Re: [urn] URI Scheme with Complex Equality Rules
"Randy Armstrong (OPC)" <randy.armstrong@opcfoundation.org> Fri, 26 August 2022 18:01 UTC
Return-Path: <randy.armstrong@opcfoundation.org>
X-Original-To: urn@ietfa.amsl.com
Delivered-To: urn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DEDE1C14F738 for <urn@ietfa.amsl.com>; Fri, 26 Aug 2022 11:01:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=opcfoundation.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 73oiRnv0hUzx for <urn@ietfa.amsl.com>; Fri, 26 Aug 2022 11:01:02 -0700 (PDT)
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (mail-mw2nam10on2044.outbound.protection.outlook.com [40.107.94.44]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 98843C14F741 for <urn@ietf.org>; Fri, 26 Aug 2022 11:01:02 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=KXLCq+sRWbTVaA/RhyvN5Xo7/Mk38boMFK+V/Mr1r4FDF/MGI1IqbD0XkzphJrDj4djaP8o7KPrQb8frKMzQFXqj9FQZlcMFK5v6ToVE4nrJKxHnSn4omrxD7v414cnwsnPfE4qzsSnRvtPUI6fx2yytMfm3Wh3jjrYuFIQBdP1lnPYG9UcIlSbwlJ5br1EKqUN19Rx04nYAFicXHgAr382oV7vP2nw7IhB9FFUKNIoSc1CeApumLs4AQ3sDrDZTYfVhTRc+nmdC+DjzzHZd/e+mpZJy5sTAytXggG1RzvEej/SB/XSv0p0x9TYvJbyPHjnWq7IEaSmLtNEKRsZD+Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=2S6xVbeamol/sx+cNiGZdNczDjE1+E/H7Yrim3yhml8=; b=CGSsDQaqgYQQN1+jwXVpABW7f8LZ0dBz7I+NecHqKvn6d3Jidkog1tta2oLXDO19G621464hm9+5aHQJiHEBLZSpqTtid8u2issm9q1VPMTbUOrjLsM3r4oNy/z9wOoN1TOf+h/PieWXmi2SHwigBN/8qwdFOZcz1r5wTh+8YwP7k6Nzd5xmg6e4f8ptk/uUnX6Of805j8ICIM0yxa1X+Z1wgBbvYXgvOpboL7RHWoWkbweGTvWv0FtW48ItJnjrwaiu37zFi2yHWZiqw1wLAQWqOx+M8guy18jGZ8JUSdaP87b7HJjLB8tVa+B8kBiqxeu1yu6iL9r9YF8O8rgotg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=opcfoundation.org; dmarc=pass action=none header.from=opcfoundation.org; dkim=pass header.d=opcfoundation.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=opcfoundation.org; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2S6xVbeamol/sx+cNiGZdNczDjE1+E/H7Yrim3yhml8=; b=QOTzDHFd3dq4fCM5wv6i33f1Qt3JJpPGnmksVgwmM2bdQRL3hx1rsdDTWn17nG4BWfdi2pVvaijk5dWfjEv925mfktRD1WPKwHRA9gSXHmPCpUwi1/k34PUedlAkFvkda9EW92BroxXwQO7i02skcYepQSie0DxcL4V+4FZQAtU=
Received: from SJ0PR08MB8288.namprd08.prod.outlook.com (2603:10b6:a03:41a::13) by MN2PR08MB5951.namprd08.prod.outlook.com (2603:10b6:208:10f::28) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5566.14; Fri, 26 Aug 2022 18:00:56 +0000
Received: from SJ0PR08MB8288.namprd08.prod.outlook.com ([fe80::adf3:8a85:fb5:b4e9]) by SJ0PR08MB8288.namprd08.prod.outlook.com ([fe80::adf3:8a85:fb5:b4e9%4]) with mapi id 15.20.5566.016; Fri, 26 Aug 2022 18:00:56 +0000
From: "Randy Armstrong (OPC)" <randy.armstrong@opcfoundation.org>
To: Ted Hardie <ted.ietf@gmail.com>
CC: "urn@ietf.org" <urn@ietf.org>
Thread-Topic: [urn] URI Scheme with Complex Equality Rules
Thread-Index: Adi5RdKLri+3/KgdR52SF5RvnPpLsgABvvsAAAAPmyAACAMvAAACEuKg
Date: Fri, 26 Aug 2022 18:00:56 +0000
Message-ID: <SJ0PR08MB828852D9F0B14670B6E25A5AFA759@SJ0PR08MB8288.namprd08.prod.outlook.com>
References: <SJ0PR08MB8288507205BE2CD811F5D19BFA759@SJ0PR08MB8288.namprd08.prod.outlook.com> <CA+9kkMBbeHRn+pQEO4v90d0ifCaxEZW7FU2QRUtgD8oiuD0JKg@mail.gmail.com> <SJ0PR08MB82881C9645C9F215BBB5CB03FA759@SJ0PR08MB8288.namprd08.prod.outlook.com> <CA+9kkMAvRv4845YOVHsKY6LDo5CFC0KdL=j3WF334v==nj4oTQ@mail.gmail.com>
