Re: [regext] Alexey Melnikov's Discuss on draft-ietf-regext-login-security-07: (with DISCUSS and COMMENT)

"Hollenbeck, Scott" <shollenbeck@verisign.com> Mon, 27 January 2020 12:39 UTC

Return-Path: <shollenbeck@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 943E7120033; Mon, 27 Jan 2020 04:39:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FkrIuFe1AHgA; Mon, 27 Jan 2020 04:39:21 -0800 (PST)
Received: from mail4.verisign.com (mail4.verisign.com [69.58.187.30]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 62E37120026; Mon, 27 Jan 2020 04:39:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=1774; q=dns/txt; s=VRSN; t=1580128761; h=from:to:cc:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version:subject; bh=6bMOjRY2s9G8vzjzWPF59oHKUaCCUHxlWmBBHUFVqgM=; b=oeCMWinQRnoHvov79hysEworNhc8FobOMfl4EZsfyDdxGYZAnLRDahqn 5qEEfIHVxo154QO+/hseQDo1JKOIgRaMbRQpEhB17QpL7dJrswVgKu+3P 7VKpRSTpq7BoxyZG31WghxtNr76FxXpd7qMMJpsT/BxUyph7SivQSmzfR PdPWN4z79CKLWQ+uWCfT0Qllv8YRUy2jUMydoqcn6h3jbjWQeTD4XSRRq +OlyU+A9VpKwztlwtCaAkcJk82RTWtfvmNdhMOV0GHLiJr8WCN9olGPkp L7Gy7Bcixxlucr9oarE4HkhE0jTh/ppEF8Sww93FjNlx0wlqcuQ6oCBmg w==;
IronPort-SDR: 6oV04/aCWtXwynVeGYg/cG3ZdnEW2YkrUSsCbwpWZFTAMbTg7rG+mUspVgxltB7kg6wtBQiBHV lE2Xi8jl2RBcT0l41YA3PV+sbdWzoy3CZBO2GowXjw5YFlTWXw5vQJ4lHcLk45GVXe2QBN5ztF xAbBJONWVdPxgazzOiMyE06bKKtdv40Zma1kbs0yTcuWOeXc0p4MYbj0/BBscPNj/eMqDCp9Pc pv6sCn/oU5cGL6IpEihrnzEYA4MkzYEmOnuiMAuwy7mS7f6oNSmvivE95Z43hySCC98yw2008W g94=
X-IronPort-AV: E=Sophos;i="5.70,369,1574139600"; d="scan'208";a="531074"
IronPort-PHdr: =?us-ascii?q?9a23=3ACdUt4xDEMRNNArLjii2hUyQJP3N1i/DPJgcQr6?= =?us-ascii?q?AfoPdwSP34rs6wAkXT6L1XgUPTWs2DsrQY0raQ6PqrBTVIoc7Y9ixbK9oUD1?= =?us-ascii?q?5NoP5VtjRoONSCB0z/IayiRA0BN+MGamVY+WqmO1NeAsf0ag6aiHSz6TkPBk?= =?us-ascii?q?e3blItdaz6FYHIksu4yf259YHNbAVUnjq9Zq55IAmroQnLucQanIRvJrw/xx?= =?us-ascii?q?fXrXdFdPlazn5sKV6Pghrw/Mi98INt/ihKp/4t68tMWrjmcqolSrBVEC4oOH?= =?us-ascii?q?0v6s3xshnDQwqP5n8CXWgTjxFFHQvL4gzkU5noqif1ufZz1yecPc3tULA7Qi?= =?us-ascii?q?+i4LtxSB/pkygIKTg0+3zKh8NqjaJbpBWhpwFjw4PRfYqYOuZycr/bcNgHQ2?= =?us-ascii?q?dKQ8RfWDFbAo6kb4UBEfcPPfpWoYf+qVsBrxq+ChWjCuzg0TJImmT53a8m3+?= =?us-ascii?q?g9DQ3L3gotFM8OvnTOq9X1Mb8fXe63wqnPyTXDa+1Z2THm54fWbh8houmAVq?= =?us-ascii?q?9tf8XNzkkvCx/FgluNooHiJDOV1uMNs2yf7+V+U+KgkHAopB1yojW02McjlJ?= =?us-ascii?q?PJhoMOylDF+iV5xpw5KsG/SE5+eNOpFoZbuSKCN4ZuX88uX3tktDs4x7AIo5?= =?us-ascii?q?K3YSgHxZo9yxPQaPGLa5WE7g75WOqMIzp0mGhpdK+wihux60Ss1+7xWtG60F?= =?us-ascii?q?lUrSdJjtzBu3UP2hPP9sSIUP5w8lq91jmT0g3e6vxLLl46lafeL5Mu36M/mY?= =?us-ascii?q?QVvE/eBCH5gl/2g7WTdkg8/+io7Pnobav+q5+HMo90lhn+MqMzmsyjGeg4Mh?= =?us-ascii?q?YBX2yc+emkybDt4VX3TKhKgfMunafWsYzWKdkBqq6nHwBV1Zwj6w6lAzi8zd?= =?us-ascii?q?sUh2cHLEheeBKBlYTmJ1bOIPXgAfe+hVSjjitryujbMrH9GJnBM3rOnbn7cb?= =?us-ascii?q?pg60NRxhA/wN9c6p5MD7EOOvPzWkv/tNzCCR85NhS5w/3nCNV60oMeXXyAAq?= =?us-ascii?q?mCP6zMrVCI5fkiI/eSa48PuTb9MPkl5/HojXMjhVAdeqyp0YMNaH+kBvRmP1?= =?us-ascii?q?mZYX30j9cDHmcKuRc+TOj3h1CaXjNfe2iyULwm5jE6E4KmDIjDRoa3jLOd2y?= =?us-ascii?q?e7G4ZbaX1DCl+WC3fna5+IW/YSZyKOLM9tiDsEVaKuS4U5zxGhqBf6y6Z7Lu?