Re: [regext] Genart last call review of draft-ietf-regext-epp-eai-10

["Gould, James" <jgould@verisign.com>]

Pete, 

This is a follow-up to your review feedback.  For your major issue, the proposal for “alternate ASCII address” in the message (https://secure-web.cisco.com/1P5eTKqxXvq3fcg13aFHNqKcvPh6yMCpA_0bCwU6cuxzqRId-u7OTrtrNMlPz-ldfcyeyXrMZPzZf1E6qlzoaH6g2rKUMM5T3cweZ0jQrw3WRv_8yfu1ueci6tHGEdfNggSoybH3k-TXVNGEtwXx5PKd93AECv02QGyXmwpS0lEvUJkllyn7s-D-NL-QTnoJZXRTJ1EHR7e04hYK4IxVbmM16qGiSlTmEPUK8XdaNUXD0Du397IW9o3SGL8f2EyWh/https%3A%2F%2Fmailarchive.ietf.org%2Farch%2Fmsg%2Fregext%2FljIoGJtWaiLv8gw4SsSQVOs0xsM%2F ) is to remove the statements from section 5.3.2 since they are associated with registrar (client) policy.  This will be incorporated in the -15 draft.  Below are the proposed statements to be removed for quick reference:

1. Delete "It can be an extra ASCII email address collected by registrar or registrar-provided proxy email address." from the fifth bullet in section 5.3.2.
2. Delete “The provided address can be an extra ASCII email address collected by registrar or registrar-provided proxy email address." from the last bullet in section 5.3.2.  

Does this address your feedback?  If so, can you clear the GENART "On the Right Track" status?

Thanks,

-- 
 
JG



James Gould
Fellow Engineer
jgould@Verisign.com <applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com>

703-948-3271
12061 Bluemont Way
Reston, VA 20190

Verisign.com <http://verisigninc.com/>

On 7/26/22, 2:37 PM, "Gould, James" <jgould@verisign.com> wrote:

    Pete,

    We addressed some of your feedback (Minor issues and Nits/editorial comments) in draft-ietf-regext-epp-eai-13 and I responded to your Major issues below.  Do the updates made in draft-ietf-regext-epp-eai-13 and the explanation for your Major issues address your feedback or is more needed?  There was a follow-on thread with John C Klensin, Martin J. Dürst, and Dmitry Belyavsky that didn't look to result in any needed changes to the draft.  

    Thanks,

    -- 

    JG



    James Gould
    Fellow Engineer
    jgould@Verisign.com <applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com>

    703-948-3271
    12061 Bluemont Way
    Reston, VA 20190

    Verisign.com <http://secure-web.cisco.com/1Nr_Y45uTJ1KFJh5nTT3LQERh5zMr_ptgIfYOoPxKRHO674hAlBCZbSRvp8Rdl2UodIv9w9Jx9kDlRNejtWciH2BoxpMKmPcCqgJ4euGHQsVDV6pFWt67W9wDHzmZh2hjvGNkmWlFSvwGTpcaDmWzHKF1sUghZyEUIjMLt-o4YfEHLsnyi_pPDnEtyGUtczI_hzGdP0afwa8wX7DVuSGbmttWe_fdgtpunDA_G_5c0CoPvqdTw4XHbQaf5oWkH2QI/http%3A%2F%2Fverisigninc.com%2F>

    On 6/1/22, 4:23 PM, "Gould, James" <jgould@verisign.com> wrote:

        Pete, 

        Thanks for the review and feedback.  My responses are embedded below prefixed with "JG - ".  