In-Reply-To: <CA+9kkMAvRv4845YOVHsKY6LDo5CFC0KdL=j3WF334v==nj4oTQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=opcfoundation.org;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 17df88a9-8dfe-4e5b-daae-08da878cecd2
x-ms-traffictypediagnostic: MN2PR08MB5951:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR08MB8288.namprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(376002)(39840400004)(366004)(136003)(346002)(396003)(966005)(5660300002)(478600001)(4326008)(71200400001)(41300700001)(6506007)(66574015)(83380400001)(9686003)(53546011)(2906002)(186003)(52536014)(8936002)(7696005)(55016003)(316002)(6916009)(66476007)(66446008)(86362001)(8676002)(64756008)(122000001)(76116006)(66946007)(66556008)(38100700002)(38070700005)(33656002)(166002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: V92wbNsPefQOH4ab1iO8l84oikopRWO1hjDtz21yqmLrNzU7lye1qcySCGFCkcchd5VXWbnLczemzbjC4rLUH34D9TFvdACQwsqwlr3QT/Q2O3P7g6ipDRVnmd8uZuZBTNwRUef9XWVQoVYAhzBiu+/76KL/eVh3ztanzk0dgbDmVlbAI4jg1Zj1zowjXtfh0XxgE5y4cqp7Y3ZzHtS55TvqON+0ZOHQ7Rk0z3EkiIYBGRL2nGmKUnW82koCmkriZEm9eS9bryIOccbEwQGq9d8lI1vHwj0PpxTId4p9duAncp4kPDkdxy74auZKWWo71mmjTQ+DKlgRycjHSnnhUL2ATR3+SuVlbsO1MscAdi98DmtC0B3q4nJbwpoER8z3afD539Sg4Tt4y/RD8X3lwQgs0r1sOvpZ4W7k3HZjtUDLVzk2nRt7gcJLBMzaw3jUE1CPPV57lhX/l6o88MfzoXVl0UroFzN+KrVuiN955cNvjE+VuLK9e5JYNy4X40brAhoQ4AHerEfS9IBhM1vOD1iIcqJPAsrngsoNpJWgCy1/E35ndawXREKzyugXI/+LeY0von9Hcv2b8WTXnWCcphT2c5j6V5zhu3k6xIUted0WIp5TSxTI/THKy8/fhZWXSjGo+Uoi2ACrb4AsLQOWbwL0a0m2BmSjNud0nbkjnsfxZHcuxGxGEmFpxx+ZVbeIP6ZuUIW4knmvBPVd0ygty+sgwOoeBp1ogRWgRWsmRoHw2Vf8gottUKuFUjGFVWItwkHGYEpcE6EoLr3QpCCaZ5heO/RDf4Dqm92xVWwybvWk7Ho97S8U4xRVVMYwjrjLDFh/a0ETP9O3s7nYu8adX1Lfu/If3T5SbIGvObtE4SOGF58R0IShSswGGtH6A8BbnezJXP9SvJWdA6i+mD3HOoK5liYENkHdp3GrPW/oWCJJBzegbkpK+wWg3dTOpflH0pv9UrwEZFz7th16se4Ai6IElQa3UWoSKc5gE6zhTv+iItLRc/ouegvOISQPBkxUXX0xkoAwBR0AHG21JiCow6i+bsMvUYTGvLYO57Kzuf4bacKDAegYU4GzA4m2c6Gz28NtY12QX61hMEmm3GckJS1pgyBlm2OnbylXAcTKUYdCQIhE+a0xdNh/NGvld40zeAgN9969QOY7jaIsSkbGNBzLxzECbAwPq9/jl2NQIhDogVKKHigvwaF/6lyOXoELojswHRj1swWfK48a76MbVXmgz8k2tPBUstak8up4eM+iVTM6wG5D1DkzlP0Othuofn3zB3o8eYbfFw6/It3tLaXZxD/fdgBuHyUFq+2ZQ5v7Z2j0CBMwdYvQ42AO+fmwAmdlGbVr53Y31mXyn7YR08bjwb2G2ajAU9mI3PPE4VS7R782WebHCh8wTPzeIWBfulGIkEImx92UPE5YUM5otUxac8UZCXOuojBTW0Ph425mqe3AfOEDL9sezoAkvczGQty6tqrrnHMgMQZn6ekegalkGfN1JC9dM1elAcPTh/BfVXVM5XuYEhU7IP04uMAMWO++KPojDjRTh6SVlHqZZwCmJksGke3ohUt0NPDtIkY0t8F1hDabgkk5/I052emPpcyOmwLPcGfjDqh68vQ7z0x1E/R2fmN/rUePW5h+P6iotcK/R2Zn3VHBVradQFFEJwwph9+7eckFjLm45tlReg==
Content-Type: multipart/alternative; boundary="_000_SJ0PR08MB828852D9F0B14670B6E25A5AFA759SJ0PR08MB8288namp_"
MIME-Version: 1.0
X-OriginatorOrg: opcfoundation.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR08MB8288.namprd08.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 17df88a9-8dfe-4e5b-daae-08da878cecd2
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Aug 2022 18:00:56.4602 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2d8ef4e4-d41c-489c-8004-bb99304b60fe
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Y6tnJqk2xsuzwKrJTtabBCHIE8cVt+6rZVwKVEZWF0qldEzPaZGCdNofEJtnQDO+twqIR4zn4f8C0iv+eVXQw6/UJyD67CCHWkqqXEqoSmI9Et4ErS8ns5OFQY9C5nty
