Re: [Id-event] Murray Kucherawy's No Objection on draft-ietf-secevent-http-push-12: (with COMMENT)
Mike Jones <Michael.Jones@microsoft.com> Thu, 25 June 2020 04:22 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DEA443A1273; Wed, 24 Jun 2020 21:22:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PI6x5CEyBB8L; Wed, 24 Jun 2020 21:22:05 -0700 (PDT)
Received: from NAM06-BL2-obe.outbound.protection.outlook.com (mail-eopbgr650138.outbound.protection.outlook.com [40.107.65.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A29FB3A1272; Wed, 24 Jun 2020 21:22:04 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=idD8ySR6dik9/KDnqJEs1harPEa5rWArxTb31QZjP9KA0yFDM1xTSyPGYX2Z0dERpJ4qzc0tOZU+3gS4NBnpURoDlQL8OfVDL673EzsW6L9i6IwChUUvoJNcAfl9EM4jdJF7XDQTSe8EPWcbMJW5HxLVUbSG0iprFz/4iDRpjKg9WEWPVGZyspOOZr14ztLgt/ikRXxJcfYu33Ke36kIC4GG6oUwskhinKj2pTBM/030Iki6nVOwYC0KYIZhdcTbipzsM9j9bVDSgHbw7qR5kPKS83bJdoAR5mFH4igQv5IMh+qQxdUakilDR1Cl0ARIWfijK8KckWlY+7atSKalNw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lt21WPWw5/RGczoAIqM8mkLq7AAKWxqRr9XRtvquios=; b=QITsI2Na0eQthXOlf9iVk4v365IyX85bIxeYiHjDkl+Z+PHyOMwioEW9CRRjAvlHmnDeInCYE3Z6UzMQgoN53k+f2ZZA+BRdrFsUO+OHEHBQ1VJhIsPD68GTmr3J1P26ZLJaexIscnyclZQzU3yabGxEpaHtA7TUO0dolv9Is0WnI7ZuY1RyYBstm39sSiHNcjt6Q3YCYqp5EX/9fHpnH6lf6CREBqFcrIq7kYOi13iWrS7mGBmL6DygOcuK5VZ6QlGVjpvMfAlBkindg8AY5JfdIIhuXqzBENVOlbdgeKNDnzZL/7rB4K210zJxc5IxlbdSnm8bEIlxA2AmFIj5xA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lt21WPWw5/RGczoAIqM8mkLq7AAKWxqRr9XRtvquios=; b=NZfWetlnj5PZP4HqQ79yEuSl3ToV4Cq44O2kaAuOAxCMZR1mzVMTmbaTBIGWYvcUaxNIVehU4bZ5y9JBRhNKdPt/JciVYJkz2Vz1LaXx+C0tIDuodFD8/scAoqxR3sM2ilMxowoUpippl6METIlPEchasgkuiRdzWxGPUo/eivM=
Received: from CH2PR00MB0678.namprd00.prod.outlook.com (2603:10b6:610:a9::23) by CH2PR00MB0661.namprd00.prod.outlook.com (2603:10b6:610:ad::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3166.0; Thu, 25 Jun 2020 04:22:00 +0000
Received: from CH2PR00MB0678.namprd00.prod.outlook.com ([fe80::3c44:1c81:e278:edb0]) by CH2PR00MB0678.namprd00.prod.outlook.com ([fe80::3c44:1c81:e278:edb0%2]) with mapi id 15.20.3173.000; Thu, 25 Jun 2020 04:22:00 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Murray Kucherawy <superuser@gmail.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-secevent-http-push@ietf.org" <draft-ietf-secevent-http-push@ietf.org>, "secevent-chairs@ietf.org" <secevent-chairs@ietf.org>, "id-event@ietf.org" <id-event@ietf.org>, Yaron Sheffer <yaronf.ietf@gmail.com>
Thread-Topic: Murray Kucherawy's No Objection on draft-ietf-secevent-http-push-12: (with COMMENT)
Thread-Index: AdZKqCft+dxQVPZRQ7CxvnY5RTcREQ==
Date: Thu, 25 Jun 2020 04:22:00 +0000
Message-ID: <CH2PR00MB0678D3265D71018ECBF299D4F5920@CH2PR00MB0678.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=e18e7a29-77c1-430b-82b0-5c4569cfdb22; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2020-06-25T04:11:27Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=microsoft.com;
x-originating-ip: [50.47.87.252]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 96b4abf3-8aa0-4490-269b-08d818bf4e48
x-ms-traffictypediagnostic: CH2PR00MB0661:
x-microsoft-antispam-prvs: <CH2PR00MB066185F578CC49596B222FD4F5920@CH2PR00MB0661.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0445A82F82
