[regext] draft-ietf-regext-rdap-redacted Support for Redaction by Replacement Value Method
"Gould, James" <jgould@verisign.com> Fri, 25 March 2022 15:32 UTC
Return-Path: <jgould@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 41FB83A15EC
for <regext@ietfa.amsl.com>; Fri, 25 Mar 2022 08:32:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001,
RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001,
T_FILL_THIS_FORM_SHORT=0.01, T_SCC_BODY_TEXT_LINE=-0.01,
URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key)
header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id VSjBubO-FFla for <regext@ietfa.amsl.com>;
Fri, 25 Mar 2022 08:32:52 -0700 (PDT)
Received: from mail3.verisign.com (mail3.verisign.com [72.13.63.32])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id 4A95A3A15E4
for <regext@ietf.org>; Fri, 25 Mar 2022 08:32:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple;
d=verisign.com; l=21472; q=dns/txt; s=VRSN; t=1648222373;
h=from:to:subject:date:message-id:mime-version;
bh=28zOEsbyeh1mQvwovJvCVpS9K9DaE8ri4Bk0RPk9S28=;
b=MXt7lV9qAlaXWlOKPUt6eLWPkjTOjPoXl9mW+0/PPmDzygMN4cmaWvd6
aT+MzW9uZAl8TRj2jfrRAhDwf7N0B67J8bmRlAGqPKjHvy1rIPO3L/zBO
xenTfidyih02771SFRB5x4voy/MQMaUg3Pg07jeI6x2IkfS7SR8Y4iFGQ
DnSQm1vZDdTrISUVW+gKQ1EgqNaHwy7KvEONbv4mwaMcZnSX2ctQwKOtl
fMoUS+eZT3f+xw2nhOVIatQCIsOVO9Mo+kA11/fCCZqFNCNmQjgVCvyoL
s++iRraGJZQIAVzDGNMVA6qlMPdVp3Aom06ZKhge+d8ZmiX3tpj9omaVD Q==;
IronPort-Data: A9a23:ZCgcB6jFNhoG8kD0iIIEiI3FX161aREKZh0ujC45NGQN5FlGYwSz9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IronPort-HdrOrdr: A9a23:ArjOUK9gdGUGpAfe+fVuk+DoI+orL9Y04lQ7vn2ZESYlEfBw5P
re/sjztCWE8Qr5N0tApTntAsO9qBDnhOZICOsqXYtKNTOO0ACVxepZgbcKtgePJ8SIzIFgPM
lbHpSWQ+eAaGSSxfyKhDVRWbwbsb66GY6T9IHj80s=
X-IronPort-AV: E=Sophos;i="5.90,209,1643673600";
d="png'150?scan'150,208,217,150";a="13925809"
Received: from BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) by
BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) with Microsoft SMTP Server
(version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
15.1.2375.24; Fri, 25 Mar 2022 11:32:50 -0400
Received: from BRN1WNEX01.vcorp.ad.vrsn.com ([10.173.153.48]) by
BRN1WNEX01.vcorp.ad.vrsn.com ([10.173.153.48]) with mapi id 15.01.2375.024;
Fri, 25 Mar 2022 11:32:50 -0400
From: "Gould, James" <jgould@verisign.com>
To: "regext@ietf.org" <regext@ietf.org>
Thread-Topic: draft-ietf-regext-rdap-redacted Support for Redaction by
Replacement Value Method
Thread-Index: AQHYQF2WLWRprBKlM0yuiWLai1jQCg==
Date: Fri, 25 Mar 2022 15:32:50 +0000
Message-ID: <20D6877F-EB15-4BF4-8F25-3235CD4C0BCD@verisign.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.54.21101001
x-originating-ip: [10.170.148.18]
Content-Type: multipart/related;
boundary="_004_20D6877FEB154BF48F253235CD4C0BCDverisigncom_";
type="multipart/alternative"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/NSXGe5IseVausXRuFiqKJMO5B38>
Subject: [regext] draft-ietf-regext-rdap-redacted Support for Redaction by
Replacement Value Method
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>,
<mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>,
<mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Mar 2022 15:32:57 -0000
There was discussion in the ICANN RDAP working group associated with the requirement for the “Registrar MUST publish an email address or a link to a web form for the email value to facilitate email communication with the relevant contact, but MUST NOT identify the contact email address”, based on the IRT.Draft Registration Data Policy (OneDoc). The question for the REGEXT working group is whether replacing a value with another value (e.g., anonymized email) is a form of redaction that needs to be supported in draft-ietf-regext-rdap-redacted. This was discussed with the editors of draft-ietf-regext-rdap-redacted, and we feel this is a form of redaction. Assuming that the first question is yes, replacing a value in the RDAP response is a form of redaction, then there were three options discussed to handle it: 1. Add a third redaction method to section 3 of draft-ietf-regext-rdap-redacted, with the name “Redaction by Replacement Value Method” and with the “method” value “replacementValue” to identify a field that had its value replaced. The concrete example is the use of the anonymized email value. 2. Extend #1 by making the redaction methods extensible with the definition of another JSON Values Registry type value of “redacted method”. The three redaction method type values of “removal” for Redaction by Removal Method, “emptyValue” for Redaction by Empty Value Method, and “replacementValue” for the new Redaction by Replacement Value Method would be initially registered. 3. Rescope draft-ietf-regext-rdap-redacted to cover special handling of RDAP response fields, where redaction is one form of special handling. An IANA registry would define an extensible set of special handling types. In discussing this with the editors of draft-ietf-regext-rdap-redacted, we feel that option #1 (Add a third redaction method) is the best option. We feel that option #1 addresses the concrete issue without unneeded complexity and is flexible enough to address other forms of replacement redaction, such as the use of a privacy proxy that is not the legal contact. The second question for the REGEXT working group is which option is desired to support redaction by replacement. Thanks, -- JG [cid:image001.png@01D8403C.0DF2C8E0] James Gould Fellow Engineer jgould@Verisign.com<applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com> 703-948-3271 12061 Bluemont Way Reston, VA 20190 Verisign.com<http://verisigninc.com/>
- [regext] draft-ietf-regext-rdap-redacted Support … Gould, James
- Re: [regext] draft-ietf-regext-rdap-redacted Supp… Hollenbeck, Scott