Re: [Iasa20] Changes to draft-ietf-iasa2-trust-update wrt relationship to 4071/4371

Martin Thomson <mt@lowentropy.net> Thu, 10 January 2019 22:56 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: iasa20@ietfa.amsl.com
Delivered-To: iasa20@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB2171312BD for <iasa20@ietfa.amsl.com>; Thu, 10 Jan 2019 14:56:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=lx/tUo1j; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=lImlghvq
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IoOPX8VuAamo for <iasa20@ietfa.amsl.com>; Thu, 10 Jan 2019 14:56:37 -0800 (PST)
Received: from new2-smtp.messagingengine.com (new2-smtp.messagingengine.com [66.111.4.224]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AF726131058 for <iasa20@ietf.org>; Thu, 10 Jan 2019 14:56:37 -0800 (PST)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailnew.nyi.internal (Postfix) with ESMTP id D464C1564B for <iasa20@ietf.org>; Thu, 10 Jan 2019 17:56:36 -0500 (EST)
Received: from web4 ([10.202.2.214]) by compute1.internal (MEProxy); Thu, 10 Jan 2019 17:56:36 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=message-id:from:to:mime-version:content-transfer-encoding :content-type:references:subject:date:in-reply-to; s=fm1; bh=eeI Y3IfixKf0tIyvCvWqqEOd/I2Waa/nFoHEkV+zaxg=; b=lx/tUo1jMBXbPrpAwrm Rt3y2vP2JJAtXBVhY00a7QU18mOZEUA7SPfNOcfCrTThD++zm/dUoVxTKkLIn94c mUYGkn78SZ+HKPR+6e9rVbU2hzVcyqEowt2k+tLyefDNBankIatCi0nyh+UTcZkQ rg1TC/ty4L9uP3cGNiDk2824Nr9csOcvO9KxZZmvcA9VXuHdXPs3OF2VtopGw6Zw qgxN5Fq0pBtGTw9MIXzDOokWvouBXvWO9eDw/K/GKf29jYdkE9HzvdeBA27H7t7Z wVVuFmTcKYPVS+dWV5W2mGVMCFgv26B7HAen9p46lgsHHcQhGl3sitPWDA1sEwCq idw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; bh=eeIY3IfixKf0tIyvCvWqqEOd/I2Waa/nFoHEkV+za xg=; b=lImlghvqi7ahBaH/EJWoe4wisvgjzKemy/4uCOtOM4UsuTdRuFuAZsGNl pOHKlMfey1Bo05Slp+zYrCrZ3FLJObTsBESZJE6+bB7SyFuz5SlPEZZLpicL121z Xc8hbXaE7Wz0hZS6Siyl0NHOVJJnYJooraYJ/XpNks1QxZw30tK0bGdP0o5gRjkv XASBgXvpanC8EVbJnpr40EFZXp/kHkDOXlAaFKbr2v0fAkdseHGoF7tgFxB1Zjrr u2zcxGTwmb7mLGBSfFhZutviUhkqtbAu45oFtR72u2BpQMWmf5mZ0fJxCdqZCtxH Ind7J4odcsZVoKGmuvoT9fPsUYAMA==
X-ME-Sender: <xms:o803XDHZ1WWf69cZoRzMCaEOmYoxgciMQWEnq0cs0AY8IdpbLhoUHQ>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedtledrfeeggddtfecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfhuthenuceurghilhhouhhtmecufedt tdenucenucfjughrpefkhffvggfgtgfofhfuffgjsehtqhertdertdejnecuhfhrohhmpe forghrthhinhcuvfhhohhmshhonhcuoehmtheslhhofigvnhhtrhhophihrdhnvghtqeen ucffohhmrghinheptgguthdrohhrghdpjhhoshgvphhhhhgrlhhlrdhorhhgpdgrrhhkkh hordgtohhmpdhivghtfhdrohhrghenucfrrghrrghmpehmrghilhhfrhhomhepmhhtsehl ohifvghnthhrohhphidrnhgvthenucevlhhushhtvghrufhiiigvpedt
X-ME-Proxy: <xmx:o803XM5mJ6zRth9RbpOewK5NmdN27mKb_TQwK-4Nyf1EdPK5NBMb1w> <xmx:o803XJkSspAu5BQKS_G-3BeY6un3xoNvukR3mXd4CK-0tOroNSBIUw> <xmx:o803XH5iCJwHN9I-HGU-_wpLMjhOuUFt7aQwDyYBcsZx9hX5gQL9Cg> <xmx:pM03XI3KsA7FfHPOK274hgRFlMUs8_zR_aIvBHv5buzLO74nHzgInw>
Received: by mailuser.nyi.internal (Postfix, from userid 99) id 9D4DEBA784; Thu, 10 Jan 2019 17:56:35 -0500 (EST)
Message-Id: <1547160995.1670325.1631377344.268D9559@webmail.messagingengine.com>
From: Martin Thomson <mt@lowentropy.net>
To: iasa20@ietf.org
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"
X-Mailer: MessagingEngine.com Webmail Interface - ajax-5ae1f753
References: <47518DE2-DD85-4B50-B720-48914242380F@piuha.net> <CDD0FC5B-C9B6-4173-B505-87BDC968DDA4@cable.comcast.com> <39DC64C7-B608-49C8-848A-B1D1D148761F@vigilsec.com> <CABtrr-VyPOPqpoa8Xj=J+BhPYdVpumvKyJZOtZfLRr0J82iEWw@mail.gmail.com>
Date: Fri, 11 Jan 2019 09:56:35 +1100
In-Reply-To: <CABtrr-VyPOPqpoa8Xj=J+BhPYdVpumvKyJZOtZfLRr0J82iEWw@mail.gmail.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/iasa20/lF28fl0EazYXhXXVqwWr7ekZHio>
Subject: Re: [Iasa20] Changes to draft-ietf-iasa2-trust-update wrt relationship to 4071/4371
X-BeenThere: iasa20@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: =?iso-8859-1?q?Discussions_relating_to_reorganising_the_IETF_administrative_structures_in_the_so_called_=93IASA_2=2E0=94_project=2E?= <iasa20.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/iasa20>, <mailto:iasa20-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/iasa20/>
List-Post: <mailto:iasa20@ietf.org>
List-Help: <mailto:iasa20-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/iasa20>, <mailto:iasa20-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Jan 2019 22:56:40 -0000