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: xAFAzq74/8ZlQWV28m+mMLZh2jqE89Lt677rawdfz9PMTdNI6hJQBBL9p96X/2s3aFiiH/jaszczHhUb+jD2c8v3St+qyH/2w5DKenxsCo1HgIzghj6Bif2Yz0dQERzf2z9vJ4S4Kk3detA4R1ncguyibtG4oFCUyACKK6R1kRYx5gckveW+tMymK7QEej+mtBIdhsT/aUxnSGp1IpLGk07YpOeJwjJsYKZoE+Qd6aAcpgv2KAXsAqSmqet7eqbobLw5suJyONFfOG6ctp0W/8xjAsyE1ZeJBsWq+4pyctnk+lXBxEcDYFhKlKZGCcqlqzfEHTtLsgCpWr/XQkARouyAowKDhf3VCzec/Fe8heyUdVkWyDXRr40nLzgg0MfnKCmrL2NYb/oGD7S41fEOhw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH2PR00MB0678.namprd00.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(366004)(376002)(346002)(396003)(39860400002)(136003)(71200400001)(316002)(8936002)(7696005)(9686003)(66946007)(55016002)(26005)(83380400001)(2906002)(86362001)(10290500003)(186003)(966005)(478600001)(52536014)(6506007)(53546011)(76116006)(66476007)(4326008)(8676002)(5660300002)(33656002)(82960400001)(54906003)(64756008)(8990500004)(66556008)(110136005)(66446008)(82950400001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: fIl9I7MfH1XZG0C08C3i5M/xSRTaTcZY7Vfl6ceMkjGH1X5pwCEjo/812B7njkpFD2Gf5sSXr35PmZbgThPh7tekHMYPdyXONCZaleJcByM3vAIZiPgtMkQgtx2GP05WIVLp4X9mJ95KAQM5Y0AiV6a7/SrPRbIlHoMIbgvRq1v9+2agpUxNbyNoNbWTNkFKcXnFBVdCfcY+r5a6rtrCo1yldV6t6T7jVK9mT+CdX1lo7xm+ANq4fZ52nLDCMUax3TR1jTN1IlE3q4PhKUX/J1u5lAt/qPbEYo/dkZntqbEOwrOWFgEhuOF2koNVF34Xm7nCeGDyYUZZUb3hNnYJuc0mD5FYUsdkjqG0lSlDuk+4J2jz7IxngI+jmuCH3zhoMvU2MxBvHuRmUwMIc+aIGaL7xMxjlsKUa85PReF0Qejpegr1flQ9anIPNcjNjzWWtG8X2GkJnSRg0ndW4DrJq13netF47jfsyhQr52JQNfY=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH2PR00MB0678.namprd00.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 96b4abf3-8aa0-4490-269b-08d818bf4e48
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jun 2020 04:22:00.3200 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: VXrGfryjNx+YMN07O6pBV/4mpHy9Cpv73RvavHgmG6PuV9DhwfpsHL6Nr2JbKXZvEh9EwrFbrwawKbS0gNzSjg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR00MB0661
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/NlzTCJaNtBEaKjZ9k-gmcYnNCQM>
Subject: Re: [Id-event] Murray Kucherawy's No Objection on draft-ietf-secevent-http-push-12: (with COMMENT)
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jun 2020 04:22:07 -0000
Thanks for your review, Murray. https://tools.ietf.org/html/draft-ietf-secevent-http-push-13 is intended to address your comments. Detailed replies are inline, prefixed by "Mike>". -----Original Message----- From: Murray Kucherawy via Datatracker <noreply@ietf.org> Sent: Saturday, June 20, 2020 12:06 PM To: The IESG <iesg@ietf.org> Cc: draft-ietf-secevent-http-push@ietf.org; secevent-chairs@ietf.org; id-event@ietf.org; Yaron Sheffer <yaronf.ietf@gmail.com> Subject: Murray Kucherawy's No Objection on draft-ietf-secevent-http-push-12: (with COMMENT) Murray Kucherawy has entered the following ballot position for draft-ietf-secevent-http-push-12: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-secevent-http-push/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Section 2: * "SET parsing and issuer and ..." -- s/parsing and/parsing,/ Mike> Thanks - fixed. * I'm struggling a bit with the SHOULD and SHOULD NOT in the final paragraph. When would you legitimately re-transmit a delivered SET, or not delay re-transmission after a failure? Mike> Another place I reworded to eliminate the problematic SHOULD... Section 2.1: OLD: ... request to an HTTP endpoint using TLS provided by the SET Recipient. NEW: ... request to a TLS-enabled HTTP endpoint provided by the SET Recipient. Mike> Thanks - I