[P2PSIP] draft-ietf-p2psip-base-12 (8)

Thu, 10 Mar 2011 11:03:29 -0800 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Another round.  That will probably be the last one until the publication of -13
as I am running out of margins for annotations on my copy of -12 :-(


A.47. Section 6.3

The four policies defined in p2psip-base consistently says that "[a] given value
MUST be written (or overwritten) if and only if the request is signed ..."
Additional access control policies defined elsewhere use similar wording.

But should not the StoredData signature be used instead of the request
signature?  When replicating the data, the signer of the StoreRequest will be
different from the signer of the original request and so the test will no longer
work.  Section 6.4.1.1 says that "[a] peer MUST [check that] [e]ach element is
signed by a credential which is authorized to write this kind at this
Resource-ID.", which seems to confirm that this is the element's signature that
must be checked, not the request's.


A.48. Section 13.7

The "RELOAD Data Model" registry contains a Code value which is on fact never
used anywhere.  I think it would be simpler to remove this (like it is done for
the Access Control Policies) and redefine DataModel in section 6.2 like this:

enum { single_value, array, dictionary } DataModel;

BTW, the select in 6.4.2.1 uses "model" instead of "DataModel."


A.49. Section 10.1.1

The Data Model, Access Control Policy and Kind names permitted in the schema
does not and cannot match the definitions in the various IANA registries,
because of the case.  E.g. the Data Model registry contains "USER-MATCH" but the
schema only accept "user-match".  I suggest to replace the definition of
"user-match" and other strings by the following:

access-control-type |= xsd:token { pattern =
"[uU][sS][eE][rR]-[mM][aA][tT][cC][hH]" }


- -- 
Marc Petit-Huguenin
Personal email: [email protected]
Professional email: [email protected]
Blog: http://blog.marc.petit-huguenin.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk15IG4ACgkQ9RoMZyVa61e3YACePsYX2AbyEjSiP9/aZzAenqQx
mAUAni0r2QTZkZmQ928gk9CMfvCdnF3v
=Q8OV
-----END PGP SIGNATURE-----
_______________________________________________
P2PSIP mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/p2psip

Reply via email to