[drinks] AD review of draft-ietf-drinks-spp-framework and draft-ietf-drinks-spp-protocol-over-soap
Richard Barnes <rlb@ipv.sx> Thu, 08 January 2015 11:52 UTC
Return-Path: <rlb@ipv.sx>
X-Original-To: drinks@ietfa.amsl.com
Delivered-To: drinks@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F66B1A89B5 for <drinks@ietfa.amsl.com>; Thu, 8 Jan 2015 03:52:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FluBdLBZ67sp for <drinks@ietfa.amsl.com>; Thu, 8 Jan 2015 03:52:56 -0800 (PST)
Received: from mail-la0-f44.google.com (mail-la0-f44.google.com [209.85.215.44]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B309E1A3B9F for <drinks@ietf.org>; Thu, 8 Jan 2015 03:52:55 -0800 (PST)
Received: by mail-la0-f44.google.com with SMTP id gd6so8752859lab.3 for <drinks@ietf.org>; Thu, 08 Jan 2015 03:52:54 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:date:message-id:subject:from:to :content-type; bh=a6Eao36M3YMKIkjQsWCOD8ABzzjYEvdhgc7bGaMqhYc=; b=N4KEWuz4hErw+l8Dgn650bDyM722TeCqCIUFtI9ad7BpkeH0loiedGjW1CbSQ1rdZE /59KmGeGIH7sHWtkVyASebW0plMFC7HuG1KUsOu4XlgnbMvCuRj/PkYbiggGmtkaSp8J SEMy+4Ba5L7HvTITlMgdsckuw6m3huzTsgmaaOIZVaD+lRIOT+zNuYdFgno3QsJsprGp emhNCOX9eFfVveqkWgCqa5xerwtudA7HKCQDikp8d+xPtnH49OhPySMUj6q2qJRQl+np SqUD5Hhkt/ARTfbN6v3bA7qo4Q9nzo/nlHD8NVD5+k4kXkjfjqeF5AY/DamCYFjhQn8G xIkg==
X-Gm-Message-State: ALoCoQn0T0Ex3n6SPdqmlAwGwpRWA/Emw6G3jsXcY/zeFCaneCmI3ONVfy5IYDT19Y/odTkHySns
MIME-Version: 1.0
X-Received: by 10.112.170.36 with SMTP id aj4mr12647645lbc.3.1420717636923; Thu, 08 Jan 2015 03:47:16 -0800 (PST)
Received: by 10.25.12.215 with HTTP; Thu, 8 Jan 2015 03:47:16 -0800 (PST)
Date: Thu, 08 Jan 2015 11:47:16 +0000
Message-ID: <CAL02cgThr=suSeH3xdGUj=TKFTRBjR2jaQbs3_FGgoJsAjS5XQ@mail.gmail.com>
From: Richard Barnes <rlb@ipv.sx>
To: "drinks@ietf.org" <drinks@ietf.org>, draft-ietf-drinks-spp-framework@tools.ietf.org, draft-ietf-drinks-spp-protocol-over-soap@tools.ietf.org
Content-Type: multipart/alternative; boundary="001a11c261fc134aa7050c229abe"
Archived-At: <http://mailarchive.ietf.org/arch/msg/drinks/9x02TwKJgUrmMyDGyjE-joK-px8>
Subject: [drinks] AD review of draft-ietf-drinks-spp-framework and draft-ietf-drinks-spp-protocol-over-soap
X-BeenThere: drinks@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DRINKS WG <drinks.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/drinks>, <mailto:drinks-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/drinks/>
List-Post: <mailto:drinks@ietf.org>
List-Help: <mailto:drinks-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/drinks>, <mailto:drinks-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Jan 2015 11:52:59 -0000
I have reviewed these documents in preparation for IETF LC. Overall, I think they hang together OK, even if the use of XML and SOAP does make me feel like I'm back in the 90s :) I've requested LC, but there are a few comments below that I would like you to consider along with other LC comments. Overall, these specifications would read better if they were not separated as they are, especially since there doesn't seem to be any demand for non-SOAP transports. But they are intelligible separately, so I won't object to processing them as-is. --Richard ===== draft-ietf-drinks-spp-framework-09 ===== ** TODO: See RFC 5486 for use cases Section 1, "for data distribution to SSP" - Expand "SSP" Section 1, "SED is typically used" - Expand "SED" Section 2 - It would be helpful to define "Session Establishment Data", at least by reference. Section 4 - Do we realistically expect there to be other transports for this protocol? If not, let's delete this section or move it to an appendix. Section 4.11, "provided in SPP Protocol over SOAP document" - Needs a normative reference. Section 5.1 - This section needs to define the semantis for the cDate/mDate elements, as is done in Section 6.1 et al. (I assume these are "created" and "modified", respectively.) Section 5.2 - It seems odd that these identifiers have defined contents, but not a data structure. Shouldn't these be moved from the SOAP document to this section? Section 5.3 - It seems like the "conforming specification MUST define" incantation could be moved to the top. Section 6.2, "When a Public Identifier is not member of any Destination Group, it is intended to be associated with SED through the SED Records that are directly associated with the Public Identifier." Since the "dgName" illustration above shows the association to a Destination Group, it would be helpful to note that these direct associations are provided using "sedRecRef" elements in individual identifiers. Section 6.2 - In a related vein, why is "sedRecRef" not defined at the level of PubIdType, along with "dgName"? As is, it's only defined for TNs. This seems to imply that other identifier types must be part of a Destination Group. Why is that? Section 6.2 - It seems like more needs to be said about NumberValType, especially as it is used for TN / RN / TNP. For TN/RN, MUST it be the full E.164 number? For TNP, is it a truncated E.164 number? Section 6.2 - "Whether the Registry can accommodate the open number plan semantics is a matter of policy and is beyond the scope of this document." No, it's not! The semantics of TNR need to be clear regardless of the number plan. Whether a given registry *accepts* TNR objects for open number plans is up to the registry. The semantics are not clear to me. Could you provide an example of how TNR works in an an open-plan environment? ===== draft-ietf-drinks-spp-protocol-over-soap-07 ===== I did not review the WSDL or examples in detail. Section 5, "Clients and Servers MUST use HTTP Digest Authentication" - Is there a reason that TLS-layer authentication (client certificates) is not acceptable? Or other, stronger techniques that might come out of HTTPAUTH. Section 7.1 - It seems like this section should move to -spp-framework. Section 7.2 - Given that you're using namespaces, prepending "sppp" to all the element names here seems wasteful. Instead of "<urn:spppAddRequest>", just use xmlns:sppp="..." and "<sppp:addRequest>". Section 7.2 - It would save some schema/writing if you pulled out a few common attributes of the request and response objects (clientTransId, minorVer; clientTransId, serverTransId, overallResult, detailResult). These would also be good candidates for things to put in the SOAP header. Even if you don't restructure this, you could remove the repeated definition of "ResultCodeType". Section 7.2.1.2, "clientTransId: Zero or one client transaction ID. This value is simply an echo of the client transaction ID" - It would be clearer to be make this a MUST. Section 7.2.5 - Given that you have these nice batch request/responses, why would you bother defining the individual request/response types? Instead of "<spppAddRequest>", you would just have "<spppBatchRequest><addObj></spppBatchRequest>" Given all the SOAP overhead, you can afford the extra characters, and it will save a lot of spec/code. This change is even backward-compatible with servers that implement batch requests. Section 11 - It would be nice to refer here to the authentication and authorization concerns discussed in Section 5 and Section 6.
- [drinks] AD review of draft-ietf-drinks-spp-frameā¦ Richard Barnes