Re: [regext] Fwd: New Version Notification for draft-regext-brown-epp-ttl-03.txt
Rick Wilhelm <Rwilhelm@PIR.org> Mon, 28 November 2022 11:05 UTC
Return-Path: <Rwilhelm@PIR.org>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 94513C1522BA for <regext@ietfa.amsl.com>; Mon, 28 Nov 2022 03:05:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.794
X-Spam-Level:
X-Spam-Status: No, score=-1.794 tagged_above=-999 required=5 tests=[AC_DIV_BONANZA=0.001, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=pirorg.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DuDm0okz2s0k for <regext@ietfa.amsl.com>; Mon, 28 Nov 2022 03:05:37 -0800 (PST)
Received: from NAM02-DM3-obe.outbound.protection.outlook.com (mail-dm3nam02lp20200.outbound.protection.outlook.com [IPv6:2a01:111:f400:7e83::200]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 36BDCC1522BB for <regext@ietf.org>; Mon, 28 Nov 2022 03:05:37 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=lM1pko7fmpVXm4btAbPLqRf9FwFrhpfSKaBOhF38KUKRLuMW8kZSqbPdWuq7J+jR3EHPSL/IoTfLBw2tzidYMzHS6y2d8VIXpNCxP7DqmsXQ1iFzJKVMo9cAJKmzXaE0sNTfNMZ2iuqMAuxezfuWAWj/pMlyMGlQGcReLKFAONncCUxR5FOqeM1igPuR4HT/d3I9UQ8jaETr6VuOvJhjLxuDV4CirbaAfR69gt3seqcJ7SAJSY1D/u2BwSkS7NMIuQMN1FcWhNPmxi9itOYNhTdJNe2fSy7CniVi7bmZ3PTMK2pAYr3hiip6tMRqA0HuJ0n01uH68O9f+9Fwbv4F5g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=/EcglP+jQdf7/dhC9RL7nGvp//+B+Tu/jVCIYeI18kM=; b=RrAyoh+ZDlX4EqzaZe2Q8s6baB7gUR/5NWFVwuTFPudXi7Vk1N1XX6KmR8uSyODQA2k9D+8wdf7uOaNdJFTByVibVcIfFArogPgDAzqzaPhwib4YrOzU2B9da/KcBjHtaRF/etwgFP/PoQ6eukyh7mb8aanniTPbjY/8rLvMk+/4EbjjeLkfyz/eoFB8hrtIP4uMoYoVSgitgw5AgVJpJJwGwdWi+c42agAFajjxRAFMwG2NGpouOR5B1YHdxAWGENfJmvOvCp4jPNDpymlwoLXYaxnYDzyI++v0PtHbIUVBXyEcpf7gXmNBtLtYHJcWacSdsxNrZyieMJoRZ+eiwg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=pir.org; dmarc=pass action=none header.from=pir.org; dkim=pass header.d=pir.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pirorg.onmicrosoft.com; s=selector2-pirorg-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/EcglP+jQdf7/dhC9RL7nGvp//+B+Tu/jVCIYeI18kM=; b=LX81ibQrHyF6YEKiHMQOsFgDRJAjFMDiHph22oTqMTbptEHP/oIJKBH5rL6tNIw4mP9f1N7RgffBE1O2EmYigj+/weLSzYAu3EnUN20QwmARRSKi6/1OcYXrzQtO5skmS/H1sZpJGWU2fZ4Bj4fcTaeO6Iu1XAaXg/holJVzTng=
Received: from BY5PR10MB4179.namprd10.prod.outlook.com (2603:10b6:a03:206::8) by SA1PR10MB6544.namprd10.prod.outlook.com (2603:10b6:806:2bb::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5857.22; Mon, 28 Nov 2022 11:05:29 +0000
Received: from BY5PR10MB4179.namprd10.prod.outlook.com ([fe80::8928:70be:a6a6:636b]) by BY5PR10MB4179.namprd10.prod.outlook.com ([fe80::8928:70be:a6a6:636b%5]) with mapi id 15.20.5857.023; Mon, 28 Nov 2022 11:05:29 +0000
From: Rick Wilhelm <Rwilhelm@PIR.org>
To: "gavin.brown@centralnic.com" <gavin.brown@centralnic.com>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [regext] Fwd: New Version Notification for draft-regext-brown-epp-ttl-03.txt
Thread-Index: AQHY+1lyd5Ar5cNn6kOAYHaMCiWmAa5JUfmi
