IETF Logo Mail Archive

Re: [DNSOP] Expiration impending: <draft-jabley-dnssec-trust-anchor-11.txt>

manning <bmanning@karoshi.com> Fri, 09 October 2015 00:31 UTC

Return-Path: <bmanning@karoshi.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 787101B2E74 for <dnsop@ietfa.amsl.com>; Thu, 8 Oct 2015 17:31:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.209
X-Spam-Level:
X-Spam-Status: No, score=-4.209 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NO_DNS_FOR_FROM=0.001, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sz3f3FswOuGZ for <dnsop@ietfa.amsl.com>; Thu, 8 Oct 2015 17:31:01 -0700 (PDT)
Received: from vacation.karoshi.com (vacation.karoshi.com [198.32.6.68]) by ietfa.amsl.com (Postfix) with ESMTP id 85DF91B2E6A for <dnsop@ietf.org>; Thu, 8 Oct 2015 17:30:42 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by vacation.karoshi.com (Postfix) with ESMTP id 0F3C8C51069; Thu, 8 Oct 2015 17:30:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at karoshi.com
Received: from vacation.karoshi.com ([127.0.0.1]) by localhost (vacation.karoshi.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ObpwhHf1fd3f; Thu, 8 Oct 2015 17:30:01 -0700 (PDT)
Received: from [198.32.4.206] (unknown [198.32.4.206]) by vacation.karoshi.com (Postfix) with ESMTPSA id 008AAC51051; Thu, 8 Oct 2015 17:30:00 -0700 (PDT)
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
Content-Type: text/plain; charset="windows-1252"
From: manning <bmanning@karoshi.com>
In-Reply-To: <4BC462D4-F6B9-4AB1-A021-234218072562@virtualized.org>
Date: Thu, 08 Oct 2015 17:30:00 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <2DA5F733-6854-4F08-BFF9-487B9543F2A4@karoshi.com>
References: <20150928155325.GA63874@gaon.net> <20150929095301.32c3e6a3@casual> <13F1D87F-1C07-40EB-86B0-564C4109C9B0@virtualized.org> <1973252D-924F-4EF1-A38F-5EC01AD331F6@gmail.com> <FDD04DCC-59C5-41F5-8CAF-1EF31CD65A34@virtualized.org> <63E1E01E-C172-4A0F-B434-F796546BB657@gmail.com> <C4FA9FA6-76E3-4FF3-862B-C5C0DF75C761@kirei.se> <D1C15986-603E-4932-B551-0497638D9849@vpnc.org> <02869F43-87A4-4797-8FD3-276C02DF665D@kirei.se> <EEA946B1-8BF3-4AB7-99D2-4C8CDCCF0EC0@vpnc.org> <20151008164015.GJ17602@mx2.yitter.info> <4BC462D4-F6B9-4AB1-A021-234218072562@virtualized.org>
To: David Conrad <drc@virtualized.org>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/kwtezsIi-px_5ooDO3dW1smTq7w>
Cc: dnsop@ietf.org, Andrew Sullivan <ajs@anvilwalrusden.com>
Subject: Re: [DNSOP] Expiration impending: <draft-jabley-dnssec-trust-anchor-11.txt>
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Oct 2015 00:31:37 -0000

In the past, when organizations found themselves in the same situation that ICANN seems to find itself in here (at least as outlined by yourself, below)
they have done what ICANN has done and is trying to do now, which is to pass the document on to a neutral third party for “safe keeping”.   One thing
the IETF used to do was insist that when/if such a document was remedied to its care, that it ALSO claimed change control over same.

A potential outcome here is that IETF would now insist on change control over how ICANN would manage this process going forward,  e.g. its no longer
an ICANN operational document, its an IETF process document - at which time ICANN may find that its flexibility is reduced, if it is going to be compliant 
with operational documents it initially wrote.  It has happened before.   

manning
bmanning@karoshi.com
PO Box 6151
Playa del Rey, CA 90296
310.322.8102






On 8October2015Thursday, at 10:06, David Conrad <drc@virtualized.org> wrote:

> Hi,
> 
>> On Oct 8, 2015, at 9:40 AM, Andrew Sullivan <ajs@anvilwalrusden.com> wrote:
>> 
>> On Mon, Oct 05, 2015 at 09:39:06AM -0400, Paul Hoffman wrote:
>>> Fully agree. That is why this should not be an IETF document, and instead it
>>> should be written and published by the organization that is responsible for
>>> the formats and publication methods.
>> 
>> I don't really care how this happens, but I note that both previously
>> and currently staff of that organization seem to use the RFC series to
>> publish technical specification documents.  Generally policy documents
>> don't get published as RFCs, but other documents do.
>> 
>> I am not too sure I see why it'd be helpful to create a completely new
>> publication mechanism for such specifications from ICANN.
> 
> Speaking only for myself (which I presume is the case for anyone discussing IETF-related goop)...
> 
> I'd like to try to get away from the "I" word, err... acronym, as that seems to cause some people to knee-jerk in unhelpful ways.
> 
> If I can generalize a bit:
> 
> There is a file. A bunch of independent people want to use the contents of that file. They also want some level of assurance (not absolute) that The Bad Guys haven't mucked with the contents of that file. The folks who currently generate the file do a bunch of things to provide some level of assurance that most (not all) folks think provide a useful level of assurance.
> 
> Now, in order for the independent people to verify the contents of the file, the folks who _currently_ generate the file need to publish the things they do. The folks who _currently_ generate the file could publish the things they do on their website, but the folks _currently_ generate the file may not do so in the future and the independent people would then have to worry about whoever takes over the role of generating the file will change things in non-backwards compatible ways, resulting in much gnashing of teeth.
> 
> So instead of the folks who _currently_ generate the file publishing stuff on their own website, they turn to a neutral, third party, voluntary standards development organization and say "hey, this is how we provide some level of assurance for the content of the file a bunch of independent folk care about. We'd like to turn it into one of your standards, any thoughts?" If the standards development organization accepts this, it means the folks who _currently_ generate the file won't pull the rug out from under the independent folks who use the file (not that they would, but having the assurance that they won't is often helpful in convincing developers to use the file). It also means if/when the folks who generate the file change, the new folks who generate the file will have a standard to conform to.
> 
> This strikes me as a good thing.  It also implies that people in the standards development organization can change how the file is secured and that's OK, because the folks who _currently_ generate the file go to great lengths to try to get input from "the community" (whatever that is) and that input is actually welcomed.
> 
> What am I missing?
> 
> Thanks,
> -drc
> 
> 
> 
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email