IETF Logo Mail Archive

Re: [Iasa20] Changes to draft-ietf-iasa2-trust-update wrt relationship to 4071/4371

Joseph Lorenzo Hall <joe@cdt.org> Thu, 10 January 2019 22:49 UTC

Return-Path: <jhall@cdt.org>
X-Original-To: iasa20@ietfa.amsl.com
Delivered-To: iasa20@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 02D281312B7 for <iasa20@ietfa.amsl.com>; Thu, 10 Jan 2019 14:49:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cdt.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IZn_QrOuERVQ for <iasa20@ietfa.amsl.com>; Thu, 10 Jan 2019 14:49:28 -0800 (PST)
Received: from mail-oi1-x231.google.com (mail-oi1-x231.google.com [IPv6:2607:f8b0:4864:20::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 19AB41312B1 for <iasa20@ietf.org>; Thu, 10 Jan 2019 14:49:28 -0800 (PST)
Received: by mail-oi1-x231.google.com with SMTP id u18so10678270oie.10 for <iasa20@ietf.org>; Thu, 10 Jan 2019 14:49:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cdt.org; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=0zWNMzQ8Mve3Gwm8uZuMZiJIxrIKryb0xUw/dXBYQE4=; b=c0SIBmtIxQmvMSNssETJgO4ZoUOacqebzh+HlZjlUqpNV591/pGW7Iq0pwVXSKxEW7 aIoeSEc1/mPVq4oZS6GNOffmZoJoeoXm1jAnuATUd9wjfpFDna/uehUcxPpkc91/aWs2 V+Pfc2tK2UKB6bjqRVBKJnMuYh6zBu/gf7MW4=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=0zWNMzQ8Mve3Gwm8uZuMZiJIxrIKryb0xUw/dXBYQE4=; b=FRDpFpxBK57vYXljSr3bIfVO2vMjxaoBFb7n+BgFBULcwPtQY61mq7cpYy3D3LBP2g 0Zx1P7x4iA38F37CxdtarvlfdygL6q1FfEXWjhpHCecOTAO7UmElRAwbAPqBAf5Nines R2rFO/wyCv8AsKAHBz0t8sr7k6ciG+QKPS2TxSm1/La61mrjcNc0oF2AZQ0/vKAKf4FA 0Ya4LE2P3xJPV0X7xe8kp4CBPKvEalWv8TQoKTg5VjmLk+MlNFJmDBLK3twyeVkybCXW Ev4caf8qPG/IXGa0N7cxbf4H5U0YBHaM16WMCX9wWY1CpLFrge3pXxNKZEW6et2ZV5uv bmsw==
X-Gm-Message-State: AJcUukc+Ip4qNEe3pZsZsaXzNm+reoEWiUTNGC9WT9sKJKV8MCV62gIR i1z8ga5pBUFloTQ4qfg2xcbPh8naUs61fFrOAk272w==
X-Google-Smtp-Source: ALg8bN5HARkqmWVfFTQYhLEXDnxxeDf/LrgXUOPaVWv3c6i1bid45xHRDDirZkl3YUJ3JTud67bWch2PIHXPutT98ww=
X-Received: by 2002:aca:293:: with SMTP id 141mr7974573oic.28.1547160567028; Thu, 10 Jan 2019 14:49:27 -0800 (PST)
MIME-Version: 1.0
References: <47518DE2-DD85-4B50-B720-48914242380F@piuha.net> <CDD0FC5B-C9B6-4173-B505-87BDC968DDA4@cable.comcast.com> <39DC64C7-B608-49C8-848A-B1D1D148761F@vigilsec.com>
In-Reply-To: <39DC64C7-B608-49C8-848A-B1D1D148761F@vigilsec.com>
From: Joseph Lorenzo Hall <joe@cdt.org>
Date: Thu, 10 Jan 2019 17:49:16 -0500
Message-ID: <CABtrr-VyPOPqpoa8Xj=J+BhPYdVpumvKyJZOtZfLRr0J82iEWw@mail.gmail.com>
To: Russ Housley <housley@vigilsec.com>
Cc: IASA 2 WG <iasa20@ietf.org>, Jari Arkko <jari.arkko@piuha.net>, "Livingood, Jason" <Jason_Livingood@comcast.com>
Content-Type: multipart/alternative; boundary="00000000000002372f057f2264a1"
Archived-At: <https://mailarchive.ietf.org/arch/msg/iasa20/kzz-9pqntfnKYinprHNJmWP0OFo>
Subject: Re: [Iasa20] Changes to draft-ietf-iasa2-trust-update wrt relationship to 4071/4371
X-BeenThere: iasa20@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: =?iso-8859-1?q?Discussions_relating_to_reorganising_the_IETF_administrative_structures_in_the_so_called_=93IASA_2=2E0=94_project=2E?= <iasa20.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/iasa20>, <mailto:iasa20-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/iasa20/>
List-Post: <mailto:iasa20@ietf.org>
List-Help: <mailto:iasa20-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/iasa20>, <mailto:iasa20-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Jan 2019 22:49:31 -0000

