IETF Logo Mail Archive

Re: Artart telechat review of draft-ietf-regext-launchphase-06

"Gould, James" <jgould@verisign.com> Mon, 11 December 2017 16:59 UTC

Return-Path: <jgould@verisign.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 515C91272E1; Mon, 11 Dec 2017 08:59:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FOLTF0MbOosB; Mon, 11 Dec 2017 08:59:37 -0800 (PST)
Received: from mail2.verisign.com (mail2.verisign.com [72.13.63.31]) (using TLSv1.2 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 48204127286; Mon, 11 Dec 2017 08:59:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=11918; q=dns/txt; s=VRSN; t=1513011576; h=from:to:cc:date:message-id:references:in-reply-to: content-id:content-transfer-encoding:mime-version:subject; bh=MrW2eiabYYAwfxMI0dCz/9JXDW+uqn1dk6ITfUNqKG8=; b=Fe3pVA75vqr5vojrzyVjtp/pvI1vRrsYRr5711bPC/BDKtFwNEpUv/Yd aCQhqrfoGSQ89YHiB3+EO9+XgCMmBiox/o08+OKHBFPmNCzktIyWHpTtn XF9Y+xtU7953j0uro20SiaDdG85Imv9a24ricYmP+uqHT9pUkF/ACKUo1 WEglARjLCieOuveWzVBQT+kmtGvXd+CfMrDe6AYxV5m6YtEqAy2DPkUEh C0dd0ZcRQv/BK+qMiAMgFnw6GagVH3mxEtF13DAoBQG2FoudJOwQ6UHfi OVIw+plwqU0nPpjzf/qPBUX8fwci6ottnJefS/KQO1erti0b59cq1fRC7 Q==;
X-IronPort-AV: E=Sophos;i="5.45,392,1508803200"; d="scan'208";a="3214221"
Subject: Re: Artart telechat review of draft-ietf-regext-launchphase-06
IronPort-PHdr: 9a23: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
X-IPAS-Result: A2HcAADLuC5a//WZrQpYAxoBAQEBAQIBAQEBCAEBAQGDD4EVgRsHg3ubG5heQwofhRwCGoUaFQEBAQEBAQEBAQECgRCCOCQBDkshBQExAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBCAIIB0EBARkBBAEjEUUQAgEIDQ0CJgICAjAVEAIEAQ0FiiCoK4InimQBAQEBAQEBAQEBAQEBAQEBAQEBAQEdgQ+CWYNigWgpgXSBDoRrHi0KJoJOMYIyBYpehzGBcoVKiUAGAod3h1qHZCFCiTyHLo0KiScCBAsCGQGBOzWBc28VOioBgX4JgkkcgWd4KoZvLIEFgRUBAQE
Received: from BRN1WNEXCHM01.vcorp.ad.vrsn.com (brn1wnexchm01 [10.173.152.255]) by brn1lxmailout02.verisign.com (8.13.8/8.13.8) with ESMTP id vBBGxYq3028022 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Mon, 11 Dec 2017 11:59:34 -0500
Received: from BRN1WNEXMBX01.vcorp.ad.vrsn.com ([::1]) by BRN1WNEXCHM01.vcorp.ad.vrsn.com ([::1]) with mapi id 14.03.0301.000; Mon, 11 Dec 2017 11:59:49 -0500
From: "Gould, James" <jgould@verisign.com>
To: Harald Alvestrand <harald@alvestrand.no>, "art@ietf.org" <art@ietf.org>
CC: "draft-ietf-regext-launchphase.all@ietf.org" <draft-ietf-regext-launchphase.all@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [EXTERNAL] Re: Artart telechat review of draft-ietf-regext-launchphase-06
Thread-Index: AQHTcnXTo0sXXbcT7kOmuIxdWNnKM6M+K8WA
Date: Mon, 11 Dec 2017 16:59:48 +0000
Message-ID: <290F930E-EABB-4BB5-A8A2-5C6D4937D0F9@verisign.com>
References: <151256925917.30813.8696470899003053820@ietfa.amsl.com> <5575391F-7165-4A33-8D72-7AA5DECAE06D@verisign.com> <b41abd7f-ece8-6af8-17b1-3a225e1e131d@alvestrand.no>
In-Reply-To: <b41abd7f-ece8-6af8-17b1-3a225e1e131d@alvestrand.no>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.1f.0.170216
x-originating-ip: [10.170.148.18]
Content-Type: text/plain; charset="utf-8"
Content-ID: <D5A9EB834E27214B9617CEEB487064F4@verisign.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/4SMHUGnYPLFs3k-6XZ_3_MIEXEs>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Dec 2017 16:59:39 -0000

