Re: [secdir] SECDIR review of draft-ietf-lemonade-profile-bis-12.txt
"Hannes Tschofenig" <Hannes.Tschofenig@gmx.net> Wed, 11 March 2009 14:45 UTC
Return-Path: <Hannes.Tschofenig@gmx.net>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7ED223A68E6 for <secdir@core3.amsl.com>; Wed, 11 Mar 2009 07:45:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.359
X-Spam-Level:
X-Spam-Status: No, score=-2.359 tagged_above=-999 required=5 tests=[AWL=0.240, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sR+nIs8l4KaU for <secdir@core3.amsl.com>; Wed, 11 Mar 2009 07:45:46 -0700 (PDT)
Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by core3.amsl.com (Postfix) with SMTP id 221F03A6818 for <secdir@ietf.org>; Wed, 11 Mar 2009 07:45:45 -0700 (PDT)
Received: (qmail invoked by alias); 11 Mar 2009 14:46:21 -0000
Received: from a91-154-108-144.elisa-laajakaista.fi (EHLO 4FIL42860) [91.154.108.144] by mail.gmx.net (mp040) with SMTP; 11 Mar 2009 15:46:21 +0100
X-Authenticated: #29516787
X-Provags-ID: V01U2FsdGVkX18V3OB2gB8VNFFJ3j0ydUPukLdM7stxInVmfRhsx/ /GrdBkJPAFxIMH
From: Hannes Tschofenig <Hannes.Tschofenig@gmx.net>
To: 'Dave Cridland' <dave.cridland@isode.com>
References: <085d01c9a21f$0a20afd0$0201a8c0@nsnintra.net> <26116.1236765744.072949@peirce.dave.cridland.net>
Date: Wed, 11 Mar 2009 16:47:27 +0200
Message-ID: <090a01c9a258$4cc83220$0201a8c0@nsnintra.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <26116.1236765744.072949@peirce.dave.cridland.net>
Thread-Index: AcmiMIT7eM2iqp0zSGuTY2RCHZv0IgAHcaug
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3350
X-Y-GMX-Trusted: 0
X-FuHaFi: 0.5600000000000001
Cc: draft-ietf-lemonade-profile-bis@tools.ietf.org, 'Security Area Directorate' <secdir@ietf.org>
Subject: Re: [secdir] SECDIR review of draft-ietf-lemonade-profile-bis-12.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Mar 2009 14:45:50 -0000
Hi Dave, Thanks for your quick response. >> Section 5.7.1 only references another specification where this >> capability is >> defined, at least that's my reading. This document only defines a >> profile >> and does not require any IANA considerations. >> >> Here is what Section 5.7.1 says: >> >> " >> 5.7.1. Support for PARTIAL in CATENATE and URLAUTH >> >> [IMAP-URL] introduced a new syntactic element for referencing a >> byte >> range of a message/body part. This is done using the ;PARTIAL= >> field. If an IMAP server supports PARTIAL in IMAP URL used in >> CATENATE and URLAUTH extensions, then it MUST advertise the URL- >> PARTIAL capability in the CAPABILITY response/response code. >> " >> >> >[IMAP-URL] defines how to construct a URL which references a >byte-range within a body part, and this is newer than CATENATE or >URLAUTH. In particular, IMAP-URL only defines syntax, not protocol, >and doesn't define where the various URL forms can be used at all. > >CATENATE and URLAUTH are both defined with the assumption that they >only handle URLs without this newer parameter, so the Profile >document defines a new capability to signal that CATENATE and URLAUTH >can be used with byte-range URLs as well as whole-part URLs. > >So yes, the profile does need to define a new capability not defined >within any of the referenced specifications. > >I'll have a think about how this can be made clearer - if you've >suggestions, they'd be most welcome. Ok. Now I believe I understood this better. [IMAP-URL] defines a URL scheme for referencing objects on an IMAP server. It does not define how you actually use the URL in order to get the referenced objects. In any case, the ABNF for the URL is defined in that document and it contains tokens that refer to specifications that are used in the IMAP context, for example URLAUTH specified in RFC 4467. As such, they define the semantic for these tokens. So, now you would like to use the token PARTIAL with the IMAP-URL. There isn't really a separate registry of parameters for usage with the IMAP-URL, as far as I can tell from my quick read. Section 11 of RFC 5092 only says "Elements not defined here can be found in [ABNF], [IMAP4], [IMAPABNF], or [URI-GEN]." Hence, this seems to mean that the tokens have to be registered in http://www.iana.org/assignments/imap4-capabilities in order to be usable for the IMAP-URL. Hence, you have to register the URL-PARTIAL token in http://www.iana.org/assignments/imap4-capabilities in order to get this to work. Is this roughly a correct summary? What section in http://tools.ietf.org/html/draft-ietf-lemonade-profile-bis-12 describes the semantic of the URL-PARTIAL token? You refer to Section 5.7.1 in the IANA consideration section but that section doesn't really say anything in that regard. Btw, maybe you should replace "5.7.1. Support for PARTIAL in CATENATE and URLAUTH" with "5.7.1. Support for URL-PARTIAL in CATENATE and URLAUTH" Ciao Hannes > >Dave. >
- [secdir] SECDIR review of draft-ietf-lemonade-pro… Hannes Tschofenig
- Re: [secdir] SECDIR review of draft-ietf-lemonade… Dave Cridland
- Re: [secdir] SECDIR review of draft-ietf-lemonade… Hannes Tschofenig
- Re: [secdir] SECDIR review of draft-ietf-lemonade… Alexey Melnikov