IETF Logo Mail Archive

Re: [Webpush] Stephen Farrell's Discuss on draft-ietf-webpush-protocol-11: (with DISCUSS and COMMENT)

Brian Raymor <Brian.Raymor@microsoft.com> Tue, 18 October 2016 23:21 UTC

Return-Path: <Brian.Raymor@microsoft.com>
X-Original-To: webpush@ietfa.amsl.com
Delivered-To: webpush@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A665C12947D; Tue, 18 Oct 2016 16:21:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.022
X-Spam-Level:
X-Spam-Status: No, score=-2.022 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6m0WSOaSi13V; Tue, 18 Oct 2016 16:21:36 -0700 (PDT)
Received: from NAM01-BY2-obe.outbound.protection.outlook.com (mail-by2nam01on0114.outbound.protection.outlook.com [104.47.34.114]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8254812947B; Tue, 18 Oct 2016 16:21:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=mE8DiCTJwqgegqevU3SXqC2U5g99SzThlRjwUQpZJ6s=; b=NXTbd9re2JHiJhcz3mpEnVTPzQQgprRzburHEszNFXxmXHnzTOdpQ1u8fFgJK+1NZvp39RQHq3VI8mWqC7AZu6+eqqDwsdpi58nIwewFF7KFczoOPKqivwyrOUMC1r7s33LcmGOMXgI+a06hisLA5XOGa0mSd+BGDN8OeQY7Un8=
Received: from CY1PR03MB2380.namprd03.prod.outlook.com (10.167.8.6) by CY1PR03MB2378.namprd03.prod.outlook.com (10.166.207.153) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.669.12; Tue, 18 Oct 2016 23:21:33 +0000
Received: from CY1PR03MB2380.namprd03.prod.outlook.com ([10.167.8.6]) by CY1PR03MB2380.namprd03.prod.outlook.com ([10.167.8.6]) with mapi id 15.01.0659.025; Tue, 18 Oct 2016 23:21:33 +0000
From: Brian Raymor <Brian.Raymor@microsoft.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Martin Thomson <martin.thomson@gmail.com>
Thread-Topic: Stephen Farrell's Discuss on draft-ietf-webpush-protocol-11: (with DISCUSS and COMMENT)
Thread-Index: AQHSJiwPJMwjYoplfkyn6wgWsrTwWqCoSZiggAPy/pCAAAMBAIAAL9AAgABNB4CAANs6oIAAU3iAgADxCZA=
Date: Tue, 18 Oct 2016 23:21:33 +0000
Message-ID: <CY1PR03MB2380E5EFE3B1E2581AA1930483D30@CY1PR03MB2380.namprd03.prod.outlook.com>
References: <CY1PR03MB238089D350CD6A78DB9E80BE83DF0@CY1PR03MB2380.namprd03.prod.outlook.com> <5816348f-015a-beca-a5e6-3883fff02aab@cs.tcd.ie> <CY1PR03MB2380AE2A057528E2B17FA0B083DF0@CY1PR03MB2380.namprd03.prod.outlook.com> <CY1PR03MB2380D52D2AA9CC7D60EA5FA883D00@CY1PR03MB2380.namprd03.prod.outlook.com> <77e09f1f-04de-7819-92ea-9e4609cd853d@cs.tcd.ie> <CABkgnnUXDpd_raGe1ugJEM8aeR4=oh-fqT-raWe2+6ZAMd5uVQ@mail.gmail.com> <56cca9c2-22a7-10bf-6d3a-cde3b82db9dc@cs.tcd.ie> <CY1PR03MB23804C47292E6C6D6EDF04FA83D30@CY1PR03MB2380.namprd03.prod.outlook.com> <6fdc9c7d-e517-b142-45d6-9164d4a63053@cs.tcd.ie>
In-Reply-To: <6fdc9c7d-e517-b142-45d6-9164d4a63053@cs.tcd.ie>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Brian.Raymor@microsoft.com;
x-originating-ip: [174.61.159.182]
x-ms-office365-filtering-correlation-id: c8edc1ec-f41d-46af-a5f6-08d3f7ad7fab
x-microsoft-exchange-diagnostics: 1; CY1PR03MB2378; 7:dtuCIu2nJfNllk4MaTq1voUJLiDrbtGwwgmSP90vwJh94qaXCd7A0SrzmLPDkQd8+XEx4v0QnGb5QwcRHpOewPFYI4YEGaxrjRXZ+b6XRm+Ge5kCEv/qWyIfnRaXKiB6afyPml2/+14X6HZ+yeT0uAozznz+5DpJcW6LhlYCObPx7ID2+WLLoS2eGQ23PRs6/s8TnfJKsG+Z9lfafeeXMgEcyQccR7Zo0kcmEK4SxfoyeR/DFEP1B9h+5zgQP28l3ZdAjRIPNxrEYbZuG+3mFAypdloSjxnNmxM184SrEXTNLA+zTV4tx9CjJvTllGhhGetVbxqcwZrV+NrRTDAbuHjF1yhOJswJN5d/K0znrZZdY/cYTfUBz+vEOUW2irI2
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:CY1PR03MB2378;
x-microsoft-antispam-prvs: <CY1PR03MB23782C31364E8700C18E16C683D30@CY1PR03MB2378.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(166708455590820)(100405760836317);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(61425038)(6040176)(601004)(2401047)(8121501046)(5005006)(3002001)(10201501046)(6055026)(61426038)(61427038); SRVR:CY1PR03MB2378; BCL:0; PCL:0; RULEID:; SRVR:CY1PR03MB2378;
x-forefront-prvs: 00997889E7
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(7916002)(189002)(199003)(10400500002)(8936002)(10290500002)(101416001)(76176999)(86612001)(3846002)(50986999)(10090500001)(87936001)(54356999)(230783001)(7696004)(8990500004)(81156014)(102836003)(19580395003)(97736004)(5660300001)(189998001)(5001770100001)(105586002)(9686002)(86362001)(2900100001)(2950100002)(305945005)(7736002)(92566002)(3660700001)(74316002)(4326007)(68736007)(5005710100001)(93886004)(2906002)(15975445007)(5002640100001)(122556002)(8676002)(76576001)(106116001)(81166006)(106356001)(3280700002)(7846002)(33656002)(586003)(6116002)(77096005)(11100500001)(99286002)(66066001); DIR:OUT; SFP:1102; SCL:1; SRVR:CY1PR03MB2378; H:CY1PR03MB2380.namprd03.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Oct 2016 23:21:33.1349 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR03MB2378
Archived-At: <https://mailarchive.ietf.org/arch/msg/webpush/wmXYcrcNRtgxNbctP1ldAZwI0HY>
Cc: "draft-ietf-webpush-protocol@ietf.org" <draft-ietf-webpush-protocol@ietf.org>, Shida Schubert <shida@ntt-at.com>, "webpush-chairs@ietf.org" <webpush-chairs@ietf.org>, The IESG <iesg@ietf.org>, "webpush@ietf.org" <webpush@ietf.org>
Subject: Re: [Webpush] Stephen Farrell's Discuss on draft-ietf-webpush-protocol-11: (with DISCUSS and COMMENT)
X-BeenThere: webpush@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Discussion of potential IETF work on a web push protocol <webpush.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/webpush>, <mailto:webpush-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/webpush/>
List-Post: <mailto:webpush@ietf.org>
List-Help: <mailto:webpush-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/webpush>, <mailto:webpush-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Oct 2016 23:21:39 -0000

