Re: [rfc-i] RECOMMENDS
Bob Hinden <bob.hinden@gmail.com> Thu, 04 January 2024 16:18 UTC
Return-Path: <bob.hinden@gmail.com>
X-Original-To: rfc-interest@ietfa.amsl.com
Delivered-To: rfc-interest@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76B6AC14F5F6 for <rfc-interest@ietfa.amsl.com>; Thu, 4 Jan 2024 08:18:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id f2IboriKH1ll for <rfc-interest@ietfa.amsl.com>; Thu, 4 Jan 2024 08:18:20 -0800 (PST)
Received: from mail-yw1-x1131.google.com (mail-yw1-x1131.google.com [IPv6:2607:f8b0:4864:20::1131]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 68CEAC14E513 for <rfc-interest@rfc-editor.org>; Thu, 4 Jan 2024 08:18:20 -0800 (PST)
Received: by mail-yw1-x1131.google.com with SMTP id 00721157ae682-5edbcdc323dso6796377b3.3 for <rfc-interest@rfc-editor.org>; Thu, 04 Jan 2024 08:18:20 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1704385099; x=1704989899; darn=rfc-editor.org; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:from:to:cc:subject:date:message-id:reply-to; bh=KEo0EOaKTxcebGbfz6l3TAV4aDnkqjdEmqaUNjCF9bE=; b=mq1IHvDQbd6fsKDKZwwsfBg8xTwygjJfAjgp9n9nwlpCJqv3U+O6ZbwqTeN33jVTAm n7H9JWprpkmiq1vZxx18iJfqN6r/8JZVQeA1En9mZkUTdK4aYv9iSes3Pxbw1AaBSnSQ uxYLDiKp4tw8Xv2tsOEED+CmMFoGDjacgghVvo/fStOc5mb3VOHp4KrqwC/IFyhUjsGe JcFz8loFnolAEphE4iRGnmnafgjetV52yhSTbsc3/TSgZY22IDa6G7/rcHw+CsD5BEzM oDlitRjPfAtqYNn/QhsNCiQv6UlyySDHbazUPvNF+KqqTB9patr8zRe3yRa3uShJ4iT1 KTVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1704385099; x=1704989899; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=KEo0EOaKTxcebGbfz6l3TAV4aDnkqjdEmqaUNjCF9bE=; b=SrHL2Y3+mKNDFoRgcOC1hcN0/UH7wjIBGzp4i0QrbWxS1D8Kw29bPqiIXZRzxBxSvV 72dS914/jzVKOOTzP5hCZosPhZLa9wBszkgLfAcFYfrVh1zOPAixakaFUkAKk3/v341E 6P8qLYmtxcjvmILCKjsLqr94zaGMz/AKm/bqtCNzvGqyZU1kcyDPEQywQDOjThLmksHq 2booacg2Z1Qmed2PeRWYaq653vgecvAi53Zf9SZdXYTV6L+JvF9qK/Z6jeaiPB0p1QCs ywy2SvD3BpdLypIbEJbQNI6OAVQYKTemVF/ZbFi2RzBN1FT3dyZUVG/3O0bEuZ3oTOgb lQPw==
X-Gm-Message-State: AOJu0YweJC0OmZfwVKMys5GsIbh6WvbRjrJFONkdcmScolU4VMz5Scem o77mJZtPBef8kNAFC91pOmPA6WbEeXo=
X-Google-Smtp-Source: AGHT+IFoRbQizlpf3s3Mnbz/1XYKrUJePn1Q5N+NDDd+Nkil3MhnMcch4giex2EEWmkEOP8XtvkOVQ==
X-Received: by 2002:a81:fd11:0:b0:5e7:8d32:dbd5 with SMTP id g17-20020a81fd11000000b005e78d32dbd5mr937441ywn.41.1704385099266; Thu, 04 Jan 2024 08:18:19 -0800 (PST)
Received: from smtpclient.apple (99-31-208-116.lightspeed.sntcca.sbcglobal.net. [99.31.208.116]) by smtp.gmail.com with ESMTPSA id v190-20020a8185c7000000b005da43aa4e56sm13880901ywf.89.2024.01.04.08.18.18 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 04 Jan 2024 08:18:18 -0800 (PST)
From: Bob Hinden <bob.hinden@gmail.com>
Message-Id: <74429EE1-8301-48D9-99AF-1223AD20B888@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_5F486498-4990-41C7-B195-A883AD7C720C"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\))
Date: Thu, 04 Jan 2024 08:18:06 -0800
In-Reply-To: <CAA=duU3rfh07b7uA9N2-TH_X-_LzOwY9RXH0AJv+wWBB35KBuQ@mail.gmail.com>
Cc: Bob Hinden <bob.hinden@gmail.com>, Michael Richardson <mcr+ietf@sandelman.ca>, "Andrew G. Malis" <agmalis@gmail.com>
To: RFC Interest <rfc-interest@rfc-editor.org>
References: <d2c2ffee-1af6-8441-7486-06115542690d@gmail.com> <13079.1704159169@obiwan.sandelman.ca> <ccb81ba5-d09c-a849-c32e-aaaa16cde968@gmail.com> <DM6PR02MB43774EE37D2FCB4C10A581F7D861A@DM6PR02MB4377.namprd02.prod.outlook.com> <c49f652f-e370-4e61-8e14-a8c61079617f@gmx.de> <CANMZLAZu_xTGor6tZdSE3RiW+gRvEN-snYLepgU_HQxL2EgcnQ@mail.gmail.com> <d27bf8eb-9fce-41d2-9895-33d8f0ec9fac@nostrum.com> <18687.1704296479@obiwan.sandelman.ca> <CAA=duU3rfh07b7uA9N2-TH_X-_LzOwY9RXH0AJv+wWBB35KBuQ@mail.gmail.com>
X-Mailer: Apple Mail (2.3774.300.61.1.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/rfc-interest/k5TeuMLRmeVG8JxxumymS9XGUI0>
Subject: Re: [rfc-i] RECOMMENDS
X-BeenThere: rfc-interest@rfc-editor.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "A list for discussion of the RFC series and RFC Editor functions." <rfc-interest.rfc-editor.org>
