IETF Logo Mail Archive

Re: [Edm] Tracking (and distinguishing) formal analysis

Christopher Wood <caw@heapingbits.net> Wed, 15 March 2023 14:02 UTC

Return-Path: <caw@heapingbits.net>
X-Original-To: edm@ietfa.amsl.com
Delivered-To: edm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 26767C1522C8 for <edm@ietfa.amsl.com>; Wed, 15 Mar 2023 07:02:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.202
X-Spam-Level:
X-Spam-Status: No, score=-1.202 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, MIME_HTML_ONLY=0.1, MIME_HTML_ONLY_MULTI=0.001, MIME_QP_LONG_LINE=0.001, MPART_ALT_DIFF=0.79, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=heapingbits.net header.b="uz1blzpt"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="LkvtEXW3"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oTGKMtH4Q5A3 for <edm@ietfa.amsl.com>; Wed, 15 Mar 2023 07:02:01 -0700 (PDT)
Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B41B3C151543 for <edm@iab.org>; Wed, 15 Mar 2023 07:02:01 -0700 (PDT)
Received: from compute6.internal (compute6.nyi.internal [10.202.2.47]) by mailout.nyi.internal (Postfix) with ESMTP id 920385C05FD; Wed, 15 Mar 2023 10:02:00 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163]) by compute6.internal (MEProxy); Wed, 15 Mar 2023 10:02:00 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=heapingbits.net; h=cc:cc:content-transfer-encoding:content-type:content-type :date:date:from:from:in-reply-to:in-reply-to:message-id :mime-version:references:reply-to:sender:subject:subject:to:to; s=fm2; t=1678888920; x=1678975320; bh=Tw0RJWMPJ6FvS1bz/tSwQZ4nd 9iYQLa/ZqXOgcYXho0=; b=uz1blzpt01ei5X0gVq+5q8HUzh5xFRt8d243Q8rxR ucBHw6e52rbo00lUEY0D4CCshzHP7otVa9HAMu5hly2B+L3/pkwY8ocs+6OZYsxF DjaTVc8l7yBAfI9fgeJ6JizngMl1U23Fuh38bDXwrb0knwRIEx1RN9O+MMKY3AYb 8P5l8AWK8R7hhBAyyDcCChbu6+AD1e4y+Q+F7ObLfiXBIeNQ/2YBtXzZ0d67h2MK YoxKKuQpvUyXAS+h7BDerSkjgEDQk7PukLNiRAORAnAEDIYuh+Eu8NqMZ+gw3NRd 0q557ZWxY10uqPFlfjnjIZCrwJfQQxr7ATThwn9cKS3kg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:content-type:date:date:feedback-id:feedback-id :from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:sender:subject:subject:to:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; t= 1678888920; x=1678975320; bh=Tw0RJWMPJ6FvS1bz/tSwQZ4nd9iYQLa/ZqX OgcYXho0=; b=LkvtEXW3zyuzA/nilbl1OaRd0wJmuLBYk5aTsrZlwSOqZud1lc+ rrpx1m8GkU+uBTdDFsVmtjhw0VyX2rPKR1xk4sdXlUA9SSW3MOI3sRQvlw8yJuk8 R20+5d5OEUWoBKC/ghPy3dL+K9HSRwRBP6/InCkKyJLwaLuwl0fS/h5ooYIQzrlr CVg6yOamoQARGe5l8s2lnohRY475KeJs/OyrVoxhD95tr+TbY3GZJaDMwD/5BBQc GWuQJZwc/ZaM4zTRBR0CWQPsd3KymhbVitl6ahRNO7IGIpMf0SGlaL9Zh+FB0J6G 2wVXhE7oLDqDJd4Aqr60HTii+1MQjhpW1GA==
