IETF Logo Mail Archive

Re: [Edm] Please review draft-iab-use-it-or-lose-it-01

Martin Thomson <mt@lowentropy.net> Fri, 16 July 2021 08:06 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: edm@ietfa.amsl.com
Delivered-To: edm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6A3C73A2BD9 for <edm@ietfa.amsl.com>; Fri, 16 Jul 2021 01:06:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=JJbpWj/5; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=j0ZECpzC
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bnmIUQ1bcN4m for <edm@ietfa.amsl.com>; Fri, 16 Jul 2021 01:06:45 -0700 (PDT)
Received: from out1-smtp.messagingengine.com (out1-smtp.messagingengine.com [66.111.4.25]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 76A753A2BD4 for <edm@iab.org>; Fri, 16 Jul 2021 01:06:40 -0700 (PDT)
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.nyi.internal (Postfix) with ESMTP id 659C35C00F9 for <edm@iab.org>; Fri, 16 Jul 2021 04:06:39 -0400 (EDT)
Received: from imap41 ([10.202.2.91]) by compute5.internal (MEProxy); Fri, 16 Jul 2021 04:06:39 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :subject:content-type; s=fm2; bh=OTaWYPSNWA7S7ZunXehOG+KIDPJznVg cC8vDf+MjcZU=; b=JJbpWj/5mEjPT8yf8O4gK1MMJWTmPSRcJe214r3oodi59ae gVwcouwEbk5VHjRNR5gAIZkXilfw8PbMTb3A9IdWiojrxxK3n6AdpWYS/PEmKSES 67CJ/13lavZhfvwNO5PSQqm8MJtd5QsKanA/sKE0nEKuZA4RHAErKzxN7g1LolZ3 CD5fUEXjnlxj0zjWyxFowSKavUeIwDvNcqiAZ4EImxpB/dDLrIYhtC7soIZJS1/0 okmxMX8dWDyG543cynqdAL0Tjjrp7x+/UR2KuEZ7P9ZbFrTdT3z2aHRoCxclfDe2 oObtw1baEhOI8EdaEXChjD4j5tYq4Iky1igDflA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=OTaWYP SNWA7S7ZunXehOG+KIDPJznVgcC8vDf+MjcZU=; b=j0ZECpzCdtqIXKz+dZSh0S mvZL+FpqJN64fI8dg5mZfq95Pm8aALCwOUGfZ9inwJwyEC+Itt+La3Kf5ck143ee LJ7GKTA3nmEKiYHemqsZMjPDjhOnGvNP1GR/OiRSofQsibrsySuyFeJsdwb3AK2n ZqRGxmJbiUedXK2JGDd4uWPAULbhgpLJCusVo4bY0spSS1wFSr/kjKIkt9ChGX4A L/jxYp/bt6UWPWvBEbcpJF5cUB2tVJ3asQo3vkbnb9ahYRsNRP+ShdKtbyND9EWh m8wZviCN8DdHvya2+wh8hc3VOKu7yZhZIV1r3MXH8TZQguOjMp+LtgnEeAGTYR7A ==
X-ME-Sender: <xms:Dj7xYI_FexQuHAj2VFPFh2BYgIdFHuqaff_1iVL82UZI832kS6LEuw> <xme:Dj7xYAu0-1WIeW2hoFK4W9Hpxt0RXOzBPbPYL2_nOvNdJFqbV-Nc6T36YYVM9qLDy 7xE2IxGZKhOgQvnLuY>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvtddrvddvgdduvdduucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucgoufhushhpvggtthffohhmrghinhculdegledmne cujfgurhepofgfggfkjghffffhvffutgesthdtredtreertdenucfhrhhomhepfdforghr thhinhcuvfhhohhmshhonhdfuceomhhtsehlohifvghnthhrohhphidrnhgvtheqnecugg ftrfgrthhtvghrnhephfekvdekjeejlefgteefudetveefhfdujeefheegffdvgfduudeg vdejhffhheehnecuffhomhgrihhnpehgihhthhhusgdrihhopdhirggsrdhorhhgnecuve hluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhtsehlohif vghnthhrohhphidrnhgvth
X-ME-Proxy: <xmx:Dj7xYODicTuLQkRbi9IMfl8uTVoa8XRRe9SZqNCQrCBTNkAHbbeZlw> <xmx:Dj7xYIdFtky9p0TGWS6ZVUTHUvCgrsFGoL4J4SuhLsmgSe2Oew2_6Q> <xmx:Dj7xYNOoytJtABw9aAaWMnRaYLksRU4scy0fbQygphb_SU_v1n-FxQ> <xmx:Dz7xYDazo27PLLvmUsx5biTfuNF3AQK_tT6YqPTJz18-sWTS4sr4NQ>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id DF8BC3C0D09; Fri, 16 Jul 2021 04:06:38 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.5.0-alpha0-533-gf73e617b8a-fm-20210712.002-gf73e617b
Mime-Version: 1.0
Message-Id: <a2a718ba-7231-449f-8a55-fcc6a7823d59@www.fastmail.com>
In-Reply-To: <5149e82e-4f98-411b-9e34-27f243352b95@www.fastmail.com>
References: <162626887655.14379.5438309391409890693@ietfa.amsl.com> <80F3F8A2-2C3C-4DE8-BD1D-07842F5B2F89@apple.com> <20210715154649.GD24216@faui48e.informatik.uni-erlangen.de> <5149e82e-4f98-411b-9e34-27f243352b95@www.fastmail.com>
Date: Fri, 16 Jul 2021 18:06:17 +1000
From: Martin Thomson <mt@lowentropy.net>
To: edm@iab.org
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/edm/oHXLOvVzweW301BbnJtXi1o5Ea0>
Subject: Re: [Edm] Please review draft-iab-use-it-or-lose-it-01
X-BeenThere: edm@iab.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Evolvability, Deployability, & Maintainability \(Proposed\) Program" <edm.iab.org>
List-Unsubscribe: <https://www.iab.org/mailman/options/edm>, <mailto:edm-request@iab.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/edm/>
List-Post: <mailto:edm@iab.org>
List-Help: <mailto:edm-request@iab.org?subject=help>
List-Subscribe: <https://www.iab.org/mailman/listinfo/edm>, <mailto:edm-request@iab.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Jul 2021 08:06:51 -0000

