IETF Logo Mail Archive

Re: [Eligibility-discuss] AD Sponsorship of draft-moonesamy-recall-rev

"Adrian Farrel" <adrian@olddog.co.uk> Mon, 29 April 2019 20:33 UTC

Return-Path: <adrian@olddog.co.uk>
X-Original-To: eligibility-discuss@ietfa.amsl.com
Delivered-To: eligibility-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 293FF12016A; Mon, 29 Apr 2019 13:33:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n4D3eFyS5kGt; Mon, 29 Apr 2019 13:33:36 -0700 (PDT)
Received: from mta5.iomartmail.com (mta5.iomartmail.com [62.128.193.155]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C12581200FA; Mon, 29 Apr 2019 13:33:35 -0700 (PDT)
Received: from vs2.iomartmail.com (vs2.iomartmail.com [10.12.10.123]) by mta5.iomartmail.com (8.14.4/8.14.4) with ESMTP id x3TKXO79012343; Mon, 29 Apr 2019 21:33:25 +0100
Received: from vs2.iomartmail.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id A897F22044; Mon, 29 Apr 2019 21:33:24 +0100 (BST)
Received: from asmtp2.iomartmail.com (unknown [10.12.10.249]) by vs2.iomartmail.com (Postfix) with ESMTPS id 935FE22042; Mon, 29 Apr 2019 21:33:24 +0100 (BST)
Received: from LAPTOPK7AS653V ([87.112.228.68]) (authenticated bits=0) by asmtp2.iomartmail.com (8.14.4/8.14.4) with ESMTP id x3TKXNIc025488 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Mon, 29 Apr 2019 21:33:23 +0100
Reply-To: adrian@olddog.co.uk
From: Adrian Farrel <adrian@olddog.co.uk>
To: eligibility-discuss@ietf.org
Cc: 'Andrew Sullivan' <ajs@anvilwalrusden.com>, ietf@ietf.org
References: <6.2.5.6.2.20190424095017.13cdadc8@elandnews.com> <51068F13-E90F-42A2-8AE2-627D5E18B145@akamai.com> <20190424201939.GM3137@localhost> <6.2.5.6.2.20190424134823.0c9faf68@elandnews.com> <20190424211123.GO3137@localhost> <6.2.5.6.2.20190424144539.0cabcde0@elandnews.com> <20190424234334.GQ3137@localhost> <11F97591808485C30AD98A22@PSB> <20190426150436.v4svwa67xja6267r@mx4.yitter.info> <0a1e01d4fc6c$10b93df0$322bb9d0$@olddog.co.uk> <20190427155921.i32pftxdbkvv7ist@isoc.org>
In-Reply-To: <20190427155921.i32pftxdbkvv7ist@isoc.org>
Date: Mon, 29 Apr 2019 21:33:21 +0100
Organization: Old Dog Consulting
