Stephen Farrell's No Objection on draft-ietf-httpbis-alt-svc-12: (with COMMENT)
"Stephen Farrell" <stephen.farrell@cs.tcd.ie> Tue, 01 March 2016 12:29 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 37FE01B2B32 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 1 Mar 2016 04:29:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.908
X-Spam-Level:
X-Spam-Status: No, score=-6.908 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.006, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wyYuJ-K3jr0A for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 1 Mar 2016 04:29:24 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AC2B81B2B2E for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 1 Mar 2016 04:29:24 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.80) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1aajMG-0001rf-D4 for ietf-http-wg-dist@listhub.w3.org; Tue, 01 Mar 2016 12:24:56 +0000
Resent-Date: Tue, 01 Mar 2016 12:24:56 +0000
Resent-Message-Id: <E1aajMG-0001rf-D4@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.80) (envelope-from <stephen.farrell@cs.tcd.ie>) id 1aajMB-0001qu-Jy for ietf-http-wg@listhub.w3.org; Tue, 01 Mar 2016 12:24:51 +0000
Received: from mail.ietf.org ([4.31.198.44]) by maggie.w3.org with esmtps (TLS1.2:DHE_RSA_AES_256_CBC_SHA256:256) (Exim 4.80) (envelope-from <stephen.farrell@cs.tcd.ie>) id 1aajM5-0000ag-Sd for ietf-http-wg@w3.org; Tue, 01 Mar 2016 12:24:50 +0000
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 572981B2B19; Tue, 1 Mar 2016 04:24:15 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-httpbis-alt-svc@ietf.org, Mike Bishop <michael.bishop@microsoft.com>, httpbis-chairs@ietf.org, michael.bishop@microsoft.com, ietf-http-wg@w3.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.15.0
Auto-Submitted: auto-generated
Message-ID: <20160301122415.25221.56881.idtracker@ietfa.amsl.com>
Date: Tue, 01 Mar 2016 04:24:15 -0800
Received-SPF: permerror client-ip=4.31.198.44; envelope-from=stephen.farrell@cs.tcd.ie; helo=mail.ietf.org
X-W3C-Hub-Spam-Status: No, score=-9.8
X-W3C-Hub-Spam-Report: AWL=3.099, BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, W3C_AA=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: maggie.w3.org 1aajM5-0000ag-Sd 18db65a7e6e2d24ac3585cc737f6b3e1
X-Original-To: ietf-http-wg@w3.org
Subject: Stephen Farrell's No Objection on draft-ietf-httpbis-alt-svc-12: (with COMMENT)
Archived-At: <http://www.w3.org/mid/20160301122415.25221.56881.idtracker@ietfa.amsl.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/31127
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Stephen Farrell has entered the following ballot position for draft-ietf-httpbis-alt-svc-12: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-httpbis-alt-svc/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- - If TLS1.3 continues to have 0rtt replayable early-data, could that interact badly with Alt-Svc? Or what about false-start? For example, if such a combination meant that an otherwise functional replay detection scheme would fail to spot a replay that would be bad. This is not a DISCUSS, as neither TLS1.3 nor false-start are formally "done" so blocking this for that reason would be "odd";-) However, both are implemented or will be, so I would love to chat about it and that might lead to some new security considerations text, here or in a TLS document. - Does this still all work for opportunistic security for HTTP? If not, why not? Note: I'm not asking if the WG have reached consensus on oppo, rather I'd like to be reassured that if they do, this will still work for that. I think that's all ok, though, right? - section 3: with "clear" you say alternatives are to be invalidated. Does that mean anything about cached resources? I assume not, but just checking. - section 5: I wondered why you didn't include the ALPN identifier here? - 9.2: What does "might also choose" mean and which "other requirements" have you in mind? That's very vague. - 9.5: What are you telling me with the last para?
- Stephen Farrell's No Objection on draft-ietf-http… Stephen Farrell
- Re: Stephen Farrell's No Objection on draft-ietf-… Mark Nottingham
- Re: Stephen Farrell's No Objection on draft-ietf-… Stephen Farrell
- Re: Stephen Farrell's No Objection on draft-ietf-… Patrick McManus
- Re: Stephen Farrell's No Objection on draft-ietf-… Erik Nygren
- Re: Stephen Farrell's No Objection on draft-ietf-… Mark Nottingham
- Re: Stephen Farrell's No Objection on draft-ietf-… Martin Thomson