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR08MB5951
Archived-At: <https://mailarchive.ietf.org/arch/msg/urn/RMcyfZv1Ac4xq_8GfZUtyinLdaU>
Subject: Re: [urn] URI Scheme with Complex Equality Rules
X-BeenThere: urn@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Revisions to URN RFCs <urn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/urn>, <mailto:urn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/urn/>
List-Post: <mailto:urn@ietf.org>
List-Help: <mailto:urn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/urn>, <mailto:urn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Aug 2022 18:01:07 -0000
HI Ted, I agree that a new URI registration may be most appropriate and if the IETF will accept a reference to a non-IETF specification instead of an RFC then that is viable option. I will review the procedures and submit a request to uri-review@ietf.org<mailto:uri-review@ietf.org> Thank you for the help, Randy From: Ted Hardie <ted.ietf@gmail.com> Sent: Saturday, August 27, 2022 1:59 AM To: Randy Armstrong (OPC) <randy.armstrong@opcfoundation.org> Cc: urn@ietf.org Subject: Re: [urn] URI Scheme with Complex Equality Rules Hi Randy, On Fri, Aug 26, 2022 at 3:18 PM Randy Armstrong (OPC) <randy.armstrong@opcfoundation.org<mailto:randy.armstrong@opcfoundation.org>> wrote: Hi Ted, Thanks for the reply. I was thinking of a URI scheme instead of a URN NID, however, it appears URI scheme requires that we create RFC which is a much more cumbersome process. You don't need to produce an RFC; the registration procedures are laid out here: https://www.rfc-editor.org/rfc/rfc7595.html#page-11 For a provisional, they are designed to be very simple (since the main goal is to avoid collision). Even for a permanent registration, the additions do not include producing an RFC: 1. Review the requirements in Section 3<https://www.rfc-editor.org/rfc/rfc7595.html#section-3> 2. Send a copy of the scheme registration request or a pointer to the document containing the request (with specific reference to the section that requests the scheme registration) to the mailing list uri-review@ietf.org<mailto:uri-review@ietf.org>, requesting review. In addition, request review on other relevant mailing lists as appropriate. For example, general discussion of URI syntactical issues can be discussed on uri@w3.org<mailto:uri@w3.org>; schemes for a network protocol can be discussed on a mailing list for that protocol. Allow a reasonable time for discussion and comments. Four weeks is reasonable for a 'permanent' registration request. 3. Respond to review comments and make revisions to the proposed registration as needed to bring it into line with the guidelines given in this document. If you would like to discuss the possibility, we can redirect the discussion to uri-review@ietf.org<mailto:uri-review@ietf.org> regards, Ted Hardie The OPC Foundation is author/maintainer of IEC 62541 and we are trying to fix the incorrect URN usage in the spec today. The identifiers are used in the subjectAltName of X509 Certificates and uniquely identify the application that the Certificate is assigned to. The uniqueness of our identifiers is within the