[lamps] IESG review of draft-ietf-lamps-cmp-updates-20
Roman Danyliw <rdd@cert.org> Thu, 02 June 2022 18:47 UTC
Return-Path: <rdd@cert.org>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E819AC14F74F for <spasm@ietfa.amsl.com>; Thu, 2 Jun 2022 11:47:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=seicmu.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4nKTsbbwutDp for <spasm@ietfa.amsl.com>; Thu, 2 Jun 2022 11:47:23 -0700 (PDT)
Received: from USG02-CY1-obe.outbound.protection.office365.us (mail-cy1usg02on070f.outbound.protection.office365.us [IPv6:2001:489a:2202:d::70f]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 02ACEC14F746 for <spasm@ietf.org>; Thu, 2 Jun 2022 11:47:18 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=Uwvcw5BIFTqIoGAdbzwoGhF9EGe/4gQMI1WmqMOqpf/92xv7U2PwSkkrx6m9cB2jt19jbuT3DV3AQSVfDsWMJLRj0gauAjYuwRQSchUKQYcTScnfW8cWnmuu5a6kcWu6cbpbD6yhwrj4IT2NqHjh3wA3rzrwJSJEoi6bzB403DkuO0JVgYVXp5uuhnp7v+cTAjy0wARKOX6ms+J/SBxgjP0W/cshYvAH8KVA6j3QQCDtOX8hZljRRu0bvnQC+a4WOURjwZc78ee4iQErYqQRk7xA3SgPbiRVvEssb0VLfttFvEw9Ds1DeUctfkRf8YNHrx0BU6fW7+fe7kno4lrnPg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=elxK3wEBmgAl7L65Ck8u0nkCMfPMLjUYnV2a3R5dzUo=; b=AEAKZRcdgsH2ApCgOFCZVeVDiOsRBEPr0LbI1JPjmHeltYL/DKL03IViy+rWKZJxX+YdU+HN8h5kVUiXUDmMv5SqxcDPuN+NYbbgEshrBFT8BGqBt/U5WNBDh8jF7ZVrUW5xqlxqC56Bt/WYkDSoL786lUKc3Xfs3piH90e37Esavcw8tnuek8lBNf+h4Bc53rBKhbd8afzjYFzW+CBYQGhviQkGqOJ1nMSlpDRHNYBC9c+EMRGszVFFr55EZmFmwKSbtizwZ3TZQjuBtVQVLf1ZRLBY0UHQqySdff7fR+xpVX7VtaL5v2gYwPLUatSlszxghS8hEzsMQ/gVwwRocA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cert.org; dmarc=pass action=none header.from=cert.org; dkim=pass header.d=cert.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=seicmu.onmicrosoft.com; s=selector1-seicmu-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=elxK3wEBmgAl7L65Ck8u0nkCMfPMLjUYnV2a3R5dzUo=; b=GGh7mpxRUcZqyMAy/7wpagjy+9e5MmVYATxQGCKNjLb2KWRUY/gBc03OlIV9+N2nRUYy+RtGiyAiG+bpGG9AT7nvdHispfACzlelbyPKEedxAqNXBgzIrUcyD6hwT3HRXE57kPl8oQzWVZYxIYWRqf7wXh74sxPF1iXL4ds3scY=
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:168::11) by BN2P110MB1074.NAMP110.PROD.OUTLOOK.COM (2001:489a:200:16a::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5293.13; Thu, 2 Jun 2022 18:47:11 +0000
Received: from BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::557e:44e5:6959:7c65]) by BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM ([fe80::557e:44e5:6959:7c65%4]) with mapi id 15.20.5273.023; Thu, 2 Jun 2022 18:47:11 +0000
From: Roman Danyliw <rdd@cert.org>
To: "spasm@ietf.org" <spasm@ietf.org>
Thread-Topic: IESG review of draft-ietf-lamps-cmp-updates-20
Thread-Index: Adh2o0JYP3nR9eAkQlKjAdN4Q8JQyg==
Date: Thu, 02 Jun 2022 18:47:11 +0000
Message-ID: <BN2P110MB11076116EA041030B33A9CD8DCDE9@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cert.org;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: c70e168d-016f-411c-625d-08da44c84dd2
x-ms-traffictypediagnostic: BN2P110MB1074:EE_
x-microsoft-antispam-prvs: <BN2P110MB10740FB25C10411C156E1CADDCDE9@BN2P110MB1074.NAMP110.PROD.OUTLOOK.COM>
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230001)(366004)(186003)(8936002)(2906002)(55016003)(76116006)(6916009)(8676002)(66446008)(38100700002)(66476007)(83380400001)(38070700005)(64756008)(52536014)(966005)(86362001)(4743002)(498600001)(66556008)(33656002)(7696005)(5660300002)(66946007)(82960400001)(122000001)(9686003)(26005)(71200400001)(15650500001)(6506007); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: vy6Be+2YGFty6VudGSHZYEL1iRerWBnPdxLiGmLF+n6KRPxscUMm4oz0IwpQu8+G4s/WiE3OqQ6wOMvcqO8DgUJzP/IXfhWsZomYkwl/SOLy2PmGQEeCM0J8kldA3IeYfn6NBLJay2UYU5KCMgkChyREXwaiT6oXU62N1czGWkDuQYxVU0I/KGJlouPuK51KWa5r8GBHjEdRpehVsljjDS1SRYKj3v/24n2p0mZmPCjD4o0lfp4pmBX3RrHYqXzw6Xc2ElqC5hAHnvXQXj5VIm2honHh2TVxyLfTebEhzMzC7ZYtLbMohZmUaw3w5FRaHTbkDQ18BYFYiEkPsXgRPbbns3ADaJBf+HxQT/BIJDucdWKlmNbWbUZdCsdy7dMzAaOzlbuo3/KbslpzduxQSwG+KUzaeiLHOUSbe0C4oW8=
