IETF Logo Mail Archive

Re: [therightkey] Draft charter for a Transparency Working Group

Stephen Farrell <stephen.farrell@cs.tcd.ie> Thu, 12 December 2013 12:26 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: therightkey@ietfa.amsl.com
Delivered-To: therightkey@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6BB301ACC88 for <therightkey@ietfa.amsl.com>; Thu, 12 Dec 2013 04:26:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MGQKe0JqCq8Z for <therightkey@ietfa.amsl.com>; Thu, 12 Dec 2013 04:26:55 -0800 (PST)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) by ietfa.amsl.com (Postfix) with ESMTP id 0E39E1AC85E for <therightkey@ietf.org>; Thu, 12 Dec 2013 04:26:55 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 79747BE2F; Thu, 12 Dec 2013 12:26:48 +0000 (GMT)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eBaZA7TFvhx0; Thu, 12 Dec 2013 12:26:48 +0000 (GMT)
Received: from [134.226.36.180] (stephen-think.dsg.cs.tcd.ie [134.226.36.180]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id E9311BE79; Thu, 12 Dec 2013 12:26:44 +0000 (GMT)
Message-ID: <52A9AB84.6090609@cs.tcd.ie>
Date: Thu, 12 Dec 2013 12:26:44 +0000
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.1.1
MIME-Version: 1.0
To: Ben Laurie <benl@google.com>, "therightkey@ietf.org" <therightkey@ietf.org>
References: <CABrd9SSzGJy18tf_iR5jFNk-sJyX66OPhmM4H23K5X2ZpWniyQ@mail.gmail.com>
In-Reply-To: <CABrd9SSzGJy18tf_iR5jFNk-sJyX66OPhmM4H23K5X2ZpWniyQ@mail.gmail.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Subject: Re: [therightkey] Draft charter for a Transparency Working Group
X-BeenThere: therightkey@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <therightkey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/therightkey>, <mailto:therightkey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/therightkey/>
List-Post: <mailto:therightkey@ietf.org>
List-Help: <mailto:therightkey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/therightkey>, <mailto:therightkey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Dec 2013 12:26:57 -0000

Hi Ben,

I've a question.

On 12/11/2013 04:55 PM, Ben Laurie wrote:
> Work items: Specify a standards-track mechanism to apply verifiable
> logs to HTTP/TLS (i.e. RFC 6962-bis).
> 
> Discuss mechanisms and techniques that allow cryptographically
> verifiable logs to be deployed to improve the security of protocols
> and software distribution. Where such mechanisms appear sufficiently
> useful, the WG will re-charter to add relevant new work items."

I'd like to get a feel for how these work items
might be sequenced.

For the 2nd one, I assume the modus-operandi would
be for folks interested in transparency-for-X to
write up a personal draft, have that discussed on
the WG list and for stuff for which the WG achieve
consensus to re-charter to add new work items to
tackle transparency-for-X to the charter. That
seems fine to me. (And people can starting writing
those today - the more that exists before the WG
would be chartered, the easier it'll all be.)

For the first one, I'm not clear as to whether
you intend to 1) first consider a set of
transparency-for-X proposals, re-charter and
to only then figure out how to re-factor 6962
into a set of standards-track RFCs, or

2) if you want to do the work of generating a
standards-track set of RFCs based on 6962 for
HTTP/TLS before the WG have considered a set
of transparency-for-X proposals.

Or maybe 3) you wanted that to emerge from
this chartering discussion.

Can you clarify? If (1) or (2) apply then it'd
probably be useful to include that explicitly
in the charter text. If (3) applies then I guess
you'd want to actively lead the discussion down
that path, which sort of seems to be happening
already.

And note I'm not asking here about the specific
set of RFCs as deliverables nor the timing of
those deliverables, just how the ordering of
HTTP/TLS vs. other stuff would happen at a
coarse-grained level. (Separately, it'd be good
to chat about what RFC deliverables are likely
to be wanted, but probably only after the
above is clear.)

Thanks,
S.

v2.23.0 | Report a Bug | By Email