        -- 

        JG



        James Gould
        Fellow Engineer
        jgould@Verisign.com <applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com>

        703-948-3271
        12061 Bluemont Way
        Reston, VA 20190

        Verisign.com <http://secure-web.cisco.com/1Nr_Y45uTJ1KFJh5nTT3LQERh5zMr_ptgIfYOoPxKRHO674hAlBCZbSRvp8Rdl2UodIv9w9Jx9kDlRNejtWciH2BoxpMKmPcCqgJ4euGHQsVDV6pFWt67W9wDHzmZh2hjvGNkmWlFSvwGTpcaDmWzHKF1sUghZyEUIjMLt-o4YfEHLsnyi_pPDnEtyGUtczI_hzGdP0afwa8wX7DVuSGbmttWe_fdgtpunDA_G_5c0CoPvqdTw4XHbQaf5oWkH2QI/http%3A%2F%2Fverisigninc.com%2F>

        On 6/1/22, 1:14 PM, "Pete Resnick via Datatracker" <noreply@ietf.org> wrote:

            Reviewer: Pete Resnick
            Review result: On the Right Track

            I am the assigned Gen-ART reviewer for this draft. The General Area
            Review Team (Gen-ART) reviews all IETF documents being processed
            by the IESG for the IETF Chair.  Please treat these comments just
            like any other last call comments.

            For more information, please see the FAQ at

            <https://secure-web.cisco.com/1K6cgCFLakXfTnPIeaE2ZwevlkM0KiD6YlQuPilL-K-FXI75spzFhwPbrTminlCoOV1FdlZ-bTNGfTViEpxNNwpy3pP1zuhfVsE4ZUjY7vULMuNEt3p-qQ62KtoXfXHC_KpjCFJHvW7GqkJC_qLRyJ-N78dFJBhWHSKNXlYl2cJL2QXsuMUzInqccq9AGZZJodZnSZU_J1df7jwu242lQtR1zAq0RHYomOugyloQ1oaUDFUXOeh3j2WkUwpPpY3hA/https%3A%2F%2Ftrac.ietf.org%2Ftrac%2Fgen%2Fwiki%2FGenArtfaq>.

            Document: draft-ietf-regext-epp-eai-10
            Reviewer: Pete Resnick
            Review Date: 2022-06-01
            IETF LC End Date: 2022-06-09
            IESG Telechat date: Not scheduled for a telechat

            Summary:

            I think this proposal is reasonable, but I don't think enough explanation has
            been given regarding the case where one side supports the protocol but the
            other side doesn't.

            Major issues:

            The last bullet item in section 5.3.2 talks about "alternative ASCII address",
            but I don't see anywhere in the document which defines how to provide an
            alternative ASCII address in the data. For example, RFC 5733 implies that there
            will be only one email address in the Contact Mapping; can an implementation
            simply add a second? Does the server then need to distinguish these by the
            presence or absence of non-ASCII characters to determine which is an EAI and
            which is an alternative ASCII address? At the very least, some discussion of
            this seems necessary in the document.

        JG - The reference to the "alternative ASCII email address" is for the client (registrar) when it's recognized that the server does not support EAI.  If the registrar collected an EAI address and an ASCII address, then the ASCII address MUST be provided; otherwise, the optional property SHOULD be omitted.  The use of an ASCII proxy email address can be used as well.  In this case, the server does not support EAI addresses, so it's up to the EAI-supporting client to handle it.  Most likely the server validates that the address is only an ASCII address, but there is no guarantee of it.   

            Minor issues:

            In the bullets in section 5.3.2, there are quite a few SHOULDs with no
            explanation of why one might choose to violate these. Why are these not MUSTs?
            I can't think of any reason, for example, that the server would not validate
            the email property, and it seems like a really bad idea not to.

        JG - I cover each of the SHOULDs below:

        1. For the required email property with a client that doesn't signal support for EAI, the server needs to satisfy the negotiated services . This should be a MUST to comply with the negotiated namespaces, since the downside is that the client will receive an error response with an info command if they still don't support EAI in the login services.   The error response is a MUST in the third bullet.
        2. For the optional email property falls the same case as the required email property, since the info response will result in an error.  It should be a MUST as well.  The error response is a MUST in the fourth bullet.


            Nits/editorial comments:

            Abstract: Strike the word "appearing"

        JG - Yes, that can be removed.

            Section 3: Change "By applying the syntax rules of [RFC5322]" to "By applying
            the syntax rules of [RFC6532]"

        JG - I'll leave this one for Dmitry to respond to, but changing RFC5322 to RFC6532 looks correct to me.