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: cert.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: c70e168d-016f-411c-625d-08da44c84dd2
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Jun 2022 18:47:11.6127 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 95a9dce2-04f2-4043-995d-1ec3861911c6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN2P110MB1074
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/OHZo0bnhgfdl0bXtYhYFDkXOpPk>
Subject: [lamps] IESG review of draft-ietf-lamps-cmp-updates-20
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Jun 2022 18:47:25 -0000
Hi! draft-ietf-lamps-cmp-updates was on the IETF telechat today and the outcome of the ballot was an insufficient number of positions to pass. See https://datatracker.ietf.org/doc/draft-ietf-lamps-cmp-updates/ballot/. Procedurally, any Proposed Standard (PS) status document needs 2/3rds of the IESG (10 of the 14 members) to ballot "Yes" or "No Objection" to pass. Unfortunately, the results we have is that 5 IESG members have balloted ABSTAIN, which means that irrespective of the two ADs clearing their DISCUSS positions, this document can't advance to publication. The primary concerns of those ABSTAINing appeared to be that the editorial style of a large collection of OLD/NEW patches makes the document unreadable. If you recollect, this was the reason why I asked for documentation of this editorial choice during the AD Review (https://mailarchive.ietf.org/arch/msg/spasm/5yAA3RADNiqNRwvDe_8GCg3Q-WY/ ). The IESG also questioned why the WG couldn't just publish a bis document. There is a prior history of the IESG raising concerns with such an editorial style and ultimately sending it back to the WG (https://datatracker.ietf.org/doc/draft-ietf-nfsv4-mv1-msns-update/ballot/) With the help of background from Russ and Hendrik, I reminded the IESG of: ** the history of why this document grew to the length that it was, and that this patch style approach is not uncommon for PKIX documents ** that there are pending PRs in OpenSSL and BouncyCastle to support this document (and these communities are waiting for an RFC to accept them) ** one of the primary ways in which the PKIX community interacts with CMP is via libraries The IESG also discussed if we need to put out a statement to better guide "patch-style update documents" in the IETF. I was supportive of this but stressed that any such statement should apply to future work. The ADs are sympathetic to blocking the work, so we defined the following steps to find a way to advance the document. No guarantees, but these steps would provide structure for the ADs to revisit their ballots (and get us closer to the needed 10 positions). These steps included: ** Returning the document back for IESG Review on the June 30 telechat (reason: certain ADs balloted ABSTAINed and didn't review all of the details of the document; with the benefit of this additional WG background described above, returning this document gives them more time for review) ** Plan and define a formal milestone in the datatracker that set expectations on when a CMP bis document would be published (reason: certain ADs would feel reassured that the WG has a plan to provide a more readable update document via bis and approval of this current document would be a stop-gap measure) ** Add text into the current draft-ietf-lamps-cmp-updates which explains why this patch style was used and alluding to WG plan for a full bis document ** Updating the shepherd write-up for the implementations of this document Thanks for the WG's continue work on CMP. This is an important technology for the community. Regards, Roman
- [lamps] IESG review of draft-ietf-lamps-cmp-updat… Roman Danyliw
- Re: [lamps] [EXTERNAL] IESG review of draft-ietf-… Mike Ounsworth
- Re: [lamps] [EXTERNAL] IESG review of draft-ietf-… Roman Danyliw
- Re: [lamps] IESG review of draft-ietf-lamps-cmp-u… Brockhaus, Hendrik
- Re: [lamps] IESG review of draft-ietf-lamps-cmp-u… Mike Ounsworth
- Re: [lamps] IESG review of draft-ietf-lamps-cmp-u… Russ Housley