IETF Logo Mail Archive

[Privacy-pass] Re: Whether to advance the Extensions and Public Metadata drafts

Christopher Wood <caw@heapingbits.net> Wed, 13 May 2026 16:34 UTC

Return-Path: <caw@heapingbits.net>
X-Original-To: privacy-pass@mail2.ietf.org
Delivered-To: privacy-pass@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id BD9C6EDD9169 for <privacy-pass@mail2.ietf.org>; Wed, 13 May 2026 09:34:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1778690073; bh=DFcfAh037XzhdTlGx2swTkR160z26GynvZ1aoFWZemc=; h=From:Subject:Date:In-Reply-To:Cc:To:References; b=ho33ctBzma66EsdVfwP+3u9yyBqdEMv2n8fz1+u9FCfmgU/pTtGzHe9tSyXyU7Tb3 +bPBmMBoXEUXuJ0ipq8oMSpb+C/39YP8YLiHOepyVyBi9MBSvTmIt+3VZbxDw9HyQ3 n8oHLyXINJkP1R5bvPMO2Qj1WstY/00rffypCpts=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.798
X-Spam-Level:
X-Spam-Status: No, score=-2.798 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=heapingbits.net header.b="Jjq5ys5s"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="cBHgDouG"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x9hT9tcxQi2g for <privacy-pass@mail2.ietf.org>; Wed, 13 May 2026 09:34:29 -0700 (PDT)
Received: from fhigh-a2-smtp.messagingengine.com (fhigh-a2-smtp.messagingengine.com [103.168.172.153]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 72794EDD688C for <privacy-pass@ietf.org>; Wed, 13 May 2026 09:31:27 -0700 (PDT)
Received: from phl-compute-04.internal (phl-compute-04.internal [10.202.2.44]) by mailfhigh.phl.internal (Postfix) with ESMTP id C4C60140017B; Wed, 13 May 2026 12:31:21 -0400 (EDT)
Received: from phl-frontend-03 ([10.202.2.162]) by phl-compute-04.internal (MEProxy); Wed, 13 May 2026 12:31:21 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=heapingbits.net; h=cc:cc:content-type:content-type:date:date:from:from :in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:subject:subject:to:to; s=fm3; t=1778689881; x= 1778776281; bh=Ex6rf62JTdPUw6MxAGC+NV3bF7jU4dVAlKDgVOtM/o0=; b=J jq5ys5sBD8zPe35CDRqkXHgHAfQSEWMNk5o2FL2TPkGRcoJsb9d5/KYnX8udMSn8 lCfl2/146xPVO2X6frzmacNuuSaJrLvvkmdpi0cHri7/E9czYZYuL4amvFEPnbdv qxqixU5eUZ7Iv5/bfWHtOyBQoVI7TlKIla860F+k3Nv3P9HJOHvadE+Kuqpzj2vQ U6XGh5jvAzuLXwYDZpM2/xl2Mr70dNWmx70RDN7+vzOyVEfcOOc8+nSpYSfXSzMl h06PK6WsAOy9nGjttPUHnjhs/cVSCF/PXOKkl3hcdf/GZjchz7FV6Dd76S7ZLdac rHRO/RdgGODmy7QJcS3Iw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-type:content-type:date:date :feedback-id:feedback-id:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:subject:subject:to :to:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t= 1778689881; x=1778776281; bh=Ex6rf62JTdPUw6MxAGC+NV3bF7jU4dVAlKD gVOtM/o0=; b=cBHgDouGGnAXSOJ4jB36Njy+VtHN4cMndx1iFwdjaymADR7jk8P wYfMU5WMFq6p1zDka2BmJ3Nl4NskIcsYUkMNh9Q3UaZ5TIIw/norF1+Dg9MAJli/ 5EarpSA1VKvUKU6HkrKIF9zVl9iRHwOs4xg5JJJlFFuPibP5267AOi7MyCZOPskM iL8OUrdK9ku+g0O9ZZRHhZ2diWdLQSSBQNVVFXyQYuPQgf0kv3Hzys0COqNL5diM sIufgDq+KLOOVYm1zQ++YKihu5YM+QUsAzOj6IKs+JqCYkY8i9gCwJ4kp2looHIk 8C5FN6tvod6/wuTJOyBgjTQNkcvUeClHcCQ==
X-ME-Sender: <xms:WacEaptAHSRy-wreQ0o_yI9iDu3G5JUeGzFFP64f7iUmWN8EXmSR4A> <xme:WacEailF9avqRVikxDUU5N97p6nIgjNHj-e0--yzRy6lPQA94lfb8iVlxDAxa5q7n _uylFr4PQqHN5zW6796lg5tfjQGhG9vHJFWmtOluf4tgRlSrDV6jWRT>
