IETF Logo Mail Archive

Re: [jose] updated draft charter text incorporating AD's comments

Barry Leiba <barryleiba@computer.org> Fri, 05 April 2013 14:37 UTC

Return-Path: <barryleiba.mailing.lists@gmail.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0D4CC21F97F0 for <jose@ietfa.amsl.com>; Fri, 5 Apr 2013 07:37:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.872
X-Spam-Level:
X-Spam-Status: No, score=-102.872 tagged_above=-999 required=5 tests=[AWL=0.105, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lL3Wo+38Mt0H for <jose@ietfa.amsl.com>; Fri, 5 Apr 2013 07:37:28 -0700 (PDT)
Received: from mail-vc0-f176.google.com (mail-vc0-f176.google.com [209.85.220.176]) by ietfa.amsl.com (Postfix) with ESMTP id 6542A21F97EE for <jose@ietf.org>; Fri, 5 Apr 2013 07:37:28 -0700 (PDT)
Received: by mail-vc0-f176.google.com with SMTP id ib11so3224234vcb.7 for <jose@ietf.org>; Fri, 05 Apr 2013 07:37:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=fI54+3pEuXAau65A2z1Y53OHHVY3vnv80AUT5T2WI64=; b=0S4gOdWMS0s28VJmmvbxw2fJQBnVDW69gr47IB/qXekKd/gjpM7P9gSI+SPADXIRcj 9SvIK6nUYW0/FljlUlzTIKpQGyu8wVD5n1p/ytU5Lnfb7Qi+Te0nfkXCsZsN2pe9fmy8 hv4Q9g96NVweKMGADKLiq0PqaH+NCPi20r5nVnHPpUWh25ca9eIcSTFmpUehX8vGs1UV N3yEWnb4DnOGxAQNAOzibqQNL6m2qFio9EV4IOx7vH1Uhea+Hl0sZPk983IJHSh5HdOS 6qzhKGa7IqTMX7n6o0wDJ+7KrEmCMCPlFbytFxAXmRS1hyCArsiQvGQuiV1G7GABlRKm r8dg==
MIME-Version: 1.0
X-Received: by 10.58.223.134 with SMTP id qu6mr8334042vec.35.1365172647909; Fri, 05 Apr 2013 07:37:27 -0700 (PDT)
Sender: barryleiba.mailing.lists@gmail.com
Received: by 10.59.3.41 with HTTP; Fri, 5 Apr 2013 07:37:27 -0700 (PDT)
In-Reply-To: <4E1F6AAD24975D4BA5B1680429673943675B77BC@TK5EX14MBXC283.redmond.corp.microsoft.com>
References: <513CCD31.8050408@isoc.org> <515EC38F.2060703@ieca.com> <4E1F6AAD24975D4BA5B1680429673943675B77BC@TK5EX14MBXC283.redmond.corp.microsoft.com>
Date: Fri, 05 Apr 2013 10:37:27 -0400
X-Google-Sender-Auth: n2qi2SarhUPWVQqC-UM6nGfOnCY
Message-ID: <CAC4RtVBw6Nqmcd5STHuq+LJJLP16FpKzHu+ONUd2HcxYu-Zj-w@mail.gmail.com>
From: Barry Leiba <barryleiba@computer.org>
To: Mike Jones <Michael.Jones@microsoft.com>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: quoted-printable
Cc: Sean Turner <turners@ieca.com>, "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] updated draft charter text incorporating AD's comments
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Apr 2013 14:37:29 -0000

> For that reason, I believe we would be FAR better off to leave the first two
> charter items exactly as they are at
> http://datatracker.ietf.org/wg/jose/charter/ than to accept the new wording.
> The current wording is:
>
> 1) A Standards Track document specifying how to apply JSON-structured
>  integrity protection to data, including (but not limited to) JSON data
>  structures. "Integrity protection" includes public-key digital
>  signatures as well as symmetric-key MACs.
>
> 2) A Standards Track document specifying how to apply a JSON-structured
>  encryption to data, including (but not limited to) JSON data structures.

The problem is that I do not understand what you mean by
"JSON-structured integrity protection" and "JSON-structured
encryption".  Sean's suggested wording is intended to say this in an
understandable way; if it's not correct, please try to come up with an
alternative.  The existing text doesn't work, because I don't
understand how to apply the modifier "JSON-structured" to the noun
"encryption" and get anything sensible out of it.  What does it mean
for *encryption* to be "JSON-structured"?

> So yes, I strongly object to the new wording, as I don’t want to open the
> door for the current representations to be rejected on charter grounds
> later.  If it helps, you can reassure objectors that we ARE producing pure
> JSON representations too, but that they’re not the only JSON-based
> representations for integrity protected and encrypted content.

To be clear: what you're producing is not the issue.  It's an issue of
the wording in the charter.

Barry

v2.23.0 | Report a Bug | By Email