Message-ID: <024701d4feca$c9fae920$5df0bb60$@olddog.co.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQMb9m0E0UarrleNsIqsxdXzHaRPpgE9IEVTAV5K0TUCC3Cw1AGcBF9dAl+CA0cCP1Vv7wGfmKmvAgN5ZUoBSe399QGWOyuXozcoOMA=
Content-Language: en-gb
X-Originating-IP: 87.112.228.68
X-Thinkmail-Auth: adrian@olddog.co.uk
X-TM-AS-GCONF: 00
X-TM-AS-Product-Ver: IMSVA-9.0.0.1623-8.2.0.1013-24582.002
X-TM-AS-Result: No--20.062-10.0-31-10
X-imss-scan-details: No--20.062-10.0-31-10
X-TMASE-Version: IMSVA-9.0.0.1623-8.2.1013-24582.002
X-TMASE-Result: 10--20.061600-10.000000
X-TMASE-MatchedRID: IeZYkn8zfFrxIbpQ8BhdbLmR+C0l9vjVZa7LkubQvj/agsZM0qVv15OS w8t5HglHHmR//j0uskKl9Qu635f1KKHNozT622Z4XSKcwPTzq/IsCc2iFTIxrcM5LQWFwBdKSBv OV1d2isfW4QQu9bJ733+RiR0z4E6ckR56L2uUKWP6daZahG7qsUrCzBY4ZVGj+Cckfm+bb6Dk/S TXlNO1nlK50ScIKuW/B//la8VuHYYCdQeZ7qFiGTPDkSOzeDWWE3NxsGztrMuVOdKEtLXOZCxZE Jq+ukPCZqweXLgpmrZrAFiVMijft1GKFfTA3wZ+RsqQuQlRTh8R5c83KIxTThjQD3m2MCf7dmu5 Abn/U/uRKqZvxrWxLGiz3IFUtmP/njMUlhTO8+WXXOyNnX/prF5ALR9IgmTsLO3j+XDwlkOmRE7 f7OYxUod0LZL0rRWxXEPxV8mxOOblJVGNa7KLRCAFt0Rns3ahUXlp1FHYSPVtPXRTHBlYsIaPTn lFiCaK1+IZ+CvITcqvnk7fmgYwv0c/OrB7F0954Sd4Go/o60NY8mfhSYy5UjDJ9a3KikGoA4eV6 z+cHCfaFM5TPGLdCE6nIMfjRtNUdLTHjoswkhpt/kxH58njbxkqnRJng/51IQ4GXoHsAHW+Ru8Y +xhPef8RcEkM/eSJSWAGBUzMUE8wtv7QCGDWkry5hnFzVM+XcW+VwHmrYOWHwGEm+CpYGcOpfMZ V+vayfn118ITGa+Y2OrICH2A/Xqcfn+6/NDlnAEgqTc4LS4SSeMExjuIoEl6AkmKlDIzQ75T4BP uNkdqitiouylJVoAozQslBEGKeTQ6eVrUUN6yeAiCmPx4NwLTrdaH1ZWqCii7lXaIcF/Ww7M6dy uYKg/cUt5lc1lLgtT4piLWpY7p+3BndfXUhXQ==
X-TMASE-SNAP-Result: 1.821001.0001-0-1-12:0,22:0,33:0,34:0-0
Archived-At: <https://mailarchive.ietf.org/arch/msg/eligibility-discuss/XgIgeNl0iJDnE5AUqK4g_bO3754>
Subject: Re: [Eligibility-discuss] AD Sponsorship of draft-moonesamy-recall-rev
X-BeenThere: eligibility-discuss@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <eligibility-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/eligibility-discuss>, <mailto:eligibility-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/eligibility-discuss/>
List-Post: <mailto:eligibility-discuss@ietf.org>
List-Help: <mailto:eligibility-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/eligibility-discuss>, <mailto:eligibility-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Apr 2019 20:33:39 -0000

