Re: [secdir] Secdir review of draft-ietf-6man-uri-zoneid-05

Radia Perlman <radiaperlman@gmail.com> Wed, 28 November 2012 00:14 UTC

Return-Path: <radiaperlman@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9EC1E21F866F; Tue, 27 Nov 2012 16:14:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.598
X-Spam-Level:
X-Spam-Status: No, score=-3.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IyY8dJGS1n2e; Tue, 27 Nov 2012 16:14:55 -0800 (PST)
Received: from mail-vb0-f44.google.com (mail-vb0-f44.google.com [209.85.212.44]) by ietfa.amsl.com (Postfix) with ESMTP id 9CAC921F8650; Tue, 27 Nov 2012 16:14:54 -0800 (PST)
Received: by mail-vb0-f44.google.com with SMTP id fc26so5715543vbb.31 for <multiple recipients>; Tue, 27 Nov 2012 16:14:54 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=zpf0sFlhEcfqRaoGIRiS/rBgtkV1Fs9kfm44mBnbG6w=; b=uSuvbkclnV/wrEMagGYRpEElvjBtXNwB/+LHCZ7d0LuGkB0vVpAtrk9X17V8n47v9i Exbrnd+aVWaDitnfxerckFgQq77GVPWD/DOLamK9gLaKNHcQSkMBqIC3WDFEwVKED1k4 wed5hoCngqX3UjQSybfXFuqmBpzKidWVSSuzF2l2DlRJF5jQ3lzb23iQGD8nRrjRi33Z p5DT8NLoNayIQBxKwUoiN08E3OIFWvRyykTUgyYScwTsLUdydnlZdKVESjrMqjFTO2l/ J2NOgw9kkm6bkJJ0xewP8t5ROyzEToj3yMj5P4sEbvuG6ryazwNpCJbKR7oMSt2wM/3f hGfw==
MIME-Version: 1.0
Received: by 10.220.231.65 with SMTP id jp1mr730438vcb.30.1354061693890; Tue, 27 Nov 2012 16:14:53 -0800 (PST)
Received: by 10.58.207.138 with HTTP; Tue, 27 Nov 2012 16:14:53 -0800 (PST)
In-Reply-To: <50AF8D42.50106@gmail.com>
References: <CAFOuuo5SbxQL-mFx9MOmpFgRybTV0qcu7pXZTnvRE=3NVSh7xQ@mail.gmail.com> <50AF2ABE.4020901@gmail.com> <CALaySJKLXxYrr5hP2RGzGXa3wHPWykdmwH66Zy5vzVqE-UnX9w@mail.gmail.com> <50AF8D42.50106@gmail.com>
Date: Tue, 27 Nov 2012 16:14:53 -0800
Message-ID: <CAFOuuo4WjHpnboK97UeEdvdxxN=AOYZCiFnYc3+yVKvARYe8BA@mail.gmail.com>
From: Radia Perlman <radiaperlman@gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Content-Type: multipart/alternative; boundary=14dae9cdc87144afac04cf830e9a
Cc: "draft-ietf-6man-uri-zoneid.all@tools.ietf.org" <draft-ietf-6man-uri-zoneid.all@tools.ietf.org>, Barry Leiba <barryleiba@computer.org>, The IESG <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
Subject: Re: [secdir] Secdir review of draft-ietf-6man-uri-zoneid-05
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Nov 2012 00:14:55 -0000

On Fri, Nov 23, 2012 at 6:50 AM, Brian E Carpenter <
brian.e.carpenter@gmail.com>; wrote:

> On 23/11/2012 14:26, Barry Leiba wrote:
> >> The WG reached consensus on a SHOULD-based version. The whole issue
> >> of browser behaviour is contentious, so changing to MUST would be
> >> a WG issue, above my pay grade as a document editor. I will wait
> >> for instructions.
> >>
> >
> > Could you
> >
> > 1: give us some background on the discussion that resulted in SHOULD
> > instead of MUST, and
>
> I don't recall it being explicitly discussed - what I meant is that
> this is the text that got through WG last call and post-last-call
> discussion, without dissent.
>

Often, in my observation, lack of discussion doesn't necessarily mean
people are happy with the idea.  It often (usually?) means they haven't
read it.

I think it would be good to have an explicit discussion in the WG, not on
the entire draft, but on specifically, whether the syntax should be
standardized so that the same syntax works the same on all implementations,
or whether there is some reason why it's important for implementers to have
flexibility in how they interpret the string, and it's not so important
that URIs work differently with different implementations.  I'd be more
convinced that people want it this way if there was discussion on the
mailing list, focusing people exactly on this issue.  (and I'm also curious
about why the flexibility is important).

Radia






>
> > 2: consider adding explanations of when it would be appropriate to not
> do a
> > SHOULD?
>
> Yes, this is one of the things I look for when reviewing documents, too ;-)
>
> > For 2, above, there's a great difference between "SHOULD do x unless
> > there's some reason that it's impossible in this implementation" and
> > "SHOULD do x unless you don't happen to agree with it."  I'd like to try
> to
> > tease those apart.
>
> I'm not a browser implementor, but as far as I can tell, there is a strong
> tendency in that community to respect the law of least user astonishment,
> so my very personal interpretation is "you SHOULD do this unless experience
> shows that it will confuse the user." However, I think the real
> interpretation
> in this case is closer to your first one - do this, because it helps the
> user, unless your implementation makes this unreasonable.
>
> Very much IMHO.
>
>     Brian
>