Re: [regext] Roman Danyliw's No Objection on draft-ietf-regext-rdap-reverse-search-25: (with COMMENT)

Roman Danyliw <rdd@cert.org> Mon, 25 September 2023 20:55 UTC

Return-Path: <rdd@cert.org>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 83B39C131954; Mon, 25 Sep 2023 13:55:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uBdvXNr1C7GA; Mon, 25 Sep 2023 13:55:43 -0700 (PDT)
Received: from USG02-CY1-obe.outbound.protection.office365.us (mail-cy1usg02on0132.outbound.protection.office365.us [23.103.209.132]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 50C1FC17CEAA; Mon, 25 Sep 2023 13:55:38 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=Z+CPVh42fQ0P8xJ7fhP7yhfHbEYKEY9fKEBzf6pbcRknuYJuj4rj8ofi5TuRPvPDUqlmHCWToYZu3TrxSc3u9m5cG2e4lzDfpNgobf9svJalNG1lmxluMF/n6mXVz35/pCaAFFCgCB81r3DOWLN0Mj8iR3mIVVgYV4WgAC+54K0fWjOU8pHWAmRW99N8TFvVQc5ePAIeXNc3PISkprGJ0Ka0u6DDYhEkp70yS0pleQKG0YPpjBxLOWs7oeraON18ye7oTc9iZZczUjsIfIkmF+NU96qogowjGVj9YR2NuuwNE8mBP4OHaWJOyoSDFQOaQUAn1Y7/ekYr6jxhTDqvZg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=sfvRUy+qcRlibXP2Ubw9jzLAnH+EFVk6pEP4fhi3Wps=; b=RNhlTgSKF7iyEwOj7jSdSrMsDpROUus8hxXJSZo+lrU1xPHiTUtsElYnf7soiAm/2eYKpvFpgESnhjwiovVvMtHC7GLXhyzJwbUFh2PiBv055jMHzLlI1Y6nhQCmAfKiDl4f3u09mbVfJTapoJyg4clRFaa5PU5iBAwdL5bJIsC7oDC0IBckcjiJ1QMG+DjcqGHV3kyIQHa66wgwNHzhB7Fg0Q3VqYHE7bcZbz9jTvKwIolqUQM8Z2mp3k+DvpHYXT5xfaXD0DEQZxKL+40Y8mENQFg4iI5RcJQSfhBMQGKJJw8PdyPtnf9eYudTmhier9SwVboKIqbaHG1ZjR7pBA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cert.org; dmarc=pass action=none header.from=cert.org; dkim=pass header.d=cert.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=sfvRUy+qcRlibXP2Ubw9jzLAnH+EFVk6pEP4fhi3Wps=; b=i4Pq9ZzLhCXnZ3UT+G7SrMXTCXjogWahP8tzYmscvHVQfs6FTtb7FcMo/VOvZXNMAAuLEUbFbJZ1FXnhtRh1w65CCA8NE/j+bYukaMDZvrVTPp//drF575t7RuuHOgG9HHyg4LRoJhnY/xtYLlB2wRNVWYOD1Zs+ZzTN/okDzWs=
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:168::11) by BN2P110MB1746.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:16a::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6792.35; Mon, 25 Sep 2023 20:55:36 +0000
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::bfda:147a:798b:d13a]) by BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::bfda:147a:798b:d13a%6]) with mapi id 15.20.6792.035; Mon, 25 Sep 2023 20:55:36 +0000
From: Roman Danyliw <rdd@cert.org>
To: Mario Loffredo <mario.loffredo@iit.cnr.it>, The IESG <iesg@ietf.org>
CC: "draft-ietf-regext-rdap-reverse-search@ietf.org" <draft-ietf-regext-rdap-reverse-search@ietf.org>, "regext-chairs@ietf.org" <regext-chairs@ietf.org>, "regext@ietf.org" <regext@ietf.org>, "tomh@apnic.net" <tomh@apnic.net>
Thread-Topic: Roman Danyliw's No Objection on draft-ietf-regext-rdap-reverse-search-25: (with COMMENT)
Thread-Index: AQHZ2zvjOrHyqkImhEmQqxfibYyppbAFzaQAgCZe9AA=
Date: Mon, 25 Sep 2023 20:55:36 +0000
Message-ID: <BN2P110MB110727B1AB2EC14463185C47DCFCA@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM>
References: <169339781569.36762.10311804866233525273@ietfa.amsl.com> <f8493b40-2bbc-d75e-6d5e-dc7c3da8ad32@iit.cnr.it>
In-Reply-To: <f8493b40-2bbc-d75e-6d5e-dc7c3da8ad32@iit.cnr.it>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cert.org;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BN2P110MB1107:EE_|BN2P110MB1746:EE_
x-ms-office365-filtering-correlation-id: f01a57b8-6830-4ada-24dd-08dbbe09c4ab
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(136003)(39830400003)(366004)(396003)(230922051799003)(1800799009)(186009)(451199024)(9686003)(53546011)(66899024)(71200400001)(6506007)(7696005)(83380400001)(82960400001)(166002)(122000001)(41320700001)(33656002)(86362001)(38070700005)(38100700002)(26005)(55016003)(2906002)(52536014)(110136005)(8936002)(8676002)(4326008)(41300700001)(66556008)(64756008)(66446008)(54906003)(66946007)(66476007)(966005)(76116006)(5660300002)(508600001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: jgLEvi4Ghxo4vvcKyVALrrPx24O3uWZfwjNCBuBKqdgwbFfpoYfVhkDQwAZmMBMPAuAigrb3is/RODDZL4z1lMOhy1vEMDCNr+vlgbpcot6SDIDl6KmS7BIda6D1g7bxmLoubnLpzCSWv2+R7TM8kYhQwgmRhbH1ngFNiwht67jFc0QAb2gf9Bv70sHo/tQfuIe8qe9PwmilJTPGPYQ7OZmOwTZTUPm8WvKeUycm2QWHnItZmrKsNuSIwn7J1p68+bKYQoh6I1ePeonQRJYC44FyovrKhU4q/8o1iO3yDa2RQe+yMxyLmwzY9BQITJKj0A5h/aBiQkolZuz0f4r883wZn2VmyyRzrAbsAGcgrHgSllLUqBxbjJeSsWzX1iPb9smToKfvoaGz+UfmzRp/r1l9vu5WancAcsxP30IqiPw=
Content-Type: multipart/alternative; boundary="_000_BN2P110MB110727B1AB2EC14463185C47DCFCABN2P110MB1107NAMP_"
MIME-Version: 1.0
X-OriginatorOrg: cert.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: f01a57b8-6830-4ada-24dd-08dbbe09c4ab
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Sep 2023 20:55:36.6154 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 95a9dce2-04f2-4043-995d-1ec3861911c6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN2P110MB1746
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/PCymquAzMXWBamMli-56mC-iGXw>
Subject: Re: [regext] Roman Danyliw's No Objection on draft-ietf-regext-rdap-reverse-search-25: (with COMMENT)
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Sep 2023 20:55:47 -0000

