IETF Logo Mail Archive

Re: [Ohttp] Éric Vyncke's No Objection on charter-ietf-ohttp-00-02: (with COMMENT)

Martin Thomson <mt@lowentropy.net> Fri, 03 September 2021 04:00 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: ohttp@ietfa.amsl.com
Delivered-To: ohttp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 03D2B3A0AB4 for <ohttp@ietfa.amsl.com>; Thu, 2 Sep 2021 21:00:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=guIsikTA; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=RFp8NFC+
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DHbYnnei2OUC for <ohttp@ietfa.amsl.com>; Thu, 2 Sep 2021 20:59:59 -0700 (PDT)
Received: from wout3-smtp.messagingengine.com (wout3-smtp.messagingengine.com [64.147.123.19]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8DCC03A0AB3 for <ohttp@ietf.org>; Thu, 2 Sep 2021 20:59:59 -0700 (PDT)
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.west.internal (Postfix) with ESMTP id 3E6D63200944 for <ohttp@ietf.org>; Thu, 2 Sep 2021 23:59:57 -0400 (EDT)
Received: from imap41 ([10.202.2.91]) by compute5.internal (MEProxy); Thu, 02 Sep 2021 23:59:57 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :subject:content-type:content-transfer-encoding; s=fm3; bh=n7QLF cpcsvv5p0YeYheFGClvKw3vfqOEoAsuXq/BbBk=; b=guIsikTATfBLfB92uIaiU PM5LmybxlOarv8xPhO8miKdFRXnLibQcUHERg7ud3HrsTMnA/fB4Lglqq+l0ECav DKDzW5JMmRI50rJ+PMD9tfoiQPfdUNf/AeO8v/FBuOQWhhKU0gY8z7misPSWakZ9 0A+UhFVJ1ws4yyPR915Jt7JfxGkF6YZyvOZUxVfHfVewgLv33o769ZNAZ4Kaz1+x rJABz9s/2In8B1xQj7V8PMYzpj3c1ifKDjrfPpFZ3ExFCOCTU1mC5wfXyYNEnURf bM2HV7upnFXHrI8jaIGNvtlbiUtL08hBW68LVfErF27Lbs1YpCu8Yj2jOi43lc/K g==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm3; bh=n7QLFcpcsvv5p0YeYheFGClvKw3vfqOEoAsuXq/Bb Bk=; b=RFp8NFC+CCVmsN2CXl4pcqEz/4+jTn9gAK9AnVTNBp2PSARssbHULbSa0 pH7boTfJRLBk9iV4Et4FcJTdvKVzhFetcIq26eQI7iTbkSKUPV5i0qddvODv27Zw jKVm68lgkwbnXO3dO3L+y9jilA8xLvAnB/JSYmgrAvjSInRmVQjjv3USWauJdAFc +k89d/8dI7TSYbL/M/LIBwZYUr+7BZWj3DOz2OoIhe8293s6cde4dVXccBREgeIs 6An5VPuGoD78aAqmVFG9LD7jkAtnStZqaY1nDMp1WFRaBU5Nq/E4O2QS8kSbiqAE 36ZPgCKC1VrsumoVLyC9bxSxpIBAA==
X-ME-Sender: <xms:vJ0xYbXaDEW3IwteAcdIrSkcLScL7kOGhwBcFD0IGzExrxv2Anz1iw> <xme:vJ0xYTnZyc8e0oQzDu9jjjDHNHcgIWWQRM-fME6nYDxOFDlDlkzcs2RWzzK6VUhWp -5_UAkfGvXjgL9xMXY>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvtddruddviedgjeekucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefofgggkfgjfhffhffvufgtgfesth hqredtreerjeenucfhrhhomhepfdforghrthhinhcuvfhhohhmshhonhdfuceomhhtsehl ohifvghnthhrohhphidrnhgvtheqnecuggftrfgrthhtvghrnhepjefhffelheevudefje efvddvhfdvieetudehueffudevudeugeelfeffffelvdefnecuffhomhgrihhnpehgihht hhhusgdrtghomhenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfh hrohhmpehmtheslhhofigvnhhtrhhophihrdhnvght
X-ME-Proxy: <xmx:vJ0xYXYLB3g70WxZwdAjnbz9sqR9JGGp9cFXIfPrYGsNYOEPMoSSHA> <xmx:vJ0xYWVR95iw0JZPMt7ENL-9_l3otWPBZxlKzyc4av1KfI9Dh0XqhQ> <xmx:vJ0xYVkqzi8Dpgc8Hk2zsbG2Fpc9e4rYfmXR2kdHoY8GJDjNJJiL2w> <xmx:vJ0xYRwH-HVfvSSkt3cQglv9hn9_XA32Vs1LXr3lQy63YsOEK5874A>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 26F733C0EB6; Thu, 2 Sep 2021 23:59:56 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.5.0-alpha0-1126-g6962059b07-fm-20210901.001-g6962059b
Mime-Version: 1.0
Message-Id: <ba76f736-9e22-4a6f-ad14-6bcd9228c620@www.fastmail.com>
In-Reply-To: <162998036145.15536.790849841728558678@ietfa.amsl.com>
References: <162998036145.15536.790849841728558678@ietfa.amsl.com>
Date: Fri, 03 Sep 2021 13:59:35 +1000
From: Martin Thomson <mt@lowentropy.net>
To: ohttp@ietf.org
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ohttp/lXtsOTNvZFkZXLMzkX5qqR-flvs>
Subject: Re: [Ohttp] Éric Vyncke's No Objection on charter-ietf-ohttp-00-02: (with COMMENT)
X-BeenThere: ohttp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Oblivious HTTP <ohttp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ohttp>, <mailto:ohttp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ohttp/>
List-Post: <mailto:ohttp@ietf.org>
List-Help: <mailto:ohttp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ohttp>, <mailto:ohttp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Sep 2021 04:00:05 -0000

