IETF Logo Mail Archive

Gen-art LC review: draft-mcdonald-ipps-uri-scheme-16

Robert Sparks <rjsparks@nostrum.com> Fri, 21 November 2014 21:56 UTC

Return-Path: <rjsparks@nostrum.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 375E11A8A6E; Fri, 21 Nov 2014 13:56:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.493
X-Spam-Level:
X-Spam-Status: No, score=-2.493 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.594] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JCuEjsFXNBBi; Fri, 21 Nov 2014 13:55:57 -0800 (PST)
Received: from nostrum.com (raven-v6.nostrum.com [IPv6:2001:470:d:1130::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A4ED61A8A68; Fri, 21 Nov 2014 13:55:57 -0800 (PST)
Received: from unnumerable.local ([173.64.248.98]) (authenticated bits=0) by nostrum.com (8.14.9/8.14.7) with ESMTP id sALLtupI030199 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Fri, 21 Nov 2014 15:55:57 -0600 (CST) (envelope-from rjsparks@nostrum.com)
X-Authentication-Warning: raven.nostrum.com: Host [173.64.248.98] claimed to be unnumerable.local
Message-ID: <546FB4E7.7060704@nostrum.com>
Date: Fri, 21 Nov 2014 15:55:51 -0600
From: Robert Sparks <rjsparks@nostrum.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:31.0) Gecko/20100101 Thunderbird/31.2.0
MIME-Version: 1.0
To: General Area Review Team <gen-art@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>, draft-mcdonald-ipps-uri-scheme.all@tools.ietf.org
Subject: Gen-art LC review: draft-mcdonald-ipps-uri-scheme-16
Content-Type: multipart/alternative; boundary="------------090009020509020607070906"
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/tLX2rtW0ZwM5o-QHNN1Knh7UKTM
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Nov 2014 21:56:00 -0000

I am the assigned Gen-ART reviewer for this draft. For background on
Gen-ART, please see the FAQ at

<http://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>.

Please resolve these comments along with any other Last Call comments
you may receive.

Document: draft-mcdonald-ipps-uri-scheme-16
Reviewer: Robert Sparks
Review Date: 21-Nov-2014
IETF LC End Date: 25-Nov-2014
IESG Telechat date: 4-Dec-2014

Summary: Almost ready, but has nits that should be addressed before 
publication as a Proposed Standard

Nits/editorial comments:

First: (For Barry as sponsoring AD and shepherd):

I think you might want to say more about how this and the related PWG 
documents are being handled cross-organization.

An RFC that normatively updates a document under some other 
organization's change control is an unusual thing. Usually there are 
parallel documents coordinating this. Is there such a parallel PWG doc 
this time?

Why aren't there RFC variants of the PWG docs (we've republished other 
organization's documents in the RFC series before...)

Second: The 6 step construction in section 3 is a little odd. Why aren't 
steps 3-5 collapsed into one step that says "go do what https: says to 
do"? Split this way, especially with the repeated guidance in the 
security considerations section pointing somewhat loosely to 7320 and 
5246 for things that "can be used to address this threat" looks like an 
opportunity for someone to get creative with how they check the 
certificate supplied by the server against the name in the URI. If you 
don't want anything but what happens in https to happen, I think it 
needs to be more clearly stated. Otherwise, doesn't this go off into RFC 
6125 territory?

Lastly (and much smaller nits):

There are several callouts from the text that look like references that 
are not represented in the references section.
ID nits complains about all of these, and should make them easy to find 
and fix.
For example (from section 1.2):
>    2) Some existing IPP Client and IPP Printer implementations of HTTP
>        Upgrade [RFC 2717] do not perform upgrade at the beginning of
This reference is oddly constructed - please check early with the RFC 
Editor on whether they
will take this, or want something a little different.
> [HTTP1.1]     HTTP/1.1.  See [RFC7230], [RFC7231], [RFC7232],
>                [RFC7233], [RFC7234], and [RFC7235].
This line is wrong, and is causing idnits to complain once where it 
shouldn't.
(The thing in the [] should be RFC7235, not 4):
>     [RFC7234]  Fielding, R., and J. Reschke, "Hypertext Transfer Protocol
>                (HTTP/1.1):  Authentication", RFC 7235, June 2014.

v2.23.0 | Report a Bug | By Email