Hi Mario!

Thanks for the response.  Response inline …

From: Mario Loffredo <mario.loffredo@iit.cnr.it>
Sent: Friday, September 1, 2023 6:50 AM
To: Roman Danyliw <rdd@cert.org>; The IESG <iesg@ietf.org>
Cc: draft-ietf-regext-rdap-reverse-search@ietf.org; regext-chairs@ietf.org; regext@ietf.org; tomh@apnic.net
Subject: Re: Roman Danyliw's No Objection on draft-ietf-regext-rdap-reverse-search-25: (with COMMENT)


Hi Roman,

please find my comments below.
Il 30/08/2023 14:16, Roman Danyliw via Datatracker ha scritto:

Roman Danyliw has entered the following ballot position for

draft-ietf-regext-rdap-reverse-search-25: No Objection



When responding, please keep the subject line intact and reply to all

email addresses included in the To and CC lines. (Feel free to cut this

introductory paragraph, however.)





Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/

for more information about how to handle DISCUSS and COMMENT positions.





The document, along with other ballot positions, can be found here:

https://datatracker.ietf.org/doc/draft-ietf-regext-rdap-reverse-search/







----------------------------------------------------------------------

COMMENT:

----------------------------------------------------------------------



Thank you to Tero Kivinen for the SECDIR review.



Thanks for address my DISCUSS feedback.



I support Lars Eggert's DISCUSS position.



==



** Section 1.

   The first objection concerns the potential risks of privacy

   violation.



Where are these privacy concerns summarized?  Could a reference be provided?





[ML] Guess you think your remark hasn't yet been addressed by the new version.

Considering that the implications on privacy are presented in more detail in the "Privacy Considerations" section, could it be enough to rewrite that sentence as in the following ?

The first objection concerns the potential risks of privacy violations resulting from the use of personal data and the detection of facts about an individual when the requestor is not supported by lawful basis.



I'm not aware of any document describing those concerns. When I wrote the "Privacy Considerations" section, I started from the threats listed in RFC6973 and I tried to identify those which could fit in with the reverse search.

Afterwards, RegExt considered that section exhaustive enough to conclude the discussion about the privacy concerns.

[Roman] The Privacy Considerations and the inline text make the issue clear.  I was reacting to the following text:
   its
   availability as a standardized Whois [RFC3912] capability has been
   objected to for two main reasons, which now don't seem to conflict
   with an RDAP implementation.

[Roman] My recommendation was that if there was a way to cite the objections to whois, it would be helpful (instead of asserting there were objections without a reference).  If this is not easy to do, then please ignore the feedback.

Thanks,

Roman