Re: TSP version 03
"David P. Kemp" <dpkemp@missi.ncsc.mil> Thu, 23 September 1999 13:59 UTC
Received: from mail.proper.com (mail.proper.com [206.86.127.224]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id JAA06948 for <pkix-archive@odin.ietf.org>; Thu, 23 Sep 1999 09:59:00 -0400 (EDT)
Received: from localhost (daemon@localhost) by mail.proper.com (8.9.3/8.9.3) with SMTP id GAA11402; Thu, 23 Sep 1999 06:54:30 -0700 (PDT)
Received: by mail.imc.org (bulk_mailer v1.12); Thu, 23 Sep 1999 06:54:18 -0700
Received: from stingray.missi.ncsc.mil (stingray.missi.ncsc.mil [144.51.50.20]) by mail.proper.com (8.9.3/8.9.3) with ESMTP id GAA11376 for <ietf-pkix@imc.org>; Thu, 23 Sep 1999 06:54:17 -0700 (PDT)
Received: from stingray.missi.ncsc.mil (root@localhost) by stingray.missi.ncsc.mil with ESMTP id JAA06735 for <ietf-pkix@imc.org>; Thu, 23 Sep 1999 09:58:45 -0400 (EDT)
Received: from missi.ncsc.mil (depot.missi.ncsc.mil [144.51.60.1]) by stingray.missi.ncsc.mil with ESMTP id JAA06731 for <ietf-pkix@imc.org>; Thu, 23 Sep 1999 09:58:45 -0400 (EDT)
Received: from ara.missi.ncsc.mil (ara.missi.ncsc.mil [144.51.58.9]) by missi.ncsc.mil (8.8.8/8.8.8) with ESMTP id JAA13490 for <ietf-pkix@imc.org>; Thu, 23 Sep 1999 09:58:07 -0400 (EDT)
Received: from ara.missi.ncsc.mil (ara.missi.ncsc.mil [144.51.58.9]) by ara.missi.ncsc.mil (8.9.1b+Sun/8.9.1) with SMTP id JAA09452 for <ietf-pkix@imc.org>; Thu, 23 Sep 1999 09:55:46 -0400 (EDT)
Message-Id: <199909231355.JAA09452@ara.missi.ncsc.mil>
Date: Thu, 23 Sep 1999 09:55:46 -0400
From: "David P. Kemp" <dpkemp@missi.ncsc.mil>
Reply-To: "David P. Kemp" <dpkemp@missi.ncsc.mil>
Subject: Re: TSP version 03
To: ietf-pkix@imc.org
MIME-Version: 1.0
Content-Type: TEXT/plain; charset="us-ascii"
Content-MD5: wuzCRuxk3laAIcax628Q4w==
X-Mailer: dtmail 1.3.0 CDE Version 1.3 SunOS 5.7 sun4u sparc
Precedence: bulk
List-Archive: http://www.imc.org/ietf-pkix/mail-archive/
List-Unsubscribe: mailto:ietf-pkix-request@imc.org?body=unsubscribe
John, A comment on item ii): an explicit version number field is the traditional means of allowing a protocol engine to determine that it does not understand a PDU from a later version of the protocol, but it is not a particularly good or useful means. 1) The presence or absence of a version number is immaterial to the ability to accommodate future changes. If a v1 engine encounters a PDU with an explicit version number of v2, what can it do other than say "I don't understand". How is this different from omitting the version number and including v2 data that is not legal in v1 of the protocol - the engine still says "I don't understand", and can still take action identical to what it would have taken upon encountering an unrecognized explicit version number. 2) If a particular data item is legal in both v1 and v2, but the semantics of the datum are affected by the version number, then I would say the v2 protocol design is botched. 3) A version number offers no guidance on where the protocol may be extended in the future (i.e. items may be added to this list, values may be added to this enumeration, the legal range of this item may be extended, etc). A version number offers no guidance on what action should be taken when encountering data from a future version. In short, saying "add an explicit version number field" to allow for future changes is both easy and ineffective. A harder but better suggestion would be to define where the protocol might be extended in the future and what should be done on encountering data from beyond the supported version. Dave Kemp Note: I take no credit for the above - it is taken wholesale from Prof. Larmouth's discussion of extensibility and exceptions in "ASN.1 Complete". > From: John_Wray@iris.com > Subject: Re: TSP version 03 > To: Denis Pinkas <Denis.Pinkas@bull.net> > Cc: IETF-PXIX <ietf-pkix@imc.org> > > Denis, > > The TSP-over-TCP protocol defined in the new draft suffers from some of the > same problems we found in the CMP-over-TCP protocol in RFC 2510. I would > suggest that the changes recommended in the new > draft-ietf-pkix-cmp-tcp-00.txt be applied to TSP-over-TCP as well. These > changes include: > > i) Changing the "poll time" from an absolute time to a delta time. This > is more robust than an absolute time in the event of a clock-skew between > requester and responder, and also doesn't suffer from the Y2038 problem. > > ii) Changing the protocol to contain an explicit version number field to > allow for future changes. > > iii) Specifying whether the TCP connection may remain up to carry multiple > TSP requests, and which end is responsible for closing it. > > John
- TSP version 03 Denis Pinkas
- Re: TSP version 03 John_Wray
- Re: TSP version 03 David P. Kemp
- RE: TSP version 03 Salz, Rich
- RE: TSP version 03 David P. Kemp
- Re: TSP version 03 Paul Koning
- RE: TSP version 03 Paul Koning
- RE: TSP version 03 Salz, Rich
- Re: TSP version 03 Ronald Tschalär
- Re: TSP version 03 David P. Kemp
- Re: TSP version 03 Ronald Tschalär
- Re: TSP version 03 Rich Salz
- Re: TSP version 03 Life is hard, and then you die.
- Re: TSP version 03 Paul Koning