Sorry that I missed this earlier Éric,

On Thu, Aug 26, 2021, at 22:19, Éric Vyncke via Datatracker wrote:
> I second Rob's comment about Martin Thomson's draft in the charter [...]

This is pretty normal practice, but I'm ambivalent about it.  I'll ask for adoption for that draft either way.

> [...] and Ben's comment on the trust relationship.

I couldn't see a natural place to put some text on that.  I ended up concluding that it's a detail that I think better belongs in documents more than charters.  If you care to offer a suggestion, that would be helpful.

> Strongly support Jari's email about the name of this potential WG: using HTTP
> gives a hint to a generic HTTP proxy (and I was really confused when the
> charter was first discussed).

I don't agree with Jari to that degree.  But my opinion doesn't matter here.  Francesca is going to propose a less controversial name for the working group.
 
> Using "server might be able to build a profile of client activity by
> correlating requests from the same client over time" as a motivation for this
> WG is kind of weird since servers could still use cookies to do so (if I
> understand correctly).

Eric answered this.  The insight you might need here is that clients can know when this sort of privacy is desirable, and it's always a deliberate choice to include cookies in requests.  That profile won't accrue if clients don't actively enable it.  (And yes, you can read that as browser being complicit in the privacy disaster that cookies are, but I request that we not use this as another opportunity to discuss that topic.)

> Suggest s/plus any key configuration/plus any cryptographic materials
> configuration/ as "key" could be understood as "important" (I could even
> misunderstood its intended meaning! then s/key/important/ or s/key/required/).

The proposed changes in https://github.com/unicorn-wg/ohttp-charter/pull/8 should address that.
 
> The statement "the working group may work on other use cases and deployment
> models" is pretty broad and I would prefer to request a rechartering to address
> other use cases. OTOH, wokring on discovery of OHTTP proxies is perfectly fine
> to add to the charter.

This is the outcome of a lot of wrangling.  Let us not recapitulate that.
 
> Should there be a separate milestone for the applicability statement ?

I believe that the text in the proposed starting draft won't need too much more text to achieve the goal of explaining applicability, even if it might need more work.

Either way, chairs are able to add milestones with minimal overhead.  If the working group wants to make another document, that shouldn't be a problem.

> "The working group will prioritize work on the core protocol elements"
> prioritize against what since there is only one milestone ?

count(milestones) != count(things worked on); not only because we might add new milestones (as above), but because each milestone is a suite of interconnected work.

v2.23.0 | Report a Bug | By Email