Re: [websec] handling STS header field extendability
Barry Leiba <barryleiba@computer.org> Sun, 19 August 2012 00:56 UTC
Return-Path: <barryleiba.mailing.lists@gmail.com>
X-Original-To: websec@ietfa.amsl.com
Delivered-To: websec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 867A321F84C9 for <websec@ietfa.amsl.com>; Sat, 18 Aug 2012 17:56:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.01
X-Spam-Level:
X-Spam-Status: No, score=-103.01 tagged_above=-999 required=5 tests=[AWL=-0.033, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Oi9HrLBc1bQT for <websec@ietfa.amsl.com>; Sat, 18 Aug 2012 17:56:04 -0700 (PDT)
Received: from mail-lpp01m010-f44.google.com (mail-lpp01m010-f44.google.com [209.85.215.44]) by ietfa.amsl.com (Postfix) with ESMTP id AAB1021F847C for <websec@ietf.org>; Sat, 18 Aug 2012 17:56:03 -0700 (PDT)
Received: by lahm15 with SMTP id m15so2846585lah.31 for <websec@ietf.org>; Sat, 18 Aug 2012 17:56:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=eZLntToehUNiDT+MAYF7Cj+5r1mka3VX+aXjSBM6aBc=; b=d/MPqZSzSmqtjjmpL+j99fY7E8NhAec429Wv2ABcjciSnQlasZri2rgeDabHA38G34 egSZyIjj1LOfqWS14/wcEZo5RW5+QMHWavXmudOREHoFEd0UYu4874Zdc6Zk53jy9Piq XvPj4YYSXMN2bxX62npQscJAB/Tf61WYDvJ8wNR+tnz4bRtKPXq+bHQbUfIZz3cYdsJI /F8fV1BmaAdqxk6jbgg/o+MED8lkUoq/xsU2AagSXYH7ZZQm7O1UXLpbPFHfsGvpvVCN xpnwD4W2BbU6fX81k1amyVGXHiodseQt+Bhra+dGmY9LP3trplTfYYitUvTSpTNxbkWV 0sMQ==
MIME-Version: 1.0
Received: by 10.152.112.234 with SMTP id it10mr9325907lab.36.1345337762601; Sat, 18 Aug 2012 17:56:02 -0700 (PDT)
Sender: barryleiba.mailing.lists@gmail.com
Received: by 10.112.113.196 with HTTP; Sat, 18 Aug 2012 17:56:02 -0700 (PDT)
In-Reply-To: <502F7214.6010102@gondrom.org>
References: <502ECBD3.6050902@KingsMountain.com> <B80C8460-9C37-4BFC-B4F0-D757E9FB3290@checkpoint.com> <502F7214.6010102@gondrom.org>
Date: Sat, 18 Aug 2012 20:56:02 -0400
X-Google-Sender-Auth: rbARc7XNWSGt8otYgxSVgmToUmg
Message-ID: <CAC4RtVCypaYFQmV-_Mp7f3bqPqo=4mv2LY5Cs0UiNGmmkPHH=g@mail.gmail.com>
From: Barry Leiba <barryleiba@computer.org>
To: Tobias Gondrom <tobias.gondrom@gondrom.org>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: websec@ietf.org
Subject: Re: [websec] handling STS header field extendability
X-BeenThere: websec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Web Application Security Minus Authentication and Transport <websec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/websec>, <mailto:websec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/websec>
List-Post: <mailto:websec@ietf.org>
List-Help: <mailto:websec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/websec>, <mailto:websec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 19 Aug 2012 00:56:04 -0000
>>> I'd also noted that we need to decide on a IANA policy to declare. >> >> Do we need to do this? Assuming the proposed resolution achieves >> consensus (and there have been no nays yet), we're not setting up a >> registry. I don't think we get to set a policy for a registry we're not >> setting up. > > <hat="WG chair"> > AFAIK from an administrative perspective, Yoav is right. > In general we set the IANA policy for registry updates at creation of the > registry. So no need to do it here without the registry (assuming we don't > create an IANA registry). The point in this case is that this is a response to Ben's GenART review, which suggested that we at least nail down the registration policy at this point, lest someone come along later with an extension and create the registry with, say, an FCFS policy (probably too light), or perhaps with a Standards Action policy (arguably too heavy). The WG can validly disagree with Ben's review, and unless Russ (or another AD) strongly agrees and uses it as a DISCUSS point, we're done. Even in that case, the WG can still argue against it and try to convince the AD that it's OK not to do this... and, as Tobias point out, we usually don't. So maybe we should modify what Jeff said, thus: >>> I'd also noted that we need to decide on a IANA policy to declare. "We need to decide on an IANA policy *or* explicitly decide that we don't want to choose that now, and leave it to whoever creates the registry later." Apparently, we have at least two votes for the latter, from Yoav and Tobias. Barry (with AD hat off, but handily tucked at the ready under his arm)
- Re: [websec] handling STS header field extendabil… =JeffH
- Re: [websec] handling STS header field extendabil… Alexey Melnikov
- [websec] handling STS header field extendability =JeffH
- Re: [websec] handling STS header field extendabil… Chris Palmer
- Re: [websec] handling STS header field extendabil… Tom Ritter
- Re: [websec] handling STS header field extendabil… Hill, Brad
- Re: [websec] handling STS header field extendabil… Collin Jackson
- Re: [websec] handling STS header field extendabil… Paul Hoffman
- Re: [websec] handling STS header field extendabil… Collin Jackson
- Re: [websec] handling STS header field extendabil… Paul Hoffman
- Re: [websec] handling STS header field extendabil… Hill, Brad
- Re: [websec] handling STS header field extendabil… Chris Palmer
- Re: [websec] handling STS header field extendabil… Paul Hoffman
- Re: [websec] handling STS header field extendabil… Hill, Brad
- Re: [websec] handling STS header field extendabil… Hill, Brad
- Re: [websec] handling STS header field extendabil… Paul Hoffman
- Re: [websec] handling STS header field extendabil… Tobias Gondrom
- Re: [websec] handling STS header field extendabil… Collin Jackson
- Re: [websec] handling STS header field extendabil… Barry Leiba
- Re: [websec] handling STS header field extendabil… Yoav Nir
- Re: [websec] handling STS header field extendabil… Tobias Gondrom
- Re: [websec] handling STS header field extendabil… =JeffH
- Re: [websec] handling STS header field extendabil… Yoav Nir
- Re: [websec] handling STS header field extendabil… Tobias Gondrom
- Re: [websec] handling STS header field extendabil… Barry Leiba
- Re: [websec] handling STS header field extendabil… =JeffH
- Re: [websec] handling STS header field extendabil… Tobias Gondrom
- Re: [websec] handling STS header field extendabil… Yoav Nir
- Re: [websec] handling STS header field extendabil… Paul Hoffman
- Re: [websec] handling STS header field extendabil… =JeffH