Re: Results of IETF-conflict review for draft-williams-exp-tcp-host-id-opt-07
Brian E Carpenter <brian.e.carpenter@gmail.com> Mon, 01 February 2016 19:15 UTC
Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E16451B34DC for <ietf@ietfa.amsl.com>; Mon, 1 Feb 2016 11:15:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qqeEgQ4ICXw0 for <ietf@ietfa.amsl.com>; Mon, 1 Feb 2016 11:15:54 -0800 (PST)
Received: from mail-pf0-x233.google.com (mail-pf0-x233.google.com [IPv6:2607:f8b0:400e:c00::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D769C1B34A6 for <ietf@ietf.org>; Mon, 1 Feb 2016 11:15:53 -0800 (PST)
Received: by mail-pf0-x233.google.com with SMTP id x125so88996464pfb.0 for <ietf@ietf.org>; Mon, 01 Feb 2016 11:15:53 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:cc:from:organization:message-id:date :user-agent:mime-version:in-reply-to:content-type :content-transfer-encoding; bh=6VOyX8p9csL9zODM0XKURO3ncN01G/tfuYmf0qWCs3o=; b=t+3q2mqkW0YCVbqrICTZL0odxD/hmXkA8YNuu2xrcyeCt2bmjx7AC5nTQQZ4+WCvui yRWWaSMIqWUUItvNncIiI7txJveyq9N3fF0/okAzCJY3BynXM3+kSHjV8ex5f8uafaI1 whrzw3vo1vUIhQyZLRj/008jXuY/mZreNzXlNC2TQZJpwEHbs853YI0etTQ0u+HNWkeY +LweOSU3qhqISzeE8EfMYE1btbZwR2p4tfttGI9m+8G0EfeOWlqzjIEOrqelGW4Et4j6 /Y2w6GYH8h0FtCyb1MtHie+Rc5Opi5wB9cTotxfV9TqLDAheKvCAMAFdbebc6JMNHwJS uMBQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:subject:to:references:cc:from:organization :message-id:date:user-agent:mime-version:in-reply-to:content-type :content-transfer-encoding; bh=6VOyX8p9csL9zODM0XKURO3ncN01G/tfuYmf0qWCs3o=; b=fExMgojpXrU8Cjv8RWvI7roA3PtiYnz2A1sB9b3uYs29bZu7stUlBGQWDuaQZzvMmx xbQ9aFPm1WcGEoabCRRT00reVNaZebaIheiyGz+IDss16swzi1CRBHUOZZrhyt+NyfHB WbrowjOVjkki7AJ4hg7momGwTL9WisAFFy5JpchCgqzUmkazCb8LnhuO1O0eAGu5gG2z Ampcm/KrAczb6SUP+8uu78Nf+GOxfgXW8aq6IHrxFd5Fu8Fr+PbiJqGF+GSE5QSNT9VW GtA8twzrclMxtPoqqGZcZNdExj+J9sVQSE6DBw+p65qzQp9Z8R4BFOa246JUsJd2YqP5 cGdw==
X-Gm-Message-State: AG10YORWydkWzDw45Aqaum9c1ES+31lNqUcnAyxD0bgc+qw0SGVfOMI/o0taxE1irrWnpA==
X-Received: by 10.98.42.88 with SMTP id q85mr40850053pfq.1.1454354153496; Mon, 01 Feb 2016 11:15:53 -0800 (PST)
Received: from ?IPv6:2406:e007:5c13:1:28cc:dc4c:9703:6781? ([2406:e007:5c13:1:28cc:dc4c:9703:6781]) by smtp.gmail.com with ESMTPSA id b63sm45018615pfj.25.2016.02.01.11.15.49 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 01 Feb 2016 11:15:51 -0800 (PST)
Subject: Re: Results of IETF-conflict review for draft-williams-exp-tcp-host-id-opt-07
To: Ted Hardie <ted.ietf@gmail.com>
References: <20160125231333.27786.50459.idtracker@ietfa.amsl.com> <56A897AE.9060900@alvestrand.no> <CA+9kkMC+43PFvd_ZdR4EXV6zW2+FH67dpXeghWU8NtvbB8RzOg@mail.gmail.com> <56AC7416.2000206@cisco.com> <56AD0AB5.60206@gmail.com> <CA+9kkMBVCwauo5zEEMgiwSaxS+4G4n2wzAT=5b3+VzpBZyJgzw@mail.gmail.com>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
Message-ID: <56AFAEE5.8040308@gmail.com>
Date: Tue, 02 Feb 2016 08:15:49 +1300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.5.1
MIME-Version: 1.0
In-Reply-To: <CA+9kkMBVCwauo5zEEMgiwSaxS+4G4n2wzAT=5b3+VzpBZyJgzw@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/8b05sC8ieVODthNx7NyLcMALuv0>
Cc: Harald Alvestrand <harald@alvestrand.no>, IETF <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Feb 2016 19:15:56 -0000
Ted, On 02/02/2016 06:54, Ted Hardie wrote: > On Sat, Jan 30, 2016 at 11:10 AM, Brian E Carpenter < > brian.e.carpenter@gmail.com> wrote: > >> Ted, >> >> On 30/01/2016 21:28, Eliot Lear wrote: >> ... >>> On 1/27/16 4:50 PM, Ted Hardie wrote: >> ... >>>> Yes, and we have historically said that publishing things in >>>> the ISE stream when they counter IETF specifications can >>>> only be done when the IESG deems there to be no conflict >>>> with IETF specifications. >> >> Not so. What the community has said (in RFC 4846) is that such a conflict >> is a legitimate ground for the IESG to object to publication, with the IETF >> procedures around this documented in BCP 92. It is then the ISE's >> prerogative >> to decide whether to publish or not, after reviewing the IESG's objection >> and any other relevant input. >> >> That includes, but is not limited to, input from the Editorial Board, of >> which >> I am a member. > > > Brian, > > You are right; I wrote in haste and should have said can only be > done after consultation with the IESG on delay or