Andrew,

Apologies for a delayed response, I was working the last couple of days.

Thank you for your time and careful thought. It's really insightful and
helpful. And, of course, the care and effort you put into selecting Nomcom
chairs is really appreciated - I suspect most members of the community just
see it as "something that happens".

I wonder whether we need to break up this discussion into different topics
(threads?) so that the bleed-over doesn't get in the way of our
conversation.

I see a number of separate topics. Of course they are related, but I think
we might try to keep them distinct as much as possible. We should qualify
this with the knowledge that a recall is very-much a position of last
resort, but with the understanding that the very existence of the
possibility of a recall is an important part of the structure of the IETF.
Just like appeals, a recall is an element that allows us to trust the
operational management of the IETF. It is not the use of these mechanisms,
it is their availability.

The topics are:

1. Should members of the IESG and IAB (and other Nomcom-appointed people) be
allowed to sign recall petitions?
2. Should seated Nomcom members be allowed to sign recall petitions?
3. How do we qualify "participation" at IETF meetings?
4. Should remote participants at IETF meetings be qualified to sign recall
petitions?
5. What should be the number of signatories on a recall petition?
6. What is the right number of recall petitions?

Let's run through these in some more detail.

1. Currently serving Nomcom-appointed people are excluded from being able to
sign a recall petition. Several people have suggested that the IESG might be
in a position to police itself, and it does seem that there might be cases
where the IESG or IAB is uniquely positioned to know of issues that make a
recall a realistic option. I don't suppose that adding two dozen people to
the list of potential signatories makes a big difference to the potential of
a recall being initiated. I don't see any harm in this change and there
seems to be some small potential benefit.

2. Currently seated Nomcom members are allowed to sign recall petitions.
There seems to be general agreement that this would be a poor idea subject
to concerns about Nomcom confidentiality. It may be an oversight in the
original specification and is easy to fix. It doesn't seem that this change
would have a substantial impact on the pool of people who may sign a recall
petition, and the clarification looks like a good idea.

3. There is another thread running about how we might qualify people as
having participated in IETF meetings. Currently we judge this by looking for
those who have registered, paid and picked up badges: there is no actual
measure of participation. So there is a theoretical puppetry that could
occur, but it comes at a price.
For remote participants we have several tools available: registration and
Meetecho logs are the most obvious; physical presence at a remote hub is
also a possible.

4. I think that this whole thing started with consideration of whether we
should give more attention to the rights of remote participants. Let's set
this in a couple of contexts:
- Nomcom qualification requires physical participation in 3/5 meetings with 
  the belief that only people who have recent and full experience of the
IETF
  can properly make decisions about what the community wants/needs.
- All IETF decisions and the majority of discussions happen remotely (i.e.,
on
  mailing lists).
- The IETF (supported strongly by ISOC) has been working to extend the
  level of remote participation through increased tooling and the
  establishment of remote hubs. Part of that process is intended to enable
  new people with the appropriate skills to be as active as possible in the
  IETF. Part of it is to enable participation from parts of the world where
  the cost of physical attendance at IETF meetings may be prohibitive.
- The IETF has a strong ethos of non-discrimination: we work hard to make
  the only thing that counts be the reasoned discussion of technology. The
  IETF is well aware that it is not just the reality of fairness that
counts, but
  the appearance of fairness.
Considering these points, the current draft proposes to allow "qualified
remote participants" to sign recall petitions. Obviously the question of
qualification depends on point 3, and further discussion of that is
necessary. 
But supposing we work out the element of qualification, the proposal seems
to leave some concerns:
- It is easier to have "fake" signatories than with physical attendance.
  This is true, but we have only very slight evidence that there has ever
  been any attempt to subvert any other part of the IETF process by
  these means, and they are equally vulnerable. I conclude that the risk
  is both manageable and small. Furthermore, if this ever became a 
  problem, it could be addressed by a subsequent reversal of the 
  proposed change.
- There would be an increase in the pool of qualified signatories and 
  so an increase in the number of petitions. I don't think much effort
  has been put into working the numbers here: I think I saw a count
  of 700 Nomcom-qualified people, all of whom can currently sign a 
  petition. IIRC we have around 400 remote participants at any one
  IETF meeting, so we could *guess* that that might yield another
  200 potential signatories. Of course, given that we have never had
  a recall committee formed, it is hard to guess what impact this
  change would have 9/7 of nothing is still nothing.
- Participants who have only attended remotely don't fully
  understand the IETF and are not in a position to make requests for
  recall. This case can certainly be argued as it is for Nomcom, but it
  is also true that (unlike Nomcom) the signatory of a recall petition
  is not making any fundamental change: that change is left to the
  recall committee.
What this boils down to, then, is that there may be more work to do in terms
of more petitions to handle. That argument can be looked at several ways:
- If petitions are needed, then having them is a good thing
- Each properly formed petition requires a recall committee and
  chair: that is work to set up and administer, and a strain on the
  ISOC President
- There is a risk of attack that could be harmful although we have
  no reason to believe we will be attacked, and we do understand
  how to shut it down if it happens.