X-ME-Sender: <xms:2M8RZOz6snbmt5mJHiyIGaKgINr4lnNTrNbHDFgheULMrPXDdXeNtQ> <xme:2M8RZKT6Kpn_UP-N4dBG93cJ4RfK6CIzo5vLskqrwXoIu2wuub-UTyGibalK0MFrX knaokZfu_66CqxXPpE>
X-ME-Received: <xmr:2M8RZAVoDBP9SpWQyX5ztdzvu9tAzUV3NiOr2vKZkeHrJ19zAT7mc1bKIZ2gIVXtnxGskYXKzdtkAc0vYBkt4qf3rw52Z27ND8Kc>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvhedrvddvkedgheekucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne fqnhhlhicuohhnvgcuphgrrhhtucdlhedumdenucfjughrpegtgffhggfufffkfhevjgfv ofesrgejmherhhdtjeenucfhrhhomhepvehhrhhishhtohhphhgvrhcuhghoohguuceotg grfieshhgvrghpihhnghgsihhtshdrnhgvtheqnecuggftrfgrthhtvghrnhepueefkeeh heeigeejveetgffhjeetudffjeevvdfhhefglefhleelgfejueetfeetnecuffhomhgrih hnpehgihhthhhusgdrtghomhdpihgvthhfrdhorhhgpdhirggsrdhorhhgnecuvehluhhs thgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomheptggrfieshhgvrghpih hnghgsihhtshdrnhgvth
X-ME-Proxy: <xmx:2M8RZEg0PMFz3WE4O37aR-0T5kefxpF_T2GB20ICU44ASd-EjI3k8g> <xmx:2M8RZAC3PjxwwY5y5lqkQE3MoKBfoV__iSBzivsEvjOorJtBYRanFw> <xmx:2M8RZFKHBDSK839VFayTlUp-Td4rCtO6cMkZfUYOvFDSHwcJvpzIyg> <xmx:2M8RZLqgOnV8OwZoT_DJBiogjA6SfcSrHkIYgdEDsyrD5t9kc_tKJw>
Feedback-ID: i2f494406:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Wed, 15 Mar 2023 10:01:59 -0400 (EDT)
Content-Type: multipart/alternative; boundary="Apple-Mail-A8C86009-BD84-41B5-80E6-63427C25AF78"
Content-Transfer-Encoding: 7bit
From: Christopher Wood <caw@heapingbits.net>
Mime-Version: 1.0 (1.0)
Date: Wed, 15 Mar 2023 10:01:42 -0400
Message-Id: <D2AD3E3F-77F8-4F8B-A4F3-92386E58E997@heapingbits.net>
References: <CALGR9obBioR7UFjWB-sGA96DBsMXBu7LNByDk-XRfM9DayeVSQ@mail.gmail.com>
Cc: edm@iab.org
In-Reply-To: <CALGR9obBioR7UFjWB-sGA96DBsMXBu7LNByDk-XRfM9DayeVSQ@mail.gmail.com>
To: Lucas Pardue <lucaspardue.24.7@gmail.com>
X-Mailer: iPhone Mail (20D67)
Archived-At: <https://mailarchive.ietf.org/arch/msg/edm/_Bya0Vgd2PsZ0Ord8S5l2v3VcV8>
Subject: Re: [Edm] Tracking (and distinguishing) formal analysis
X-BeenThere: edm@iab.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Evolvability, Deployability, & Maintainability \(Proposed\) Program" <edm.iab.org>
List-Unsubscribe: <https://www.iab.org/mailman/options/edm>, <mailto:edm-request@iab.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/edm/>
List-Post: <mailto:edm@iab.org>
List-Help: <mailto:edm-request@iab.org?subject=help>
List-Subscribe: <https://www.iab.org/mailman/listinfo/edm>, <mailto:edm-request@iab.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Mar 2023 14:02:06 -0000

