Re: [dnsext] Publication request: draft-ietf-dnsext-dnssec-registry-fixes-07
Thomas Narten <narten@us.ibm.com> Thu, 14 April 2011 13:55 UTC
Return-Path: <narten@us.ibm.com>
X-Original-To: dnsext@ietfc.amsl.com
Delivered-To: dnsext@ietfc.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 74F69E06BD for <dnsext@ietfc.amsl.com>; Thu, 14 Apr 2011 06:55:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.024
X-Spam-Level:
X-Spam-Status: No, score=-106.024 tagged_above=-999 required=5 tests=[AWL=0.575, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([208.66.40.236]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5V1DtUmMuL4x for <dnsext@ietfc.amsl.com>; Thu, 14 Apr 2011 06:55:22 -0700 (PDT)
Received: from e5.ny.us.ibm.com (e5.ny.us.ibm.com [32.97.182.145]) by ietfc.amsl.com (Postfix) with ESMTP id AD6E2E06B8 for <dnsext@ietf.org>; Thu, 14 Apr 2011 06:55:22 -0700 (PDT)
Received: from d01dlp01.pok.ibm.com (d01dlp01.pok.ibm.com [9.56.224.56]) by e5.ny.us.ibm.com (8.14.4/8.13.1) with ESMTP id p3EDTOEE025595 for <dnsext@ietf.org>; Thu, 14 Apr 2011 09:29:24 -0400
Received: from d01relay06.pok.ibm.com (d01relay06.pok.ibm.com [9.56.227.116]) by d01dlp01.pok.ibm.com (Postfix) with ESMTP id 08B3938C803E for <dnsext@ietf.org>; Thu, 14 Apr 2011 09:55:12 -0400 (EDT)
Received: from d01av01.pok.ibm.com (d01av01.pok.ibm.com [9.56.224.215]) by d01relay06.pok.ibm.com (8.13.8/8.13.8/NCO v10.0) with ESMTP id p3EDt3V61482770 for <dnsext@ietf.org>; Thu, 14 Apr 2011 09:55:03 -0400
Received: from d01av01.pok.ibm.com (loopback [127.0.0.1]) by d01av01.pok.ibm.com (8.14.4/8.13.1/NCO v10.0 AVout) with ESMTP id p3EDt36A025407 for <dnsext@ietf.org>; Thu, 14 Apr 2011 09:55:03 -0400
Received: from cichlid.raleigh.ibm.com (sig-9-48-36-20.mts.ibm.com [9.48.36.20]) by d01av01.pok.ibm.com (8.14.4/8.13.1/NCO v10.0 AVin) with ESMTP id p3EDsw3Z024779 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 14 Apr 2011 09:54:59 -0400
Received: from cichlid.raleigh.ibm.com (cichlid.raleigh.ibm.com [127.0.0.1]) by cichlid.raleigh.ibm.com (8.14.4/8.12.5) with ESMTP id p3EDsvxv007218; Thu, 14 Apr 2011 09:54:57 -0400
Message-Id: <201104141354.p3EDsvxv007218@cichlid.raleigh.ibm.com>
To: Paul Hoffman <paul.hoffman@vpnc.org>
In-reply-to: <F88155D3-70BA-47BD-B4D5-3DFD1D4E5F8B@vpnc.org>
References: <20110413151934.GL24471@shinkuro.com> <201104132344.p3DNih4v013997@cichlid.raleigh.ibm.com> <0560E4CC-35C9-4B32-A5E4-669B7B08D559@vpnc.org> <201104140155.p3E1t4ho014811@cichlid.raleigh.ibm.com> <20110414125527.GE24471@crankycanuck.ca> <F88155D3-70BA-47BD-B4D5-3DFD1D4E5F8B@vpnc.org>
Comments: In-reply-to Paul Hoffman <paul.hoffman@vpnc.org> message dated "Thu, 14 Apr 2011 06:39:20 -0700."
Date: Thu, 14 Apr 2011 09:54:57 -0400
From: Thomas Narten <narten@us.ibm.com>
X-Content-Scanned: Fidelis XPS MAILER
Cc: dnsext-ads@tools.ietf.org, dnsext@ietf.org
Subject: Re: [dnsext] Publication request: draft-ietf-dnsext-dnssec-registry-fixes-07
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Apr 2011 13:55:23 -0000
Thanks Paul. I agree with they way you have layed out the basic issues. > The philosophical / operational tussle here is whether the > definitive list of crypto algorithms and their implementation > requirements should be kept in: > a) an IANA registry for the growing list of algorithms, and a single > RFC for the implementation requirements That is (IMO) the normal way the IETF have done things. > b) an IANA registry for the growing list of algorithms, and a set of > loosely coupled RFCs for the implementation requirements Actually, IETF does this too, but I agree it's not great. Making people hunt through many RFCs to find things tends to not help. Choice a) would be better, though we often don't bother. > c) an IANA registry for a growing list of algorithms that is tied to > a single RFC for the implementation requirements And I have to wonder why we even need a registry, when the contents of the registry are effectively kept in a single RFC, with some types of updates to the registry effectively requiring reissuing the RFC and replacing the entire IANA registry. > Some WGs have gone with (a), and some with with (b). The current > draft proposes (c) for this protocol. It is a modification of the > idea in (a), and it gives the implementer less chance of getting it > wrong because they will find the exact same set of implementation > requirements in "the" RFC and the IANA registry. I think we are deceiving ourselves if we think putting the compliance info into the IANA registry will make any difference at all. The important thing is to have the requirements in one place, where they are easily findable by anyone who has even a small amount of clue. If implementors won't find them in a BCP IETF document, I suspect there is very little we can do to make things easier for them. And implementors will implement what is in RFPs and the like, and they will point to the RFC stating the requirements, not the IANA registry. > To me, this is different and a bit weird, but could make sense for > getting better interoperability because of better understanding on > the part of developers. It seems worth a try and, if it turns out > to be more confusing than (a) or (b), the WG can drop back to one > of them. To me, the work to be done is the same: layout the implementation recommendations in a BCP RFC. I don't see much value in putting that info into the IANA registry itself, and I very much dislike the idea of trying to have the IANA registry be where implementation recommendations are captured. It seems like the wrong mechanism to bring about a particular result. Thomas
- [dnsext] Publication request: draft-ietf-dnsext-d… Andrew Sullivan
- Re: [dnsext] Publication request: draft-ietf-dnse… Thomas Narten
- Re: [dnsext] Publication request: draft-ietf-dnse… Paul Hoffman
- Re: [dnsext] Publication request: draft-ietf-dnse… Thomas Narten
- Re: [dnsext] Publication request: draft-ietf-dnse… Andrew Sullivan
- Re: [dnsext] Publication request: draft-ietf-dnse… Paul Hoffman
- Re: [dnsext] Publication request: draft-ietf-dnse… Thomas Narten
- Re: [dnsext] Publication request: draft-ietf-dnse… Paul Hoffman
- Re: [dnsext] Publication request: draft-ietf-dnse… Joe Abley
- Re: [dnsext] Publication request: draft-ietf-dnse… Andrew Sullivan
- Re: [dnsext] Publication request: draft-ietf-dnse… Edward Lewis