5. Once upon a time the number of signatures required for a recall petition
was 1. There were no attempts at recall, but this was increased to 20. There
may be no value in researching why that change was made and why the number
20 was selected. To me it seems that 1 was a fragile situation in a growing
organisation, but that 20 reflects an abundance of caution. We have never
had a recall and that could be because we have never needed one or because
it has been too hard to form one. I'm not sure that discussing that point
will get us anywhere but if we continue to not need any recalls, then
lowering the number will not matter, while if it has been too hard, lowering
the number of signatures needed will help.
Of course, the risk is that lowering the number makes us vulnerable to
recall petitions that have to be serviced. If they are valid, that is a
price we have to pay for good governance. I would argue that if the
petitions had a good case to answer but did not lead to a recall, that would
still be good governance. If it led to a number (any number) of frivolous,
fatuous, or otherwise spiteful petitions, then we would have empirical
evidence that increasing the number to 20 again would be wise.

6.  You said, "In order to show that you need a threshold change, you'd need
an argument that there was a case that should have caused a recall, but that
didn't because the threshold couldn't be met." I doubt that this is a
conversation that can be had on a public mailing list: we don't want to open
up the horrors of trial in the court of public opinion. And it is pretty
likely to be anecdotal in any case.
But, as I said above, the right number of actual recalls is the number we
actually have: I someone needs to be recalled then they need to be recalled.
And part of the price of getting that right is having a recall process that
can be started and executed even if it doesn't always deliver. The cost of
having no recall process or one that is hard to execute is that we lose
credibility for having sound governance.


One last point from me that might be applicable to the discussion of
fractiousness. I don't think any of this discussion comes about because
anyone is trying to form a recall petition. I don't think there is anyone
expressing such extreme discontent or agitating to remove anyone. To the
contrary: the best time to discuss and work on the backstop procedures is
precisely when they are not needed.


Could all or some of this be put into a/the draft? Unquestionably. Is the
current draft perfect? No, but it is an early revision. Should the ideas be
split into separate drafts? Well that all depends on how smoothly the
discussion goes since history teaches us that the IETF is very good at using
one issue to block progress on the resolution of other issues.

Let's move forward.

But you raised one other point. That we shouldn't look at anything that
makes the process for starting a recall easier without also looking at the
whole procedure. I think the two can be decoupled, but I also think that if
you have concerns about the recall procedure (and clearly not just limited
to your responsibility to appoint a recall committee chair) you should
document them (probably in a draft) so that we can all work on them.

