IETF Logo Mail Archive

Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard

Barry Leiba <barryleiba@computer.org> Fri, 14 November 2014 20:56 UTC

Return-Path: <barryleiba.mailing.lists@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4BFB11AC425 for <ietf@ietfa.amsl.com>; Fri, 14 Nov 2014 12:56:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.278
X-Spam-Level:
X-Spam-Status: No, score=-1.278 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dmw7uSrKbVDv for <ietf@ietfa.amsl.com>; Fri, 14 Nov 2014 12:56:45 -0800 (PST)
Received: from mail-ig0-x230.google.com (mail-ig0-x230.google.com [IPv6:2607:f8b0:4001:c05::230]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 765871AC413 for <ietf@ietf.org>; Fri, 14 Nov 2014 12:56:45 -0800 (PST)
Received: by mail-ig0-f176.google.com with SMTP id l13so423552iga.9 for <ietf@ietf.org>; Fri, 14 Nov 2014 12:56:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=S0yEboq4ojhqHq8EIkqK/XuJAuUWjqX4S/bdlspzDlg=; b=pP6hINftRHW0xjENBqZWbaP4qnuFQE4xbxM6lMyoXGf/HKs74jK89kI5eI+zGXBHzN Hqi3nKraYxpeNhZ3vHvO6qBiGHjKPohI1p5nVSAtzJj9x8xO5FNYZcAT9wRk4I6lbMST O2W6U/Jp/xQLVg3aSNj17phFnF4yXu9ci8/e7xdbly8CPBLmiQkptGMdJ+6b2QcdOpZw XV1zA3zuVV1ElIvWAIEKQ8023RClFkAteMOtXo2QLinWxG2vlc0Xa6WWBYiVbBuGWzJq JULqDK2pb33gRoYpzGpo3xrAnClGUFP8EFF4qUJMRLQBGlYoj/nQz3eb0J8iGJkmezD7 3GKw==
MIME-Version: 1.0
X-Received: by 10.107.41.199 with SMTP id p190mr13170505iop.10.1415998604604; Fri, 14 Nov 2014 12:56:44 -0800 (PST)
Sender: barryleiba.mailing.lists@gmail.com
Received: by 10.107.173.83 with HTTP; Fri, 14 Nov 2014 12:56:44 -0800 (PST)
In-Reply-To: <5464E809.2080507@cdt.org>
References: <20141021213356.16262.50640.idtracker@ietfa.amsl.com> <54494E98.4070002@cs.tcd.ie> <5464E809.2080507@cdt.org>
Date: Fri, 14 Nov 2014 10:56:44 -1000
X-Google-Sender-Auth: GxWGKKvILSt_RpVwug8Lw2hxBjk
Message-ID: <CAC4RtVBmaRE1sN4xvadxjxdsTyrrYf7RwwwpVXCesf0JrBzRFQ@mail.gmail.com>
Subject: Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard
From: Barry Leiba <barryleiba@computer.org>
To: Joseph Lorenzo Hall <joe@cdt.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/jZv60LLASjtSkIsm1NgSOjRUyck
Cc: IETF discussion list <ietf@ietf.org>, draft-nottingham-safe-hint@tools.ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Nov 2014 20:56:47 -0000

Thanks for your comments, Joseph.

What, specifically (including suggested text) would you like to see
changed in the document to address your comments?

