IETF Logo Mail Archive

Re: [ogpx] Seed capability behavior

"Infinity Linden (Meadhbh Hamrick)" <infinity@lindenlab.com> Thu, 21 January 2010 00:44 UTC

Return-Path: <infinity@lindenlab.com>
X-Original-To: ogpx@core3.amsl.com
Delivered-To: ogpx@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BC14C3A6A84; Wed, 20 Jan 2010 16:44:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.737
X-Spam-Level:
X-Spam-Status: No, score=-0.737 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, SARE_LWSHORTT=1.24]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5ob4x60PiGII; Wed, 20 Jan 2010 16:44:27 -0800 (PST)
Received: from mail-fx0-f218.google.com (mail-fx0-f218.google.com [209.85.220.218]) by core3.amsl.com (Postfix) with ESMTP id 56A2A3A67E1; Wed, 20 Jan 2010 16:44:27 -0800 (PST)
Received: by fxm10 with SMTP id 10so2600627fxm.14 for <multiple recipients>; Wed, 20 Jan 2010 16:44:19 -0800 (PST)
MIME-Version: 1.0
Received: by 10.239.177.211 with SMTP id w19mr79278hbf.162.1264034659253; Wed, 20 Jan 2010 16:44:19 -0800 (PST)
In-Reply-To: <OFEDB4A382.947559FB-ON852576B1.007B59C0-852576B1.007C448C@us.ibm.com>
References: <62BFE5680C037E4DA0B0A08946C0933DC4B2DCF9@rrsmsx506.amr.corp.intel.com> <OFEDB4A382.947559FB-ON852576B1.007B59C0-852576B1.007C448C@us.ibm.com>
From: "Infinity Linden (Meadhbh Hamrick)" <infinity@lindenlab.com>
Date: Wed, 20 Jan 2010 16:43:58 -0800
Message-ID: <3a880e2c1001201643p3a885e23ma60f0c9df8d783b@mail.gmail.com>
To: David W Levine <dwl@us.ibm.com>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: quoted-printable
Cc: ogpx-bounces@ietf.org, "ogpx@ietf.org" <ogpx@ietf.org>
Subject: Re: [ogpx] Seed capability behavior
X-BeenThere: ogpx@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Virtual Worlds and the Open Grid Protocol <ogpx.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ogpx>, <mailto:ogpx-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ogpx>
List-Post: <mailto:ogpx@ietf.org>
List-Help: <mailto:ogpx-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ogpx>, <mailto:ogpx-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Jan 2010 00:44:28 -0000

so... if the question is, "should the seed cap be a one shot or
persist?" then allow me to offer the following observations:

1. why having the seed cap being persistent is "good"

1.1. if the seed cap persists for a fixed period of time, the client
may request additional services from the seed cap later. it's possible
we may want to wait to issue service caps until the client actually
tries to do certain things (like spend money, transfer items,
inventory access, etc.)

1.2. if the seed cap persists for a fixed period of time, it allows
service caps to have shorter lifetimes. deployers may want some caps
(like caps for spending money and transferring items) to have a
shorter lifetime than others (like caps for connecting to public
regions or caps for getting the grid status.)

by persisting the seed cap, the client may request a new service cap
from the seed without having to re-authenticate.

2. why having the seed cap being persistent is "bad"

2.1. allowing the seed cap to persist introduces a "Time of Check,
Time of Use" vulnerability to the system. ( see
http://en.wikipedia.org/wiki/Time-of-check-to-time-of-use ). for
example, imagine that the agent domain's authority cancel's an account
after a seed cap is granted, but before it expires. the client will
still be able to request services with it.

--
   infinity linden (aka meadhbh hamrick)  *  it's pronounced "maeve"
         http://wiki.secondlife.com/wiki/User:Infinity_Linden



On Wed, Jan 20, 2010 at 14:37, David W Levine <dwl@us.ibm.com> wrote:
>
> ogpx-bounces@ietf.org wrote on 01/20/2010 05:16:54 PM:
>
>> [image removed]
>>
>> [ogpx] Seed capability behavior
>>
>> Hurliman, John
>>
>> to:
>>
>> ogpx@ietf.org
>>
>> 01/20/2010 05:17 PM
>>
>> Sent by:
>>
>> ogpx-bounces@ietf.org
>>
>> The current handling of seed capabilities in Second Life is that
>> they are treated like one time capabilities. The viewer knows a list
>> of all of the capabilities it wants ahead of time, and makes a
>> single request containing the full requested capabilities list. Are
>> we mandating that VWRAP seedcaps must be one time capabilities or
>> must not be one time capabilities? If it’s up to each
>> implementation, we’ll get a situation where some clients make
>> multiple requests to a seed cap and are incompatible with services
>> that chose to implement one-time seedcaps.
>>
>> John_______________________________________________
>> ogpx mailing list
>> ogpx@ietf.org
>> https://www.ietf.org/mailman/listinfo/ogpx
>
> My (fairly strong) preference is that they be persistent caps. I see no
> reason to force a client into the model of
> asking for (and keeping track of) everything when it doesn't need it. Making
> it possible to pull caps as you need
> them is upwards compatible with getting them all at once, and allows a more
> flexible usage.
>
> I'd also point out that, if a service provides a "short term" cap which
> expires, we need a way to permit the client
> to renew the cap, so that also strongly argues for a persistent cap, and, a
> fine grained one as well. I would
> not want to force a re-get of every cap, when any single cap expired.
>
> - David
> ~ Zha
>
>
>
> _______________________________________________
> ogpx mailing list
> ogpx@ietf.org
> https://www.ietf.org/mailman/listinfo/ogpx
>
>

v2.23.0 | Report a Bug | By Email