IETF Logo Mail Archive

Re: [jose] thoughts on deployed code and breaking changes

Karen O'Donoghue <odonoghue@isoc.org> Thu, 13 June 2013 21:00 UTC

Return-Path: <odonoghue@isoc.org>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E50AA21F9A36 for <jose@ietfa.amsl.com>; Thu, 13 Jun 2013 14:00:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=-0.001, BAYES_00=-2.599, HTML_MESSAGE=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id avIkjPD9Yo4C for <jose@ietfa.amsl.com>; Thu, 13 Jun 2013 14:00:53 -0700 (PDT)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2lp0238.outbound.protection.outlook.com [207.46.163.238]) by ietfa.amsl.com (Postfix) with ESMTP id 0BF0621F8B21 for <jose@ietf.org>; Thu, 13 Jun 2013 14:00:53 -0700 (PDT)
Received: from BLUPR06MB180.namprd06.prod.outlook.com (10.242.190.27) by BLUPR06MB178.namprd06.prod.outlook.com (10.242.190.18) with Microsoft SMTP Server (TLS) id 15.0.702.21; Thu, 13 Jun 2013 21:00:46 +0000
Received: from BLUPR06MB180.namprd06.prod.outlook.com ([169.254.7.30]) by BLUPR06MB180.namprd06.prod.outlook.com ([169.254.7.137]) with mapi id 15.00.0702.005; Thu, 13 Jun 2013 21:00:46 +0000
From: Karen O'Donoghue <odonoghue@isoc.org>
To: Richard Barnes <rlb@ipv.sx>
Thread-Topic: [jose] thoughts on deployed code and breaking changes
Thread-Index: AQHOaGB5naUsuFvMWkWZkTeaLGe6Lpk0CGgA///N2IA=
Date: Thu, 13 Jun 2013 21:00:45 +0000
Message-ID: <51BA2C35.9080904@isoc.org>
References: <DD357551-474C-469B-BE1B-19AE1B459EF0@isoc.org> <CAL02cgSMJSPaGmtPmYA=XrtOUfgo=trsAuHxCKXXg9YH3hpc9A@mail.gmail.com>
In-Reply-To: <CAL02cgSMJSPaGmtPmYA=XrtOUfgo=trsAuHxCKXXg9YH3hpc9A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-imapappendstamp: BLUPR06MB180.namprd06.prod.outlook.com (15.00.0702.000)
x-originating-ip: [24.245.107.12]
x-forefront-antispam-report: SFV:SKI; SFS:; DIR:OUT; SFP:; SCL:-1; SRVR:BLUPR06MB178; H:BLUPR06MB180.namprd06.prod.outlook.com; LANG:en;
Content-Type: multipart/alternative; boundary="_000_51BA2C359080904isocorg_"
MIME-Version: 1.0
X-OriginatorOrg: isoc.org
Cc: "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] thoughts on deployed code and breaking changes
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jun 2013 21:00:58 -0000

To be clear, I didn't declare an embargo on breaking changes. I just set what I believe to be a reasonable metric at this stage of the spec development as "strong rationale and a ground swell of working group support". I would imagine that said working group support would be easier to achieve for the JSON serializations than the compact serializations.

I'm also trying to ensure that every thing under consideration is on the table. There is a time for more open ended conversations, and there is a time to ship what is done. While I don't think these are the only considerations, I do think we need to be mindful of the amount of time spent on this thus far, the external standards efforts looking to the results of this work, and the currently deployed implementations.

Please, I urge everyone, review the latest specs. If there are needed changes, provide a strong rationale and clear concise text for the documents ASAP.

Karen

On 6/13/13 3:31 PM, Richard Barnes wrote:
Could we at least clarify that the embargo on breaking changes is to the *compact* serialization of *JWS*?  All of the backward compatibility concerns we've heard are for JWT, which is primarily based on JWS.  And as far as I know, there's been no implementation of the JSON serializations yet, so we don't have the same compatibility burden.

I don't mean to imply that I've got a bunch of horrible stuff queued up.  I'm as interested in getting this done as the next guy.  I just want to make clear that things like ISSUE-20 and Jim's suggestion on unencoded protected headers are not ruled out of bounds.

--Richard


On Thu, Jun 13, 2013 at 2:04 PM, Karen O'Donoghue <odonoghue@isoc.org<mailto:odonoghue@isoc.org>> wrote:
Folks,

I *personally* believe the time for major breaking changes is past for this version of the specification. I believe we are now in the phase of final corrections and minor tweaks for a v1.0. We scheduled an interim meeting in April to get all remaining issues on the table and discussed. These specifications have been evolving for a long time. I am sure that they could be improved in a myriad of ways, but at this point, without a strong rationale and a ground swell of working group support, we should work to complete what we have. Any major refactoring or new  functionality should be deferred as future work. At that time, we can work to "break cleanly with existing code." We better serve the IETF and the broader community by getting these specifications out the door.

We will have an interim teleconference Monday (with a few more possibly to follow) to review the implementation of the interim discussions and to discuss any final issues. I strongly encourage folks to review the specifications and the minutes of the interim with that in mind.

Regards,
Karen

_______________________________________________
jose mailing list
jose@ietf.org<mailto:jose@ietf.org>
https://www.ietf.org/mailman/listinfo/jose

v2.23.0 | Report a Bug | By Email