Date: Mon, 28 Nov 2022 11:05:29 +0000
Message-ID: <BY5PR10MB4179EE19A9A8A792C4BEEA6AC90A9@BY5PR10MB4179.namprd10.prod.outlook.com>
References: <3961C607-C4EA-4C4C-9269-FE55C98B4ECA@verisign.com>
In-Reply-To: <3961C607-C4EA-4C4C-9269-FE55C98B4ECA@verisign.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=PIR.org;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BY5PR10MB4179:EE_|SA1PR10MB6544:EE_
x-ms-office365-filtering-correlation-id: a0a197ab-8446-4e3f-ba08-08dad13075c1
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 6GO1vd5deIjILvQqER35gc5791FSdauSqezsBoi7Ef47zSAk9vs0mPrsfm443Z6wzx8VPI9zd8AXPbKhoMvRvu129EjvlpDP7NRGQOlXaTu+A7zBI+UzEIvRT6SdA/FS66uQCbe/Fllfp4l9NNE/+hMXOomcoI8o7iRvZd3hA7o+C2WlsUSHplH1xj3KVE03JdT7NyxZeDaZGINSKc/Ao6i+tVg8IX19zublM469GZwx/MZ6BmUIh1Y+PHvnG0kHy/dgMUI7qMl5f5nhotgMtSlUrnCgaSUzBkxpvdhA6oSGouhZpKDuWrX6EAZP8jTpljW746RkPTbiVKMbqlKAd1Pm7tQOsCSh8MPHzX72tPvT5MXhBhl1WDdGmX6GJMMVO4QRUjYEpkuNOBnNONJlo4Yl8i4+2vnUzYL2mZeH/aTj+Ujo6W3+PfY4iwkB74gzfG4yqihKN8CFk6O3LqeQqy2qOOtXiMEB8Vwp2jAFSma94y0bWiH5wPpCKEXllOaP8n+ZEZrCBPu9mlnQHzXlxpXEYdfOIU2gX9v/+HmNfhW02mnZhq36zqjMVIxz/wP5HVfJh9bpUgi7liSY2iylx5QJQvlZ8ejb40hJlv2Sb8OkrRbVavXO6vVU9eoVHD7Xb+8jqlV+F4Lb5+LEPkhMzx5ryxxdOzCdB/itBm5wdrh6gH2BMMtUH5Bbapi7SPlz0sz3vhEbwMsaLIx6SST2PAA7Tmwd/oSaBLbEf1ncr8wbz4l9vDiKNbHwea4m+BqML08vbPE4UtMn4gPRDcLipg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR10MB4179.namprd10.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(376002)(136003)(346002)(396003)(39830400003)(366004)(451199015)(186003)(71200400001)(166002)(7696005)(6506007)(4001150100001)(122000001)(41300700001)(2906002)(966005)(15650500001)(8936002)(83380400001)(38100700002)(55016003)(86362001)(52536014)(110136005)(66574015)(33656002)(40140700001)(316002)(38070700005)(9686003)(53546011)(91956017)(66899015)(26005)(8676002)(76116006)(64756008)(66446008)(66946007)(66476007)(478600001)(5660300002)(66556008); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_BY5PR10MB4179EE19A9A8A792C4BEEA6AC90A9BY5PR10MB4179namp_"
MIME-Version: 1.0
X-OriginatorOrg: pir.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR10MB4179.namprd10.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a0a197ab-8446-4e3f-ba08-08dad13075c1
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Nov 2022 11:05:29.0143 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 6c8ced78-b98f-4fa4-b6df-38beaa0d935d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: xijftwl6QjuDsimXbEhAitXZHx9qyynWIW4Yauw47wgo0YxQKZkeRcehRTaFp/AIMufdsPHKJJiPwNfyr2VLIw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA1PR10MB6544
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/ls5w38N-HmIO3o_VudZOOS_V_fY>
Subject: Re: [regext] Fwd: New Version Notification for draft-regext-brown-epp-ttl-03.txt
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Nov 2022 11:05:41 -0000
Gavin,
Sorry it’s taken me a while to get to this, but I wanted to actually read the new version of the draft rather than just make comments based on email traffic, heh.