= =?us-ascii?q?rT4iAXr4js1N1r6O3XkxEy9D90D8OD02yWQWF7hHgIRyMz3K9loEx9zk2P0a?= =?us-ascii?q?Z9g/ZAD9xc++tJUhsmNZ7b1+F1FsryVRjPfteVUVqmQ8upAS0/Tt4o2d8BfU?= =?us-ascii?q?l9FMutjxDfxiaqB7gVl7OKBJwy667cxGb+KNpgy3bc1akhk1knT9BONWK4mq?= =?us-ascii?q?5/+RLfB4nTk0WWj6yqb7gT3DbR9GefymqDpENYUQ5uXqrbRn0QfEXWrdX95k?= =?us-ascii?q?PDVbCuEq4rMgpHyc6MLatAcsfpgkleRPf/JNTeZHq8m2auChaTybOBd4vqdH?= =?us-ascii?q?sB3CXTEkQElBoT/XmePwgkGiihu37eDCBpFV/3eUPj7+Z+p220T08o1g2Fc0?= =?us-ascii?q?1h2KC0+h4PnvyRUPIT0awYuCcvsTl0G0y9393OAdqauwVhZLlcYc864Fpfz2?= =?us-ascii?q?LWqQN9MYKvLqB+nVMechp4v1/g1xltDYVAi8cq/zsWy184K62fzVdNIm/Aw5?= =?us-ascii?q?3qO6bWJW+09xeqQ6LT00vVlteb5qlJ7+434R23vg6uC04upik/zdRP0mCd6Z?= =?us-ascii?q?OMBw0XeZ70W1w8sRl3u7+cZTMyscecn3RlNKSwtD7B3MwBCuI+1hOpftMZPq?= =?us-ascii?q?bOXFv7GsgXA86vK+s0s1agdQ4BNeFWsqAxaZCIbfyDjeSLO+JkkTSsgG9EpM?= =?us-ascii?q?hG2UWQ62A0HvXI2JIBzveS0wCEfynxlla6s8/x34tDYGdBTSKE1SH4CdsJNe?= =?us-ascii?q?VJdoERBDL2Lg=3D=3D?=
X-IPAS-Result: =?us-ascii?q?A2HuAADP2C5e/zCZrQpmGwEBAQEBAQEFAQEBEQEBAwMBA?= =?us-ascii?q?QGBe4RGCoQKkTubOAkBAQEBAQEBAQEHAS8BAYRAAheCMTgTAgMBAQsBAQEEA?= =?us-ascii?q?QEBAQEFAwEBAQKGLII7IoNWAQEBAQMjETMSDAQCAQgRBAEBAwISAQwHAgICM?= =?us-ascii?q?BUICAIEAQ0FCLApdYEyikqBDiqMOIFCPoERgxM+hRECgkaCXgSQFjufBwMHg?= =?us-ascii?q?jmRGYUWI5p8jmCbDQIEAgQFAhWBaYF7cIM8UBgNlCSODnQKA4s0D4EigRABA?= =?us-ascii?q?Q?=
Received: from BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) by BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1779.2; Mon, 27 Jan 2020 07:39:16 -0500
Received: from BRN1WNEX02.vcorp.ad.vrsn.com ([fe80::7c0a:1cc:5def:9dde]) by BRN1WNEX02.vcorp.ad.vrsn.com ([fe80::7c0a:1cc:5def:9dde%4]) with mapi id 15.01.1779.002; Mon, 27 Jan 2020 07:39:16 -0500
From: "Hollenbeck, Scott" <shollenbeck@verisign.com>
To: "jgould=40verisign.com@dmarc.ietf.org" <jgould=40verisign.com@dmarc.ietf.org>, "aamelnikov@fastmail.fm" <aamelnikov@fastmail.fm>
CC: "draft-ietf-regext-login-security@ietf.org" <draft-ietf-regext-login-security@ietf.org>, "jyee@afilias.info" <jyee@afilias.info>, "iesg@ietf.org" <iesg@ietf.org>, "regext-chairs@ietf.org" <regext-chairs@ietf.org>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [EXTERNAL] Re: [regext] Alexey Melnikov's Discuss on draft-ietf-regext-login-security-07: (with DISCUSS and COMMENT)
Thread-Index: AQHV0jRMrbXI5IrAOkS/Jgs5lRVppKf524+AgADNSYCAA88aQA==
Date: Mon, 27 Jan 2020 12:39:16 +0000
Message-ID: <e0878ca58d7c4f01ab67e94b033cb8d8@verisign.com>
References: <157977713547.22794.12692666659052458667.idtracker@ietfa.amsl.com> <A5D19CB8-BEB8-4675-9C6E-43CE6C914464@verisign.com> <84A60049-F486-4428-B44F-33544B0A325D@fastmail.fm> <D04FA860-1793-4657-8AD8-F537814BD5D2@verisign.com>
In-Reply-To: <D04FA860-1793-4657-8AD8-F537814BD5D2@verisign.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.170.148.18]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/Sc81lmtFahhnDYnnZHsVqWxkfkY>
Subject: Re: [regext] Alexey Melnikov's Discuss on draft-ietf-regext-login-security-07: (with DISCUSS and COMMENT)
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Jan 2020 12:39:24 -0000

