IETF Logo Mail Archive

Re: [regext] REGEXT Interim Meeting 2018OCT16

"Gould, James" <jgould@verisign.com> Tue, 11 December 2018 16:24 UTC

Return-Path: <jgould@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE8D0130E3C for <regext@ietfa.amsl.com>; Tue, 11 Dec 2018 08:24:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.3
X-Spam-Level:
X-Spam-Status: No, score=-4.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xzSC-wxowiDm for <regext@ietfa.amsl.com>; Tue, 11 Dec 2018 08:24:10 -0800 (PST)
Received: from mail3.verisign.com (mail3.verisign.com [72.13.63.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C06E6130E37 for <regext@ietf.org>; Tue, 11 Dec 2018 08:24:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=36163; q=dns/txt; s=VRSN; t=1544545449; h=from:to:date:message-id:references:in-reply-to: mime-version:subject; bh=mF4zabWnxM4kLBn0Oiy+vy4wn0t2x9cskQ5XW/WJr/A=; b=lcMiIL8M3RAJivgLpQm8riDZhhJ5FAKGiH45tSFhPNDOraf4y3M1A14A JD9yU1te7k9WBcE8SaP3gGEO4kiUK1OxUpsRwEcNFd/Mb/YZJOMRzeVoT NUf4vZPN+4XXQYiqDOxkdkz0XQcXrkDuxtzyTwOiFPjzECYMWJllFhzNE CpZr9QkmhpVAOtXFmNvU097DnaPb8T80fQyLoB0RVAfdTQygU19G/7Wjx 0eJgn57OqJHfkmYl9wGxnvp+VTm9ngQ4CfBFNaUNxvpS48LKUqOclLb8W mCk9etCx7w2JK46MKuhWv83HN68n1Ihyxgquj4NNO/CLc4QROcPzECTZr A==;
X-IronPort-AV: E=Sophos;i="5.56,342,1539648000"; d="scan'208,217";a="7093425"
IronPort-PHdr: 9a23:NRaOpRMPAEjdncp+5q0l6mtUPXoX/o7sNwtQ0KIMzox0K/z5rsbcNUDSrc9gkEXOFd2Cra4c26yO6+jJYi8p2d65qncMcZhBBVcuqP49uEgeOvODElDxN/XwbiY3T4xoXV5h+GynYwAOQJ6tL1LdrWev4jEMBx7xKRR6JvjvGo7Vks+7y/2+94fcbglUhzexe69+IAmrpgjNq8cahpdvJLwswRXTuHtIfOpWxWJsJV2Nmhv3+9m98p1+/SlOovwt78FPX7n0cKQ+VrxYES8pM3sp683xtBnMVhWA630BWWgLiBVIAgzF7BbnXpfttybxq+Rw1DWGMcDwULs5Xymp4aV2Rx/ykCoJNyA3/nzLisJ+j6xbrhCuqBJ+w4HIb46YL+Bxcr/Yfd4AWWZMRMRcWipcCY28dYsPCO8BMP5Wo4f8oFsOsB++ChS0COjyzjFHnHr20rMh0+gvDArL2w4gH90JsHTJqNX6KbwfUf6rw6nSzDXDdPJW2Tj76ITSbh8hpvSMUKt2fMHMx0cvEAbFgU+RqYzjJz6VyPoCs3Ka7+p7VOKvhGgnqwB3ojez3Msjlo7JhocNxlDL9CV53IY1JcCjR0JhfdGkF55QuzmbN4RoXsMiTXtkuCEgyr0JoZK7YikKx4o8xx7DavyHdZSI7Qj9VOaQOzd3nmlleK64hxqo/0igy+vxXdS33lZStidJj8XAumoQ2xHR5MWLUOZx80ev1DqV2A3e6flILV0omabBNpIswKI8moAOvUnMHSL6glj6gayOekUq5Oel6Pjrb7Djq5CGNIJ5jhrxP6Egl8ChHOs1Mw0DUHOf9Om91rDu+EP0TbtIg/IrlKTSrYrUKt4BpqGjBg9YyoMj6xGiADi4yNkYhnwHLE5deBKAkojpJ0nCIPDmAve7hFShiCpmyezeMLH8AprDNnfNn7b9cbpg8UJc1hY8zddF55JMEL0OOu/8VlXvtNzCFR85NRa4zPrgCNV4zo8eWGSPDbGFMK7KrFOE+vgjL/SOaYIbojrxNvgo6vD0gXI2mlIRZayp0oEWaHC8EPRmOUKZYX/0j9cDHmcKuRc+TOj3h1CZTz5ceWyyX6Mn5jE6B4KmC53PSZyqgLyExCu7BIFZZnhaClCQFnflb52EW/IXZS2PJc9hjiYLVb68RIA90hGirhP1y71iLuDM4C0XqYrj1MRp5+3UjRwy7yJ7D8uD3GCCU2F5hWIISCEq3KBxu0B9zU2D0acry8BfQJZL4ttFVRszM5LXyKpxDNW4ElbZe/+FT0qvRNmtBnc6Sddnh5dEeUtyFsW+phHOwyTsBKUa3fTfHpE7/7LA93n8O8g7zGzJgvoPlV4jF4FgMnCiiuo31QHWCpWD2xGbmKG3cag0wiPX9XyCwmzIt0ZdBl0jGZ7ZVGwSMxOF5e/y4VnPGuej
X-IPAS-Result: A2EUAABG5A9c/zCZrQphAxwBAQEEAQEHBAEBgVEHAQELAYENgVyBKQqDcYgZjXglfJZXgT8XFg4MARgBDAmDeEYCF4J4NAkNAQMBAQEBAQECAQECgQUMgjYiDgQxHC8JAQIDAQEBAQEBAQEBJAEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQgCCAUCNRIBARkBAQEBAQEBASEKQQEPCwIBCDgKAgICJQslAQEEARIZgwgBgR1cF6VjgS+FQIRsjFKBQT6BEScME4IXNYFBgV0BAQFebC0KJoI9MYImAok4hW+Qf1UDBgKHB4pggimPF4kjhG0GinYCBAIEBQIUgUaCD3AVOyoBgkEJgh4MC4NKgRqDeoU/cgEMJIoYgR8BAQ
Received: from BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) by BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1531.3; Tue, 11 Dec 2018 11:24:07 -0500
Received: from BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d]) by BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d%5]) with mapi id 15.01.1531.003; Tue, 11 Dec 2018 11:24:07 -0500
From: "Gould, James" <jgould@verisign.com>
To: "pm@dotandco.com" <pm@dotandco.com>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [EXTERNAL] Re: [regext] REGEXT Interim Meeting 2018OCT16
Thread-Index: AdRlZ+PpheG2GqycRo+uSmk+JJWWYQgNT3oAACSxCAAACUYNAAK8udgAAAM5OQA=
Date: Tue, 11 Dec 2018 16:24:07 +0000
Message-ID: <728AB300-7361-4E52-8196-AA92253C9E27@verisign.com>
References: <DM6PR02MB4906897BBA44E67A6F8C44B5B1FE0@DM6PR02MB4906.namprd02.prod.outlook.com> <DM6PR02MB4906A4A5CA54F0EC02B8473AB1D70@DM6PR02MB4906.namprd02.prod.outlook.com> <ca14342a-2778-41a0-b570-cd5383640a6f@sloti1d3t01> <F2E22301-EFDB-4386-B9CE-DDB34CC3BCA9@verisign.com> <5df0f8c5-1419-4099-957d-23fd5dde3ee6@sloti1d3t01>
In-Reply-To: <5df0f8c5-1419-4099-957d-23fd5dde3ee6@sloti1d3t01>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.f.0.180709
x-originating-ip: [10.170.148.18]
Content-Type: multipart/alternative; boundary="_000_728AB30073614E528196AA92253C9E27verisigncom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/qOAitBizsl54_IdHPh5bwvCMrLk>
Subject: Re: [regext] REGEXT Interim Meeting 2018OCT16
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Dec 2018 16:24:13 -0000

