Re: [jose] POLL(s): header criticality
<Axel.Nennker@telekom.de> Wed, 06 February 2013 20:16 UTC
Return-Path: <Axel.Nennker@telekom.de>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6FC5E21F8A11 for <jose@ietfa.amsl.com>; Wed, 6 Feb 2013 12:16:45 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.249
X-Spam-Level:
X-Spam-Status: No, score=-3.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2auhYYTFeRKN for <jose@ietfa.amsl.com>; Wed, 6 Feb 2013 12:16:44 -0800 (PST)
Received: from tcmail23.telekom.de (tcmail23.telekom.de [80.149.113.243]) by ietfa.amsl.com (Postfix) with ESMTP id 7A09021F88E3 for <jose@ietf.org>; Wed, 6 Feb 2013 12:16:34 -0800 (PST)
Received: from he113598.emea1.cds.t-internal.com ([10.125.65.117]) by tcmail21.telekom.de with ESMTP/TLS/AES128-SHA; 06 Feb 2013 21:16:32 +0100
Received: from HE111541.emea1.cds.t-internal.com ([10.125.90.94]) by HE113598.emea1.cds.t-internal.com ([2002:7cd:4175::7cd:4175]) with mapi; Wed, 6 Feb 2013 21:16:31 +0100
From: Axel.Nennker@telekom.de
To: odonoghue@isoc.org, jose@ietf.org
Date: Wed, 06 Feb 2013 21:16:29 +0100
Thread-Topic: [jose] POLL(s): header criticality
Thread-Index: Ac4C5rwuezone/ozQOql4po6RvjVBABwA6MQ
Message-ID: <CE8995AB5D178F44A2154F5C9A97CAF4025510EAE731@HE111541.emea1.cds.t-internal.com>
References: <510FCA42.5000704@isoc.org>
In-Reply-To: <510FCA42.5000704@isoc.org>
Accept-Language: de-DE
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: de-DE
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: Re: [jose] POLL(s): header criticality
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Feb 2013 20:16:45 -0000
YES YES A -----Original Message----- From: jose-bounces@ietf.org [mailto:jose-bounces@ietf.org] On Behalf Of Karen O'Donoghue Sent: Monday, February 04, 2013 3:49 PM To: jose@ietf.org Subject: [jose] POLL(s): header criticality Folks, I am wrestling with how to help drive consensus on the topic of criticality of headers. For background, please review the current specification text, the minutes to the Atlanta meeting (IETF85), and the mailing list (especially the discussion in December with (Subj: Whether implementations must understand all JOSE header fields)). We need to come to closure on this issue in order to progress the specifications. As a tool to gather further information on determining a way forward, the following polls have been created. Please respond before 11 February 2013. Thanks, Karen ******************* FIRST POLL: Should all header fields be critical for implementations to understand? YES - All header fields must continue to be understood by implementations or the input must be rejected. NO - A means of listing that specific header fields may be safely ignored should be defined. ******************** SECOND POLL: Should the result of the first poll be "YES", should text like the following be added? "Implementation Note: The requirement to understand all header fields is a requirement on the system as a whole - not on any particular level of library software. For instance, a JOSE library could process the headers that it understands and then leave the processing of the rest of them up to the application. For those headers that the JOSE library didn't understand, the responsibility for fulfilling the 'MUST understand' requirement for the remaining headers would then fall to the application." YES - Add the text clarifying that the "MUST understand" requirement is a requirement on the system as a whole - not specifically on JOSE libraries. NO - Don't add the clarifying text. ************************ THIRD POLL: Should the result of the first poll be "NO", which syntax would you prefer for designating the header fields that may be ignored if not understood? A - Define a header field that explicitly lists the fields that may be safely ignored if not understood. B - Introduce a second header, where implementations must understand all fields in the first but they may ignore not-understood fields in the second. C - Other??? (Please specify in detail.) _______________________________________________ jose mailing list jose@ietf.org https://www.ietf.org/mailman/listinfo/jose
- Re: [jose] POLL(s): header criticality Edmund Jay
- [jose] POLL(s): header criticality Karen O'Donoghue
- Re: [jose] POLL(s): header criticality Anthony Nadalin
- Re: [jose] POLL(s): header criticality John Bradley
- Re: [jose] POLL(s): header criticality Matt Miller (mamille2)
- Re: [jose] POLL(s): header criticality Mike Jones
- Re: [jose] POLL(s): header criticality Dick Hardt
- Re: [jose] POLL(s): header criticality Breno de Medeiros
- Re: [jose] POLL(s): header criticality Breno de Medeiros
- Re: [jose] POLL(s): header criticality George Fletcher
- Re: [jose] POLL(s): header criticality Dick Hardt
- Re: [jose] POLL(s): header criticality sebastien.brault
- Re: [jose] POLL(s): header criticality Mike Jones
- Re: [jose] POLL(s): header criticality Brian Campbell
- Re: [jose] POLL(s): header criticality Nat Sakimura
- Re: [jose] POLL(s): header criticality Richard Barnes
- Re: [jose] POLL(s): header criticality Eric Rescorla
- Re: [jose] POLL(s): header criticality Peter Yee
- Re: [jose] POLL(s): header criticality Axel.Nennker
- Re: [jose] POLL(s): header criticality hideki nara
- Re: [jose] POLL(s): header criticality Ryo Ito
- Re: [jose] POLL(s): header criticality Hannes Tschofenig
- Re: [jose] POLL(s): header criticality Roland Hedberg
- Re: [jose] POLL(s): header criticality Mike Jones
- Re: [jose] POLL(s): header criticality charles.marais@orange.com
- Re: [jose] POLL(s): header criticality Hannes Tschofenig
- Re: [jose] POLL(s): header criticality Casper Biering
- Re: [jose] POLL(s): header criticality Manger, James H
- Re: [jose] POLL(s): header criticality Stephen Kent
- Re: [jose] POLL(s): header criticality Dirkjan Ochtman
- Re: [jose] POLL(s): header criticality Mike Jones
- Re: [jose] POLL(s): header criticality Richard Barnes
- Re: [jose] POLL(s): header criticality Mike Jones
- Re: [jose] POLL(s): header criticality Hannes Tschofenig
- Re: [jose] POLL(s): header criticality nov matake
- Re: [jose] POLL(s): header criticality Andreas Åkre Solberg
- Re: [jose] POLL(s): header criticality Prateek Mishra
- Re: [jose] POLL(s): header criticality Richard Barnes
- Re: [jose] POLL(s): header criticality Salvatore D'Agostino
- Re: [jose] POLL(s): header criticality Chuck Mortimore
- Re: [jose] POLL(s): header criticality Torsten Lodderstedt
- Re: [jose] POLL(s): header criticality Russ Housley
- Re: [jose] POLL(s): header criticality Vladimir Dzhuvinov / NimbusDS
- Re: [jose] POLL(s): header criticality Stephen Kent
- Re: [jose] POLL(s): header criticality HAYASHI, Tatsuya