IETF Logo Mail Archive

Re: draft-dolson-plus-middlebox-benefits (was RE: Review of draft-mm-wg-effect-encrypt-09)

Stephen Farrell <stephen.farrell@cs.tcd.ie> Wed, 19 April 2017 01:17 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2EFA5129467 for <ietf@ietfa.amsl.com>; Tue, 18 Apr 2017 18:17:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.301
X-Spam-Level:
X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GOXrhCtuj8kS for <ietf@ietfa.amsl.com>; Tue, 18 Apr 2017 18:17:02 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 093B2129400 for <ietf@ietf.org>; Tue, 18 Apr 2017 18:17:01 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 830AEBE49; Wed, 19 Apr 2017 02:16:59 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id opJ9hdWw4VkN; Wed, 19 Apr 2017 02:16:58 +0100 (IST)
Received: from [10.244.2.100] (95-45-153-252-dynamic.agg2.phb.bdt-fng.eircom.net [95.45.153.252]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id C9677BE38; Wed, 19 Apr 2017 02:16:57 +0100 (IST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1492564618; bh=FD4dCbKz5rn5JKT+x29MRXQwcJd09biL+7JVOmHv/sQ=; h=Subject:To:References:Cc:From:Date:In-Reply-To:From; b=tUXLANy0KCJcsv+QsjdZHy4fmv3OfajZy3mfqeMnGb2blAKhHwQrmYWCJN25ZNCFr LUh8vkET6yC2HJp5AI+/gskZswj3dpGJQnW8HziF705OiwyTMqSDPbhiY9PikANCGy JwrLXKSVBmOKG0vunm0cJbXCN8H1Fh+E6asBrRVg=
Subject: Re: draft-dolson-plus-middlebox-benefits (was RE: Review of draft-mm-wg-effect-encrypt-09)
To: Martin Thomson <martin.thomson@gmail.com>
References: <787AE7BB302AE849A7480A190F8B933009E4B818@OPEXCLILMA3.corporate.adroot.infra.ftgroup> <11843452-d76d-50e3-c162-155f4d1621e2@cs.tcd.ie> <CABkgnnWz-GR5T2KA2i=37=gcbbEj=-RKg_ZRcB+06BFiO8VQ+w@mail.gmail.com>
Cc: mohamed.boucadair@orange.com, "ietf@ietf.org" <ietf@ietf.org>, "draft-dolson-plus-middlebox-benefits@tools.ietf.org" <draft-dolson-plus-middlebox-benefits@tools.ietf.org>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Message-ID: <1f89f84f-5720-a844-a0b7-581a1a3bf53d@cs.tcd.ie>
Date: Wed, 19 Apr 2017 02:16:57 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <CABkgnnWz-GR5T2KA2i=37=gcbbEj=-RKg_ZRcB+06BFiO8VQ+w@mail.gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="MLCp9SSPFTAHDgll70vuDSPAW8GvAr7Pd"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/W3apuyG8KRc9D6VPD_R7VPycRmM>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Apr 2017 01:17:04 -0000


On 19/04/17 01:33, Martin Thomson wrote:
> On 11 April 2017 at 18:51, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:
>>
>> (*) That is the argument for draft-mm-effect-encrypt, for which I
>> do support publication (apparently in disagreement with Martin in
>> that case:-)
> 
> 
> Taking a break from email is so refreshing...
> 
> I would very much like to see a document like this that captures these
> use cases and practices.  The problem I have with it are simple: it
> isn't particularly coherent, 

Hmm. Two things to consider there: 1) the editors have AIUI tried
hard to collate offered text from various folks and that's fairly
likely to end up less coherent, so we shouldn't insist on a level
of perfection here that we'd not ask from something with which we
might more "natively" agree.

But possibly more interestingly: 2) I think it's arguable that
coherently arranging the set of descriptions here is hard, and I
think that may tell us something about the underlying logic of
the situation.

For me the lesson of that innate incoherence is that the set of what
are now shown (in 20:20 hindsight) to be somewhat "lazy" practices
are being demonstrated as problematic via the re-assertion of the
e2e argument using confidentiality mechanisms, even where those latter
confidentiality mechanisms aren't in fact deployed "fully" e2e. And
that argument is quite close to the ossification one that transport
folks seem to like. The incoherence of the argument as to why
confidentiality is "problematic" seems to me more a fundamental
weakness in that argument against confidentiality rather than a
failure of exposition in this particular draft.

> and it makes statements that I disagree
> with.  Those statements are particularly bad because they are also
> unnecessary 

I do agree that the draft ought not be recommending things or to
be saying that such-and-such a practice is "necessary." But I did
think we'd gotten rid of those. Mopping up remaining statements of
that sort would be good, I agree. There were a lot of them in the
contributed text that the editors already excised. (In saying that
I did not go through your detailed review checking stuff - now that
I've escaped the IESG I'm fine that someone else does that:-) And
of course, the fact that you or I only "disagree" isn't really a
good criticism, we need an argument that those statements aren't
well grounded or similar, but I guess that's what you meant.

Cheers,
S.

> (see Brian Carpenter's comments about facts).
>

v2.23.0 | Report a Bug | By Email