT5swaZHYGHUtbVNMIDaQs0NvP1rUNwU5g96PPTKMTh5mW1jAVHw/qnvC2smW0SJCTsVpkNHfv8r/i7M4MQesdSvI+C1YxwfdGtjEaVksSdI09Rz7rNNPrtL25UJZPUypLvubyGSKIXePA6PnivAIbHZl+pXEU=; 7:LqgT2VIUX9PmICaXeJlkpUSfOso1Ke7TZBxnKWy2ZX/0D5RFf6jEuKk7/uq/HDyVPbARe1eVblODdt5KcXHyXJoFZAxHr0o3dR+tCCDexCMH+QmMEm/7zxer8Im/mu8x1nFQy3FBKXNDXl1ElP2Akg==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 9e5fc2dd-9caa-4fc5-0cba-08d66018040a
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390098)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(4618075)(2017052603328)(7153060)(7193020); SRVR:VI1PR08MB0784;
x-ms-traffictypediagnostic: VI1PR08MB0784:
x-microsoft-antispam-prvs: <VI1PR08MB078436A63BA511C67E069F9EEBA70@VI1PR08MB0784.eurprd08.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(3230017)(999002)(6040522)(2401047)(5005006)(8121501046)(3002001)(10201501046)(93006095)(93001095)(3231472)(944501520)(52105112)(2017080701022)(6055026)(148016)(149066)(150057)(6041310)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123562045)(20161123558120)(201708071742011)(7699051)(76991095); SRVR:VI1PR08MB0784; BCL:0; PCL:0; RULEID:; SRVR:VI1PR08MB0784;
x-forefront-prvs: 0884AAA693
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(366004)(136003)(346002)(39860400002)(396003)(189003)(199004)(25584004)(40434004)(25786009)(54896002)(9686003)(6306002)(97736004)(236005)(7696005)(102836004)(186003)(86362001)(5660300001)(72206003)(33656002)(81156014)(81166006)(8936002)(8676002)(4001150100001)(6246003)(99286004)(476003)(316002)(54906003)(110136005)(71190400001)(71200400001)(26005)(53936002)(486006)(4326008)(76176011)(256004)(55016002)(14444005)(5024004)(53546011)(446003)(6506007)(11346002)(105586002)(7736002)(74316002)(93886005)(106356001)(14454004)(68736007)(3846002)(6116002)(229853002)(478600001)(45080400002)(66066001)(606006)(2906002)(6436002)(2501003); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR08MB0784; H:VI1PR08MB3710.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: Zx0Xv37Z9NGxfIT3+sK34rpUvtGqwZd5i9I4DtDGvAPEOYNYnj8aNGbITbsu0IKWoKbPjCwFeSoG4/bf21rD3KMtR4muMWXs7IX4rAZa3qkM18x8SxZnPjQTPT0yqAlsAwCGNV14BWMPhr4VQqyao6eU+RDx8eFIxV9MnH459WvyaYW2t+HyEb1sE/rB48KCKrakmlk3DhVj8y6SLQUd2i6sQgcMZjSElqW3SDae8/q/VGpO6N+LYRzAI5CHhKlMeu1zxz7TbSCUGLSRnfr8tIfbSgzjWxnm7l+OllxXD9qhU4UuzjStg6NPxodrE+fx
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_VI1PR08MB37106E3F129E5012E9737D0CEBA70VI1PR08MB3710eurp_"
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9e5fc2dd-9caa-4fc5-0cba-08d66018040a
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Dec 2018 09:55:58.1432 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR08MB0784
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/6HinJZt5UcGk_n1XjgUZ-JX9w-M>
Subject: Re: [core] Questions and comments against the github version
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Dec 2018 09:56:11 -0000
Hi, I just want to verify that the endpoint identity, and related access control is part of the question below. If a EP publishes itself in rd, no other ep, based on adequate authenticaiton, can overwrite it. If an earlier registered EP makes a new registration to the RD, where it does not include the location in the path, is an indication that the EP may have reset or otherwise wants a new registration (e.g. Due to changed attributes) in the rd. Another ep trying to post to another ep’s url should get an error. This requires authenticaiton. If there is adeqaute authenticaiton, and access control to the publishing, then retrieving all the eps is not a problem. Sincerely, - Lauri Get Outlook for iOS<https://aka.ms/o0ukef> ________________________________ From: core <core-bounces@ietf.org> on behalf of Peter van der Stok <stokcons@bbhmail.nl> Sent: Wednesday, December 12, 2018 8:21 AM To: Jim Schaad Cc: draft-ietf-core-resource-directory@ietf.org; core@ietf.org Subject: Re: [core] Questions and comments against the github version Jim Schaad schreef op 2018-12-11 18:41: From: Peter van der Stok <stokcons@bbhmail.nl> Sent: Tuesday, December 11, 2018 12:59 AM To: Jim Schaad <ietf@augustcellars.com> Cc: draft-ietf-core-resource-directory@ietf.org; core@ietf.org Subject: Re: Questions and comments against the github version Hi Jim, thanks, for the questions. One explanation for one question. Jim Schaad schreef op 2018-12-11 03:22: * In section 5.3, I don't understand why the rule exists that if the attribute values are different then the location of the registration needs to be changed. It seems that this could lead to some interesting conflicts in behavior depending on what messages are used. For example (content omitted for clarity): POST /rd?ep=e1&foo=over Res: 2.01 Created Location-Path: /rd/4001 POST /rd?ep=e1&foo=under Res: 2.01 Created Location-Path: /rd/4002 As opposed to: POST /rd?ep=e1&foo=over Res: 2.01 Created Location-Path: /rd/4001 POST /rd/4001?foo=under Res: 2.01 Changed <pvds> The feeling was that a first ep having done the earlier registration /rd/4001 should not be able to manipulate the 2nd registration by a 2nd ep, by removing /rd/4001 and having a registration /rd/4002 only known to 2nd ep. </pvds> [JLS] The only problem with this is that the query of endpoints needs to be changed so that the endpoint locations are not returned. Once the query is done then the location is known to a 2nd ep. <pvds> Is true. The above statement is not about security and hiding information. It is to prevent non-malicious unwanted mistakes. </pvds> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [core] Questions and comments against the github … Jim Schaad
- Re: [core] Questions and comments against the git… Peter van der Stok
- Re: [core] Questions and comments against the git… Jim Schaad
- Re: [core] Questions and comments against the git… Peter van der Stok
- Re: [core] Questions and comments against the git… Peter van der Stok
- Re: [core] Questions and comments against the git… Lauri Piikivi
- Re: [core] Questions and comments against the git… Christian M. Amsüss
- Re: [core] Questions and comments against the git… Jim Schaad
- Re: [core] Questions and comments against the git… Peter van der Stok
- Re: [core] Questions and comments against the git… Christian M. Amsüss
- Re: [core] Questions and comments against the git… Christian Amsüss