IETF Logo Mail Archive

Re: [weirds] FW: I-D Action: draft-kong-dnrd-ap-response-json-00.txt

"Linlin Zhou" <zhoulinlin@cnnic.cn> Wed, 13 June 2012 03:29 UTC

Return-Path: <zhoulinlin@cnnic.cn>
X-Original-To: weirds@ietfa.amsl.com
Delivered-To: weirds@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A7FC421F86B2 for <weirds@ietfa.amsl.com>; Tue, 12 Jun 2012 20:29:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 13W0l5zH-JmS for <weirds@ietfa.amsl.com>; Tue, 12 Jun 2012 20:29:27 -0700 (PDT)
Received: from cnnic.cn (smtp.cnnic.cn [159.226.7.146]) by ietfa.amsl.com (Postfix) with SMTP id 8ADF021F8647 for <weirds@ietf.org>; Tue, 12 Jun 2012 20:29:24 -0700 (PDT)
X-EYOUMAIL-SMTPAUTH: zhoulinlin@cnnic.cn
Received: from unknown127.0.0.1 (HELO lenovo95e6383c) (127.0.0.1) by 127.0.0.1 with SMTP; Wed, 13 Jun 2012 11:29:15 +0800
From: Linlin Zhou <zhoulinlin@cnnic.cn>
To: 'Andrew Sullivan' <ajs@anvilwalrusden.com>, weirds@ietf.org
References: <20120603071136.21782.19013.idtracker@ietfa.amsl.com> <014601cd415c$01bf3fc0$053dbf40$@cnnic.cn> <4FD6D3E2.5050707@vande-walle.eu> <00ef01cd48a4$58b44ce0$0a1ce6a0$@cnnic.cn> <20120612144223.GF16548@mail.yitter.info>
In-Reply-To: <20120612144223.GF16548@mail.yitter.info>
Date: Wed, 13 Jun 2012 11:29:15 +0800
Message-ID: <008d01cd4914$b5ab2c00$21018400$@cn>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Ac1IqZnDAztpV+0WT3+o8YDdcOx9tAAYeRRA
Content-Language: zh-cn
Subject: Re: [weirds] FW: I-D Action: draft-kong-dnrd-ap-response-json-00.txt
X-BeenThere: weirds@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "WHOIS-based Extensible Internet Registration Data Service \(WEIRDS\)" <weirds.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/weirds>, <mailto:weirds-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/weirds>
List-Post: <mailto:weirds@ietf.org>
List-Help: <mailto:weirds-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/weirds>, <mailto:weirds-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jun 2012 03:29:27 -0000

Hi,
Thanks for comments.
This draft intends to specify the common response format. So we put more
focus on the technical part. In this version, just a brief paragraph before
section 3.1 is provided related to policy.
Having read the policy & tech thread, IMHO, both the authentication
mechanism and policy making will affect the query and response drafts. The
authentication mechanism supplies the technical solution, and policy
decisions raise the specific requirements. Until now ,at least I am not
quite clear about the authentication mechanism that will be adopted and the
specific requirements for differential classes of service. 
So, I think the above work should be done in parallel, in which way, the
protocol could be improved better.
We have done some research wok on authentication, but need more help and
contribution from experts on web authentication and security. We also
welcome more comments from policy experts, providing some specific
requirements for the draft.

Thanks & regards,
Linlin Zhou
CNNIC

> -----Original Message-----
> From: weirds-bounces@ietf.org [mailto:weirds-bounces@ietf.org] On Behalf
Of
> Andrew Sullivan
> Sent: Tuesday, June 12, 2012 10:42 PM
> To: weirds@ietf.org
> Subject: Re: [weirds] FW: I-D Action:
draft-kong-dnrd-ap-response-json-00.txt
> 
> On Tue, Jun 12, 2012 at 10:04:55PM +0800, Ning Kong wrote:
> 
> > I think you put forward a general issue. IMO, the HTTP draft
> > (draft-designteam-weirds-using-http-00) as the common infrastructure
> > document is suitable to cover this point. For example, a new section
(e.g.
> > 5.5 Unauthorized Answers) may be added to propose the corresponding
> > response mechanisms.
> 
> This raises an interesting and vexing issue, I think.
> 
> As we're working now, we are talking about responses and requests.
> But in a REST context, it seems to me, you either get the resource or you
don't.
> 
> One of the goals so far has been to permit differential levels of service
> depending on credentials.  (I believe quite strongly that if we do not
provide
> that functionality, we will have completely botched this work.)
> 
> It seems to me therefore that data we return must be much more linked and
> much less cohesive.  For instance, in the present draft, the response for
> domains includes contact data, nameserver data, and so on.  But instead,
> that all ought to be linked data, so that it is possible to return the
appropriate
> response (e.g. the data vs. http
> 401 or 403 errors) depending on who asks for it.  It seems also that it
might
> be possible to create a roll-up type resource that provides all the
answers in
> one go, at the cost of authorization being the denied if any of the
underlying
> resource permissions aren't available.
> 
> Thoughts?
> 
> Best,
> 
> A
> 
> --
> Andrew Sullivan
> ajs@anvilwalrusden.com
> _______________________________________________
> weirds mailing list
> weirds@ietf.org
> https://www.ietf.org/mailman/listinfo/weirds

v2.23.0 | Report a Bug | By Email