X-ME-Received: <xmr:WacEaktSMFELAnIQE9gmYnUGoh2JqrEOdGEJAp4fwuwByYQ4DuumGXWBeV_hl48VhKk6>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeefhedrtddtgdduvdehudegucetufdoteggodetrf dotffvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfurfetoffkrfgpnffqhgenuceu rghilhhouhhtmecufedttdenucenucfjughrpefhkfgtggfuffgjvefvfhfosegrtdhmre hhtdejnecuhfhrohhmpeevhhhrihhsthhophhhvghrucghohhougcuoegtrgifsehhvggr phhinhhgsghithhsrdhnvghtqeenucggtffrrghtthgvrhhnpeejkeeivdduhffhudeihf etlefgjeelffettdevudehleekgedtgfeggeeukeeujeenucffohhmrghinhepghhithhh uhgsrdgtohhmpdhivghtfhdrohhrghenucevlhhushhtvghrufhiiigvpedtnecurfgrrh grmhepmhgrihhlfhhrohhmpegtrgifsehhvggrphhinhhgsghithhsrdhnvghtpdhnsggp rhgtphhtthhopeegpdhmohguvgepshhmthhpohhuthdprhgtphhtthhopegushgthhhinh griihirdhivghtfhesghhmrghilhdrtghomhdprhgtphhtthhopehothdqihgvthhfseht hhhisggruhhlthdruhhkpdhrtghpthhtohepsggvmhgrshgtsehmvghtrgdrtghomhdprh gtphhtthhopehprhhivhgrtgihqdhprghsshesihgvthhfrdhorhhg
X-ME-Proxy: <xmx:WacEaocs1UV7DWrgl3ZLovhp_sbUgHEieufyCBCYYwRURcL13RDvhw> <xmx:WacEakxNI848ZjI0uGHnegT0-nkbiiTy1N4LPS8xa5Bd_9xjwZTY7Q> <xmx:WacEamE_qn8Yhc2T9ybjjNXyNpcZiobytjBV9co_5ZWBUlf8HO6LRA> <xmx:WacEagxYG4lpgnU22vmUx_eFfC_Oc-6Jo3s0trzE7eVMIJxJcuPIHA> <xmx:WacEakyZiGDkFyRF76CCl4CZbyi_U_wU6HhNa1slBQPzYnGtxywyDlzP>
Feedback-ID: i2f494406:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Wed, 13 May 2026 12:31:20 -0400 (EDT)
From: Christopher Wood <caw@heapingbits.net>
Message-Id: <EBBC6585-5405-4C14-A91A-DF3B19FB99AF@heapingbits.net>
Content-Type: multipart/alternative; boundary="Apple-Mail=_730856B3-125F-4E60-9AEC-4019134CAEFB"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3826.600.51.1.1\))
Date: Wed, 13 May 2026 12:31:10 -0400
In-Reply-To: <CAPDSy+5TWm7haw-mD+Dxw25A1OmRqmAzz-nde3xzH0ZUusgfjA@mail.gmail.com>
To: David Schinazi <dschinazi.ietf@gmail.com>
References: <CAOdQrVPHbzTmne9T9iQKChROtdEt2KAigyiLNEuQPZ=h=yiA=A@mail.gmail.com> <jRSwS0LSbPZKpIvcFDEiH7T_jQ66oexvPkm904WewGiIOez3LNhOVBeW1I3pTewpHDoV0pkId6NasaYOzXDuD7ntvwIlQ4KzbOI5-AwGvkE=@thibault.uk> <CAPDSy+5TWm7haw-mD+Dxw25A1OmRqmAzz-nde3xzH0ZUusgfjA@mail.gmail.com>
X-Mailer: Apple Mail (2.3826.600.51.1.1)
Message-ID-Hash: 6YMVPWK4EDKEPCRWTFOMSKHO7WVXOBWQ
X-Message-ID-Hash: 6YMVPWK4EDKEPCRWTFOMSKHO7WVXOBWQ
X-MailFrom: caw@heapingbits.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Thibault Meunier <ot-ietf@thibault.uk>, Ben Schwartz <bemasc@meta.com>, privacy-pass@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Privacy-pass] Re: Whether to advance the Extensions and Public Metadata drafts
List-Id: Privacy Pass Protocol <privacy-pass.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/privacy-pass/XZE7AfeZhrSJH6px5ztTh8C5aB0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/privacy-pass>
List-Help: <mailto:privacy-pass-request@ietf.org?subject=help>
List-Owner: <mailto:privacy-pass-owner@ietf.org>
List-Post: <mailto:privacy-pass@ietf.org>
List-Subscribe: <mailto:privacy-pass-join@ietf.org>
List-Unsubscribe: <mailto:privacy-pass-leave@ietf.org>

@David and Thibault: can you say what extension you’re using? Is it the expiration extension? Something else?

