IETF Logo Mail Archive

Re: [regext] Alissa Cooper's Discuss on draft-ietf-regext-login-security-07: (with DISCUSS and COMMENT)

"Gould, James" <jgould@verisign.com> Tue, 21 January 2020 20:29 UTC

Return-Path: <jgould@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7ACB812001B; Tue, 21 Jan 2020 12:29:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WR8FqvDUcY3H; Tue, 21 Jan 2020 12:29:27 -0800 (PST)
Received: from mail2.verisign.com (mail2.verisign.com [72.13.63.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 60277120013; Tue, 21 Jan 2020 12:29:27 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=3614; q=dns/txt; s=VRSN; t=1579638568; h=from:to:cc:date:message-id:references:in-reply-to: content-id:content-transfer-encoding:mime-version:subject; bh=nFS9x/rGUeRz1MzSt2qSObXJTgi8BnnD9O0EK6vi8b0=; b=ICIQmuzwFaujpLEXgQLZrz3b8r4k05ZnIuDmfaWKP/WzPoZG07FUCXOv 6FOEtobRiLqGc6ugYwp2uzrOCxFfK0mDXk+hdXrLHQnFtho5Lz5CMH3n+ ur/o+WuaIOEY3TWTisCaOs6Q1hBaS2w2hhs+ZBaWTwI/ycL2z8qmlIxGP 8dEUD9pGqvjYbf3zUC48Kkskl7UJAOxEORbdjC4X9jtvbSnRfE5JYi4aC HgwJaIVxvQs6LvziXX/tDpEK4HpmZTCTezwMXjMV87KW+Q6pgkQHyawzH sFqik6mjdi+ok001rYCpC++lqKAkeD2EOiksNVTOsSGRAVwSWcsdW9hXV Q==;
IronPort-SDR: DUlrUlo3ZhWJg5lYaMIJhjkDBFveOpu8B8IeVo6fOtV6z60PdQIWCM29X3tUW8DsfcoGlfpIni 8YjwvcVfqK6FKHe8DEcFIXYTYNRzOm+P8IBr3ykRHC+ObLSw8fYwPMPrHP5E6MgXEOErhYp/Re Ogi9WNdCi4FSh4gOWmicF2wFl7UNi6CnhWIRP36Q+/2oX+JhqdCOMcYBDv3ylz7DydEy2700Z1 Rt0S/XPYpmuwRXVU+aC1IkJbyUOVScE62d+KF88P49hv5YHCQBLwK1pfev5lpR7JXMY9hRT1HE QiI=
X-IronPort-AV: E=Sophos;i="5.70,347,1574121600"; d="scan'208";a="34594"
IronPort-PHdr: 9a23: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
X-IPAS-Result: A2G+AACsXide/zGZrQpiAxsBAQEBAQEBBQEBAREBAQMDAQEBgXuBfYEYgTEKhAiVGZVigSsXJQkBAQEBAQEBAQEHARMQDAEBAoQ+AheCIDgTAgMBAQsBAQEEAQEBAQEFAwEBAQKGIAyCOykBaS8JOQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQUCCAc0GQc1EgEfBiMRRRACAQgaAhIBDAcCAgIwFRACBAENBYJbSwGDCq8agTKESUGFM4EOKowugUI+gTgggkw+gmQCAQIBgSwBEgEJFgwLCiYBAoJGMoIsBI1cgnWeEXADB4I5hz2JVnmEOQeCR3iHEpAmjl6HUYEQkiUCBAIEBQIVgWmBClgRCHAVZQGCQQlHGA2IOYM7hRSFP3QCCAMBJIsaD4EigRABAQ
Received: from BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) by BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1779.2; Tue, 21 Jan 2020 15:29:22 -0500
Received: from BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d]) by BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d%5]) with mapi id 15.01.1779.002; Tue, 21 Jan 2020 15:29:22 -0500
From: "Gould, James" <jgould@verisign.com>
To: Alissa Cooper <alissa@cooperw.in>, The IESG <iesg@ietf.org>
CC: "draft-ietf-regext-login-security@ietf.org" <draft-ietf-regext-login-security@ietf.org>, Joseph Yee <jyee@afilias.info>, "regext-chairs@ietf.org" <regext-chairs@ietf.org>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [EXTERNAL] Alissa Cooper's Discuss on draft-ietf-regext-login-security-07: (with DISCUSS and COMMENT)
Thread-Index: AQHV0Il8v+fZnTSQj0mz15FH3ztoKKf1kd0A
Date: Tue, 21 Jan 2020 20:29:22 +0000
Message-ID: <EC1107F4-F10D-43AC-91F3-2DFFC9367CE4@verisign.com>
References: <157963169723.28975.13207875348171735731.idtracker@ietfa.amsl.com>
In-Reply-To: <157963169723.28975.13207875348171735731.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.12.200112
x-originating-ip: [10.170.148.18]
Content-Type: text/plain; charset="utf-8"
Content-ID: <AD2FFE7A837C3D41AF643E390F4B4781@verisign.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/Am6pDRwuYNiT5VHfWUMO3KUw-cE>
Subject: Re: [regext] Alissa Cooper's Discuss on draft-ietf-regext-login-security-07: (with DISCUSS and COMMENT)
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jan 2020 20:29:30 -0000

Alissa,

Thank you for your review and comments.  I answer your question below.

-- 
 
JG



James Gould
Distinguished Engineer
jgould@Verisign.com <applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com>

703-948-3271
12061 Bluemont Way
Reston, VA 20190

Verisign.com <http://verisigninc.com/>

On 1/21/20, 1:34 PM, "Alissa Cooper via Datatracker" <noreply@ietf.org> wrote:

    Alissa Cooper has entered the following ballot position for
    draft-ietf-regext-login-security-07: Discuss
    
    When responding, please keep the subject line intact and reply to all
    email addresses included in the To and CC lines. (Feel free to cut this
    introductory paragraph, however.)
    
    
    Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
    for more information about IESG DISCUSS and COMMENT positions.
    
    
    The document, along with other ballot positions, can be found here:
    https://datatracker.ietf.org/doc/draft-ietf-regext-login-security/
    
    
    
    ----------------------------------------------------------------------
    DISCUSS:
    ----------------------------------------------------------------------
    
    Perhaps some simple questions (apologies if I'm missing something obvious):
    since there is no registry of custom events, how do developers of independent
    implementations know which custom events they should be aiming to support? And
    how do they understand the semantics associated with custom events beyond what
    the event names can convey?
    
JG - The custom security event is following an EPP extensibility pattern that has been used in prior EPP RFCs (e.g., Launch Phases in RFC 8334, Contact Types in RFC 8543, Operations in RFC 8590).  The definition of the custom events can take many forms, such as inclusion in a server policy document or use of an in-band policy query interface.  The EPP policy extension draft-gould-regext-login-security-policy is an example of an EPP query interface for draft-ietf-regext-login-security. 
 
    ----------------------------------------------------------------------
    COMMENT:
    ----------------------------------------------------------------------
    
    = Section 5 =
    
    "One schema is presented here that is the EPP Login Security Extension
       schema."
    
    This phrasing seems a little odd (is there more than one schema?). I would
    suggest "The EPP Login Security Extension schema is presented here."
    
   JG - I like your suggested phrase better.  I'll make that change.

v2.23.0 | Report a Bug | By Email