Re: [secdir] Secdir last call review of draft-ietf-ecrit-location-profile-registry-policy-01

"Murray S. Kucherawy" <superuser@gmail.com> Tue, 16 March 2021 16:46 UTC

Return-Path: <superuser@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E8543A1397; Tue, 16 Mar 2021 09:46:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yeu2rGHPflVv; Tue, 16 Mar 2021 09:46:10 -0700 (PDT)
Received: from mail-vs1-xe32.google.com (mail-vs1-xe32.google.com [IPv6:2607:f8b0:4864:20::e32]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4563A3A136F; Tue, 16 Mar 2021 09:46:07 -0700 (PDT)
Received: by mail-vs1-xe32.google.com with SMTP id a15so18573918vsi.7; Tue, 16 Mar 2021 09:46:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=7C0ttR8QuAiy0YEW0QIA2O5At4LSxXSwBz4eVQZRWhQ=; b=VetK5BZYAKalt1jBojPQ5tKKZKuGkdKRn4i+FwibhnVQozZbxMWvZTWN/6Bbg+aLDT /oL5nbRIbQMmtMX0gJU4I25TYQOhTnTyN6gQ6Bj97fV7PxAcF04pdFEsIOL3eIDMV91b q/a1vxTTtWjLP3HPXdsDyziVrzxElxjPUzcBV0hYdW8SsRpOBrSCCxvvdrbH61II3h+A zDM6nkYJykM+C7OdbrZeKdW/77SVGluoO+5mikP8Jku2V8OEBSpxtYZUJrR+578jk5GM 0vhGnemTG77mYn0BGtpwDf1l77Yaoa3yzdF4X3V6KNUoeMe8QwdylgtRAENnE3l0IT/P E3GA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=7C0ttR8QuAiy0YEW0QIA2O5At4LSxXSwBz4eVQZRWhQ=; b=NGOwRYRstTqSvYX+/2RDMvTaJ/Ho/yA5jE8/Z1tB2rWj4TjHMEzO3B17BukZvFWRT3 E9KArRrdPyI5qNrrwz2nX590TsEdqiO7pe5BYQrgIKwWh01dn+/qbcBZENzzm9zeOPsj lg0vN2KvCDbGdUtQAp1bWgw1v/RaS88VyjnxlQJI2wuUFQve0hJENJ07FxKq8TMH7gbO /XPBmFfhqKZKaF7oafTtGo1KySHWSieIUhCb76NY1/6wyfOTzMNSm3Nk8dlyxbyWH3Of ApTRb7J2gyQ4xERWDnoSdMCW/kLoI2SZvHcH8XnaIj/pEpvCkM1fBDdoVjtRM1sX5wQs hDlA==
X-Gm-Message-State: AOAM531nixisZAic9zRxHAZ0nt3apxwCqGU26tXvL0hmqi6b+JdIrKw3 u3KFLWYmCirczHzToZPWLkcSlwfFbr07H3n44as=
X-Google-Smtp-Source: ABdhPJzUegZfolxQT3jPpVjX7ajZC7YU+G6fDa4ciUzCXd2ZpQ32fShXFqH1OsKEGmhy5CKV5+Dbhva3D5XQUaZCJpk=
X-Received: by 2002:a67:f04d:: with SMTP id q13mr623997vsm.40.1615913165434; Tue, 16 Mar 2021 09:46:05 -0700 (PDT)
MIME-Version: 1.0
References: <161591246412.5771.17798271339560020312@ietfa.amsl.com>
In-Reply-To: <161591246412.5771.17798271339560020312@ietfa.amsl.com>
From: "Murray S. Kucherawy" <superuser@gmail.com>
Date: Tue, 16 Mar 2021 09:45:54 -0700
Message-ID: <CAL0qLwbAmYbX9A3f+okpum0Gz6hKhZz-_CPxhsu-nahFvVO7Bg@mail.gmail.com>
To: Linda Dunbar <linda.dunbar@futurewei.com>
Cc: secdir@ietf.org, draft-ietf-ecrit-location-profile-registry-policy.all@ietf.org, ecrit@ietf.org, last-call@ietf.org
Content-Type: multipart/alternative; boundary="00000000000036b3d605bdaa1ace"
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/QpQHFQUuKZ-frX09cocudOmcOE4>
Subject: Re: [secdir] Secdir last call review of draft-ietf-ecrit-location-profile-registry-policy-01
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Mar 2021 16:46:12 -0000

Hi Linda, thanks for your review.  Comments below.

On Tue, Mar 16, 2021 at 9:34 AM Linda Dunbar via Datatracker <
noreply@ietf.org> wrote:

> This document doesn't seem to be complete. The document claims that it
> changes
> the policy of the Location-to-Service Translation (LoST) Location Profile
> registry from Standards Action to Specification Required, but it doesn't
> specify what is the new procedure.  It says allowing other SDOs to change
> or
> add values. But which SDOs are allowed? Are there any procedures to
> identify
> which SDOs are legitimate? can any organizations, say XYZ, change, add or
> delete the values?
>

Specification Required is defined in RFC 8162.  The IESG will be tasked
with appointing a designated expert (DE) to review registration requests
against the published specification.  The DE will have discretion to
determine whether an application should be accepted.  The document contains
no guidance about particular SDOs, so the DE is left to decide whether to
factor the source into the approval or rejection of the request.

So any SDO can make a request to update the registry.  The DE makes the
call about "legitimate".

-MSK