Re: [Trans] Policy for adding to IANA registries requested in 6962-bis
Rob Stradling <rob.stradling@comodo.com> Tue, 13 December 2016 00:53 UTC
Return-Path: <rob.stradling@comodo.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 191B9129FD5 for <trans@ietfa.amsl.com>; Mon, 12 Dec 2016 16:53:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JfE82SiAFnnm for <trans@ietfa.amsl.com>; Mon, 12 Dec 2016 16:53:28 -0800 (PST)
Received: from mmextmx2.mcr.colo.comodoca.net (mmextmx2.mcr.colo.comodoca.net [IPv6:2a02:1788:402:c00::c0a8:9cd6]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3F36F129FAD for <trans@ietf.org>; Mon, 12 Dec 2016 16:53:28 -0800 (PST)
Received: (qmail 31485 invoked by uid 1004); 13 Dec 2016 00:53:26 -0000
Received: from ian.brad.office.comodo.net (HELO ian.brad.office.comodo.net) (192.168.0.202) by mmextmx2.mcr.colo.comodoca.net (qpsmtpd/0.84) with ESMTP; Tue, 13 Dec 2016 00:53:26 +0000
Received: (qmail 3341 invoked by uid 1000); 13 Dec 2016 00:53:26 -0000
Received: from and0004.comodo.net (HELO [192.168.0.58]) (192.168.0.58) (smtp-auth username rob, mechanism plain) by ian.brad.office.comodo.net (qpsmtpd/0.40) with (AES128-SHA encrypted) ESMTPSA; Tue, 13 Dec 2016 00:53:26 +0000
To: Eran Messeri <eranm@google.com>, "trans@ietf.org" <trans@ietf.org>
References: <CALzYgEce25Z7tSz6T+kmFQCA+xbgO0ECknV6nE1m55-pey3vrQ@mail.gmail.com> <CALzYgEf74uLn00GWDt0ccHVuPRdJOpBNfGBKGcB2BWML23s3YQ@mail.gmail.com>
From: Rob Stradling <rob.stradling@comodo.com>
Message-ID: <06cb8a34-7067-95af-708d-b2c2be261a1d@comodo.com>
Date: Tue, 13 Dec 2016 00:53:25 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.5.1
MIME-Version: 1.0
In-Reply-To: <CALzYgEf74uLn00GWDt0ccHVuPRdJOpBNfGBKGcB2BWML23s3YQ@mail.gmail.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/trans/X5nmUsDokpQWqCaJ15OgADjei9A>
Subject: Re: [Trans] Policy for adding to IANA registries requested in 6962-bis
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Dec 2016 00:53:32 -0000
On 12/12/16 15:54, Eran Messeri wrote: > Some background as to why I propose each of the policies: > * Expert Review for Hash algorithm and Signature algorithm: The > algorithm selection does not affect the behaviour of the protocol. > However, an expect should make sure proposed additions are suitable (for > example, that a proposed hash algorithm does not suffer from known > preimage attacks). https://tools.ietf.org/html/rfc5226 section 4.1 says (emphasis mine): "Expert Review (or Designated Expert) - approval by a Designated Expert is required. The *required documentation* and review criteria for use by the Designated Expert should be provided when defining the registry." So I think we should specify both Expert Review and Specification Required, just as (for example) https://tools.ietf.org/html/rfc6844 section 7.2 does: "Addition of tag identifiers requires a public specification and Expert Review as set out in..." Separately, should we reserve some values in either or both of these registries for Private Use or for Experimental Use? > * Specification requirement for SCT & STH extensions: new values for > these extensions are meaningless without specifying what they do - how > should clients behave when encountering them. +1 (and for the VersionedTransType registry we just added too) Separately, should we reserve some values in any of these registries for Private Use or for Experimental Use? > * First-come-first-served for Log IDs: I can't see how an expect review > could be meaningful, given log operators requesting those IDs can't > really prove competence to "own" log IDs, so requiring a "minimal amount > of clerical information" seems enough. +1 > Eran > > On Mon, Dec 12, 2016 at 3:44 PM, Eran Messeri <eranm@google.com > <mailto:eranm@google.com>> wrote: > > No policy has been specified in 6962-bis for adding values to the > IANA registries requested. > > In https://github.com/google/certificate-transparency-rfcs/pull/215 > <https://github.com/google/certificate-transparency-rfcs/pull/215> I > propose the following policies, all based on definitions in RFC5226: > * Hash algorithms and Signature algorithms: Expert Review > * SCT extensions and STH extensions: Specification Required > * Log ID 1, Log ID 2: First Come First Served. > > Feedback welcome, since, as far as I recall, this topic was not > discussed on the list previously. > > Eran > > > > > _______________________________________________ > Trans mailing list > Trans@ietf.org > https://www.ietf.org/mailman/listinfo/trans > -- Rob Stradling Senior Research & Development Scientist COMODO - Creating Trust Online Office Tel: +44.(0)1274.730505 Office Fax: +44.(0)1274.730909 www.comodo.com COMODO CA Limited, Registered in England No. 04058690 Registered Office: 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Manchester M5 3EQ This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender by replying to the e-mail containing this attachment. Replies to this email may be monitored by COMODO for operational or business reasons. Whilst every endeavour is taken to ensure that e-mails are free from viruses, no liability can be accepted and the recipient is requested to use their own virus checking software.
- [Trans] Policy for adding to IANA registries requ… Eran Messeri
- Re: [Trans] Policy for adding to IANA registries … Salz, Rich
- Re: [Trans] Policy for adding to IANA registries … Eran Messeri
- Re: [Trans] Policy for adding to IANA registries … Rob Stradling
- Re: [Trans] Policy for adding to IANA registries … Paul Wouters
- Re: [Trans] Policy for adding to IANA registries … Eran Messeri
- Re: [Trans] Policy for adding to IANA registries … Eran Messeri
- Re: [Trans] Policy for adding to IANA registries … Andrew Ayer
- Re: [Trans] Policy for adding to IANA registries … Bill Frantz
- Re: [Trans] Policy for adding to IANA registries … Stephen Farrell
- Re: [Trans] Policy for adding to IANA registries … Rob Stradling
- Re: [Trans] Policy for adding to IANA registries … Eran Messeri
- Re: [Trans] Policy for adding to IANA registries … Paul Wouters
- Re: [Trans] Policy for adding to IANA registries … Eran Messeri
- Re: [Trans] Policy for adding to IANA registries … Rob Stradling
- Re: [Trans] Policy for adding to IANA registries … Rob Stradling