Yes, having just looked at them both, I prefer b too.

On Thu, Jan 10, 2019 at 15:34 Russ Housley <housley@vigilsec.com> wrote:

> I tend to prefer Choice B.  I think that the context provided by the two
> additional paragraphs is useful.
>
> Russ
>
>
> > On Jan 10, 2019, at 9:22 AM, Livingood, Jason <
> Jason_Livingood@comcast.com> wrote:
> >
> > Thanks, Jari! Absent substantial WG feedback, I recommend you choose one
> or the other by the end of this weekend based on your judgement.
> >
> > Jason
> >
> > On 1/10/19, 3:35 AM, "iasa20 on behalf of Jari Arkko" <
> iasa20-bounces@ietf.org on behalf of jari.arkko@piuha.net> wrote:
> >
> >    This draft was approved last year, and is in the RFC Editor’s queue.
> There’s been a few suggestions about the draft, however, from Brian
> Carpenter and others. See for instance the thread on RFC 4071bis.
> >
> >    One of the questions relates to whether the draft should now update
> RFC 4071 given that it is separately being replaced by the 4071bis work.
> Secondly, there were differing opinions with regards to whether
> draft-ietf-iasa2-trust-update should entirely replace RFC 4371 or just
> update it (as the current version does).
> >
> >    I do not personally have a very strong opinion either way on these
> issues. Originally, when we wrote the update draft its goal was to just
> change the trustee selection process, nothing else, hence we did not
> replace RFC 4371 even if it didn’t have much content. And even if the draft
> updated RFC 4071 I think it is fine for other parts of the overall system
> change later, including replacing entire 4071, as long as in the end the
> new work refers to our draft. However, I can also see that less documents
> and less complex RFC-to-RFC relationships might be good. And I definitely
> agree with Brian that we need to get the BCP structure and BCP numbers
> correct.
> >
> >    With that as a background, I have prepared two alternate versions,
> sending them for your comments here:
> >
> >    * Version “a” (maybe “a" for Alissa as she initially suggested this
> path forward as one of the options). The is a minimal change to updates,
> references. This is the least change option.
> >
> >      See
> https://arkko.com/ietf/iasa20/draft-ietf-iasa2-trust-update-diff-a.html
> >
> >    * Version “b” (for the Brian Carpenter Extended Edition). This is a
> more complete draft. This is a slightly bigger change, but results in more
> self-contained end-result. It still does not change anything about the
> trust, but copies a paragraph of text from RFC 4371 to the draft.
> >
> >      See
> https://arkko.com/ietf/iasa20/draft-ietf-iasa2-trust-update-diff-b.html
> >
> >    Some of this might or might not be doable as RFC Editor instructions
> rather than re-approval of the changes in the IETF list and at the IESG.
> Putting that question aside for the moment, lets first figure out what we
> want first. What would folks prefer?
> >
> >    Jari
> >
> >    _______________________________________________
> >    iasa20 mailing list
> >    iasa20@ietf.org
> >    https://www.ietf.org/mailman/listinfo/iasa20
> >
> >
> > _______________________________________________
> > iasa20 mailing list
> > iasa20@ietf.org
> > https://www.ietf.org/mailman/listinfo/iasa20
>
> _______________________________________________
> iasa20 mailing list
> iasa20@ietf.org
> https://www.ietf.org/mailman/listinfo/iasa20
>
-- 
Joseph Lorenzo Hall
Chief Technologist, Center for Democracy & Technology [https://www.cdt.org]
1401 K ST NW STE 200, Washington DC 20005-3497
e: joe@cdt.org, p: 202.407.8825, pgp: https://josephhall.org/gpg-key
Fingerprint: 3CA2 8D7B 9F6D DBD3 4B10  1607 5F86 6987 40A9 A871

v2.8.7 | Report a Bug | By Email