scope of the system so an IP address can be system unique and static. We specifically do not want to use ‘http’ because people tend to assume they are valid URLs with backing websites. Regards, Randy From: Ted Hardie <ted.ietf@gmail.com<mailto:ted.ietf@gmail.com>> Sent: Friday, August 26, 2022 10:08 PM To: Randy Armstrong (OPC) <randy.armstrong@opcfoundation.org<mailto:randy.armstrong@opcfoundation.org>> Cc: urn@ietf.org<mailto:urn@ietf.org> Subject: Re: [urn] URI Scheme with Complex Equality Rules Hi Randy, Based on a skim of your use case, I can't yet see why minting a URI scheme would not work. opcid://authority/parameters The authority here would be the DNS name or IP address, and the definition of the scheme could establish that you wanted case insensitive matching for the parameters (where the context would be stored). Is there something in IEC 62541 that would make this approach unviable? I admit that I did not spend any francs to get it, so I don't have examples of what the context might look like, so if you have examples you can share, that would be useful. Note that while URNs are guaranteed to be unique across the lifetime of an identifier, your scheme doesn't seem likely to want that, as it is relying on the DNS and IP address assignment, neither of which guarantees that property. regards, Ted On Fri, Aug 26, 2022 at 1:47 PM Randy Armstrong (OPC) <randy.armstrong@opcfoundation.org<mailto:randy.armstrong@opcfoundation.org>> wrote: I am sending this issue to this email as per the suggestion in RFC 8141. The OPC Foundation (https://opcfoundation.org) has a need to uniquely identify OPC UA (IEC 62541) network resources but we do not want the complexity that comes with the various URN schemes. Specifically we need: 1. Equality checks with case-insensitive string comparisons; 2. Human readable strings with uniqueness provided by a DNS name or IP address (always lower case). 3. A valid URI. 4. R/Q/F components not allowed. We have been using urns of the form: urn:<dnsname>:<additional context>, however, this is not technically allowed by the URN RFC. We do not want a syntax that needs to be parsed before any comparison can be done. We could submit a request for our own nid but we don’t really have any syntax requirements other than the dns name and the case-insensitive string comparisons. What is the best way forward? Regards, Randy Armstrong OPC Foundation _______________________________________________ urn mailing list urn@ietf.org<mailto:urn@ietf.org> https://www.ietf.org/mailman/listinfo/urn
- [urn] URI Scheme with Complex Equality Rules Randy Armstrong (OPC)
- Re: [urn] URI Scheme with Complex Equality Rules Ted Hardie
- Re: [urn] URI Scheme with Complex Equality Rules Randy Armstrong (OPC)
- Re: [urn] URI Scheme with Complex Equality Rules Ted Hardie
- [urn] How to tell the difference (was: Re: URI Sc… John C Klensin
- Re: [urn] URI Scheme with Complex Equality Rules Randy Armstrong (OPC)
- Re: [urn] URI Scheme with Complex Equality Rules worley
- Re: [urn] URI Scheme with Complex Equality Rules Randy Armstrong (OPC)
- Re: [urn] How to tell the difference (was: Re: UR… Ted Hardie
- Re: [urn] URI Scheme with Complex Equality Rules Peter Saint-Andre