Barry

On Thu, Nov 13, 2014 at 7:19 AM, Joseph Lorenzo Hall <joe@cdt.org> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA256
>
>
> Hi, mnot has already heard the following concerns from us at CDT about
> this spec, but we want to make sure that these are part of the IETF
> last call comment record.
>
> * The "Safe" preference is not only a preference but a signal.  It
>   signals user vulnerability; when activated, the header would signal
>   a user's potentially vulnerable status not only to site operators
>   who intend to reply in good faith, but to those that will operate in
>   bad faith and also to every intermediary on-path that could read the
>   preference request.
>
>   Details about an Internet user's vulnerabilities should be treated
>   as sensitive information.  A broadcast signal that advertises a
>   user's content preferences or restrictions can signal her youth,
>   cognitive ability, relative media illiteracy, technological
>   inexperience, or another potential vulnerable status.  Because of
>   the risk that this information could be used to exploit immature or
>   inexperienced users, CDT generally cautions against widespread
>   identification of user vulnerability.  Obviously, sending such a
>   preference inside an encrypted connection removes concerns about
>   on-path observers, but not the more general concern with bad faith
>   endpoints or other embedded endpoints that may have other interests
>   (e.g., advertisers on a service may use this signal to profile
>   vulnerable populations).
>
> * Further, the ability for other intermediaries with access to the
>   request stream to insert the preference, potentially without notice
>   to the user, means that users may not even be aware that they are
>   broadcasting potentially sensitive information about themselves,
>   thus limiting their ability to take self-protective measures against
>   potential abuse.
>
> * As many of the comments in Last Call have identified, "Safe" content
>   in this specification is undefined. Because the proposal
>   (necessarily) lacks a definition of "safe", it is unlikely to be
>   useful to parents/guardians/users.  The lack of definition will
>   produce diverse and conflicting interpretations from content hosts
>   and providers, which can mislead users and their guardians, and may
>   invite abuse and confusion.
>
>   The absence of guidance to websites wishing to participate in "safe"
>   content delivery will lead to varied and sometimes contradictory
>   results.  This could sow confusion and potential conflict among
>   participating platforms and website operators, and undermine the
>   utility of the specification.
>
>   Moreover, users and their parents will have diverse expectations
>   about "safe" content.  These expectations will vary considerably
>   with users' age, as well as parent/guardians' cultural backgrounds.
>   Without a common understanding of what qualifies as "safe" content,
>   the expectations of users and their parent/guardians are likely to
>   be frustrated.  Of course, it is far outside the scope of a
>   technical specification to define a content-label like "safe".  But
>   because a standardized definition of "safe" content is unattainable,
>   the specification will have limited use as a tool for empowering
>   parents to regulate and guide their children's Internet use.
>
>
> - --
> Joseph Lorenzo Hall
> Chief Technologist
> Center for Democracy & Technology
> 1634 I ST NW STE 1100
> Washington DC 20006-4011
> (p) 202-407-8825
> (f) 202-637-0968
> joe@cdt.org
> PGP: https://josephhall.org/gpg-key
> fingerprint: 3CA2 8D7B 9F6D DBD3 4B10  1607 5F86 6987 40A9 A871
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.13 (Darwin)
>
> iQIcBAEBCAAGBQJUZOgJAAoJEF+GaYdAqahxzogP/A971Lf1c4weSTq1XtCUVna/
> N8+ezBEd1qJ0FaSggPQeZi6Ri6TkqpNmyLUdgZ85oACS1QX37oOCS0vGoKXODRKq
> NJ15FloP0hQgPhRFjCEIFPg4z/YUJiATtBU7+QQTMPvJbV9vA/tK5PSkv5qLXGI0
> W4sc01Yhh4K4OtE4BN5Lj+zedNaBrihKtB/c3oGLZt20sNhn5VX1XzmeuTktTV39
> IkuoBfcV8/00gq//nJ1f5UPm7Z3GfhCeuTFhfT6DXTC9PTHhYxLUgKglARw+1ynA
> P2mRdqjxkpwNBVeeS81Xeg+G6RJ3IMZ5/HCftK9GuUbXz5MSBOQmSzY2hhHEQMdc
> +LZHHFx/eKTpGehmgYx+xv85pdqaUlFZti9zOAlmkYvI+Mq3AjZQfSkmtGV5OlxQ
> rcfaTWAfNNeVa8C6fNfYo2bSFSAqSUPKWY2s7khY3m8nbugiitb60c57W1FnNFnX
> pDPJIjAJv37Ob84kZvQbKXXaQwSQSvSnLtaUS55Y/yvpR7goVtxBRHSaGw1sY5qO
> XIeAeLRSCHjmyc8yr/v21EhLvPVu1ZSgi665mTkQG/mxkmq7MSd3edQz8s4RGfIY
> 5Vk0dQqCayORynF97Z6i+ylCTqPbSlANDBXuaByyQU1nnnFfV2K5Xo8lgpe0T9kV
> 3WIlRxdvbOAabkYgjE6G
> =4UPs
> -----END PGP SIGNATURE-----
>

v2.23.0 | Report a Bug | By Email