I agree that it’s useful for drafts to cite this work, but we should also acknowledge that analyses change over time. Sometimes there are bugs in the proofs or models. Sometimes new results emerge that complement or otherwise impact existing analyses. The unfortunate consequence of immutable RFCs is that we don’t have a good way to track these things. Adding them to the datatracker seems like a low effort workaround. 

Best,
Chris 

On Mar 15, 2023, at 9:13 AM, Lucas Pardue <lucaspardue.24.7@gmail.com> wrote:


To echo some of what Martin said, in the QUIC sphere I tend to see research in papers or proceedings. Some of that research has identified issues with a specific implementation, confirmed that the protocol behaves in deployments as intended, etc etc. While not strict formal verification, there is perhaps merit in collecting links to artefacts to help track _use and deployment_ of a protocol after the initial design work was done and the RFC cut.

Tangent: more of a tools discuss item probably - but having the list managed directly in the datatracker isn't the most user-friendly thing. As the number of items grows, it makes change management a bit tedious. It's also not clear to me who has write access (I assume just chairs and ADs?). A model where folks could propose their additions for review and approval would help crowd source that slightly. Currently as a non-logged in user, its not even obvious that the "Additional resources" field is such a free-form field and that we'd likely welcome people volunteering their own links there.

Cheers,
Lucas

On Wed, Mar 15, 2023 at 11:24 AM Martin Thomson <mt@lowentropy.net> wrote:
I tend to think that the draft should be citing work like what you reference.

Still, having references to implementations, analyses, or other relevant material, can still be valuable to collect the way you describe.  I think that this could help.  Given that this is a bag of tagged URLs, the bar for adding new types should be pretty low.

On that thought, I'd be OK with "explanatory blog posting" meeting the bar, as well, if you like.  We've had a ton of really good ones published over time for IETF work.  Sometimes they are the best way to get introductory-level background on the work.  Add those too.

(Tracking clicks might only offer the most vague approximation of "value".  Discussion might be a better indicator. Though in this case, the number of people qualified to read and contribute to that work is very much limited.)

On Wed, Mar 15, 2023, at 22:04, Christopher Wood wrote:
> Hi folks,
>
> One of the helpful contributions of this group was changes to the
> datatracker that help track implementations of specifications (under
> "additional resources"). I've used this for a couple of specifications
> [0], and I hope others find them useful [1].
>
> Implementations are not the only artifact that help with the
> development of specifications, though. Artifacts produced through
> formal analysis, such as executable models using tools like ProVerif or
> Tamarin and even pen-and-paper analyses, both change as the
> specification changes. As we develop specifications, new analyses
> appear over time, including after the final RFC is published.
>
> Given that these artifacts have similar churn as implementations, and
> complement specifications in a similar way as well, I'm wondering if we
> ought to extend the available tags in the datatracker to keep track of
> these things. As a strawman proposal, what do folks think about adding
> a "related_analyses" tag (similar to the "related_implementations" tag)
> to the set of available tags in the datatracker? We might use it like
> so:
>
>     related_analyses https://github.com/cloudflare/ohttp-analysis" rel="noreferrer nofollow" target="_blank">https://github.com/cloudflare/ohttp-analysis
> (Tamarin model of Oblivious HTTP)
>   
> Additionally, I'm wondering if we could also add a way to "flag"
> different resources so that they are easier to identify. Not everyone
> might know what a "Tamarin model" is. So for example, perhaps we could
> have colored label that says "analysis" (or something) next to the
> rendered item in the datatracker.
>
> Good idea? Bad idea? I'm curious to hear your thoughts. If interested,
> maybe we could discuss this in 116?
>
> Best,
> Chris
>
> [0] https://datatracker.ietf.org/doc/draft-ietf-ohai-ohttp/" rel="noreferrer nofollow" target="_blank">https://datatracker.ietf.org/doc/draft-ietf-ohai-ohttp/ as one
> example
> [1] I don't know how useful these are to others. Do we have a way to
> determine how many times these links are clicked?
> --
> Edm mailing list
> Edm@iab.org
> https://www.iab.org/mailman/listinfo/edm" rel="noreferrer nofollow" target="_blank">https://www.iab.org/mailman/listinfo/edm

--
Edm mailing list
Edm@iab.org
https://www.iab.org/mailman/listinfo/edm" rel="noreferrer nofollow" target="_blank">https://www.iab.org/mailman/listinfo/edm
--
Edm mailing list
Edm@iab.org
https://www.iab.org/mailman/listinfo/edm

v2.23.0 | Report a Bug | By Email