IETF Logo Mail Archive

Re: [eppext] New draft for keyrelay available

Rik Ribbers <rik.ribbers@sidn.nl> Fri, 30 January 2015 09:35 UTC

Return-Path: <rik.ribbers@sidn.nl>
X-Original-To: eppext@ietfa.amsl.com
Delivered-To: eppext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E77DA1A8A77 for <eppext@ietfa.amsl.com>; Fri, 30 Jan 2015 01:35:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.295
X-Spam-Level:
X-Spam-Status: No, score=0.295 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, HELO_EQ_NL=0.55, HOST_EQ_NL=1.545, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_DKIM_INVALID=0.01, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tNllTdtQyWIz for <eppext@ietfa.amsl.com>; Fri, 30 Jan 2015 01:35:04 -0800 (PST)
Received: from arn2-kamx.sidn.nl (kamx.sidn.nl [IPv6:2a00:d78:0:147:94:198:152:69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 18A051A8A6D for <eppext@ietf.org>; Fri, 30 Jan 2015 01:35:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; d=sidn.nl; s=sidn_nl; c=relaxed/relaxed; h=from:to:subject:thread-topic:thread-index:date:message-id:references:in-reply-to:accept-language:content-language:x-ms-has-attach:x-ms-tnef-correlator:x-originating-ip:content-type:mime-version; bh=uc/xmQKjtBv7Ps/NHnBRu975qiGTwoDQ76tBmqTipn4=; b=OiwdpHAJetZLofU5wCtfTpArqwQ6gAMaUcdqHOiKM3BlVeWlteEJc/d9vB8aQxoYBXztKvJq4lBNq6fykHnZBqUAg35HdkGeggUQGPSlZJZoefBmVGJM95ejNwm45Qr9B4abGnRoDbd/IrD/UPHTPJZ1s8+dV84dpqaTb5+bCtw=
Received: from kahubcasn01.SIDN.local ([192.168.2.73]) by arn2-kamx.sidn.nl with ESMTP id t0U9Z2Gw016529-t0U9Z2H0016529 (version=TLSv1.0 cipher=AES256-SHA bits=256 verify=CAFAIL); Fri, 30 Jan 2015 10:35:02 +0100
Received: from KAMBX2.SIDN.local ([fe80::b1fd:88d9:e136:9655]) by kahubcasn01 ([192.168.2.73]) with mapi id 14.03.0174.001; Fri, 30 Jan 2015 10:34:59 +0100
From: Rik Ribbers <rik.ribbers@sidn.nl>
To: "'Ulrich Wisser'" <ulrich@wisser.se>, "eppext@ietf.org" <eppext@ietf.org>
Thread-Topic: [eppext] New draft for keyrelay available
Thread-Index: AdArSKQ+n3FmCyCWSq6l2+OWlzutMwA+eoEAALUP4qADU33BgAACiZ0g
Date: Fri, 30 Jan 2015 09:34:59 +0000
Message-ID: <C80127C588F8F2409E2B535AF968B768B928B7BB@kambx2.SIDN.local>
References: <C80127C588F8F2409E2B535AF968B768B927CDA8@kambx2.SIDN.local> <0ED7237B-F4E8-45D7-971F-1625350DB0FC@verisign.com> <C80127C588F8F2409E2B535AF968B768B9280B52@kambx2.SIDN.local> <CAJ9-zoW6-2Rpo12m5tGWTKRhTfR+V2UfQSHZefOL3t1Rv4nM6w@mail.gmail.com>
In-Reply-To: <CAJ9-zoW6-2Rpo12m5tGWTKRhTfR+V2UfQSHZefOL3t1Rv4nM6w@mail.gmail.com>
Accept-Language: nl-NL, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [192.168.2.153]
Content-Type: multipart/related; boundary="_004_C80127C588F8F2409E2B535AF968B768B928B7BBkambx2SIDNlocal_"; type="multipart/alternative"
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/eppext/jcgcZ1br1OoD3-FL178Pgxxt6Ic>
Subject: Re: [eppext] New draft for keyrelay available
X-BeenThere: eppext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: EPPEXT <eppext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/eppext>, <mailto:eppext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/eppext/>
List-Post: <mailto:eppext@ietf.org>
List-Help: <mailto:eppext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/eppext>, <mailto:eppext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Jan 2015 09:35:07 -0000

Hello Ullrich,

Thanks for your response, it looks like we’re getting somewhere. Like I said in Honolulu James and I don’t agree but we need others to share their thoughts on this and that is starting to happen.

Hopefully more people express there opinion on the issue and get the draft moving again.

