Re: [Json] What are we trying to do?
Nico Williams <nico@cryptonector.com> Wed, 03 July 2013 06:37 UTC
Return-Path: <nico@cryptonector.com>
X-Original-To: json@ietfa.amsl.com
Delivered-To: json@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0A28311E816F for <json@ietfa.amsl.com>; Tue, 2 Jul 2013 23:37:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J6yGv4SkT4hg for <json@ietfa.amsl.com>; Tue, 2 Jul 2013 23:37:08 -0700 (PDT)
Received: from homiemail-a72.g.dreamhost.com (caiajhbdccac.dreamhost.com [208.97.132.202]) by ietfa.amsl.com (Postfix) with ESMTP id 2E9F121F9D15 for <json@ietf.org>; Tue, 2 Jul 2013 23:37:08 -0700 (PDT)
Received: from homiemail-a72.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a72.g.dreamhost.com (Postfix) with ESMTP id 750546B0070 for <json@ietf.org>; Tue, 2 Jul 2013 23:37:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h= mime-version:in-reply-to:references:date:message-id:subject:from :to:cc:content-type:content-transfer-encoding; s= cryptonector.com; bh=1wfea5abY9oGhE47//HvT/43Xnc=; b=bEQg1k3Xxu2 BQn7dIWKSWDGWAaLRvoRA6tvdCIqlsJLWqOtMUvz/fF3xTQpelGePh0xdlFAypuE 1FETiF/y1yLwXkenWyG5kODGLxgqv0OEMp0UP2hwdnBesWeCI/2vken123SdKWKb GBD3dzIyW3rs4V/jApmp++iSuQA2RqEM=
Received: from mail-wg0-f50.google.com (mail-wg0-f50.google.com [74.125.82.50]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by homiemail-a72.g.dreamhost.com (Postfix) with ESMTPSA id 29F9A6B0059 for <json@ietf.org>; Tue, 2 Jul 2013 23:37:01 -0700 (PDT)
Received: by mail-wg0-f50.google.com with SMTP id k14so5342393wgh.17 for <json@ietf.org>; Tue, 02 Jul 2013 23:36:59 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=wMLkRbGiVs1jcoju30eFYxIhJVBdEYbp28NRcBqWWLk=; b=pnuxpjfT8mm3PLLEPRT08oGlnDNBvdap3kBUSa9hYCxs0/HdaMZgXS20lqzlKaquSB 79KI9nOMh3TonMbWWUAQ/DPCyP+UzQl0nJ+aVzpk+udGhaXRTpg5cRJsRlIJW1TtHbm3 kRuwdfl+ozNvjnK92MOwW618W1uC4KGR+BVy2LeHowF2vJtKwyii84QIA/fHr07jdiVp a7NVy/yJXwDe79PCOmANprR4sGfLXCqvCq6uFVcdtj5ZioopfCD0vBqVGe9t14rv4dG5 4IQbeYlZsfvrimfrluB59NXBpe90cupL7hZmmgWoVQhQit/IBWjJMT7z4AEwaEWNuVji 7P/w==
MIME-Version: 1.0
X-Received: by 10.180.76.206 with SMTP id m14mr17091224wiw.38.1372833419316; Tue, 02 Jul 2013 23:36:59 -0700 (PDT)
Received: by 10.216.152.73 with HTTP; Tue, 2 Jul 2013 23:36:59 -0700 (PDT)
In-Reply-To: <CAHBU6iv0wXYvAyasSE8Wga0K_sD_pKL6o-a-ca9yemhy3m6zzw@mail.gmail.com>
References: <CAHBU6iv0wXYvAyasSE8Wga0K_sD_pKL6o-a-ca9yemhy3m6zzw@mail.gmail.com>
Date: Wed, 03 Jul 2013 01:36:59 -0500
Message-ID: <CAK3OfOhYgjPR_WOEOMOT4W7uTutoCFJ9Qu-WTnTPwV_YZ21Tkw@mail.gmail.com>
From: Nico Williams <nico@cryptonector.com>
To: Tim Bray <tbray@textuality.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Cc: "json@ietf.org" <json@ietf.org>
Subject: Re: [Json] What are we trying to do?
X-BeenThere: json@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "JavaScript Object Notation \(JSON\) WG mailing list" <json.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/json>, <mailto:json-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/json>
List-Post: <mailto:json@ietf.org>
List-Help: <mailto:json-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/json>, <mailto:json-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jul 2013 06:37:13 -0000
On Wed, Jul 3, 2013 at 12:01 AM, Tim Bray <tbray@textuality.com> wrote: > [...] +1. > What the industry really needs is a document normatively describing > JSON-as-best-practiced, with an RFC number. It would say that senders MUST > NOT do X and Y, and that receivers, upon encountering X OR Y, MUST DO Z. > Thus other spec writers can say “Do what RFCXXXX says” and not have to > resort to the sort of drafting pain that the people in Jose are experiencing > right now in order to avoid attacks on cryptographically signed protocol > elements by exploiting variation in dupe-key handling. I'd be happy with either of: - no update to RFC4627, but a BCP, and possibly an FYI about what ECMAScript (and others) do, or - an update to RFC4627 noting the divergent interpretations and only absolute minimal normative language additions for which we have consensus (possibly none) (and remove the safe-for-eval regexp nonsense), plus a BCP. I might be happy with just concluding, but only as a last resort. > Is it the sense of the WG that such a document is within our mandate? -T We should recharter if it isn't, and either way we should then publish. If we can't either find it in the charter nor get consensus to re-charter then we should conclude (and take some more painkillers, then promptly forget this episode). So that's a big +1 from me. Nico --
- [Json] What are we trying to do? Tim Bray
- Re: [Json] What are we trying to do? Peter brooks
- Re: [Json] What are we trying to do? Nico Williams
- Re: [Json] What are we trying to do? Markus Lanthaler
- Re: [Json] What are we trying to do? Bjoern Hoehrmann
- Re: [Json] What are we trying to do? Paul Hoffman
- Re: [Json] What are we trying to do? Paul Hoffman
- Re: [Json] What are we trying to do? Nico Williams
- Re: [Json] What are we trying to do? Tatu Saloranta
- Re: [Json] What are we trying to do? Tim Bray
- Re: [Json] What are we trying to do? Carsten Bormann
- Re: [Json] What are we trying to do? Nico Williams
- Re: [Json] What are we trying to do? John Cowan
- Re: [Json] What are we trying to do? Norbert Lindenberg
- Re: [Json] What are we trying to do? Tatu Saloranta