Nit: HTTPS URIs have a trailing slash rather than a period.  The current form does have the advantage of working with the included period, but perhaps the right way to address that is with <eref target="https://trustee.ietf.org/">rg/">.

On Fri, Jan 11, 2019, at 09:49, Joseph Lorenzo Hall wrote:
> Yes, having just looked at them both, I prefer b too.
> 
> On Thu, Jan 10, 2019 at 15:34 Russ Housley <housley@vigilsec.com> wrote:
> 
> > I tend to prefer Choice B.  I think that the context provided by the two
> > additional paragraphs is useful.
> >
> > Russ
> >
> >
> > > On Jan 10, 2019, at 9:22 AM, Livingood, Jason <
> > Jason_Livingood@comcast.com> wrote:
> > >
> > > Thanks, Jari! Absent substantial WG feedback, I recommend you choose one
> > or the other by the end of this weekend based on your judgement.
> > >
> > > Jason
> > >
> > > On 1/10/19, 3:35 AM, "iasa20 on behalf of Jari Arkko" <
> > iasa20-bounces@ietf.org on behalf of jari.arkko@piuha.net> wrote:
> > >
> > >    This draft was approved last year, and is in the RFC Editor’s queue.
> > There’s been a few suggestions about the draft, however, from Brian
> > Carpenter and others. See for instance the thread on RFC 4071bis.
> > >
> > >    One of the questions relates to whether the draft should now update
> > RFC 4071 given that it is separately being replaced by the 4071bis work.
> > Secondly, there were differing opinions with regards to whether
> > draft-ietf-iasa2-trust-update should entirely replace RFC 4371 or just
> > update it (as the current version does).
> > >
> > >    I do not personally have a very strong opinion either way on these
> > issues. Originally, when we wrote the update draft its goal was to just
> > change the trustee selection process, nothing else, hence we did not
> > replace RFC 4371 even if it didn’t have much content. And even if the draft
> > updated RFC 4071 I think it is fine for other parts of the overall system
> > change later, including replacing entire 4071, as long as in the end the
> > new work refers to our draft. However, I can also see that less documents
> > and less complex RFC-to-RFC relationships might be good. And I definitely
> > agree with Brian that we need to get the BCP structure and BCP numbers
> > correct.
> > >
> > >    With that as a background, I have prepared two alternate versions,
> > sending them for your comments here:
> > >
> > >    * Version “a” (maybe “a" for Alissa as she initially suggested this
> > path forward as one of the options). The is a minimal change to updates,
> > references. This is the least change option.
> > >
> > >      See
> > https://arkko.com/ietf/iasa20/draft-ietf-iasa2-trust-update-diff-a.html
> > >
> > >    * Version “b” (for the Brian Carpenter Extended Edition). This is a
> > more complete draft. This is a slightly bigger change, but results in more
> > self-contained end-result. It still does not change anything about the
> > trust, but copies a paragraph of text from RFC 4371 to the draft.
> > >
> > >      See
> > https://arkko.com/ietf/iasa20/draft-ietf-iasa2-trust-update-diff-b.html
> > >
> > >    Some of this might or might not be doable as RFC Editor instructions
> > rather than re-approval of the changes in the IETF list and at the IESG.
> > Putting that question aside for the moment, lets first figure out what we
> > want first. What would folks prefer?
> > >
> > >    Jari
> > >
> > >    _______________________________________________
> > >    iasa20 mailing list
> > >    iasa20@ietf.org
> > >    https://www.ietf.org/mailman/listinfo/iasa20
> > >
> > >
> > > _______________________________________________
> > > iasa20 mailing list
> > > iasa20@ietf.org
> > > https://www.ietf.org/mailman/listinfo/iasa20
> >
> > _______________________________________________
> > iasa20 mailing list
> > iasa20@ietf.org
> > https://www.ietf.org/mailman/listinfo/iasa20
> >
> -- 
> Joseph Lorenzo Hall
> Chief Technologist, Center for Democracy & Technology [https://www.cdt.org]
> 1401 K ST NW STE 200, Washington DC 20005-3497
> e: joe@cdt.org, p: 202.407.8825, pgp: https://josephhall.org/gpg-key
> Fingerprint: 3CA2 8D7B 9F6D DBD3 4B10  1607 5F86 6987 40A9 A871
> _______________________________________________
> iasa20 mailing list
> iasa20@ietf.org
> https://www.ietf.org/mailman/listinfo/iasa20