Replying to myself.  Very bad form.  Sorry.

Hi again Toerless,

I started reading through your feedback and I found some of it really helpful.  I've made a bunch of edits in response.  If you are willing to review the following pull request, that would be great.

Here's a link: 

I won't do a blow-by-blow response.  I'm afraid that I don't have that much time.

Just one note.  Throughout you mention authentication where the draft uses the word "cryptography".  My understanding of cryptography is that it encompasses a broad discipline that includes encryption and integrity protection and authentication and a bunch of related things.  Are you perhaps reading that word with the narrow meaning of "encryption"?

Cheers,
Martin

On Fri, Jul 16, 2021, at 17:14, Martin Thomson wrote:
> Hi Toerless,
> 
> Thanks for the review.
> 
> It's going to take me a little while to just read your email.  If there 
> are specific items that you think need to be drawn out in particular, I 
> would encourage you to open issues or new threads on just those.  It 
> will be easy to lose things with an email this long.
> 
> I'm just going to reply to your meta-level comments here.  I might try 
> to turn the rest of this into issues on the repository.
> 
> On Fri, Jul 16, 2021, at 01:46, Toerless Eckert wrote:
> > I think it would be good to write that the problems an solutions likely
> > fall all into three high level categories:
> > 
> > a) p2p protocol extension considerations.
> > b) 3 or more party protocol extension considerations
> >    (including middleboxes as supported parties).
> > c) 2 or more party protocol considerations plus undesirable middleboxes.
> > 
> > Separating b) and c) is IMHO most important, 
> 
> I disagree.  The draft does acknowledge the fact that difficulty scales 
> poorly as more protocol participants are involved, but this is not the 
> focus of the draft at all.  The text exists to acknowledge that as a 
> problem, but the core thesis is not that these are different but that 
> they are _fundamentally_ the same.  The number of participants just 
> scales the problem (often very quickly out of reach).
> 
> Your category (c) is almost out of scope.  The text on limiting 
> unwanted participation is very narrowly focused here.  It only exists 
> because it was necessary to point out that unprotected protocols can 
> have more participants than expected and that - once the problem is 
> identified - the most obvious solution seemed worth noting (not that it 
> is always a *practical* solution, of course).
> 
> See also https://martinthomson.github.io/tmi/draft-thomson-tmi.html
> 
> > The other high-level suggestion is that at least in my opinion
> > there is more that could be written about reasons.
> > 
> > IMHO: The deeper the extension point is within a protocol, and the
> > more complex the protocols starte machienry reaction to
> > unsupported extensions hs to be in the state machinery,
> > the more difficult it is to make sure it will work correctly
> > when needed. Of course, the most easy case is when you have
> > extensible data structures signalled and some parts can
> > just be ignored, but that is not always the semantic required.
> 
> I think that this is just a matter of degree.  Whether an extension 
> point is hard to reach hasn't seemed to affect its availability in the 
> cases we've gathered thus far.  It's whether people have been motivated 
> to seek it and actively use it that has mattered.  It's not like the IP 
> version field is hard to find or complicated.  And - not in the draft - 
> arguably some of the extension points in SDP are harder to reach than 
> others, but the hard ones (a=extmap) are often more reliable than the 
> easy ones (RTP/SAVPF).
> 
> -- 
> Edm mailing list
> Edm@iab.org
> https://www.iab.org/mailman/listinfo/edm
>

v2.23.0 | Report a Bug | By Email