List-Unsubscribe: <https://mailman.rfc-editor.org/mailman/options/rfc-interest>, <mailto:rfc-interest-request@rfc-editor.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rfc-interest/>
List-Post: <mailto:rfc-interest@rfc-editor.org>
List-Help: <mailto:rfc-interest-request@rfc-editor.org?subject=help>
List-Subscribe: <https://mailman.rfc-editor.org/mailman/listinfo/rfc-interest>, <mailto:rfc-interest-request@rfc-editor.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Jan 2024 16:18:24 -0000
Hi, > On Jan 3, 2024, at 8:11 AM, Andrew G. Malis <agmalis@gmail.com> wrote: > > Like Michael, I'm also the author of an RFC (8469) that uses the phrase "This document RECOMMENDS ...". As Brian noted, we could have used "It is RECOMMENDED that..." but we preferred the active voice, and obviously the IESG and RFC Editor had no problem with it. I also agree that it should be made official. +1 I also like the active voice. Perhaps an errata can be filed that makes this clearer. Bob > > Cheers, > Andy > > > On Wed, Jan 3, 2024 at 10:41 AM Michael Richardson <mcr+ietf@sandelman.ca <mailto:mcr%2Bietf@sandelman.ca>> wrote: >> >> Hmm. >> I'm responsible for the RFC8995 use of RECOMMENDS, in it's full context is: >> >> Sections 7.2.13 (2009 edition) and 8.10.3 (2018 edition) of [IDevID] >> discuss keyUsage and extendedKeyUsage extensions in the IDevID >> certificate. [IDevID] acknowledges that adding restrictions in the >> certificate limits applicability of these long-lived certificates. >> This specification emphasizes this point and therefore RECOMMENDS >> that no key usage restrictions be included. This is consistent with >> [RFC5280], Section 4.2.1.3, which does not require key usage >> restrictions for end-entity certificates. >> >> in the list that Brian posted, it seems to be the youngest use :-) >> >> We could have worded it: >> This specification emphasizes this point and therefore it is RECOMMENDED >> that no key usage restrictions be included. This is consistent with >> >> There definitely ought to be an "or else" for each SHOULD, and the "or else" >> here is that it likely will fail to interoperate with anything that is >> enforcing EKU. In our case, that is actually what the IDevID document(s) >> say, so we avoided repeating ourself, and I think that's okay. >> Using "SHOULD NOT" we could have written: >> >> This specification emphasizes this point and key usage restrictions SHOULD >> NOT be included. This is consistent with... >> >> I think that these revisions would have been just fine. >> I mostly agree with a few people (who unicasted me) that "it's all fine" >> >> Where I agree with Brian: "grep" and non-english speakers who wonder if there >> is some difference. And the XML/HTML markup needs fixing. >> >> -- >> Michael Richardson <mcr+IETF@sandelman.ca <mailto:mcr%2BIETF@sandelman.ca>> . o O ( IPv6 IøT consulting ) >> Sandelman Software Works Inc, Ottawa and Worldwide >> >> >> >> >> _______________________________________________ >> rfc-interest mailing list >> rfc-interest@rfc-editor.org <mailto:rfc-interest@rfc-editor.org> >> https://mailman.rfc-editor.org/mailman/listinfo/rfc-interest > _______________________________________________ > rfc-interest mailing list > rfc-interest@rfc-editor.org > https://mailman.rfc-editor.org/mailman/listinfo/rfc-interest
- [rfc-i] RECOMMENDS Brian E Carpenter
- Re: [rfc-i] RECOMMENDS Carsten Bormann
- Re: [rfc-i] RECOMMENDS Scott Bradner
- Re: [rfc-i] RECOMMENDS tjw ietf
- Re: [rfc-i] RECOMMENDS Brian E Carpenter
- Re: [rfc-i] RECOMMENDS Michael Richardson
- Re: [rfc-i] RECOMMENDS Michael Richardson
- Re: [rfc-i] RECOMMENDS Brian E Carpenter
- Re: [rfc-i] RECOMMENDS HANSEN, TONY
- Re: [rfc-i] RECOMMENDS Julian Reschke
- Re: [rfc-i] RECOMMENDS Brian Carpenter
- Re: [rfc-i] RECOMMENDS Robert Sparks
- Re: [rfc-i] RECOMMENDS Michael Richardson
- Re: [rfc-i] RECOMMENDS Andrew G. Malis
- Re: [rfc-i] RECOMMENDS Bob Hinden
- Re: [rfc-i] RECOMMENDS Julian Reschke
- Re: [rfc-i] RECOMMENDS Brian E Carpenter
- Re: [rfc-i] RECOMMENDS Michael Richardson
- Re: [rfc-i] RECOMMENDS Julian Reschke
- Re: [rfc-i] RECOMMENDS Martin Thomson