Re: [eppext] [IANA #814915] INSERT “Extensible Provisioning Protocol Mapping: Defensive Registration"
"Gould, James" <JGould@verisign.com> Fri, 03 April 2015 16:15 UTC
Return-Path: <JGould@verisign.com>
X-Original-To: eppext@ietfa.amsl.com
Delivered-To: eppext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id B09241AC424
for <eppext@ietfa.amsl.com>; Fri, 3 Apr 2015 09:15:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.289
X-Spam-Level:
X-Spam-Status: No, score=-2.289 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3,
RCVD_IN_DNSWL_LOW=-0.7, T_FILL_THIS_FORM_SHORT=0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id 7a5TA8UuipVG for <eppext@ietfa.amsl.com>;
Fri, 3 Apr 2015 09:15:14 -0700 (PDT)
Received: from mail-qg0-f99.google.com (mail-qg0-f99.google.com
[209.85.192.99])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id E50E31AC41C
for <eppext@ietf.org>; Fri, 3 Apr 2015 09:15:13 -0700 (PDT)
Received: by qgdz60 with SMTP id z60so6379919qgd.3
for <eppext@ietf.org>; Fri, 03 Apr 2015 09:15:13 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20130820;
h=x-gm-message-state:from:to:cc:subject:thread-topic:thread-index
:date:message-id:references:in-reply-to:accept-language
:content-language:content-type:mime-version;
bh=z4/XxH4myMGpLr9fLSy9PonfCydxQcIM4CYgdpEog00=;
b=eSTPhwzdV+4TK8PyNUXF5rITUge1mfzv/R5GarUWTvHai0iTeaoVkZ9HWWvvf4JLDs
uk9SvWQBowUzOS8H0ecGeLSjI+VUfHbIK74yCUWmmelRpAWtjiJAeKxpp/Zjv+avKDl2
aLDTwPeysf9q5k0n4aPqMk6b6c6KIjrLAf8yVO6ZXmO63Z7G4iuU6dgUHLNnlNAX6GYf
/RhIiDai8BbYpctn6GfXF1GyQbkBFgMS7k0+Mhlxpox551S8kEsR/EzbsOmlgX14+CfF
eafilBAazE9INYCahjh0Mogf3f0TKjnD8pL+DAzt5KdP48o8WiibnSOuHO1yo/jczsCT
39Xg==
X-Gm-Message-State: ALoCoQmd3ZfF2VvKfZ4voDgSY4r6J74Wtz8zxcUo6Y5kNVmiD0vnzRwqQa5uycD/H4Btts6p/3jWlwcQkjiMq3ReQHsNP2GjLg==
X-Received: by 10.140.49.9 with SMTP id p9mr3364712qga.51.1428077713018;
Fri, 03 Apr 2015 09:15:13 -0700 (PDT)
Received: from brn1lxmailout01.verisign.com (brn1lxmailout01.verisign.com.