Regarding the notion of the client providing a <ttl:until>, I’d echo Jim’s comment below regarding a preference to having the values be fully in client control. (I think that the mechanism he suggested is reasonable, fwiw.) That is, I would prefer that this mechanism be dropped or at least made optional.
Here’s the rationale for my position:
At the heart of it, given the extension, the TTL can now be considered client-controlled data (albeit with a default value). And in EPP, the server (to my knowledge) doesn’t change client-controlled data without it being a result of a direct client command.
The <ttl:until> “timer” would do that.
I think that the rationale for avoiding this mechanism is that it
* Simplifies server implementation
* No need for timers, scheduling, retry of failed timer firing, failed TTL update, etc.
* Insulates clients from server-side changes that induce indeterminacy as to state (aka “action at a distance”)
* Avoids the need to include a poll mechanism for either successful or failed time expiry
* Avoids a number of challenging future situations regarding inter-registrar transfers (when one registrar implements the extension and another doesn’t)
* Avoids challenging operational situations when the registry goes under maintenance (what happens to the timers that would fire during maintenance?)
Net-net, when I was a registrar, maintaining the accuracy of my (client-side) view of the registry (server-side) objects was paramount to the registrar system’s sanity. Having a situation where the server may or may not follow through on its (alleged) promise to change a TTL would seem to me like just asking for an invocation of Murphy’s Law.
Rather: If we are to do this, it seems better to let the client be fully in control of any departure from default TTL. Better than splitting control between the client and the server.
For what it’s worth, I had originally thought that an approach like this (I called it a “spring-loaded TTL”) was something worth pursuing. But after considering the failure (aka “rainy day”) scenarios and the way that it subtly breaks the client-server agreement by changing client data outside of a direct command, I changed my mind.
Maybe there’s another angle I’m missing…
Thanks
Rick
From: regext <regext-bounces@ietf.org> on behalf of Gould, James <jgould=40verisign.com@dmarc.ietf.org>
Date: Friday, November 18, 2022 at 2:24 PM
To: gavin.brown@centralnic.com <gavin.brown@centralnic.com>, regext@ietf.org <regext@ietf.org>
Subject: [EXTERNAL] Re: [regext] Fwd: New Version Notification for draft-regext-brown-epp-ttl-03.txt
CAUTION: This email came from outside your organization. Don’t trust emails, links, or attachments from senders that seem suspicious or you are not expecting.
________________________________
Gavin,
How about providing the feature for the client to unset the custom TTL via an empty <ttl:secs/> element instead of adding a new <ttl:util> element that would require the server to manage the expiry? This way the client is in complete control over exactly when the custom TTL value is in place. The ability to set and unset a temporary value with a client-managed timer would follow the pattern followed with the Secure Authorization Information for Transfer RFC. Additionally, if there is the concept of a default TTL defined by the server and a custom TTL that can be set and unset by the client, then it could be covered in the draft and be explicitly defined in the protocol. For example, in the info response, does how does the server indicate that the default TTL is being used? The Registry Fee Extension RFC had a similar use case of identifying standard fees versus non-standard fees, where an optional “standard” attribute was used with a default value of “0” (or “false”). My recommendation is to follow a similar pattern for the TTL. The result would be formally defining the concept of a default TTL and a custom TTL that can be set and unset by the client using the extension, which can be indicated explicitly by both the client and the server. The <ttl:secs> element could include the “standard” attribute for the create and update with a default value of “0” (or “false”), since unsetting would be handled only via the use of an empty <ttl:secs standard=”true”/> value and setting a custom value would be either <ttl:sec standard=”false”>3600</ttl:sec> or <ttl:sec>3600</ttl:sec>. Now the question is what the server does when the custom TTL matches the standard TTL, should it accept it and keep the standard setting to “false”, since in theory the server default could change. My recommendation is to have the server accept it and identify it as a client set custom TTL. The <ttl:secs> element can also include a “standard” attribute for the info response to explicit indicate whether the standard TTL or the custom TTL is being used, where most of the cases the “standard” attribute would be set to “1” (or “true”).