Kind regards,

Rik Ribbers

From: EppExt [mailto:eppext-bounces@ietf.org] On Behalf Of Ulrich Wisser
Sent: vrijdag 30 januari 2015 10:14
To: eppext@ietf.org
Subject: Re: [eppext] New draft for keyrelay available

Hi!

At first I would like to point out that both yours and James ideas are not that far apart.
Introduction of a new temporary object which is send from registrar to registrar via the registry.
That would obviously need some changes to current systems at the registry and registrars.
I believe we should keep the needed changes as small as possible.
Therefor I think that James idea to use existing commands is the way to go.

Kind regards

Ulrich


2015-01-13 11:09 GMT+01:00 Rik Ribbers <rik.ribbers@sidn.nl<mailto:rik.ribbers@sidn.nl>>:
James,

Thank you for the feedback.

My feedback on issue 1 and 2:

I get a feeling we are running in circles. All arguments have been mentioned in previous posts on this mailinglist. So what it boils down to is what the rest of the WG thinks of this. So I politely , but  urgently ask the other members on this list to respond to the question: Should we reconsider extending EPP with a new command and use the object or protocol extension James proposes (see http://www.ietf.org/mail-archive/web/eppext/current/msg00241.html) If there are no responses the authors and the WG cannot make progress on this document.

For issue 3 and 4: We will incorporate the changes in the next version of the draft.

Gr,
Rik



From: Gould, James [mailto:JGould@verisign.com<mailto:JGould@verisign.com>]
Sent: vrijdag 9 januari 2015 15:29
To: Rik Ribbers
Cc: eppext@ietf.org<mailto:eppext@ietf.org>
Subject: Re: [eppext] New draft for keyrelay available

Rik,

Below is my feedback to the updated draft:


  1.  As noted in past mailing list comments and in person discussions, I don’t agree with the mixing of a protocol extension for the command and an object mapping for the poll response.  I have provided examples of implementing this draft using either an object mapping or a command response extension of domain.  In it’s current form, I’m assuming that the EPP greeting and login would include the urn:ietf:params:xml:ns:relay-1.0 URI in both a <objURI> and an <extURI> element.  I highly recommend that you reconsider this.
  2.  You are making keyrelay more generic by creating a new extension point of the data to relay, with the key data being one concrete type.  I still believe that creating a Key Relay Object Mapping would have been the best route to go, since the creation of a Key Relay object would add it into the poll queue for consumption by the losing registrar.  The only command supported by the mapping is create along with the poll info response.  The create is creating a transient object.  If other types of data need to be “relayed”, a similar approach could be taken without having to add an additional layer of extensibility.  A new EPP object mapping would be defined for the new type.  The key relay along with any other relay objects will be properly exposed in the EPP greeting and login <objURI> elements.
  3.  Nit in 3.1.1, “An OPTIONAL <clTRID> (client transaction identifier) element that MAY be used to uniquely identify the command to the registrar”, should reference client instead of registrar.
  4.  What is the expected response to the <relay> command?  I’m assuming that it’s as EPP response as defined in section 2.6 of RFC 5730 where the <clTRID> value is set with the <r:clTRID> value associated with the command if supplied by the client.

Regards,


—



JG

[cid:image001.png@01D03C77.C515F630]

James Gould
Distinguished Engineer
jgould@Verisign.com<http://jgould@Verisign.com>

703-948-3271<tel:703-948-3271>
12061 Bluemont Way
Reston, VA 20190

VerisignInc.com<http://VerisignInc.com>

On Jan 8, 2015, at 8:41 AM, Rik Ribbers <rik.ribbers@sidn.nl<mailto:rik.ribbers@sidn.nl>> wrote:

All,

As you (may) have noticed we submitted a new version of the keyrelay draft. In this draft we tried to solve all the open issues, remarks and feedback we received.

The major  changes are:

  1.  Introducing the <relay> command, and thus seperating the data and
       the command.

   2.  Updated the Introduction, describing the general use of relay vs
       the intended use-case of relaying DNSSEC key data.

   3.  Restructuring the document to make it more inline with existing
       EPP extensions.

In the end it has become a major rewrite and as always feedback is welcome.

Kind regards,
Rik Ribbers
_______________________________________________
EppExt mailing list
EppExt@ietf.org<mailto:EppExt@ietf.org>
https://www.ietf.org/mailman/listinfo/eppext


_______________________________________________
EppExt mailing list
EppExt@ietf.org<mailto:EppExt@ietf.org>
https://www.ietf.org/mailman/listinfo/eppext

v2.8.7 | Report a Bug | By Email