[Secdispatch] Re: [dispatch] IANA policies "... with expert review" (Re: [Alldispatch] IETF-Wide Dispatch – Call for topics)

John C Klensin <john-ietf@jck.com> Sun, 26 May 2024 21:03 UTC

Return-Path: <john-ietf@jck.com>
X-Original-To: alldispatch@ietfa.amsl.com
Delivered-To: alldispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 22FD1C14EB1E; Sun, 26 May 2024 14:03:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.896
X-Spam-Level:
X-Spam-Status: No, score=-6.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YOm1gNBw4tpc; Sun, 26 May 2024 14:03:36 -0700 (PDT)
Received: from bsa2.jck.com (bsa2.jck.com [70.88.254.51]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F1AD1C14F5ED; Sun, 26 May 2024 14:03:35 -0700 (PDT)
Received: from [198.252.137.10] (helo=PSB) by bsa2.jck.com with esmtp (Exim 4.82 (FreeBSD)) (envelope-from <john-ietf@jck.com>) id 1sBL1g-0009QI-OY; Sun, 26 May 2024 17:03:32 -0400
Date: Sun, 26 May 2024 17:03:26 -0400
From: John C Klensin <john-ietf@jck.com>
To: gendispatch@ietf.org, Rifaat Shekh-Yusef <rifaat.s.ietf@gmail.com>
Message-ID: <A524CA738E9D15AAE782CC33@PSB>
In-Reply-To: <886F613C-D942-4D07-879C-817BFC74455A@tzi.org>
References: <CADNypP-t3r_978s3ZgrpBmwV1g9mMrWuHqqibAKSgvEA==j8Pg@mail. gmail.com> <886F613C-D942-4D07-879C-817BFC74455A@tzi.org>
X-Mailer: Mulberry/4.0.8 (Win32)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
X-SA-Exim-Connect-IP: 198.252.137.10
X-SA-Exim-Mail-From: john-ietf@jck.com
X-SA-Exim-Scanned: No (on bsa2.jck.com); SAEximRunCond expanded to false
X-MailFrom: john-ietf@jck.com
X-Mailman-Rule-Hits: max-recipients
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-size; news-moderation; no-subject; digests; suspicious-header
Message-ID-Hash: ORIWOXIXSYE73IC3OGLEVYKQUZW322QM
X-Message-ID-Hash: ORIWOXIXSYE73IC3OGLEVYKQUZW322QM
X-Mailman-Approved-At: Sun, 26 May 2024 18:13:05 -0700
CC: Alldispatch@ietf.org, secdispatch <secdispatch@ietf.org>, dispatch@ietf.org, rtgwg@ietf.org, opsawg@ietf.org, int-area@ietf.org, ops-area@ietf.org, witarea@ietf.org, core-chairs@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Secdispatch] Re: [dispatch] IANA policies "... with expert review" (Re: [Alldispatch] IETF-Wide Dispatch – Call for topics)
List-Id: Security Dispatch <secdispatch.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/CkpqPz9A_tRMz1eBmq2mFF1w-eI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Owner: <mailto:secdispatch-owner@ietf.org>
List-Post: <mailto:secdispatch@ietf.org>
List-Subscribe: <mailto:secdispatch-join@ietf.org>
List-Unsubscribe: <mailto:secdispatch-leave@ietf.org>

If this general topic is going to be put on the agenda, may I ask
that the proposal for a hybrid registration policy [3], which
addresses a very similar, and closely related issue, be placed on the
agenda and included in the discussion.

thanks,
  john klensin

[3] https://datatracker.ietf.org/doc/draft-klensin-iana-consid-hybrid/

--On Saturday, May 25, 2024 23:14 +0200 Carsten Bormann
<cabo@tzi.org> wrote:

> On 10. May 2024, at 22:13, Rifaat Shekh-Yusef
> <rifaat.s.ietf@gmail.com> wrote:
>> 
>> If you would like time at the meeting to discuss your work or
>> ideas, please reply to this email with your request by May 24th.
> 
> I apologize for being a day late (but of course time does not
> actually advance during weekends…).
> 
> We have had a longstanding, small but tricky problem with the IANA
> registration policies defined in BCP 26: this has policies that
> involve designated experts and policies that require some IETF
> consensus (IETF review, Standards Action), but no policies that
> actually combine these requirements.
> 
> One might think that IETF consensus should be higher-ranking than
> expert review, but for some registries there is registry-specific
> knowledge that may be required for making a correct registration
> and that may be concentrated in the designated experts.  IETF
> consensus based registration sometimes circumvents that knowledge,
> which can lead to incorrect registrations or to emergency actions
> to avoid such incorrect registrations (which in turn can lead to
> port-465-style problems [2]).
> 
> The draft at [0] aims to create pre-made policies that solve this
> problem by combining IETF consensus with expert review.
> 
> This has been discussed for almost a decade, probably more during
> meetings than on mailing lists.   Finally writing this up was
> triggered by the specific instance of [1].
> 
> We would like to discuss this issue (and how well the current draft
> succeeds at addressing the issue) on the gendispatch ML, adjust the
> draft, and then have it on the agenda of the gendispatch meeting in
> Vancouver.
> 
> Grüße, Carsten
> 
> 
> [0]:
> https://www.ietf.org/archive/id/draft-bormann-gendispatch-with-expe
> rt-review-00.html
> 
> [1]:
> https://mailarchive.ietf.org/arch/msg/core/BENVbgmF0px40GPW-zlA4nHI
> 8So
> 
> [2]: https://datatracker.ietf.org/doc/html/rfc8314
> (The 465 problem was created by a set of circumstances distinct
> from the problem we hope to solve by "…with expert review",
> but it is a rather impressive example for how long unstable
> registrations can linger if not addressed heads-on early.
> 
> _______________________________________________
> dispatch mailing list -- dispatch@ietf.org
> To unsubscribe send an email to dispatch-leave@ietf.org