--
JG
[cid:image001.png@01D8FB2F.88941370]
James Gould
Fellow Engineer
jgould@Verisign.com<applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com>
703-948-3271
12061 Bluemont Way
Reston, VA 20190
Verisign.com<https://protect-us.mimecast.com/s/CJ7IC31PzwsXlvoCg7vsD?domain=verisigninc.com/>
From: regext <regext-bounces@ietf.org> on behalf of Gavin Brown <gavin.brown@centralnic.com>
Date: Friday, November 18, 2022 at 6:43 AM
To: "regext@ietf.org" <regext@ietf.org>
Subject: [EXTERNAL] [regext] Fwd: New Version Notification for draft-regext-brown-epp-ttl-03.txt
Hi all,
A couple of days ago I uploaded a new version draft-regext-brown-epp-ttl.
This version adds a new extension element, <ttl:until>, which specifies the date and time after which a "custom" TTL should revert to the default.
Feedback welcome - I am hoping the WG will be able to pick this document up in the near future.
Gavin.
Begin forwarded message:
From: internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>
Subject: New Version Notification for draft-regext-brown-epp-ttl-03.txt
Date: 16 November 2022 at 16:12:04 GMT
To: "Gavin Brown" <gavin.brown@centralnic.com<mailto:gavin.brown@centralnic.com>>
A new version of I-D, draft-regext-brown-epp-ttl-03.txt
has been successfully submitted by Gavin Brown and posted to the
IETF repository.
Name: draft-regext-brown-epp-ttl
Revision: 03
Title: Extensible Provisioning Protocol (EPP) mapping for DNS Time-To-Live (TTL) values
Document date: 2022-11-16
Group: Individual Submission
Pages: 16
URL: https://www.ietf.org/archive/id/draft-regext-brown-epp-ttl-03.txt<https://protect-us.mimecast.com/s/FPGyC5yXBLFM713UyPanh?domain=secure-web.cisco.com>
Status: https://datatracker.ietf.org/doc/draft-regext-brown-epp-ttl/<https://protect-us.mimecast.com/s/gq4dC732EXizKY2cq-1br?domain=secure-web.cisco.com>
Htmlized: https://datatracker.ietf.org/doc/html/draft-regext-brown-epp-ttl<https://protect-us.mimecast.com/s/amcEC9rPJgHzXjAc0rMPk?domain=secure-web.cisco.com>
Diff: https://www.ietf.org/rfcdiff?url2=draft-regext-brown-epp-ttl-03<https://protect-us.mimecast.com/s/omJgCgJNR2fqRJKCyL8-D?domain=secure-web.cisco.com>
Abstract:
This document describes an extension to the Extensible Provisioning
Protocol (EPP) that allows EPP clients to manage the Time-To-Live
(TTL) value for domain name delegation records.
The IETF Secretariat
--
Gavin Brown
CentralNic Group plc (LSE:CNIC)
https://centralnicregistry.com<https://protect-us.mimecast.com/s/kOWnCkRNY7ikjvAUyB3gX?domain=secure-web.cisco.com>
Cal: https://cnic.link/gbcalendar<https://protect-us.mimecast.com/s/gpTfClYNZ7C18lmfD5B4R?domain=cnic.link>
CentralNic Group plc is a company registered in England and Wales with company number 8576358. Registered Offices: Saddlers House, Gutter Lane, London EC2V 6BR.
https://www.centralnic.com<https://protect-us.mimecast.com/s/l-dGCn5j2OfX2VgC1XKG6?domain=secure-web.cisco.com>
- [regext] Fwd: New Version Notification for draft-… Gavin Brown
- Re: [regext] Fwd: New Version Notification for dr… Gould, James
- Re: [regext] Fwd: New Version Notification for dr… Michael Bauland
- Re: [regext] Fwd: New Version Notification for dr… Rick Wilhelm