IETF Logo Mail Archive

Re: [Ohttp] Discovery

Eliot Lear <lear@lear.ch> Mon, 05 July 2021 08:32 UTC

Return-Path: <lear@lear.ch>
X-Original-To: ohttp@ietfa.amsl.com
Delivered-To: ohttp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E3653A08FF for <ohttp@ietfa.amsl.com>; Mon, 5 Jul 2021 01:32:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.427
X-Spam-Level:
X-Spam-Status: No, score=-2.427 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.338, SPF_PASS=-0.001, T_SPF_HELO_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=lear.ch
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HycSgTMJp-uA for <ohttp@ietfa.amsl.com>; Mon, 5 Jul 2021 01:31:58 -0700 (PDT)
Received: from upstairs.ofcourseimright.com (upstairs.ofcourseimright.com [185.32.222.29]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4E9D93A08F9 for <ohttp@ietf.org>; Mon, 5 Jul 2021 01:31:58 -0700 (PDT)
Received: from [10.209.201.144] ([64.103.40.17]) (authenticated bits=0) by upstairs.ofcourseimright.com (8.15.2/8.15.2/Debian-18) with ESMTPSA id 1658VsPk063056 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO); Mon, 5 Jul 2021 10:31:55 +0200
Authentication-Results: upstairs.ofcourseimright.com; dmarc=none (p=none dis=none) header.from=lear.ch
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=lear.ch; s=upstairs; t=1625473915; bh=2nJRR0pVPCTPG3gLcepafvFt5LsOx0aV4Te96wgK/SI=; h=Subject:To:References:From:Date:In-Reply-To:From; b=JuiHZ2ZrtCwNBBuTSNV6NJ5/uykOoFztU93t5A9KjTLFAQB9BzyZ7XY533SGSm4LL K/WwKojSbCIO2+K55X0s8UL07Z8bsFrZbSci6IV9GanpsYkC56IsRiUY/QRX9CCCmv 1Qhb6JrjF5FKfFcMG0Oc9K6edYDC8Gbj2akCXfJs=
To: Martin Thomson <mt@lowentropy.net>, "ohttp@ietf.org" <ohttp@ietf.org>
References: <D8268CF8-94DA-4E91-9286-4E45B8E26CB6@mnot.net> <c57ed5b0-c17a-0bca-f42a-dafaa1725792@lear.ch> <1F7246CE-589A-4B34-B514-AFA0F640A384@mnot.net> <238476f4-6bf9-4124-8146-e8c051b1b25f@www.fastmail.com> <f1308d19-085d-dadf-df69-da6f8b1b5171@lear.ch> <85F35B48-DAB9-4429-9538-625E03262CDE@mnot.net> <LO2P265MB0399E24FF16C8A459E70EC0BC2069@LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM> <434C5683-4292-4354-B000-42C1EFFB026D@mnot.net> <LO2P265MB03993DA815DFE00C2A4DCC4AC2069@LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM> <CABcZeBOqas=GxSTWrMXWkrCroUp8dSUrnz0P4S3LFuBJ4BeHiw@mail.gmail.com> <3C3FE468-4447-47B0-8F07-0DE7602DE134@cable.comcast.com> <CABcZeBOKvWxC=PrZ8CdChKXKHeZUJoU2=Gokqgp5g3a1m8PJ=g@mail.gmail.com> <A6A229B4-163C-446B-8CBE-C696E19902A7@cable.comcast.com> <acea0962-cac6-4566-bd36-14d033320035@www.fastmail.com>
From: Eliot Lear <lear@lear.ch>
Message-ID: <168223d6-9199-9cfe-1eac-1653a22df4cd@lear.ch>
Date: Mon, 05 Jul 2021 10:31:53 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:78.0) Gecko/20100101 Thunderbird/78.11.0
MIME-Version: 1.0
In-Reply-To: <acea0962-cac6-4566-bd36-14d033320035@www.fastmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="8afaHhkfVGlxFsweOwJaEAaxQktHCTl3U"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ohttp/ipbjlSuCmDu1rKRmX6_EClea180>
Subject: Re: [Ohttp] Discovery
X-BeenThere: ohttp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Oblivious HTTP <ohttp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ohttp>, <mailto:ohttp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ohttp/>
List-Post: <mailto:ohttp@ietf.org>
List-Help: <mailto:ohttp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ohttp>, <mailto:ohttp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Jul 2021 08:32:03 -0000

Hi Martin,

This is close enough for me so long as it is understood that we address 
the two issues I mentioned:

> # Enterprise controls should not be subverted, especially when it's 
> unnecessary to do so in this particular case.  Mark accurately 
> described what I was referring to.
> # The risks of use of the mechanism need to be understood as part of its 
> applicability, particularly as relates to DNS and similar and the 
> masking of C&C networks.  That harms the Internet, and so is in scope.
Eliot

On 05.07.21 06:34, Martin Thomson wrote:
> Back from a short break; I'll take the opportunity to thank folks for the constructive discussion.
>
> I'm reading from the messages here that following DoH/ADD in ruling "discovery" topics completely off-limits was unwise and that this working group shouldn't repeat that mistake.  Put that way, the flaws in the proposed charter are just obvious.
>
> I've tried to amend the discussion on scope to accommodate that feedback, along the lines Jason suggested.  That is, keep the discussion of how OHTTP is used entirely in-scope, but prioritize the core protocol work.
>
> It's a small change, so here 'tis: https://github.com/unicorn-wg/ohttp-charter/pull/3
>
> +The working group will prioritize work on the core protocol elements as
> +identified.  Specific uses of this core protocol might need to describe
> +discovery methods or rely on configuration.  The working group may discuss and
> +document different deployment models.  The working group may publish protocol
> +mechanisms that support selected deployment models.
>
> This replaces existing text prohibiting work on discovery and would be in addition to the change I suggested earlier in response to Eliot's feedback.
>
> Does that work for people?
>

v2.23.0 | Report a Bug | By Email