Hi Stephen,

>> And our experience is that developers are consuming all the related
>> drafts. We had some new members during WGLC who demonstrated
>> this point with their contributions.

>> So doesn't that argue to make the relevant drafts normative
>> references? That's not meant to be a blocking comment btw,
>> I'm ok with the RFC having those as informative (modulo my
>> last question below) but think it'd be better if they were
>> normative.

Not at all - and frankly that would subvert consensus in the working group.
We created vapid and message encryption as separate drafts because they’re optional.
The normative references occur in the W3C Push API. For WebPush,
the other drafts demonstrate one approach that might not be appropriate
for other scenarios but are included for awareness.

As I wrote in an earlier response:

  WebPush includes informative references to vapid and message encryption as 
  examples. In response to comments from Ben Campbell during the review, Martin
  created a pull request which clarifies this:

  https://github.com/webpush-wg/webpush-protocol/pull/138/files

  The consensus in the working group was that other implementations/scenarios outside
  the browser (such as IoT) would pursue their own approaches to address the requirements.

> I've just one last thing to ask before we're done:

> Do we envisage anyone ever using this push service mechanism
> without the content of the message being as defined in the
> webpush encryption draft and without following the W3C API?

Absolutely. As I wrote in an earlier response:

  WebPush is similar to WebSockets in the sense that there's a related API under
  development at the W3C. I'd note that RFC6455 uses an informative reference
  to the W3C WSAPI. The expectation is that there will be multiple API surfaces for
  WebPush similar to the situation for WebSockets.

For example, one co-author (Elio) has scenarios in the IoT space. No browser involved.

> If we do, and if that content ends up in a browser or other
> application that needs the SOP or similar, then I'm still not
> sure it's ok to say nothing in this draft.

I'm not suggesting that there will be multiple API(s) in the browser-case.
The expectation is the web developers will use the W3C Push API or
a framework based on the Push API. SOP is very browser-specific and
there’s already a solution in this case. 

Cheers,
...Brian

v2.23.0 | Report a Bug | By Email