Re: [stir] Getting PASSPORT Published
Mary Barnes <mary.ietf.barnes@gmail.com> Thu, 21 February 2019 23:13 UTC
Return-Path: <mary.ietf.barnes@gmail.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E3CB129AA0 for <stir@ietfa.amsl.com>; Thu, 21 Feb 2019 15:13:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1BVKqv_L9Jb8 for <stir@ietfa.amsl.com>; Thu, 21 Feb 2019 15:13:09 -0800 (PST)
Received: from mail-lf1-x12e.google.com (mail-lf1-x12e.google.com [IPv6:2a00:1450:4864:20::12e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8F25C126C7E for <stir@ietf.org>; Thu, 21 Feb 2019 15:13:08 -0800 (PST)
Received: by mail-lf1-x12e.google.com with SMTP id q12so295850lfm.0 for <stir@ietf.org>; Thu, 21 Feb 2019 15:13:08 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=1/06zTaSxqeXOPQ7L7PrJAKZYqv3lzeUa2e7CAVQoiI=; b=WNIRhzcnTu9WZhj8t+AbIzlRTIXRbJhks4mq4L9Obn4t+gpb+RAaVQHQvLZhaNiwOb 3T5rqdJo7XusPoZ8ZOwlqUUrH+7XEwyXIzvE1DWNri/zAUETJppRw8PC4My96+SPusbg SQVCmfZqi7iYmgjrUP30CObUDh7KrD8FusKsDMQ8XOnFLO5HyUJiZizw5tRpiUoRjbvr 3UePNYbYvhjW2vzBsiPTHMakesQ0KNPX6TKHraodyb6P3OJu8jYQRgWP6R+mbmFTnzzg wSvK04Q5AQHdodFVy59u7y4YhKTvQVH3Rtz689qoIARx2oVV+PYIa7VdsT04bxQXg/7V Ukow==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=1/06zTaSxqeXOPQ7L7PrJAKZYqv3lzeUa2e7CAVQoiI=; b=hSDUFFiIflGeuT7crQJ87MKx6uTq8uPd0BwZ+Hd3eoxQI4Z4hnO/8pE1DzOMWC0nWx MCffl/nlAXtn52teiMjmmbdklBrYgnJLwe6eT6BTJdl4PaztRfrN2VYBpoSLGuYljkwD Yapo3n4fB2jlhE1bki8dQT5mLwQG9bS3JSYHVswWumn87EADWHySlbKiudFGsq+zPxGk l4tnpT2PBCWewg2pVeDQq7A9/fQgPMYVkoMt/SEzh9qO0Q2sIQYal1T2Iunu4AGng78x 5ATuLTH9+ez3rrgPZqKOmjZmo8+8RmlGjeJ/Iv2U30uTITITXdni4mJkC4DliAufAbux kaWw==
X-Gm-Message-State: AHQUAubXlA++vWHnIH12gp+kLxGWqBDz3ARoeLv1nROnZFYQV9bCXaKW PiVBIm1rhN+09fdoggXPnpB4eDJgeGSKi2PGYCI=
X-Google-Smtp-Source: AHgI3IaHPtFDNKbawvu/Q/syGsmj3je0XyiH939SG5c8KPTMjcFA8Jr87un+TyD9+Y57SCkBMnnVPrtJU53PC77zM7Y=
X-Received: by 2002:a2e:9b41:: with SMTP id o1mr498228ljj.103.1550790786558; Thu, 21 Feb 2019 15:13:06 -0800 (PST)
MIME-Version: 1.0
References: <17d7e50b-5012-74ec-d1a5-9c8b80d60f4e@nostrum.com>
In-Reply-To: <17d7e50b-5012-74ec-d1a5-9c8b80d60f4e@nostrum.com>
From: Mary Barnes <mary.ietf.barnes@gmail.com>
Date: Thu, 21 Feb 2019 17:12:55 -0600
Message-ID: <CAHBDyN70Mdtis2Z=XWGnExMz8g5Scuvy_XhcZ+VpnWkeXPddxQ@mail.gmail.com>
To: Adam Roach <adam@nostrum.com>
Cc: draft-ietf-stir-passport-shaken.all@tools.ietf.org, "stir@ietf.org" <stir@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000f430f805826f9dd3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/mlZSRfD6amSFS6bdWZxMTpd109w>
Subject: Re: [stir] Getting PASSPORT Published
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Feb 2019 23:13:12 -0000
I personally don't see it adds any value to make the proposed change given that you're proposing to change the status of the draft to Informational (which I'm fine with). We've had this discussion many, many times with one of those threads triggering this draft: https://tools.ietf.org/html/draft-peterson-informational-normativity-01 We could start it again, if you don't agree with what that draft says - that will give us a good topic for open mic discussions at the plenary next month ;) I also thought IESG had published a statement on this, but I can only find the one with regards to the references and not the terms: https://www.ietf.org/blog/iesg-statement-normative-and-informative-references/ . In my view, what we have now is sufficient given the change in status. The document highlights a potential privacy concern and suggests how it could be addressed by service providers that deem it to be a concern. Regards, Mary On Thu, Feb 21, 2019 at 4:24 PM Adam Roach <adam@nostrum.com> wrote: > [as area director] > > tl;dr: I'd like to propose publishing SHAKEN as Informational instead of > Standards Track, and tweaking the Privacy Considerations section. > Details below. > > > The draft-ietf-stir-passport-shaken document still has a DISCUSS > remaining on it from IESG evaluation: > > > I would like to discuss the privacy properties of origids. As I read > > this text, it does not actually require them to be unlinkable or that > > it not be possible to determine whether two ids represent the same > > person behind the origid generator, and I believe it should do so. > > Practically implementing that may require an ID that is longer than a > > UUID. > > > While it's true that this behavior is defined in the ATIS document, > publication of an IETF Proposed Standard carries with it the explicit > indication that the IETF as a whole (including the IESG during their > evaluation) thinks the approach being described is a Good Idea. In this > particular case, the fact that the underlying mechanism does not > inherently provide unlinkability for the underlying identifiers has been > identified as problematic. > > At the same time, I'll note that the primary reason for this document to > exist is to populate two IANA registries. Both of these registries are > "Specification Required," which doesn't require the publication of a > Standards Track document. > > An acceptable path to address this situation would be to instead publish > draft-ietf-stir-passport-shaken as Informational, and to tighten up the > privacy considerations slightly. I believe this could be achieved with a > small change to the final sentence of section 10; we would replace: > > > If the operator of an element is concerned about the > > correlation of 'origid' values, the element could be configured to > > use a unique 'origid' value per call in such a way that the operator > > can associate those 'origid' values to the correct element when doing > > lookups in their backend systems. > > With: > > > Absent a compelling reason not to do so, operators should configure > > their > > network elements to use a unique and externally unlinkable 'origid' > > value > > per call in such a way that the operator can associate those 'origid' > > values to the correct element when doing lookups in their backend > > systems. > > > Does this sound like a reasonable path forward? > > /a > > _______________________________________________ > stir mailing list > stir@ietf.org > https://www.ietf.org/mailman/listinfo/stir >
- [stir] Getting PASSPORT Published Adam Roach
- Re: [stir] Getting PASSPORT Published Mary Barnes
- Re: [stir] Getting PASSPORT Published Ben Campbell
- Re: [stir] Getting PASSPORT Published Adam Roach
- Re: [stir] Getting PASSPORT Published Mary Barnes
- Re: [stir] Getting PASSPORT Published Mary Barnes
- Re: [stir] Getting PASSPORT Published Peterson, Jon
- Re: [stir] Getting PASSPORT Published Adam Roach
- Re: [stir] Getting PASSPORT Published Chris Wendt