[72.13.63.41])
by mx.google.com with ESMTPS id cd6sm2011369qcb.2.2015.04.03.09.15.12
(version=TLSv1 cipher=RC4-SHA bits=128/128);
Fri, 03 Apr 2015 09:15:12 -0700 (PDT)
X-Relaying-Domain: verisign.com
Received: from BRN1WNEXCHM01.vcorp.ad.vrsn.com (brn1wnexchm01 [10.173.152.255])
by brn1lxmailout01.verisign.com (8.13.8/8.13.8) with ESMTP id t33GFB8e002473
(version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL);
Fri, 3 Apr 2015 12:15:11 -0400
Received: from BRN1WNEXMBX01.vcorp.ad.vrsn.com ([::1]) by
BRN1WNEXCHM01.vcorp.ad.vrsn.com ([::1]) with mapi id 14.03.0174.001; Fri, 3
Apr 2015 12:15:11 -0400
From: "Gould, James" <JGould@verisign.com>
To: Gavin Brown <gavin.brown@centralnic.com>
Thread-Topic: =?utf-8?B?W2VwcGV4dF0gW0lBTkEgIzgxNDkxNV0gSU5TRVJUIOKAnEV4dGVuc2libGUg?=
=?utf-8?B?UHJvdmlzaW9uaW5nIFByb3RvY29sIE1hcHBpbmc6IERlZmVuc2l2ZSBSZWdp?=
=?utf-8?Q?stration"?=
Thread-Index: AQHQbilbZPjCbRuKD0m1bCM/mmQgow==
Date: Fri, 3 Apr 2015 16:15:10 +0000
Message-ID: <5F2AD05E-9082-429A-A927-DDD16B91F3E1@verisign.com>
References: <RT-Ticket-814915@icann.org>
<7F30D89F-28F5-47C1-B9B8-C6B2D032F45C@verisign.com>
<rt-4.2.9-13014-1427128946-1178.814915-9-0@icann.org>
<831693C2CDA2E849A7D7A712B24E257F49F89AE6@BRN1WNEXMBX01.vcorp.ad.vrsn.com>
<551E814F.8040700@centralnic.com>
In-Reply-To: <551E814F.8040700@centralnic.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [10.173.152.4]
Content-Type: multipart/related;
boundary="_004_5F2AD05E9082429AA927DDD16B91F3E1verisigncom_";
type="multipart/alternative"
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/eppext/t4rhTU1isXJ1DXXJvcjgJXdKgkc>
Cc: "Hollenbeck, Scott" <shollenbeck@verisign.com>,
"eppext@ietf.org" <eppext@ietf.org>
Subject: Re: [eppext]
=?utf-8?q?=5BIANA_=23814915=5D_INSERT_=E2=80=9CExtensibl?=
=?utf-8?q?e_Provisioning_Protocol_Mapping=3A_Defensive_Registration=22?=
X-BeenThere: eppext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: EPPEXT <eppext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/eppext>,
<mailto:eppext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/eppext/>
List-Post: <mailto:eppext@ietf.org>
List-Help: <mailto:eppext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/eppext>,
<mailto:eppext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Apr 2015 16:15:20 -0000
Gavin, Thanks for the review. Below is my review feedback. — JG [cid:77031CC3-BE7A-4188-A95F-D23115A30A4D@vcorp.ad.vrsn.com] James Gould Distinguished Engineer jgould@Verisign.com 703-948-3271 12061 Bluemont Way Reston, VA 20190 VerisignInc.com<http://VerisignInc.com> On Apr 3, 2015, at 8:02 AM, Gavin Brown <gavin.brown@centralnic.com<mailto:gavin.brown@centralnic.com>> wrote: Here is my review as DE: 1. This extension seems to define functionality specific to the .name TLD. Familiarity with the particulars of that TLD's business model seems to be assumed, but for interoperability purposes, an explanation of the context that this extension was designed for would be useful. This extension was specifically created for the .name TLD, but the concept could be made for a more general purpose application. To provide some background, .name is meant for personal registrations, where I could register jim.gould.name or I could register the email forwarding object jim@gould.name<mailto:jim@gould.name>, so trademark holders were not allowed to register their trademarks. Support for second level domain names were added later. To protect the trademarks, a defensive registration object could be used to block a specific set of domain names and matching email forwarding objects. This is pretty much a mechanism to create a new set of reserved names but as provisioning objects by trademark holders. There are two forms of defensive registrations, standard defensive registration like “acme.computer" that would block the registration of either the domain “acme.computer.name" or the email forwarding object "acme@computer.name<mailto:acme@computer.name>" and premium defensive registration like “acme” that would block the domain names “*.acme.name”, "acme.*.name”, “acme.name” (once second level was supported), and the matching set of e-mail forwarding objects "*@acme.name”name”, “acme@*.name”. I hope this helps with your understanding. 2. The specification appears to create a new "domain-like" object mapping. I wonder whether any consideration was made of extending RFC 5731 domain objects instead, and what the basis of the decision was. Defensive Registration objects may have domain labels associated with them (2 labels for standard defensive registration and 1 label for premium defensive registration), but that is just about the only similarity that exists with domain names. Defensive Registration objects are first class provisioning objects with a different purpose and life cycle from domain names, since they block the registration of both domain names and email forwarding objects. 