[Secdispatch] Re: IANA policies "... with expert review" (Re: [Alldispatch] IETF-Wide Dispatch – Call for topics)
Donald Eastlake <d3e3e3@gmail.com> Sun, 26 May 2024 21:39 UTC
Return-Path: <d3e3e3@gmail.com>
X-Original-To: gendispatch@ietfa.amsl.com
Delivered-To: gendispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3AB11C14F5EC; Sun, 26 May 2024 14:39:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.846
X-Spam-Level:
X-Spam-Status: No, score=-1.846 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lAFjqwMoaAdn; Sun, 26 May 2024 14:39:43 -0700 (PDT)
Received: from mail-ot1-x32c.google.com (mail-ot1-x32c.google.com [IPv6:2607:f8b0:4864:20::32c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AA8C1C14F6A4; Sun, 26 May 2024 14:39:37 -0700 (PDT)
Received: by mail-ot1-x32c.google.com with SMTP id 46e09a7af769-6f8e5115cfbso591654a34.0; Sun, 26 May 2024 14:39:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1716759576; x=1717364376; darn=ietf.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=b4j0mojvj9ZmUr8zCrS2OvF7AKTWID1844aJvW52F80=; b=iS5IuWezWQeqlnTTH6A85KdBUon2uwEEpYlOqMfm63wPwM/PODJZV+Jb9BUlo9rM0k 396TQIwYgDO9ESPbqdAUzrGD+JQitCXQWB6dXid6yvddmd3lxQWp7IJW6Q+A1ehJds1Z XT0oVx27MF6QoPbjbK5BmLjpUUJU/Ph7hJTG1zLVDyXwMIKQe02t5lsSD329DK6vyeaE jRu1HpztQYpoqhwPZwB1bSURUcIPwSPK9K9xBDhA6xChmCw65r9KvRldwZ0DstqrEqvP CZFne7UEWdluuOJU8wxL7IaneBAyZQb3SSQHJqzvBp/PYxxdnvTXZciiCwa4x6sPc+bB +0gA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1716759576; x=1717364376; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=b4j0mojvj9ZmUr8zCrS2OvF7AKTWID1844aJvW52F80=; b=V7rscHwSVMtUI+YRujJZkFDrupBuMa/9bWlK+O/Q4G3oGRVPjBfg9I2NdlcOoB3/id TwUP0zarkpJtakGE4wAItyf97ejCUzs42p/kQ0P7ikuB84bdop84c+HQ6vkPd+N7RTC+ NlsM1RDb8c7Mao7cHy71n3AmB/1Y0n/RBLi3kRaTvihxlN1s+djqBduNg9LehjtgOyLx wZ78Y2lK40y4JI3HRacLK1GYhCuO1hvatHIbmcAS0z/T1edLAqGaqa12Ad5SBUjcxHdb zHetF4/YCtNhWuApQ3eGZJtd/5cCt5+UucklTNv/2Hf2aiMXhy+tO+inIa51Ts3Scd4o xx3w==
X-Forwarded-Encrypted: i=1; AJvYcCW5S4E+gC1+Fe2tOIMPdXAIXGxt3ICi2bxZZ+KeMe+bPiWAqOOeW9sQNeOtS1+mHqMcGlFdkRQhe5gF9xxIqygBIU7ROrxTRUdc44JNwO5gt4c1rG1qaQpT+MP/WT9nt+u12qrlh1ifYWQv6Qtop1p9g/jUF9wkBuVT88t+xPRhsXRxlTxhPbmS9tJNNCqOx+OENzGxbQLGQcmsR6Yo8ld/m0LLS9ggoBBxLQDTKyoZj6n5CToZp3ygTtdmO09Mf52foBFaIYUT9FPt3eZB0+Qci7CJqnb8gkr/ALEE
X-Gm-Message-State: AOJu0YytXgUx23B4Yv3ifsPSuk5t8vntcUsvoPtYspa8LEFoT1ZzefLd fCEFh/c2fvcTA4NGx6qyxHdGp8OcYDcZ54miUfedVXt3IgDn9Wh2BhmBVstJgL6nfadrpeBvHMh MiLZMuMGPwfKc9P5XLRYRjlkCAt8aeEqE
X-Google-Smtp-Source: AGHT+IFxBPhNb3SGPwgjU6EdpuDDCAJfv9+8IIux3nhUdXmZ0wXui4BOOu/ErKb7Qnppvj80XJm/K7IgLPThhK20IX8=
X-Received: by 2002:a05:6830:1019:b0:6f8:de50:9d65 with SMTP id 46e09a7af769-6f8de509da4mr4671364a34.9.1716759575917; Sun, 26 May 2024 14:39:35 -0700 (PDT)
MIME-Version: 1.0
References: <CADNypP-t3r_978s3ZgrpBmwV1g9mMrWuHqqibAKSgvEA==j8Pg@mail.gmail.com> <886F613C-D942-4D07-879C-817BFC74455A@tzi.org>
In-Reply-To: <886F613C-D942-4D07-879C-817BFC74455A@tzi.org>
From: Donald Eastlake <d3e3e3@gmail.com>
Date: Sun, 26 May 2024 17:39:23 -0400
Message-ID: <CAF4+nEEaObL_KtwfoaMu9EJm1NUtC0x=9t2yY1FFsQ3=KwdrQA@mail.gmail.com>
To: gendispatch@ietf.org
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-MailFrom: d3e3e3@gmail.com
X-Mailman-Rule-Hits: max-recipients
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-size; news-moderation; no-subject; digests; suspicious-header
Message-ID-Hash: N3ZC7TDAXYOMWTVUO64DITWVVGXQQYWZ
X-Message-ID-Hash: N3ZC7TDAXYOMWTVUO64DITWVVGXQQYWZ
X-Mailman-Approved-At: Sun, 26 May 2024 18:13:05 -0700
CC: Rifaat Shekh-Yusef <rifaat.s.ietf@gmail.com>, Alldispatch@ietf.org, secdispatch <secdispatch@ietf.org>, dispatch@ietf.org, rtgwg@ietf.org, opsawg@ietf.org, int-area@ietf.org, ops-area@ietf.org, witarea@ietf.org, core-chairs@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Secdispatch] Re: IANA policies "... with expert review" (Re: [Alldispatch] IETF-Wide Dispatch – Call for topics)
