[Ecrit] Roman Danyliw's No Objection on draft-ietf-ecrit-similar-location-18: (with COMMENT)
Roman Danyliw via Datatracker <noreply@ietf.org> Wed, 02 March 2022 14:10 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: ecrit@ietf.org
Delivered-To: ecrit@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 58B0A3A011F; Wed, 2 Mar 2022 06:10:54 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Roman Danyliw via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-ecrit-similar-location@ietf.org, ecrit-chairs@ietf.org, ecrit@ietf.org, dwightpurtle@gmail.com, dwightpurtle@gmail.com
X-Test-IDTracker: no
X-IETF-IDTracker: 7.46.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Roman Danyliw <rdd@cert.org>
Message-ID: <164623025433.17954.9445129257215162877@ietfa.amsl.com>
Date: Wed, 02 Mar 2022 06:10:54 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/ecrit/2P9qdbNXtg2UIFR8VP_Q_yNvJfM>
Subject: [Ecrit] Roman Danyliw's No Objection on draft-ietf-ecrit-similar-location-18: (with COMMENT)
X-BeenThere: ecrit@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Emergency Context Resolution with Internet Technologies <ecrit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ecrit>, <mailto:ecrit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ecrit/>
List-Post: <mailto:ecrit@ietf.org>
List-Help: <mailto:ecrit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ecrit>, <mailto:ecrit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Mar 2022 14:10:55 -0000
Roman Danyliw has entered the following ballot position for draft-ietf-ecrit-similar-location-18: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-ecrit-similar-location/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Thank you to Scott Kelly for the SECDIR review. ** Section 6. This document should have a normative reference to the schema format used in this section. Is that RELAX NG? or W3 Schema? I’ll note that [I-D.ietf-ecrit-lost-planned-changes] also doesn’t normatively reference a schema format. ** Section 7. Given the deployment models of LoST, is it expected that the entire contents of the server database would be publicly available? Would it be an issue if large portions of the LoST back-end database (on the LoST server) were revealed? I ask because if the server is willing to correct input/provide suggestions based on partial on invalid client input, a malicious party could potentially use this to enumerate the database via high volume of invalid/partial queries. If that’s a threat, then perhaps there should be a form for rate limiting applied on the number of corrected queries permitted per unit time.
- [Ecrit] Roman Danyliw's No Objection on draft-iet… Roman Danyliw via Datatracker
- Re: [Ecrit] Roman Danyliw's No Objection on draft… Brian Rosen
- Re: [Ecrit] Roman Danyliw's No Objection on draft… Roman Danyliw
- Re: [Ecrit] Roman Danyliw's No Objection on draft… Randall Gellens