On Tue, Apr 10, 2018 at 04:17:14PM -0800, Melinda Shore wrote:
> On 4/10/18 3:53 PM, Nico Williams wrote:
> > The earlier consensus is not just applicable, as if it were, we would
> > not be having this LC.
> I have no idea what that even means, to be honest.  We're through
> last call, and it's not that the earlier wg consensus isn't
> "applicable," it's that you've raised new issues.  So let's be
> clear about that.

It means that because we are having this LC, we cannot use the previous
consensus as evidence for ending this LC with a "no".  We might as well
never have had the LC in that case, and it is not a substantive response
to the LC anyways.  It's a "please go away" response.

> I've been watching this discussion and trying to get a handle
> on what's been going on (and how this fits into several other
> IETF issues more generally), and I think this discussion would
> be over if the people arguing in favor of changing the use
> of the extension had plans to implement it.  But so far nobody [...]

Viktor began implementing DANE 8 months after it was published.  That
spec was ready.  This spec is not.

> It's unfortunate that over in DNS-land they're discussing how
> to get rid of unused features that increase complexity, while over
> here we're having a discussion of how to add unused features that
> increase complexity.

Sure, this is true, but it doesn't mean that we should exclude features
that are necessary to making the protocol work in the first place.

This is a TLS extension for stapled DANE, not a DPRIV extension to TLS.

> I think those of us who care about the institutional effectiveness
> of the IETF and the value of the standardization process care
> quite a bit about the amount of time it takes to push a document
> through to publication.  Aside from negatively affecting the chances
> [...]

What is it to "care about the institutional effectiveness of the IETF
...."?  Is it to care only about speediness?  Or only about correctness?
How about a bit of both?

Honestly, if all you want is speediness, why not go to OASIS?  Register
the extension codepoint with IANA and publish elsewhere, why not?

Doing things in the IETF means... the peanut gallery are not just
spectators.  Bringing work to the IETF means incurring the risk that
others may glom onto it.  It happens *all the time*, it's happened to
me, and it will happen to others.  There is nothing special to this
piece of work that should exempt it.


TLS mailing list

Reply via email to