commentary. > > The larger point is that we have tried to make sure that there is > a flow of communication between the IESG (and IETF) and the > ISE about the relationship of work brought to the ISE and ongoing work, > as well as on what John called the question of whether a particular > candidate document is 'dumb or dangerous'. > > It is on this latter point that I hope that the editorial board and > ISE spend their time. The document before the ISE represents > an example of a pattern of behavior that is deeply inimical to privacy > on the network: identifying metadata insertion by middleboxes > ("The information conveyed in the HOST_ID option is intended to uniquely > identify the sending host > "). It is certainly not the first time we have > seen this pattern nor the first time it has been documented in an RFC. > But supporting it again, as an option to TCP itself, carries a very high > risk. > That risk is that users' trust in the network, already eroded by government > action, will erode further or fail. If this document flatly described what > is being done or spoke in depth about the risks, it might still be worth > publishing. It does not. It speaks about this in terms of an experiment, > which it is > not, and it speaks about the value in terms far more laudatory than are > warranted. > That is the point of danger I believe the IESG saw clearly, and that is the > point > on which I support their recommendation. Speaking personally, I have detested the idea of a non-cryptographic host ID since it was first mooted: https://mailarchive.ietf.org/arch/msg/int-area/Fd0Y0cX3_Ed8NAv75h0J8Z1Y5hI In IPv6-land we've been working quite hard over the years to reduce privacy risks without destroying end-to-end properties, e.g. RFC 4941, RFC 7217, draft-ietf-6man-ipv6-address-generation-privacy and draft-ietf-6man-default-iids. I would be unhappy to see a TCP option that nullifies these efforts in widespread use. However, in fairness to the draft in question, I think people do need to re-read RFC 6967 (IETF stream) and RFC 7620 (Independent stream) first. The draft wasn't written in a vacuum. Brian > If the ISE and the editorial board remain conflicted on this point, I note > that > the ISE may ask for further advice from the IAB: > > The RFC Editor or the author may request that the IAB review the > IESG's request to delay or not publish the document and request that > the IAB provide an additional opinion. Such a request will be made > public via the RFC Editor Web site. As with the IESG review itself, > the IAB's opinion, if any, will be advisory. And, as with author > requests for an IAB technical review (see Section 4.5 > <https://tools.ietf.org/html/rfc4846#section-4.5>), the IAB is > not obligated to perform this type of review and may decline the > request. > > While I do not speak for the IAB on this point, I would personally work to > see that it > did not decline and provided a response promptly, should the ISE request > one. > > As noted above, this would be advisory and it may well not be > necessary given the review no doubt being done now by the advisory board. > > regards, > > Ted >
- Re: Results of IETF-conflict review for draft-wil… Harald Alvestrand
- Re: Results of IETF-conflict review for draft-wil… John C Klensin
- Re: Results of IETF-conflict review for draft-wil… Fernando Gont
- Re: Results of IETF-conflict review for draft-wil… Jari Arkko
- Re: Results of IETF-conflict review for draft-wil… Ted Hardie
- Re: Results of IETF-conflict review for draft-wil… Brian E Carpenter
- Re: Results of IETF-conflict review for draft-wil… Stephen Farrell
- Re: Results of IETF-conflict review for draft-wil… S Moonesamy
- Re: Results of IETF-conflict review for draft-wil… Eliot Lear
- RE: Results of IETF-conflict review for draft-wil… Dr. Sandeep Joshi [MU - Jaipur]
- Re: Results of IETF-conflict review for draft-wil… Brian E Carpenter
- Re: Results of IETF-conflict review for draft-wil… John C Klensin
- Re: Results of IETF-conflict review for draft-wil… Ted Hardie
- Re: Results of IETF-conflict review for draft-wil… Brian E Carpenter
- Re: Results of IETF-conflict review for draft-wil… Martin Stiemerling
- Re: Results of IETF-conflict review for draft-wil… Paul Hoffman
- Re: Results of IETF-conflict review for draft-wil… Stephen Farrell