IETF Logo Mail Archive

Re: [Tzdist] AD review of draft-ietf-tzdist-service-07 - Sections 8 - 10

Daniel Migault <daniel.migault@ericsson.com> Tue, 12 May 2015 18:11 UTC

Return-Path: <daniel.migault@ericsson.com>
X-Original-To: tzdist@ietfa.amsl.com
Delivered-To: tzdist@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 067931ACDC1; Tue, 12 May 2015 11:11:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lbH8cklPYzOr; Tue, 12 May 2015 11:11:32 -0700 (PDT)
Received: from usevmg21.ericsson.net (usevmg21.ericsson.net [198.24.6.65]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6540F1ACE31; Tue, 12 May 2015 11:11:31 -0700 (PDT)
X-AuditID: c6180641-f79086d000001909-75-5551dde885cd
Received: from EUSAAHC005.ericsson.se (Unknown_Domain [147.117.188.87]) by usevmg21.ericsson.net (Symantec Mail Security) with SMTP id C7.0B.06409.8EDD1555; Tue, 12 May 2015 13:03:05 +0200 (CEST)
Received: from EUSAAMB107.ericsson.se ([147.117.188.124]) by EUSAAHC005.ericsson.se ([147.117.188.87]) with mapi id 14.03.0210.002; Tue, 12 May 2015 14:11:29 -0400
From: Daniel Migault <daniel.migault@ericsson.com>
To: Barry Leiba <barryleiba@computer.org>, Cyrus Daboo <cyrus@daboo.name>
Thread-Topic: [Tzdist] AD review of draft-ietf-tzdist-service-07 - Sections 8 - 10
Thread-Index: AQHQjNA/AAi1TeE3OESHPKAcsDvrh5141+iA///INCA=
Date: Tue, 12 May 2015 18:11:28 +0000
Message-ID: <2DD56D786E600F45AC6BDE7DA4E8A8C1602BCB@eusaamb107.ericsson.se>
References: <CALaySJKUcgkMNsFPk0X6ur-Fw0LrB0-miQvAKYJD2rMCEFpBSQ@mail.gmail.com> <88871A9AF67EF351387A3BBF@cyrus.local> <CALaySJLtkDjzeiqDvrAj2e0ubTkcboyqdxffRKEEHqBDKnX77A@mail.gmail.com>
In-Reply-To: <CALaySJLtkDjzeiqDvrAj2e0ubTkcboyqdxffRKEEHqBDKnX77A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [147.117.188.9]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrJLMWRmVeSWpSXmKPExsUyuXRPuO7Lu4GhBnNvclgcWnyJ1eLvlnNs Ft+PeVm0nkpzYPFoWdXL7DHjmZXHkiU/mQKYo7hsUlJzMstSi/TtErgy5v7eyVKwVLBi7ZZ3 bA2MjXxdjJwcEgImEi2NT5khbDGJC/fWs3UxcnEICRxllNizZjMLhLOcUeL65CWMIFVsAkYS bYf62bsYOThEBDwlrr4OAzGZBUokGhvkQSqEBYIllpxYxgRRESIx43sxhGkl8WeSAkgFi4Cq xJWWl2AzeAW8JX70GkPsOcAo0d36BOwaToFAiTfvl7CA2IxAl30/tYYJxGYWEJe49WQ+E8TF AhJL9pyHul5U4uXjf6wQtqLEvv7p7BD1OhILdn9ig7C1JZYtfA1WzysgKHFy5hOWCYxis5CM nYWkZRaSlllIWhYwsqxi5CgtTi3LTTcy3MQIjJtjEmyOOxgXfLI8xCjAwajEw/tgWmCoEGti WXFl7iFGaQ4WJXHesisHQ4QE0hNLUrNTUwtSi+KLSnNSiw8xMnFwSjUwLir4JOzstKA77479 Gru3T9dZJwgxlUoIBBm+dsmVu6n5zz7uF6+OuO6pjNqJ+znyHD9IzOzXS5RbFaP74PtNvZmT 7G+z9gTck3dkCFxU2PR5bm9mdeaqCDmVsuc/38x1ZN8bfD3ddzWfiaSqs5VCqbz4wxPNJaEx DWvKHF6qnrhzK88t55cSS3FGoqEWc1FxIgAOLZfdfAIAAA==
Archived-At: <http://mailarchive.ietf.org/arch/msg/tzdist/AKRYMmIfdBflfFmsg3vWnpyHqno>
Cc: "tzdist@ietf.org" <tzdist@ietf.org>, "draft-ietf-tzdist-service@ietf.org" <draft-ietf-tzdist-service@ietf.org>
Subject: Re: [Tzdist] AD review of draft-ietf-tzdist-service-07 - Sections 8 - 10
X-BeenThere: tzdist@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <tzdist.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tzdist>, <mailto:tzdist-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tzdist/>
List-Post: <mailto:tzdist@ietf.org>
List-Help: <mailto:tzdist-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tzdist>, <mailto:tzdist-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 May 2015 18:11:34 -0000

Hi, 

I believe there is a consensus that there are privacy issues, and that they should be documented. Whether they will be followed or ignored is another thing. I find it better to ignore while understanding their implications.

My interpretation is that some of the issues have been raised by the WG, but we got a significant among of comments from the saag review. My understanding is that the WG agreed on the raised issues. I believe it is good these issues are being raised in order to document potential issues and information leakage. How the recommendations should be followed depends on the level of privacy that clients or servers want to implement and may be balanced with additional aspects.

BR
Daniel

-----Original Message-----
From: Tzdist [mailto:tzdist-bounces@ietf.org] On Behalf Of Barry Leiba
Sent: Tuesday, May 12, 2015 1:15 PM
To: Cyrus Daboo
Cc: tzdist@ietf.org; draft-ietf-tzdist-service@ietf.org
Subject: Re: [Tzdist] AD review of draft-ietf-tzdist-service-07 - Sections 8 - 10

Another batch we're almost set on.  I just want to ask one further question about the insanely over-paranoid privacy stuff (yes, you can infer my view on this, you can...).

> There was a thorough security/privacy review by Daniel Kahn Gillmor 
> that lead to the current text in Section 9 (see tzdist mailing 
> messages with "[saag]" in the subject).
...
> Anyway, I am not sure, beyond some small clarifications, if anything 
> needs to change in this section. Certainly it needs input from 
> SAAG/Security ADs if we do decide to make changes now. Perhaps this 
> should be left to an IETF wide review (with another call to SAAG folks to pay attention to it)?

I don't have time right now to read the email thread (about to leave for vacation until Sunday, back to work on Monday), but I'd like to know one thing here: Does the tzdist working group have real consensus on all this?  Or did it merely agree to what's there in order to get acceptance from the saag folks?

Barry

_______________________________________________
Tzdist mailing list
Tzdist@ietf.org
https://www.ietf.org/mailman/listinfo/tzdist

v2.23.0 | Report a Bug | By Email