Re: [sidr] wglc draft-ietf-sidr-policy-qualifiers-00

George Michaelson <ggm@algebras.org> Sat, 13 July 2013 04:39 UTC

Return-Path: <ggm@algebras.org>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A2B5711E80F7 for <sidr@ietfa.amsl.com>; Fri, 12 Jul 2013 21:39:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.976
X-Spam-Level:
X-Spam-Status: No, score=-1.976 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lkJcSl-ngC41 for <sidr@ietfa.amsl.com>; Fri, 12 Jul 2013 21:39:19 -0700 (PDT)
Received: from mail-pd0-f172.google.com (mail-pd0-f172.google.com [209.85.192.172]) by ietfa.amsl.com (Postfix) with ESMTP id 8387611E80EF for <sidr@ietf.org>; Fri, 12 Jul 2013 21:39:19 -0700 (PDT)
Received: by mail-pd0-f172.google.com with SMTP id z10so9168447pdj.3 for <sidr@ietf.org>; Fri, 12 Jul 2013 21:39:19 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-originating-ip:in-reply-to:references:date :message-id:subject:from:to:cc:content-type:x-gm-message-state; bh=oPD7dF8p32W4ymM6d+FgjwHvXg9K8fb1caI9LMplXsw=; b=FhALh/Pz6EkQWbLy8814p7UKGa5FU7TWXXpv/vKMWDtgBzK9NmJH3zcnxKXOyQIAuL h58Um2xjcqTG64Eyz2vqwxJZkxcs2ZAmoP7MmPKJiAGW3jkH5ExpVJaEKs+Z7iyaR3vZ hyfrs/LnEc0pDR1fODu+K1IfASCA49Pab7/Zj61OSUL8D/IPSpSh2NRmsrjVhu5hHQMl bhnmNW8LmRgCJIEcaLXacgsvv9d7Xw0V5Q6NDF03cWRer2dUwvdBkqByBdzEWeS5PEdC XIfdge+ikssAHS6rZuAJFHj8fkVMluGNLKRZBkq4WZ5AdCF7l5t/S4w+Oe7dNmiTjD0w GgLg==
MIME-Version: 1.0
X-Received: by 10.68.212.106 with SMTP id nj10mr44726367pbc.74.1373690359003; Fri, 12 Jul 2013 21:39:19 -0700 (PDT)
Received: by 10.70.1.133 with HTTP; Fri, 12 Jul 2013 21:39:18 -0700 (PDT)
X-Originating-IP: [2001:44b8:2136:8e00:51b3:7c3c:a3de:bec7]
In-Reply-To: <24B20D14B2CD29478C8D5D6E9CBB29F6749A84D9@CVA-MB001.centreville.ads.sparta.com>
References: <24B20D14B2CD29478C8D5D6E9CBB29F6749A84D9@CVA-MB001.centreville.ads.sparta.com>
Date: Sat, 13 Jul 2013 14:39:18 +1000
Message-ID: <CAKr6gn0EJMAAQo+azTSoTcsV=D5z0=gy9m5zD0_EvbOxJxDVKg@mail.gmail.com>
From: George Michaelson <ggm@algebras.org>
To: "Murphy, Sandra" <Sandra.Murphy@sparta.com>
Content-Type: multipart/alternative; boundary="e89a8ff1ca52e14d8404e15d3587"
X-Gm-Message-State: ALoCoQkkfIP2RfODOkpF23NX4/DGbfQr4VrKu0I1oooGBcloLAaMfaQ1l3tMl3Y7ktlKjUDXlDyu
Cc: "sidr@ietf.org" <sidr@ietf.org>
Subject: Re: [sidr] wglc draft-ietf-sidr-policy-qualifiers-00
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Jul 2013 04:39:23 -0000

I support this draft being sent to WGLC. I have read the draft.

PKI imposes operational outcomes which relate to legalisms. conditions of
use, conditions of operation of service, dimensions which lie outside the
routing plane, and barely come into play for most of the time, but when you
*want to know* about things, its useful to have a pointer in the signed
material. What we think about these legalisms is not the point: its the
ability to reference them which is under discussion here. There is no
current mechanism to do that. This draft proposes a mechanism.

I think it does no harm, and I think it will do some good. I certainly have
text which has been given to me by lawyers which I regard as highly
suitable to be pointed to, by this kind of thing, and I expect other
operators of (r)PKI would expect to be able to do the same.

A small amount of work is required by validators of RPKI certificates to
understand a new optional element can exist and not reject certificates for
having the OID in the ASN.1.

I can't think of anything in the draft which requires an 01, and if minor
nits came up I believe they could be fixed in IESG/AUTHOR48 timeframes.

-George


On Sat, Jul 13, 2013 at 7:14 AM, Murphy, Sandra <Sandra.Murphy@sparta.com>wrote:

> The chairs have queried the authors of
> draft-ietf-sidr-policy-qualifiers-00, Policy Qualifiers in RPKI
> Certificates.  The response was that the draft is ready for wglc.
>
> There was general agreement on this draft during the adoption call, with
> one request for additional security considerations being addressed in the
> new version.  The draft is short and straightforward and the wg has not
> seen fit to comment further.
>
> Even so, it is unusual to publish a draft with so little comment during
> the time it has been a wg draft.  The chairs will be looking for a stronger
> than usual response.  Can't publish without reviews!
>
> This starts a 3 week wglc on draft draft-ietf-sidr-policy-qualifiers-00,
> Policy Qualifiers in RPKI Certificates.  Please do send comments to the
> list, indicating that you do or do not believe that the draft is ready for
> publication.
>
> The draft is available at
> http://tools.ietf.org/html/draft-ietf-sidr-policy-qualifiers-00.
>
> --Sandy, speaking for the co-chairs
> _______________________________________________
> sidr mailing list
> sidr@ietf.org
> https://www.ietf.org/mailman/listinfo/sidr
>