IETF Logo Mail Archive

Re: [Uta] draft-ietf-uta-xmpp downref

Sean Turner <turners@ieca.com> Tue, 21 April 2015 20:36 UTC

Return-Path: <turners@ieca.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 431C21B2B0B for <uta@ietfa.amsl.com>; Tue, 21 Apr 2015 13:36:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GKN9hrfWXGwp for <uta@ietfa.amsl.com>; Tue, 21 Apr 2015 13:36:48 -0700 (PDT)
Received: from gateway12.websitewelcome.com (gateway12.websitewelcome.com [70.85.6.5]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 12FCD1B2B09 for <uta@ietf.org>; Tue, 21 Apr 2015 13:36:47 -0700 (PDT)
Received: by gateway12.websitewelcome.com (Postfix, from userid 5007) id 3789273D08DB1; Tue, 21 Apr 2015 15:36:46 -0500 (CDT)
Received: from gator3286.hostgator.com (gator3286.hostgator.com [198.57.247.250]) by gateway12.websitewelcome.com (Postfix) with ESMTP id 23E6B73D08D8B for <uta@ietf.org>; Tue, 21 Apr 2015 15:36:46 -0500 (CDT)
Received: from [173.73.121.66] (port=59974 helo=[192.168.1.6]) by gator3286.hostgator.com with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.82) (envelope-from <turners@ieca.com>) id 1YkeuS-0008IM-Or; Tue, 21 Apr 2015 15:36:45 -0500
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
From: Sean Turner <turners@ieca.com>
In-Reply-To: <55359065.307@cs.tcd.ie>
Date: Tue, 21 Apr 2015 16:36:41 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <BC6BD8C8-14BC-4B40-AB33-EDB9064F910A@ieca.com>
References: <5535775C.8030908@cs.tcd.ie> <55357B21.9080508@andyet.net> <CALaySJ+cjrHTG7=i6DZAzfQTVgc3a5P-4B5RUknO4j9mchyozg@mail.gmail.com> <553582DE.3090607@bogus.com> <CALaySJL461eQTqCdRJ-VbROC0h=-3T0ZDua+9TRoxPXVFSYygA@mail.gmail.com> <553586FC.309@cs.tcd.ie> <55358ED6.2020508@bogus.com> <55359065.307@cs.tcd.ie>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
X-Mailer: Apple Mail (2.1878.6)
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - gator3286.hostgator.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - ieca.com
X-BWhitelist: no
X-Source-IP: 173.73.121.66
X-Exim-ID: 1YkeuS-0008IM-Or
X-Source:
X-Source-Args:
X-Source-Dir:
X-Source-Sender: ([192.168.1.6]) [173.73.121.66]:59974
X-Source-Auth: sean.turner@ieca.com
X-Email-Count: 3
X-Source-Cap: ZG9tbWdyNDg7ZG9tbWdyNDg7Z2F0b3IzMjg2Lmhvc3RnYXRvci5jb20=
Archived-At: <http://mailarchive.ietf.org/arch/msg/uta/pTQaDWFfHN9SBupaG8rBhrDnOsM>
Cc: joel jaeggli <joelja@bogus.com>, "uta@ietf.org" <uta@ietf.org>, Barry Leiba <barryleiba@computer.org>, IESG <iesg@ietf.org>, Peter Saint-Andre - &yet <peter@andyet.net>
Subject: Re: [Uta] draft-ietf-uta-xmpp downref
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Apr 2015 20:36:50 -0000

Note that 4949 has already been called out in a downref when you requested the IETF LC for the OAuth v2 draft ;)

https://www.ietf.org/mail-archive/web/ietf-announce/current/msg09796.html

spt


On Apr 20, 2015, at 19:48, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:

> 
> Top quoting: thanks all - let's do that. I'll add to the
> downref registry before the telechat unless someone else
> on the IESG yells.
> 
> Cheers,
> S.
> 
> On 21/04/15 00:42, joel jaeggli wrote:
>> On 4/20/15 4:08 PM, Stephen Farrell wrote:
>>> 
>>> 
>>> On 20/04/15 23:59, Barry Leiba wrote:
>>>>> To wit, I am not ignoring the process.
>>>>> 
>>>>>   Once a specific down reference to a particular document has been
>>>>>   accepted by the community (e.g., has been mentioned in several Last
>>>>>   Calls), an Area Director may waive subsequent notices in the Last
>>>>>   Call of down references to it.  This should only occur when the same
>>>>>   document (and version) are being referenced and when the AD believes
>>>>>   that the document's use is an accepted part of the community's
>>>>>   understanding of the relevant technical area.  For example, the use
>>>>>   of MD5 [RFC1321] and HMAC [RFC2104] is well known among
>>>>>   cryptographers.
>>>> 
>>>> The problem is that as far as I can find, it hasn't been mentioned in
>>>> *any* last calls.  I'm bummed: as I said, I don't think that doing
>>>> this helps anyone, and that we should change BCP 97 forthwith.
>>> 
>>> I think Joel's argument is that 4949 has been "accepted by
>>> the community" in that RFC6749 is 2.5 years old and nobody
>>> noticed. The "several last calls" above is just an example
>>> in the text also.
>> 
>> I think community understanding of the document can be understood in
>> terms of cititations inclusive of normative and informative references
>> other than simply dowrefs. 4949 is a glossary, many documents of various
>> levels refer to it informatively and the contents were or have passed
>> into common understanding in the decade since publication.
>> 
>> The existence of previous documents with downref's  to the document may
>> be evidence of an omission (probably is) but in the context of a
>> document with a decade long service life with numerous citations, is
>> also more evidence that it has passed into common understanding. as with
>> the question of whether rfc 20 is actually at a lower maturity level or
>> not or even if that matters, the latitude to decide when downrefs are to
>> be waived is invested in the IESG.
>> 
>> consider in this case the context  in which it is being used
>> 
>> 2.  Terminology
>> 
>>   Various security-related terms are to be understood in the sense
>>   defined in [RFC4949].
>> 
>> this is not an original turn of phrase
>> 
>> I could cite others but:
>> 
>> https://www.rfc-editor.org/rfc/rfc6029.txt
>> 
>> https://tools.ietf.org/html/rfc6749
>> 
>> https://www.google.com/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8#q=various%20security-related%20terms%20are%20to%20be%20understood%20in%20the%20sense%20defined%20in%20%5brfc4949%5d
>> 
>> etc
>> 
>>> I can buy into that. (If we go with that I'd say we can add
>>> 4949 to the downref registry with the oauth draft as the
>>> referring draft and leave the LC date blank.)
>> 
>> personally I think the evidence for the document being fine to cite  for
>> the purpose of defining the word attack certificate confidentiality
>> encryption etc is there.
>> 
>>> S.
>>> 
>>> 
>>>> 
>>>> b
>>>> 
>>>> _______________________________________________
>>>> Uta mailing list
>>>> Uta@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/uta
>>>> 
>>> 
>> 
>> 
> 
> _______________________________________________
> Uta mailing list
> Uta@ietf.org
> https://www.ietf.org/mailman/listinfo/uta

v2.23.0 | Report a Bug | By Email