I am concerned about pushing a draft that has no concrete well-defined use case. If anything, I’d like to at least advance the expiration extension so we have documented evidence that the extension mechanism works as intended.

Best,
Chris

> On Apr 24, 2026, at 7:46 PM, David Schinazi <dschinazi.ietf@gmail.com> wrote:
> 
> +1 to what Thibault said. Google is also interested in seeing this work published, as we use it in production.
> 
> David
> 
> On Thu, Apr 23, 2026 at 9:19 AM Thibault Meunier <ot-ietf=40thibault.uk@dmarc.ietf.org <mailto:40thibault.uk@dmarc.ietf.org>> wrote:
>> Hi,
>> 
>> It seems the comments from last year for draft-ietf-privacypass-auth-scheme-extensions have been addressed on GitHub [3]. The draft did not made it to the datatracker for what I see though [4].
>> 
>> For draft-ietf-privacypass-public-metadata-issuance, no update has been made. So the nits that Tommy pointed out [5] about reference that needs to be updated to match RFCs and the fixed IANA values are still relevant.
>> 
>> >From implementation and production side, it's been stable on Cloudflare side during that time. There are implementation of the protocol in TypeScript [1], and in Rust - for which an early implementation [2] as been made public.
>> An implementation of the current revision of the drafts is actively used by Cloudflare in a production environment.
>> 
>> The perspective has not changed, and I think the documents are worth advancing to publication. The stability also reinforces that sentiment in my opinion.
>> 
>> [1] https://github.com/cloudflare/privacypass-ts/
>> [2] https://github.com/raphaelrobert/privacypass/pull/25
>> [3] https://github.com/ietf-wg-privacypass/draft-ietf-privacypass-auth-scheme-extensions
>> [4] https://datatracker.ietf.org/doc/draft-ietf-privacypass-auth-scheme-extensions/history/
>> [5] https://mailarchive.ietf.org/arch/msg/privacy-pass/xQDO-BYcYPUx-Y_hZ6PY0m-gA8Y/
>> 
>> Best,
>> Thibault
>> 
>> 
>> On Thursday, April 9th, 2026 at 23:13, Ben Schwartz <bemasc=40meta.com@dmarc.ietf.org <mailto:40meta.com@dmarc.ietf.org>> wrote:
>> 
>> > Hi PRIVACYPASS,
>> > 
>> > 
>> > 
>> > The working group currently has two drafts that have completed working group last call:
>> > 
>> > 
>> > 
>> > 1.  draft-ietf-privacypass-auth-scheme-extensions
>> >     
>> > 2.  draft-ietf-privacypass-public-metadata-issuance
>> >     
>> > 
>> > 
>> > 
>> > The working group’s exchanges during the last call in June 2025 [1] indicated significant interest in these drafts. However, perspectives may have changed in the intervening months due to new technical directions and changes in business priorities. It is the chairs’ impression that the authors are no longer strongly interested in advancing these documents to publication.
>> > 
>> > 
>> > 
>> > If you believe that these documents are worth advancing to publication, please reply in this thread. If the chairs do not see sufficient support, we will let these documents expire in their current state.
>> > 
>> > 
>> > 
>> > Regards,
>> > 
>> > Ben Schwartz, for the chairs
>> > 
>> > 
>> > 
>> > [1] https://mailarchive.ietf.org/arch/msg/privacy-pass/gHd1ItmVhpa2C9K-QECZMq1uIcI/
>> 
>> -- 
>> Privacy-pass mailing list -- privacy-pass@ietf.org <mailto:privacy-pass@ietf.org>
>> To unsubscribe send an email to privacy-pass-leave@ietf.org <mailto:privacy-pass-leave@ietf.org>
> -- 
> Privacy-pass mailing list -- privacy-pass@ietf.org
> To unsubscribe send an email to privacy-pass-leave@ietf.org

v2.46.0 | Report a Bug | By Email | System Status