used this wording uniformly across both drafts. * This section makes several references to "header" that I think should be "header field". Mike> Thanks - I applied this across both drafts. Section 2.3: * Same issue with the SHOULD in the first paragraph: When would you not use an appropriate HTTP response code? * I think the "MAY" in the "description" bullet is superfluous, since you're describing interoperability with a human at this point. * Same issue with "header" here, with three instances in this section. * I suggest that the example figures in this section should be indented. One of them is actually outdented. * "example non-normative" should be "non-normative example", with three instances in this section. Mike> Reworded again Section 2.4: * The table here is effectively a copy of the table in Section 7.1.2. Could we just replace this section with a forward reference? Mike> The table is much more human-readable than the IANA Considerations section. Therefore, I opted to leave them both. Section 4: * "... always retry failed transmissions, however, it should ..." -- "however" should start a new sentence, or at least the first comma should be a semi-colon Mike> Done * More generally, I wonder if leaving the "retryability" (I wish that was a word) to the discretion of an implementation, which feels mushy, could be improved. In SMTP and various other protocols there's an indication, as part of the reply, that tells the client whether a failure might succeed later on a retry (say, a local resource limitation that might clear) versus one that will presumably never succeed (no such user here). The DNS makes the same distinction. For example, including in the registry a column indicating whether a response is indicating a temporary or permanent condition might be useful, or it could be a formalized part of the JSON reply. Mike> The current text tries to say that you should retry when the error is likely to be transient and otherwise not. The error codes are fairly coarse-grained, so it's not likely that particular error codes are always retryable or not retryable. Section 5.5: * "... systems that the SET Recipient forwards the SET onto ..." -- suggest "... systems to which the SET Recipient forwards the SET ..." Mike> Done Section 6: * The variable use of "should" and "SHOULD" here made me look a bit sideways at this section. They all "feel" the same, so the variance seems odd. Mike> They're now all "should". Section 7.1.1: * For "Error Code", this set of restrictions allows me to register a code called "_". Do you want more restrictions here? * "For error codes registered by the IETF or its working groups, list "IETF SecEvent Working Group"." -- What if it was some other working group? Mike> I added some instructions to the Designated Experts in response to Barry's review. But didn't want to try legislate everything about the nature of the identifiers. I trust the experts to use common sense. Thanks again, -- Mike
- [Id-event] Murray Kucherawy's No Objection on dra… Murray Kucherawy via Datatracker
- Re: [Id-event] Murray Kucherawy's No Objection on… Benjamin Kaduk
- Re: [Id-event] Murray Kucherawy's No Objection on… Murray S. Kucherawy
- Re: [Id-event] Murray Kucherawy's No Objection on… Mike Jones
- Re: [Id-event] Murray Kucherawy's No Objection on… Mike Jones
- Re: [Id-event] Murray Kucherawy's No Objection on… Richard Backman, Annabelle