Harald,

Thanks, as before my responses are embedded below.
  
—
 
JG



James Gould
Distinguished Engineer
jgould@Verisign.com

703-948-3271
12061 Bluemont Way
Reston, VA 20190

Verisign.com <http://verisigninc.com/> 

On 12/11/17, 6:47 AM, "Harald Alvestrand" <harald@alvestrand.no> wrote:

    Den 06. des. 2017 20:18, skrev Gould, James:
    > Harald, 
    > 
    > Thank you for your review and feedback, below are my answers to your feedback.
    >   
    
    Thanks for the quick response!
    Deleting all below where you said "yes, we'll do that" and where I have
    no further comment.
    
    
    
    
    >     2.4
    >     
    >     This sentence: "if a launch status is supported and the launch status
    >     is not one of the final statuses, including the "allocated" and
    >     "rejected" statuses." makes equal grammatical sense if "allocated" and
    >     "rejected" are final statuses or non-final statuses. Could be clearer.
    > 
    > Would the use of parenthesis work better as in the sentence below?
    > “if a launch status is supported and the launch status is not one of the final statuses ("allocated" and "rejected").”
    
    This is much more readable, thank you.
    
    >     It is not clear what causes the transition from "validated" to
    >     "pendingAllocation". It is also not clear if a transition possibility
    >     exists straight from "validated" to "allocated" for the case where no
    >     external process is needed.
    > 
    > The transitions between the statuses is up to the server policy.  There is no pre-defined timeframe that a domain must remain in a status.  In general, the processing is done asynchronously and based on a batch schedule, where a batch may validate thus putting the domains in the “validated” status.  A separate batch may prepare the domains for the allocation process thus putting the domains in the “pendingAllocation” status.  Finally, a batch will allocate the domains thus putting the domains in either the “allocated” or the “rejected” status.  
    > 
    > Yes, there can be a server policy that supports moving domains to the “validated” or “invalid” status in one step and then deciding on the allocation in a separate step synchronously.  In this case, there is no need for the “pendingAllocation” status.  
    >   
    > One scenario is that a pendingValidation domain may skip the validated status and transition immediately to the pendingAllocation status, or 
    
    In that case, it would be clearer if the drawing was preceded by a
    sentence saying: "The transitions between states is a matter of server
    policy. One possible set of permitted transitions is given in the
    diagram below".
    
    This will make it clear to people that this isn't a total map of
    possible transitions.

Ok, I’ll add a preamble to the diagram that reads “The transitions between the states is a matter of server policy.  This diagram defines one possible set of permitted transitions.”  Does this work?
    
    >     
    >     2.5
    >     
    >     "A Launch Application MUST and a Launch Registration MAY" would be
    >     clearer if there were commas around "and a Launch Registration MAY".
    > 
    > How about trying to fix the sentence overall, with the following two sentences?
    > 
    > “A Launch Application MUST be handled as an EPP domain name object, as specified in RFC 5731 [RFC5731], with the "pendingCreate" status and with the launch status values defined in Section 2.4.  A Launch Registration MAY be handled as an EPP domain name object, as specified in RFC 5731 [RFC5731], with the "pendingCreate" status and with the launch status values defined in Section 2.4.” 
    > 
    
    This looks good to me.
    
