IETF Logo Mail Archive

Re: [XCON] AD review: draft-ietf-xcon-common-data-model-19

Oscar Novo <oscar.novo@ericsson.com> Wed, 05 January 2011 12:02 UTC

Return-Path: <oscar.novo@ericsson.com>
X-Original-To: xcon@core3.amsl.com
Delivered-To: xcon@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 05DE03A6DDC for <xcon@core3.amsl.com>; Wed, 5 Jan 2011 04:02:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6YZTl5+nUW-h for <xcon@core3.amsl.com>; Wed, 5 Jan 2011 04:02:34 -0800 (PST)
Received: from mailgw10.se.ericsson.net (mailgw10.se.ericsson.net [193.180.251.61]) by core3.amsl.com (Postfix) with ESMTP id 8FB963A6B74 for <xcon@ietf.org>; Wed, 5 Jan 2011 04:02:33 -0800 (PST)
X-AuditID: c1b4fb3d-b7b89ae0000036a3-33-4d245e5784f6
Received: from esessmw0197.eemea.ericsson.se (Unknown_Domain [153.88.253.124]) by mailgw10.se.ericsson.net (Symantec Mail Security) with SMTP id 96.6E.13987.75E542D4; Wed, 5 Jan 2011 13:04:39 +0100 (CET)
Received: from ESESSCMS0355.eemea.ericsson.se ([169.254.1.221]) by esessmw0197.eemea.ericsson.se ([153.88.115.87]) with mapi; Wed, 5 Jan 2011 13:04:39 +0100
From: Oscar Novo <oscar.novo@ericsson.com>
To: Robert Sparks <rjsparks@nostrum.com>
Date: Wed, 05 Jan 2011 13:04:37 +0100
Thread-Topic: [XCON] AD review: draft-ietf-xcon-common-data-model-19
Thread-Index: AcuivttgXOWYgeBdTEWl5ab3F8QwHAJ89YxA
Message-ID: <58E207308662A748A4AC1ECB4E88561401304EC4A5@ESESSCMS0355.eemea.ericsson.se>
References: <326FB158-5C3C-48FC-96C6-252ABE05A10B@nostrum.com> <58E207308662A748A4AC1ECB4E88561403D02C92@ESESSCMS0355.eemea.ericsson.se> <537E4975-C9FB-4046-A264-C3325310959B@nostrum.com> <58E207308662A748A4AC1ECB4E885614013029BA0E@ESESSCMS0355.eemea.ericsson.se> <0957E5CB-0D6C-4992-9AF5-55C1DC2E9AFF@nostrum.com>
In-Reply-To: <0957E5CB-0D6C-4992-9AF5-55C1DC2E9AFF@nostrum.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: AAAAAA==
Cc: "xcon@ietf.org" <xcon@ietf.org>, Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>
Subject: Re: [XCON] AD review: draft-ietf-xcon-common-data-model-19
X-BeenThere: xcon@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Centralized Conferencing <xcon.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/xcon>, <mailto:xcon-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/xcon>
List-Post: <mailto:xcon@ietf.org>
List-Help: <mailto:xcon-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/xcon>, <mailto:xcon-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Jan 2011 12:02:35 -0000

Hello Robert,

I've only included in this thread questions which need some answers, leaving all the other questions out of the thread for a matter of clarity.


> [Robert] Do you intend to allow users of the data model to give meaning to a <conference-password> appearing inside an <associated-aors>?
>The schema allows it (or am I reading the schema wrong?). Did the group _intend_ for the schema to allow that, and do they anticipate that it will have >any meaning at some point? Or should there be text that forbids that element appearing anywhere but <entry>? 

[O] The data model uses the <associated-aors> child element defined in RFC4575. In this case, the data model doesn't extend the <associated-aors> child element with the <conference-password>.

I could add the following text to 4.6.5.2.: 

   "The <associated-aors> child element is explained in [RFC4575], section 5.6.2. This document does not extend the <associated-aors> child element with new elements or attributes."


>/------------------------Question-------------------------------------
>> 
>> 
>> 
>> * 4.6.3 and 4.6.4 : if the same user appears in an 
>> <allowed-users-list> and in a <deny-users-list>, which takes 
>> precedence? This should be made clear here, and the issue raised in 
>> the security considerations section.
>> 
>> 
>> [ON1] As we agreed in the WG, the semantic of those elements will be defined in further documents. 

> [Robert]I could possibly accept that if the group had defined a model that contained a <list> and handed semantics off to some attribute of the list >(such as ><list name="allowed users">).

>It doesn't. It defines lists and telegraphs semantics with the name. With what you've specified so far, you are encouraging a low level of >interoperability.

>I'll start a separate thread on this.

[O] The <allowed-users-list> and <deny-users-list> are linked with the <user-admission-policy> element. This element lets an organizer to choose an admission policy for the conference. The data model defines three types of admission: closedAuthenticated, openAuthenticated, anonymous. 
	- The "anonymous" policy allows everyone to connect to the conference.
	- The "closedAuthenticated" allows the users listed in the <allowed-users-list> to connect to the conference
	- The "openAuthentication" allows anyone capable of authenticating to join the conference. 

In the first case, banning a user is not support. In the second case, banning a user can be accomplished by removing the user from the <allowed-users-list>. In the third case, a <deny-users-list> is needed to support the concept.

I can understand the use of the <deny-users-list> is unclear in the document at this point. 
I'm planning to add the following text in the 4.6.2 <user-admission policy>:

""openAuthenticated": An 'openAuthenticated' policy requires each conferencing participant to be sufficiently authenticated. Typically this implies that anyone capable of authenticating with the conferencing system may join the conference.
The 'openAuthenticated' policy permits the specification of "banned" conferencing participants. Such banned users are prevented from re-joining the conference until they have been un-banned. An 'openAuthenticated' policy requires a deny users list (listed under the <deny-users-list> XML element) to support banning of conferencing participants from a conference."

Do the text above clarify your question?



> /------------------------Question-------------------------------------
>> 
>> 
>> * In the Schama in section 5, there are several comment blocks 
>> instructing someone to redefine something as <empty/> or <notAllowed> 
>> (no trailing slash?).  Is this an established convention documented 
>> somewhere? If so, can you provide a pointer? If not, please add text 
>> explaining who the instructions are intended for and when they should 
>> be invoked.
>> 
>> [ON] The Data Model is an extensible schema. We just indicate to the implementor how to limit the schema if it's not extended. The trailing slash has been included in the <notAllowed> element.
> 
> [RObert] Then,  please add text
> explaining who the instructions are intended for and when they should 
> be invoked.
> 
> [ON1] Is not the current text self-explanatory? Which instructions would you suggest? 

>[Robert] No, it's not self-explanatory - if it were, we wouldn't be having this conversation.
>I suggest pulling it into an "Implementer note", introducing the note with a sentence or two explaining that this is something you can do if you know >>you are not going to use any extensions.

[O] Right, what about adding the following text in every extensibility elements?

"If extensions (check section 6) beyond this specification are not used, re-define anyAttribute as <empty/> and remove the definition below"

Would it be clear adding the text above?

Oscar

v2.23.0 | Report a Bug | By Email