3. It's not clear whether <defReg:name> values exist in the same namespace as RFC 5731 domains. Could a server contain a defReg object whose <defReg:name> is the same as the <domain:name> property of an RFC5731 domain? This goes back to my comment in #1 above about the lack of context. The <defReg:name> element is not the same thing as the <domain:name> element of RFC 5731. Yes, there are domain labels, but there is no TLD used with <defReg:name> since there are multiple forms of defensive registrations (standard and premium). I hope my feedback to #1 helps with #3 as well. 3. Section 3.2.1 describes how the extension can be used in conjunction with the "idnLang" extension; however, this extension is not listed in the references. I made note of the lack of the reference to the idnLang extension, which is defined at http://www.verisigninc.com/assets/epp-sdk/verisign_epp-extension_idn-lang_v00.html for clarification. 4. As others have, I'd also like to voice my concerns about the IP terms in the Legal Disclaimer. The purpose of registering an EPP exension in the registry is to facilitate harmonisation and interoperability, and yet the Legal Disclaimer seems designed to discourage that. Same response to the concern over the legal disclaimer. 5. The specification seems to meet some of the requirements in RFC 7451 Section 2.1.1, in that, in that it meets the guidelines in RFC 3735. However, there is no comentary on Security or Privacy considerations. Since the defReg object mapping is very similar to RFC 5731, I would expect to see some discussion of authorisation and controls on disclosure of authInfo codes. The Defensive Registration mapping was defined off of the language in the EPP drafts 04/07, which I assume did not include the Security Considerations section included in the RFC’s today. I will make note of the need to update the draft to include this section. G. On 23/03/2015 17:39, Hollenbeck, Scott wrote: Submitted for DE evaluation. Scott -----Original Message----- From: Amanda Baber via RT [mailto:iana-prot-param-comment@iana.org] Sent: Monday, March 23, 2015 12:42 PM Cc: Hollenbeck, Scott Subject: [IANA #814915] INSERT “Extensible Provisioning Protocol Mapping: Defensive Registration" #8 of 18. -----BEGIN FORM----- Name of Extension: “Extensible Provisioning Protocol Mapping: Defensive Registration" Document Status: Informational Reference: http://www.verisigninc.com/assets/defensive-registration-mapping.pdf Registrant Name and Email Address: VeriSign Inc., epp-registry@verisign.com TLDs: .name IPR Disclosure: None Status: Active Notes: None -----END FORM----- — JG James Gould Distinguished Engineer jgould@Verisign.com 703-948-3271 12061 Bluemont Way Reston, VA 20190 VerisignInc.com “This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed, and may contain information that is non-public, proprietary, privileged, confidential and exempt from disclosure under applicable law or may be constituted as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this message in error, notify sender immediately and delete this message immediately.” Download BF09FAA4-32D8-46E0-BED0-CD72F43BD6E0[81].png image/png 4KiB Image not shown because display is disabled in system configuration. _______________________________________________ EppExt mailing list EppExt@ietf.org https://www.ietf.org/mailman/listinfo/eppext -- Gavin Brown Chief Technology Officer CentralNic Group plc (LSE:CNIC) Innovative, Reliable and Flexible Registry Services for ccTLD, gTLD and private domain name registries https://www.centralnic.com/ CentralNic Group plc is a company registered in England and Wales with company number 8576358. Registered Offices: 35-39 Moorgate, London, EC2R 6AR. _______________________________________________ EppExt mailing list EppExt@ietf.org https://www.ietf.org/mailman/listinfo/eppext
- [eppext] FW: [IANA #814915] INSERT “Extensible Pr… Hollenbeck, Scott
- Re: [eppext] [IANA #814915] INSERT “Extensible Pr… Alexander Mayrhofer
- Re: [eppext] [IANA #814915] INSERT “Extensible Pr… Gould, James
- Re: [eppext] FW: [IANA #814915] INSERT “Extensibl… Gavin Brown
- Re: [eppext] [IANA #814915] INSERT “Extensible Pr… Gould, James
- Re: [eppext] [IANA #814915] INSERT “Extensible Pr… Hollenbeck, Scott