> -----Original Message-----
> From: regext <regext-bounces@ietf.org> On Behalf Of Gould, James
> Sent: Friday, January 24, 2020 4:25 PM
> To: Alexey Melnikov <aamelnikov@fastmail.fm>
> Cc: draft-ietf-regext-login-security@ietf.org; Joseph Yee <jyee@afilias.info>fo>;
> The IESG <iesg@ietf.org>rg>; regext-chairs@ietf.org; regext@ietf.org
> Subject: [EXTERNAL] Re: [regext] Alexey Melnikov's Discuss on draft-ietf-
> regext-login-security-07: (with DISCUSS and COMMENT)
> 
> Alexey,
> 
> I'll go ahead and add the following description of "whitespace" in section 1.1
> "Conventions Used in This Document":
> 
> "whitespace" is based on the definition for the XML schema whiteSpace
> datatype in [W3C.REC-xmlschema-2-20041028], which only includes the ASCII
> whitespace characters #x9 (tab), #xA (linefeed), #xD (carriage return), and
> #x20 (space).

I'd recommend stronger language. It's not just "based on" the definition for the XML schema whiteSpace datatype, that datatype is normatively incorporated by reference. Perhaps something like this:

'"whitespace" is defined by the XML schema whiteSpace datatype in [W3C.REC-xmlschema-2-20041028], which only includes the ASCII whitespace characters #x9 (tab), #xA (linefeed), #xD (carriage return), and #x20 (space).'

Scott