    
    >     2.6.3
    >     
    >     This section's sentence structure is unclear due to a missing comma
    >     before "or the <smd:encodedSignedMark>".
    > 
    > I believe the fix here is to remove “either” and the comma from the sentence as in:
    > 
    > “Digital signatures MAY be used by the server to validate the mark information when using the "signed mark" validation model with the <smd:signedMark> (Section 2.6.3.1) element or the <smd:encodedSignedMark> (Section 2.6.3.2) element.”
    > 
    > Do you agree that this is better?
    
    I'm still a bit confused about where the beginning of the sentence is
    that ends with "or". Is it obvious to everyone that the "signed mark"
    validation model is used both with <smd:signedMark> and with
    <smd:encodedSignedMark>? It's possible to read this as there being two
    validation models, one that is called "signed mark and uses
    <smd:signedMark>, and another one that's not named, but uses
    <smd:encodedSignedMark>.

The <smd:encodedSignedMark> is the <smd:signedMark> encoded (e.g., Base64), where both are directly related to the “signed mark” validation model.  The “signed mark” validation model is defined in 2.6 applies to the use of the <smd:signedMark> and the <smd:encodedSignedMark> elements.  The description in 2.6.3 should match the description in 2.6 with using an “and” instead of an “or”.  It would be more consistent to read “Digital signatures MAY be used by the server to validate the mark information when using the "signed mark" validation model with the <smd:signedMark> (Section 2.6.3.1) element and the <smd:encodedSignedMark> (Section 2.6.3.2) element”.  Do you agree with changing the “or” with an “and”?       
    
    >     
    >     3.1
    >     
    >     It is completely unclear what functional difference there is between
    >     the "Claims Check Form" (3.1.1) and the "Trademark Check Form"
    >     (3.1.3). I suspect the idea behind "whether or not there are any
    >     matching trademarks, in the specified launch phase, for each domain
    >     name passed in the command, that requires the use of the "Claims
    >     Create Form" on a Domain Create Command." (3.1.1) versus "whether or
    >     not there are any matching trademarks for each domain name passed in
    >     the command, independent of the active launch phase of the server and
    >     whether the "Claims Create Form" is required on a Domain Create
    >     Command." (3.1.3) is that the latter will return claims info in cases
    >     where the former would not, but it's not clear when this makes a
    >     difference to the caller - the same reply info seems to be returned in
    >     both cases.
    >     
    >     Another interpretation is that there exist trademarks that match in a
    >     given phase and do not match outside that phase, so that the "claims
    >     check form" may return matches that "trademark check form" would not -
    >     this seems a bit bizarre.
    >     
    > The Trademark Check Form was explicitly requested on the list to support checking for the existence of trademarks independent of the active or specified phase and without requiring an indication that a claims notice is required on a domain create.  The primary purpose of a check is to indicate to the client whether a create will work, which is the goal of the Claims Check Form.  Depending on the phase, the Claims Check Form may not return the claims information because the create does not require it.  However, the Trademark Check Form will always return the claims information if there is at least one trademark associated with the domain name.  This is a subtle difference, but an important difference since some systems require providing the raw trademark information without including the extra phase-specific logic of the Claims Check Form.  
    >     
    > 
    
    This makes perfect sense (if I interpret it correctly), and was the most
    reasonable interpretation I had.
    
    Would it make sense to add a sentence saying "The Trademark Check Form
    will always return at least the marks returned by a similiar Claims
    Check Form, but may return additional marks"?

I believe it’s best to keep them separate and not add the sentence, since adding a linkage between the Trademark Check Form and the Claims Check Form may add confusion.  The Trademark Check Form is a raw trademark check without applying any additional server policy, and the Claims Check Form is meant to apply the server policy as an indication of whether a create will work.  Do you agree that we should leave the two forms separate? 
    
    Happy that the review was useful!
    
    Harald

v2.23.0 | Report a Bug | By Email