Patrick,



I like how you have broken down the problem into discrete registry implementation cases that can be applied to any EPP extension.  To make the core object-extension (draft-gould-carney-regext-registry) workable, we need to target case 1 (fully RFC-compliant registry implementers) and case 3b (implement base and standard policy extensions along with a server-specific policy extension for unique policies), since the goal is to define policies associated with the SHOULDs, MAYs, and options included in RFCs.  Case 3b could also be a sub-option for case 1 (1a), since a fully compliant registry implementer may have unique RFC-compliant policies that they need to define.  Targeting case 2 does not make any sense, since those not implementing draft-gould-carney-regext-registry will most likely not speak up.  Targeting case 3a is highly unlikely to be successful, since why would an implementer change their policy to support defining their policy externally?  Also, case 3a is equivalent to case 1 from a draft-gould-carney-regext-registry  perspective.  I also have a 3c case, where the implementer creates a Registry Mapping-like implementation by not following the normative language or/and customizing the XML schema.  In the end, the best that we can do is to define a solid base draft that covers the SHOULDs, MAYs, and options of the EPP RFCs, with the ability to define system-level and zone-level policy extensions that cover the policies of specific EPP extensions or a server-specific policy.  I would imagine that if there is a need for a server-specific policy extension, that the implementer would define just one.  For clarity, I include the revised draft-gould-carney-regext-registry implementation cases below:



