Re: [sidr] draft-ietf-sidr-repos-struct to Standards Track

Terry Manderson <terry.manderson@icann.org> Tue, 19 July 2011 01:57 UTC

Return-Path: <terry.manderson@icann.org>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0D47821F86AB for <sidr@ietfa.amsl.com>; Mon, 18 Jul 2011 18:57:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -107.46
X-Spam-Level:
X-Spam-Status: No, score=-107.46 tagged_above=-999 required=5 tests=[AWL=1.139, BAYES_00=-2.599, GB_I_LETTER=-2, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dl5-1RSoXx9o for <sidr@ietfa.amsl.com>; Mon, 18 Jul 2011 18:57:38 -0700 (PDT)
Received: from EXPFE100-1.exc.icann.org (expfe100-1.exc.icann.org [64.78.22.236]) by ietfa.amsl.com (Postfix) with ESMTP id 98F8D21F86A2 for <sidr@ietf.org>; Mon, 18 Jul 2011 18:57:38 -0700 (PDT)
Received: from EXVPMBX100-1.exc.icann.org ([64.78.22.232]) by EXPFE100-1.exc.icann.org ([64.78.22.236]) with mapi; Mon, 18 Jul 2011 18:57:37 -0700
From: Terry Manderson <terry.manderson@icann.org>
To: Tim Bruijnzeels <tim@ripe.net>, Rob Austein <sra@isc.org>
Date: Mon, 18 Jul 2011 18:57:34 -0700
Thread-Topic: [sidr] draft-ietf-sidr-repos-struct to Standards Track
Thread-Index: AcxFP2AMTsBYVBo2QPSHDoq3fzYfkgAd9nec
Message-ID: <CA4B21AE.17EE7%terry.manderson@icann.org>
In-Reply-To: <1134F1F2-0964-4B85-A1EB-5B7A5B604C5B@ripe.net>
Accept-Language: en-US
Content-Language: en
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "draft-ietf-sidr-repos-struct@tools.ietf.org" <draft-ietf-sidr-repos-struct@tools.ietf.org>, "sidr-chairs@tools.ietf.org" <sidr-chairs@tools.ietf.org>, "sidr@ietf.org" <sidr@ietf.org>
Subject: Re: [sidr] draft-ietf-sidr-repos-struct to Standards Track
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Jul 2011 01:57:39 -0000

On 18/07/11 9:39 PM, "Tim Bruijnzeels" <tim@ripe.net> wrote:

> Hi,
> 
> I agree that not having this mapping is tedious and error prone for RPs.

I can agree that a mapping system is useful. It may just be that living unix
world for far too long has seen me move away from the mandatory dos-like
suffixes to the voluntary use of extensions in a unix file system as a
*hint* to the file contents and nothing more.

And I'm happy to see it written as a hint. A validated mapping should come,
in my opinion from something more robust which also transcends the
technology used in the repository.

> 
> Example:
> - ROA that isn't strictly standard compliant / validator has bug in ROA
> recognition
> 
> Validator tries to parse as roa, cer, crl, mft; then gives up...
> 

So the validator has a bug. fix the validator?

> This is not only ugly code to maintain, it also makes it difficult to debug
> problems. The happy flow case, while cumbersome, is not the biggest problem
> here I think..
> 
> How do we work out, in this example, what caused the actual problem? From the
> software side it's rather involved to build something like: this looks 99%
> like I ROA, one I don't understand, but it's probably what they meant or
> something like that... so our tool just says: I don't understand this
> *object*.
> 

Same goes for a misname (malicious or otherwise) of the file. A robust
mechanism as I see it doesn't live in three letter extensions.

> 
> Whether this mapping strictly needs to be in this draft may be another
> question.
> 

Agree with that point.

Cheers
Terry