Re: [xmpp] Barry Leiba's No Objection on draft-ietf-xmpp-posh-04: (with COMMENT)

Barry Leiba <> Fri, 28 August 2015 13:05 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id 2F0DC1ACF59; Fri, 28 Aug 2015 06:05:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.268
X-Spam-Status: No, score=-1.268 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, SPF_PASS=-0.001, T_FILL_THIS_FORM_SHORT=0.01] autolearn=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id F5sxB1kkSqiz; Fri, 28 Aug 2015 06:05:10 -0700 (PDT)
Received: from ( [IPv6:2607:f8b0:400c:c05::241]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 387601AD248; Fri, 28 Aug 2015 06:05:10 -0700 (PDT)
Received: by vkbc123 with SMTP id c123so853540vkb.3; Fri, 28 Aug 2015 06:05:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=Xwmm78PRWEiwnUVPecSAnyfXyF0UjnUGBhRQz18lz/w=; b=XsfzZCiy7Gw533tRZwywGORob8lgfmndHsP9OeQrs6kOXopMJm1VSqk4WnaiZDM6O+ 5au31u238k4P5mGeiKrqb1sfu1ZNmEwRYLgTPDR94JGrfoMG7TD3wCY8I8n7HoL56+Aq OgrXwfaBAF1TpRW3I7V5p4ev0qUfBPOx/QUvxpb1TLIV9R0TxQkykVUJuikoM2A2Pgmd Q6bifUZBol+ZsU/JiCF3/WKQqCt/zAGGpqNiOosvjPwTEcHlq8t7ruoeQspnqPeRVPQS USPxO3dB+dcd63b/aNY7jDyHF799nJUyuYIMg6x0QVL2e+M4krYbsiwrUHyDCswAmXO9 Gtrw==
MIME-Version: 1.0
X-Received: by with SMTP id wd10mr8566615vdb.64.1440767109396; Fri, 28 Aug 2015 06:05:09 -0700 (PDT)
Received: by with HTTP; Fri, 28 Aug 2015 06:05:09 -0700 (PDT)
In-Reply-To: <>
References: <> <> <> <> <> <> <> <> <> <> <> <> <>
Date: Fri, 28 Aug 2015 09:05:09 -0400
X-Google-Sender-Auth: A36cNyZi_6ff5mVvPCqQF7G5Rmw
Message-ID: <>
From: Barry Leiba <>
To: Peter Saint-Andre - &yet <>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <>
Cc: Ben Campbell <>,,,,,, The IESG <>
Subject: Re: [xmpp] Barry Leiba's No Objection on draft-ietf-xmpp-posh-04: (with COMMENT)
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: XMPP Working Group <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 28 Aug 2015 13:05:12 -0000

>> 1. Recommend URIs like
>> 2. In draft-ietf-xmpp-posh, register "posh" in the well-known URIs
>> registry
>> 3. In draft-ietf-xmpp-posh, set up a registry for POSH protocols
>> 4. In draft-ietf-xmpp-dna, register "xmpp-client" and "xmpp-server" in
>> the POSH registry
>> I offered to Matt that I can propose text for the IANA considerations
>> sections since I've written such text before. I'll endeavor to draft
>> something in the next few days.
> Here is proposed text for draft-ietf-xmpp-posh...

Thanks, Peter; this looks good.  Two questions, inline.

> 9.  IANA Considerations
> 9.1.  Well-Known URI
>    This specification registers "posh" in the Well-Known URI Registry as
>    defined by [RFC5785].  The completed template follows.
>    URI suffix:  posh
>    Change controller:  IETF
>    Specification:  [[ this document ]]
>    Related information:  The suffix "posh" is expected to be followed by
>       an additional path component consisting of a service name (say,
>       "spice") and a file extension of ".json", resulting in a full path
>       of, for instance, "/.well-known/posh/spice.json".  Registration of
>       service names shall be requested by developers of the relevant
>       application protocols.
> 9.2.  POSH Service Names
>    This document establishes a registry for POSH service names.

It would help IANA if you suggested where to put the registry (in an
existing group of registries, or in its own, new top-level group).

>    POSH service names are registered on the advice of one or more
>    Designated Experts (appointed by the IESG or their delegate).  An
>    IANA registration policy [RFC5226] of Expert Review was chosen
>    instead of the more liberal First Come First Served to help ensure
>    that POSH is used in appropriate ways within applications.

Thanks for that explanation; it helps.

1. Are Peter Saint-Andre and Matt Miller willing and able to act as
the designated experts?  If so, I'll put that in for IESG approval.

2. Do you want expert review to also apply to IETF documents (such as
xmpp-dna, which would then need expert review before final approval)?
If not, you could use "Expert Review OR IETF Review", or "Expert
Review OR Standards Action".

3. It would be good to have a short paragraph or a pointer to other
text that gives some guidance of what "used in appropriate ways"
means, so the DEs (should we eventually put in someone other than the
authors) know what not to accept.

>    Registration requests are to be sent to the mailing
>    list for review and comment, with an appropriate subject (e.g.,
>    "Request for POSH service name: example").
>    Before a period of 14 days has passed, the Designated Expert(s) will
>    either approve or deny the registration request, communicating this
>    decision both to the review list and to IANA.  Denials should include
>    an explanation and, if applicable, suggestions as to how to make the
>    request successful.  Registration requests that are undetermined for
>    a period longer than 21 days can be brought to the IESG's attention
>    (using the mailing list) for resolution.
> 9.2.1.  Registration Template
>    Service name:  The name requested, relative to "/.well-known/posh/";
>       e.g., a service name of "example" would result in a well-known URI
>       such as "".
>    Change controller:  For Standards-Track RFCs, state "IETF".  In all
>       other cases, give the name of the responsible party.  Other
>       details (e.g., postal address, e-mail address, home page URI) may
>       also be included.

Is there a reason not to make e-mail address mandatory?  IANA ought to
have a recorded contact point.

>    Definition and usage:  A brief description that defines the service
>       name and mentions where and how it is used (e.g., in the context
>       of a particular application protocol).
>    Specification:  Optionally, reference to a document that specifies
>       the service or application protocol that uses the service name,
>       preferably including a URI that can be used to retrieve a copy of
>       the document.  An indication of the relevant sections may also be
>       included, but is not required.
> ###
> And we would need to make associated changes in draft-ietf-xmpp-dna, such
> as...
> ###
> 9.  IANA Considerations
>    The POSH specification [I-D.ietf-xmpp-posh] establishes a registry
>    for POSH service names to be used in well-known URIs [RFC5785].  This
>    specification registers two such URIs for use in XMPP: "xmpp-client"
>    and "xmpp-server".  The completed registration templates follow.
> 9.1.  POSH Service Name for xmpp-client Service
>    POSH service name: xmpp-client

This should probably match the template in the other document, so
either change this to "Service name" or change the template to "POSH
service name".

>    Change controller: IETF
>    Definition and usage: Specifies the location of a POSH file
>    containing verification material or a reference thereto that enables
>    a client to verify the identity of a server for a client-to-server
>    stream in XMPP
>    Specification: [[ this document ]]
> 9.2.  POSH Service Name for xmpp-server Service
>    POSH service name: xmpp-server
>    Change controller: IETF
>    Definition and usage: Specifies the location of a POSH file
>    containing verification material or a reference thereto that enables
>    a server to verify the identity of a peer server for a server-to-
>    server stream in XMPP
>    Specification: [[ this document ]]
> ###
> Matt and I have checked this approach with a few implementers and potential
> implementers; no one has objected yet, but if folks on the
> list or elsewhere have significant concerns it would be great to hear from
> you. :-)