  1.  Fully RFC-compliant Registry Implementers - Implementation driven by policy/business/marketing case.
     *   Optionally create Server Policy Extension for server-specific policies
  2.  Registry Non-Implementers - Registries not implementing for a variety of reasons.
  3.  Non RFC-compliant Registry Implementers
     *   Change policies to be compliant with RFCs
     *   Define Server Policy Extension for server-specific policies (e.g., RFC overrides)
     *   Create Registry Mapping-like implementation (e.g., not following normative language and/or XML schema in draft-gould-carney-regext-registry)



—

JG







James Gould

Distinguished Engineer

jgould@Verisign.com



703-948-3271

12061 Bluemont Way

Reston, VA 20190



Verisign.com <http://verisigninc.com/>



On 12/11/18, 1:53 AM, "regext on behalf of Patrick Mevzek" <regext-bounces@ietf.org on behalf of pm@dotandco.com> wrote:



    On Tue, Nov 27, 2018, at 11:28, Gould, James wrote:

    >     >     * Ensure that the hostAddr model of RFC 5731 is supported

    >     > <https://github.com/james-f-gould/EPP-Registry-Mapping/issues/1>    *

    >     > *Discussion*

    >     >  * In the case of a zone that supports domain:hostAddr instead of

    >     > domain:hostObj,

    >

    >     No. It is not "instead".

    >     Have a look at the example on page 19 of some registry documentation

    >     at

    > https://www.viestintavirasto.fi/attachments/fi-verkkotunnus/EPP_interface.pdf



    [..]



    > The purpose of draft-gould-carney-regext-registry and the policy

    > extensions is to define the policies around the SHOULDs, MAYs, and

    > options included in extension RFCs, I-Ds, custom extensions, and to

    > define the server-specific policies.  If a registry chooses not to

    > follow the MUSTs in the extensions, that is their choice.  They can

    > define their custom, non-compliant policies in a server-specific policy

    > extension of draft-gould-carney-regext-registry.  Custom policy

    > extensions can be created that define system-level and zone-level

    > policies that don't need to go through the IETF.  There is no need to

    > attempt to address non-compliant policies in the standards track I-Ds.



    I think you are missing the point I try to raise here.

    It is of course very easy to dismiss this specific case (but there are tons of others)

    because the RFC says "MUST", and the case does not follow it, so it is deemed invalid

    per RFC specifications and can then be ignored.

    Technically, yes.

    But this has consequences for the future.



    First, let me reiterate how important I think this extension is, and I wished we

    had it many years ago already. With it, life of registrars would be tremendously easier. Which would then also make registries life easier.



    **IF** (and this is the big if and the core of my point) it gets implemented, and this is where I fear problems, even more so because there is basically no discussion

    on this list from other registries about it.



    For me the future can morph into the following cases:



    1) a registry is fully conformant with all RFCs and hence could implement this

    extension as is without difficulties. It is just a policy/business/marketing case

    to decide to implement it or not, the specification is not a barrier



    2) registries that decided not to implement it anyway, for whatever reasons and case they are in



    3) registries that DO NOT respect all RFCs to the letter and/or are in cases not handled by this new extension and that are thinking about implementing it or not.

    If they want to implement it they have the choice:

    a) either to change their policies and business rules that either contradicts core

    EPP documents or are incompatible with the extension as written right now

    b) or to create **another** EPP extension just to code for the differences between the kind of policies that can be encoded in your extension and the registry policies that do not fit in



    The above are facts, the below are my assumptions.



    - case 1 will be mostly gTLDs or said differenly I doubt many ccTLDs will fall in this case

    - case 2 is irrelevant for this discussion as nothing we discuss can change that

    - case 3 is the interesting point, and my assumption is that this will group basically all ccTLDs, and my further assumptions are that of course registries will not change their policies just because this extension is not tailored to them (so 3a will mostly be empty) and I doubt many will go the length of writing a new extension just to codify their policies (so 3b will be negligible)

    [BTW 3b introduces again the exact same problem we had with EPP extensions since the beginning: fragmentation. Multiple registries have a "trade" operation for example. To encode that as policy, there is a risk each one drafting an extension for it, and then you come back to the case of multiple non-interoperable extensions that do the same things which is a nightmare]



    So I fear that at the end we will have something beautiful that caters for all the

    generic/simple cases, but that left out all complicated cases, and hence the implementation will not be widespread.



    The fact that no registry claimed to be willing to implement it or to write an extension for their own policy is very troublesome for me. But maybe it happened in private or will be announced in the future.





    --

      Patrick Mevzek



    _______________________________________________

    regext mailing list

    regext@ietf.org

    https://www.ietf.org/mailman/listinfo/regext

v2.23.0 | Report a Bug | By Email