List-Id: Security Dispatch <secdispatch.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/B34WjAggFWdQ2BUx-O4ZwLQm0bY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Owner: <mailto:secdispatch-owner@ietf.org>
List-Post: <mailto:secdispatch@ietf.org>
List-Subscribe: <mailto:secdispatch-join@ietf.org>
List-Unsubscribe: <mailto:secdispatch-leave@ietf.org>
It may be of interest that in some cases blocks of parameter values in RFC 9542 and its predecessors back though RFC 5342 are assigned under a policy called, in these RFCs, "IESG Ratification". This provides for Expert Review and then, if the Expert approves or is uncertain, the final decision is made by the IESG. See Section 5.1.2 of https://datatracker.ietf.org/doc/rfc9542/ (https://www.rfc-editor.org/rfc/rfc9542.html#name-expert-review-and-iesg-ratif) Thanks, Donald =============================== Donald E. Eastlake 3rd +1-508-333-2270 (cell) 2386 Panoramic Circle, Apopka, FL 32703 USA d3e3e3@gmail.com On Sat, May 25, 2024 at 5:15 PM Carsten Bormann <cabo@tzi.org> wrote: > > On 10. May 2024, at 22:13, Rifaat Shekh-Yusef <rifaat.s.ietf@gmail.com> wrote: > > > > If you would like time at the meeting to discuss your work or ideas, please reply to this email with your request by May 24th. > > I apologize for being a day late (but of course time does not actually advance during weekends…). > > We have had a longstanding, small but tricky problem with the IANA registration policies defined in BCP 26: this has policies that involve designated experts and policies that require some IETF consensus (IETF review, Standards Action), but no policies that actually combine these requirements. > > One might think that IETF consensus should be higher-ranking than expert review, but for some registries there is registry-specific knowledge that may be required for making a correct registration and that may be concentrated in the designated experts. IETF consensus based registration sometimes circumvents that knowledge, which can lead to incorrect registrations or to emergency actions to avoid such incorrect registrations (which in turn can lead to port-465-style problems [2]). > > The draft at [0] aims to create pre-made policies that solve this problem by combining IETF consensus with expert review. > > This has been discussed for almost a decade, probably more during meetings than on mailing lists. > Finally writing this up was triggered by the specific instance of [1]. > > We would like to discuss this issue (and how well the current draft succeeds at addressing the issue) on the gendispatch ML, adjust the draft, and then have it on the agenda of the gendispatch meeting in Vancouver. > > Grüße, Carsten > > > [0]: https://www.ietf.org/archive/id/draft-bormann-gendispatch-with-expert-review-00.html > > [1]: https://mailarchive.ietf.org/arch/msg/core/BENVbgmF0px40GPW-zlA4nHI8So > > [2]: https://datatracker.ietf.org/doc/html/rfc8314 > (The 465 problem was created by a set of circumstances distinct from the problem we hope to solve by “…with expert review”, but it is a rather impressive example for how long unstable registrations can linger if not addressed heads-on early. > > _______________________________________________ > rtgwg mailing list -- rtgwg@ietf.org > To unsubscribe send an email to rtgwg-leave@ietf.org
- [Secdispatch] IETF-Wide Dispatch – Call for topics Rifaat Shekh-Yusef
- [Secdispatch] IANA policies "... with expert revi… Carsten Bormann
- [Secdispatch] Re: [dispatch] IANA policies "... w… John C Klensin
- [Secdispatch] Re: IANA policies "... with expert … Donald Eastlake
- [Secdispatch] Re: [dispatch] Re: IANA policies ".… John C Klensin
- [Secdispatch] Re: [Alldispatch] [dispatch] Re: IA… Carsten Bormann