Thanks,
Adrian

>> Well, doesn't the draft offer three areas of concern, and address
>> them with specific proposed changes:
>> - Eligibility of IAB and IESG members and other Nomcom appointees
>
> It simply deletes this consideration, yet it quite explicitly notes
> how unseemly it is that an appointing nomcom member could
> participate.
> So it doesn't address the issue it raises.
>
>> - Eligibility of remote participants
>
> Only sort of.  It allows registered remote participants to count
> (good) but then sets up a rule in which people "have participated
> physically or remotely" without defining that term.  If ever there
> were an opportunity for confusion and arguments over what constitutes
> "participation", I'd like to hope that its first official duty would
> not be in determining how we pick everyone else to manage the
> organization.  The existing arrangement is quite clear: you register
> for and attend the meetings.  The new proposal adds a notion of
> participation that is at least in serious need of unpacking. 
>
>>> The main thing it does is make the procedure
>>> easier to start, but it also doesn't adjust the procedure at all.
>> 
>> I think that questioning the first of these has an interesting
oppositional
>> view: do you propose making it *harder* to start the procedure? Perhaps
we
>> could say all signatories must have first names starting with the letter
A
>> :-)
>
> I think this is a false alternative: it simply doesn't admit of the
> possibility that the _status quo_ is ok.  In any case, no, I do not
> propose making it harder.  What I oppose is making it easier without
> thinking about the procedure itself.
>
>> But seriously, what in the last n years suggests that starting the
>> procedure has been "easy enough"? Have we already been overrun
>> with recall petitions?
>
> This puts the burden of proof entirely in the wrong place.  In order
> to show that you need a threshold change, you'd need an argument that
> there was a case that should have caused a recall, but that didn't
> because the threshold couldn't be met. To show _that_, you'd at least
> need a definition of "should have caused a recall" that was
> uncontroversial.  None of that argumentation has been made.  Without
> it, I don't understand why anyone argues for a change in the required
> number.
>
> In other words, we have no evidence whether the procedure is "easy
> enough", but we have exactly the same evidence that it is hard enough
> or too hard.  It seems to me that most of the IETF wants to get their
> work done, and that they'll do that under many circumstances until the
> structure is manifestly unfit for purpose, at which point finding 20
> people ought to be a trivial hurdle to clear.
>
> This is also completely unrelated to the question of equity for remote
> participants, which AIUI is what got all this going.  
>
>> That is true. And it must be weighed against the damage caused by an
>> unaddressed need for a recall.
>> We actually don't have any evidence on either side of this issue and so
must
>> aim to strike a balance letting it be "reasonably" possible to start a
>> recall process
>
> I am not sure what to make of a defence of a change in the rules that
> starts with the proposition that there is no evidence for any of it.
> I will certainly grant the proposition that there is evidence neither
> of a need to change nor of adequacy of the current arrangement.  
>
>> We have no knowledge of how this works. But if I was on a recall
committee
>> and the petitioners sent me mail to say that they had changed their mind,
I
>> might talk to them and possibly conclude that the petition can be deemed
to
>> have failed.
>
> You might do anything at all, of course, and another person might do
> something else yet again.  The point is that good organizational
> procedures intended to be triggered frequently ought to be well
> understood.  The current draft proposes that 10 random people who sign
> up for free remote participation 3 times and "participate" in some
> unspecified way can hold the entire IETF so-called "leadership" to
> ransom, and we have no idea how those demands would be processed.  It
> seems like the sort of decision that requires careful community
> deliberation.  I don't see that this document has reached that
> threshold.
>
>> I tend to believe that resistance to fractiousness is best achieved by
open
>> accountability.
>
> And yet, here we are.  We have an organization that by any measure is,
> compared to just about anything I can name, super open and
> accountable.  Yet it appears to be beset by fractiousness.  One might
> be forgiven for thinking that the effort to lower the threshold for
> recall signatures is an effort that will aid that fractiousness.
>
>> For the other points we could consult some people a little older than us.
>> Was it an abundance of caution or a deliberate attempt to make it "too
hard
>> to execute"?
>
> Experience by scholars of history suggests that asking people who did
> a thing why they did it will quite often (but unpredictably) yield
> justifications that were not made explicit (or were even contradicted)
> at the time the thing happened.  We cannot invite the testimony of
> those who were there; we can invite only the testimony of those who
> remember being one of the people there.  Memory is imperfect.
>
>> But, assume there is a real need for a recall: in that case, I guess you
>> would be more than pleased to appoint a recall committee chair.
>
> No, but I would do my duty.
>
> It is a _lot of work_ to find a nomcom chair.  I have to canvass a lot
> of people.  I have to describe what I'm looking for.  And I have to
> use such reputation as I have to cajole people into accepting.
>
> A recall chair would be more contentious without the upside of the
> nomcom chair (e.g. that one appointed the right person).  So it is not
> clear to me how easy it will be to fill this position, and that seems
> like something we ought to take into account if we are going to make
> it easier to trigger this procedure both by increasing the class of
> people who can participate in the triggering and by lowering the
> numbers needed.
>
>> And, since there is a potential for a recall petition at any time
>
> Sure.  My very point was that the draft made that situation easier to
> happen without evidence about why such a change ought to happen.
>
>> Do you have some suggestions for a vermicide? 
>
> No, but it seems to me that this is a good example of why a WG needs
> to work on this.
>
>> I think applying "the right care" is absolutely spot on.
>
> I'm glad we're in agreement.
>
>> I disagree with you about a recall petition being a nuclear option.
>
> Lots of people do.  But a one-step procedure that moves from "20
> people support this" to "committee decides to fire or not" without
> intermediate steps is the sort of thing that works well when there are
> lots of informal, functioning ways for people to come to agreement.
> The excitement among some to reduce the threshold of signatures needed
> to invoke this procedure suggests to me that the informal, functioning
> ways may be fraying under current community strain.

v2.23.0 | Report a Bug | By Email