Re: [Stackevo] draft-thomson-use-it-or-lose-it

Martin Thomson <martin.thomson@gmail.com> Tue, 07 August 2018 00:25 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: stackevo@ietfa.amsl.com
Delivered-To: stackevo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7FEFC130E3F for <stackevo@ietfa.amsl.com>; Mon, 6 Aug 2018 17:25:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d0OdXtvmifPg for <stackevo@ietfa.amsl.com>; Mon, 6 Aug 2018 17:25:00 -0700 (PDT)
Received: from mail-oi0-x22b.google.com (mail-oi0-x22b.google.com [IPv6:2607:f8b0:4003:c06::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DF40A130DC8 for <stackevo@iab.org>; Mon, 6 Aug 2018 17:24:59 -0700 (PDT)
Received: by mail-oi0-x22b.google.com with SMTP id y207-v6so25366071oie.13 for <stackevo@iab.org>; Mon, 06 Aug 2018 17:24:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=7NAWEVhlEe3Rl7EFuoN+geyJmNTMcDipj75ohUUf2TI=; b=gVUKU8PzSMisMEBAzowSv0EReRSpxSz4uFf00BSb2bkH5jZ/cdSqYH37B/iAjYk/YG cetvBfttev9Ek1Od36Rlb1yTu2yPtwvrxXi1iIa/mvKoZFTNv18seSTUhkbi68HSapnA 2VZTKALYpNvskAbE0ca9ddNKSyEsev2VhriOa/9nYqbQFxGN7mMTuB53iWjHyhHBP2+B fBW4oS1Zd0lo73LNuhVUfrfBvjffVHbMMHIxm3xHRRfIUQaTI6v+jJ/RvtowbsmCZnU0 ft90m7URKXy/21F00OtJs7887OBhhn0SSbbQJXcTAUdMvDDDCc1lDxad7vaBxiztDGOo CJGA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=7NAWEVhlEe3Rl7EFuoN+geyJmNTMcDipj75ohUUf2TI=; b=kE+Q5HsiGObMKvAsK4ijQKDz0thoPqbmkmnn2rZkFSwFJ6id7ec84eXP5TFt8red0x iRiSD9jidA/RtXsEqoi7wtSBAF3/blHdBUnJn7leaM1ZCPtW1/oWWO0X/F5cU371FxUu 9/Hae96BON3Tzd0DYHQRFh+LAIKfORrovpiSO7tqrkst7dHABtTEcYpNzOgn909ht/lE FQtmFwP6OBAKIhfYxksQ0o4w5um+XfVvLss+hazOWjM3VnhAUyGx0az150gaAjVxG+sL XmH85usF9yL2Obg+cmIoBnRFXXXkagtvf98ch6FZZYuK/BrvBGfFyfZLkk8nCv3f1mm8 9kGw==
X-Gm-Message-State: AOUpUlGvhsb58KJhSKz6SzKHgNOOrTqdqtzakPUktlvgpjp86cD6k3u2 A96nwOQXzzRdIjeycZXvu8qp2i9n6Yx33U/DFmk=
X-Google-Smtp-Source: AA+uWPxBRPZ3QCuGLWugimXoXEiVC5Rd1LOn5g3bqqDOHfr/MCME7Br1a01g6sffWNy4vVT3D5bD6uR72PY0wJyxruc=
X-Received: by 2002:aca:b208:: with SMTP id b8-v6mr16000576oif.144.1533601499257; Mon, 06 Aug 2018 17:24:59 -0700 (PDT)
MIME-Version: 1.0
References: <991AD90C-A84A-4302-BB25-C5FAB33C8E80@trammell.ch> <3C07107C-D373-4E4B-ABBA-B025AC3A7B2A@tik.ee.ethz.ch> <CABkgnnXyNAHHTCx_pWtuNdQmFkSjt2b+ytGr7G636-_VtG6mTA@mail.gmail.com> <4FD6FAB0-8C32-4FB8-8836-3538A6B463BF@tik.ee.ethz.ch> <CABkgnnVFZwvztZc9Qy=oJ0+pvchSoiVShKd1AhEJVD5G9UU_XA@mail.gmail.com> <2c74043e-ee37-694e-b850-ee52c9336453@cisco.com>
In-Reply-To: <2c74043e-ee37-694e-b850-ee52c9336453@cisco.com>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Tue, 07 Aug 2018 10:24:48 +1000
Message-ID: <CABkgnnXHUEqVckcaHKSPEakdHSawUXW7XSSZ1Ah_9ReheH+Tcw@mail.gmail.com>
To: Eliot Lear <lear@cisco.com>
Cc: Mirja Kühlewind <mirja.kuehlewind@tik.ee.ethz.ch>, Stackevo <stackevo@iab.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/stackevo/a0IMohZaBSUsqWcT8ywuhqWp0uY>
Subject: Re: [Stackevo] draft-thomson-use-it-or-lose-it
X-BeenThere: stackevo@iab.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: IP Stack Evolution Program Mailing List <stackevo.iab.org>
List-Unsubscribe: <https://www.iab.org/mailman/options/stackevo>, <mailto:stackevo-request@iab.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stackevo/>
List-Post: <mailto:stackevo@iab.org>
List-Help: <mailto:stackevo-request@iab.org?subject=help>
List-Subscribe: <https://www.iab.org/mailman/listinfo/stackevo>, <mailto:stackevo-request@iab.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Aug 2018 00:25:02 -0000

On Mon, Aug 6, 2018 at 11:22 PM Eliot Lear <lear@cisco.com> wrote:
> In short, my suggestion is to first decide on what applicability you
> want to have, and if broad, then let's explore some other cases.

Brian made a similar comment.  I would really like to hear more about
broader experience with this.  It seems like TLS is uniquely crappy
when it comes to these issues (investigating why would be another
valuable research subject...), but I can't believe for a moment that
the implementation ecosystem of other protocols is pristine and
blemish-free.

If your experience with the AAA protocols reveals anything, I'd be
very interested.  My understanding of RADIUS, having used it many
years ago, was that it was a great example of the active use thing I
advocate for.  That is, the mechanism you use to extend the protocol
is so fundamental to the protocol that you cannot avoid correctness in
extension handling.  Even having a stronger reaffirmation of that
would be helpful.