IETF Logo Mail Archive

Re: [core] WGLC on draft-ietf-core-senml-data-ct-02

Carsten Bormann <cabo@tzi.org> Wed, 19 August 2020 13:17 UTC

Return-Path: <cabo@tzi.org>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8F6323A09B3 for <core@ietfa.amsl.com>; Wed, 19 Aug 2020 06:17:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HmgCo2Vsiucv for <core@ietfa.amsl.com>; Wed, 19 Aug 2020 06:17:30 -0700 (PDT)
Received: from gabriel-vm-2.zfn.uni-bremen.de (gabriel-vm-2.zfn.uni-bremen.de [134.102.50.17]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9BAA33A09AD for <core@ietf.org>; Wed, 19 Aug 2020 06:17:30 -0700 (PDT)
Received: from [172.16.42.100] (p5089ae91.dip0.t-ipconnect.de [80.137.174.145]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by gabriel-vm-2.zfn.uni-bremen.de (Postfix) with ESMTPSA id 4BWpGq0V77z108r; Wed, 19 Aug 2020 15:17:23 +0200 (CEST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\))
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <ACF266BD-8161-4743-984A-5892137BEA4A@arm.com>
Date: Wed, 19 Aug 2020 15:17:22 +0200
Cc: Jaime Jiménez <jaime@iki.fi>, "core@ietf.org" <core@ietf.org>
X-Mao-Original-Outgoing-Id: 619535842.609917-3866c305dfc83d83b3dd8cc6a9bde46e
Content-Transfer-Encoding: quoted-printable
Message-Id: <31BB7A98-FEA8-464C-A9FA-8E0F93B71808@tzi.org>
References: <bd57e980-b21c-4f43-8b26-254bcbc57ae6@www.fastmail.com> <ACF266BD-8161-4743-984A-5892137BEA4A@arm.com>
To: Thomas Fossati <Thomas.Fossati@arm.com>
X-Mailer: Apple Mail (2.3608.120.23.2.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/iDLu9zDrtuHldqSPTKWXmf0Vl_M>
Subject: Re: [core] WGLC on draft-ietf-core-senml-data-ct-02
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Aug 2020 13:17:34 -0000

Hi Thomas,

Thank you for the light-speed review!

> * Section 1, first sentence:
>    * One of "various" or "different" look redundant to me.

They mean various different things to me :-), but one would be enough as well.
Fixed on github in https://github.com/core-wg/senml-data-ct

> * Section 2, last sentence:
>    * I-D.bormann-core-media-content-type-format is not just very
>      helpful, it also contains the definition of Content-Coding
>      which is not found elsewhere AFAIK.

Now https://github.com/core-wg/senml-data-ct/issues/2

> * Section 3, first para:
>    * you might want to reorganise the second sentence (starting with
>      "the Content-Format indication") to make it more readable.

Split up. 

> * Section 3, third para:
>    * "[...] appended to the Content Type _value_ (media type [...]"

Nice!

> * Section 3, last sentence:
>    * Might be restructured for readability; one suggestion: "If no "@"
>      sign is present outside any media type parameters, the consumer
>      can assume that no encoding transformation has been applied to the
>      representation."

Not sure we need to bring in the consumer, now says:

 If no "@" sign is
 present outside the media type parameters, the Content-Coding is not
 specified and the "identity" Content-Coding is used — no
 encoding transformation is employed.

> * Section 6:
>    * Maybe add a mention to the risks associated with compression
>      content codings (zip bomb, etc.)"

Yes.  So I tried to point to/steal from RFC 7230; this risk is not discussed there.  The last time I wrote a security considerations paragraph about this was in RFC 7400, but this isn’t very stealable either.  I don’t think the risk is very specific to data-ct, so referencing something is better than writing another description, which is what I did for now.

> * Section 7:
>    * Not sure but, would it be worth adding a note regarding the
>      formatting rules (i.e., an explicit pointer to Section 3)?

The registry has no place for this information, and the reference should include the other sections, so I don’t see a good way to add this. 

> * Section 8.1:
>    * Why is CBOR normative?

Fixed.
(CBOR stays indirectly normative via RFC 8428…)

>    * Why is the SenML registry a normative reference?

Because this specification registers “ct” in that registry.
(I think we can discuss whether that is normative, but I believe you need to understand this registry to understand the registration.
Previously, people just haven’t referenced a registry they registered in, which I consider an omission.)

Grüße, Carsten

v2.23.0 | Report a Bug | By Email