Skip to main content

Design Considerations for Metadata Insertion
draft-hardie-privsec-metadata-insertion-08

Revision differences

Document history

Date Rev. By Action
2017-05-10
08 (System)
Received changes through RFC Editor sync (created alias RFC 8165, changed title to 'Design Considerations for Metadata Insertion', changed abstract to 'The IAB published …
Received changes through RFC Editor sync (created alias RFC 8165, changed title to 'Design Considerations for Metadata Insertion', changed abstract to 'The IAB published RFC 7624 in response to several revelations of pervasive attacks on Internet communications.  This document considers the implications of protocol designs that associate metadata with encrypted flows.  In particular, it asserts that designs that share metadata only by explicit actions at the host are preferable to designs in which middleboxes insert metadata.', changed standardization level to Informational, changed state to RFC, added RFC published event at 2017-05-10, changed IESG state to RFC Published)
2017-05-10
08 (System) RFC published
2017-05-09
08 (System) RFC Editor state changed to <a href="http://www.rfc-editor.org/auth48/rfc8165">AUTH48-DONE</a> from AUTH48
2017-05-05
08 (System) RFC Editor state changed to <a href="http://www.rfc-editor.org/auth48/rfc8165">AUTH48</a> from EDIT
2017-03-27
08 (System) IANA Action state changed to No IC from In Progress
2017-03-27
08 (System) RFC Editor state changed to EDIT
2017-03-27
08 (System) IESG state changed to RFC Ed Queue from Approved-announcement sent
2017-03-27
08 (System) Announcement was received by RFC Editor
2017-03-27
08 (System) IANA Action state changed to In Progress
2017-03-27
08 Cindy Morgan IESG state changed to Approved-announcement sent from Approved-announcement to be sent::Point Raised - writeup needed
2017-03-27
08 Cindy Morgan IESG has approved the document
2017-03-27
08 Cindy Morgan Closed "Approve" ballot
2017-03-27
08 Cindy Morgan Ballot approval text was generated
2017-03-27
08 Cindy Morgan Ballot writeup was changed
2017-03-27
08 (System) IANA Review state changed to Version Changed - Review Needed from IANA OK - No Actions Needed
2017-03-27
08 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-08.txt
2017-03-27
08 (System) New version approved
2017-03-27
08 (System) Request for posting confirmation emailed to previous authors: Ted Hardie <ted.ietf@gmail.com>
2017-03-27
08 Ted Hardie Uploaded new revision
2017-03-16
07 Cindy Morgan IESG state changed to Approved-announcement to be sent::Point Raised - writeup needed from IESG Evaluation
2017-03-16
07 Suresh Krishnan [Ballot Position Update] New position, No Objection, has been recorded for Suresh Krishnan
2017-03-16
07 Benoît Claise [Ballot Position Update] New position, No Objection, has been recorded for Benoit Claise
2017-03-16
07 Joel Jaeggli [Ballot Position Update] New position, No Objection, has been recorded for Joel Jaeggli
2017-03-15
07 Ben Campbell [Ballot Position Update] New position, Yes, has been recorded for Ben Campbell
2017-03-15
07 Jari Arkko [Ballot Position Update] New position, No Objection, has been recorded for Jari Arkko
2017-03-15
07 Alia Atlas [Ballot Position Update] New position, Yes, has been recorded for Alia Atlas
2017-03-15
07 Deborah Brungard [Ballot Position Update] New position, No Objection, has been recorded for Deborah Brungard
2017-03-15
07 Alvaro Retana [Ballot Position Update] New position, No Objection, has been recorded for Alvaro Retana
2017-03-15
07 Alexey Melnikov [Ballot comment]
I support this document, but I am not convinced that it will have the desired effect.
2017-03-15
07 Alexey Melnikov Ballot comment text updated for Alexey Melnikov
2017-03-15
07 Alissa Cooper
[Ballot comment]
= Section 5 =

"It would not be available at all during this period" -- this seems to be imagining an alternative reality …
[Ballot comment]
= Section 5 =

"It would not be available at all during this period" -- this seems to be imagining an alternative reality where the forwarded header is not already inserted by proxies, which confused me. I think this first paragraph either needs to be clear that it is imagining an alternative history in which the forwarded header was never inserted by proxies, or it should not include the quoted text above, since at this point one could wait for browsers to be upgraded to support a client-based insertion mechanism while proxies are still inserting the same info.

= Section 7 =

Is there some citation that could be provided to support the assertion that network-provided location is "often" more coarse than device-provided location? I have been inclined to believe it but it seems like a mildly contentious claim.
2017-03-15
07 Alissa Cooper [Ballot Position Update] New position, Yes, has been recorded for Alissa Cooper
2017-03-14
07 Stewart Bryant Request for Telechat review by GENART Completed: Ready with Nits. Reviewer: Stewart Bryant. Sent review to list.
2017-03-13
07 (System) IANA Review state changed to IANA OK - No Actions Needed from Version Changed - Review Needed
2017-03-13
07 Kathleen Moriarty
[Ballot comment]
Section 3 just has one design pattern, restoration of data, right?  Should the heading be design pattern and not design patterns or are …
[Ballot comment]
Section 3 just has one design pattern, restoration of data, right?  Should the heading be design pattern and not design patterns or are you considering data minimization a design pattern too?  I don't think so, but wanted to ask for clarity in the document.

Section 4 then starts off with a statement: "Avoid this design pattern".  I think it would be clearer to reword as, "Avoid the restoration of information design pattern" or make it clear that section 3 is talking about one design pattern (like the introduction).

Theres a word left out in section 5, 3rd paragraph
    "There also tensions with latency of operation."
    s/There also/There are also/

Section 7, second sentence:
s/metadat/metadata

I also agree with the SecDir reviewers comments:
https://mailarchive.ietf.org/arch/msg/secdir/8buJWINMRQmtN0Ls78yFAPjr3ug
The suggested updates don't appear to have made it to this last version.  Are changes coming to clarify the text?  I can't tell from the end of that thread.
2017-03-13
07 Kathleen Moriarty [Ballot Position Update] New position, Yes, has been recorded for Kathleen Moriarty
2017-03-13
07 Mirja Kühlewind
[Ballot comment]
I fully support the publication of this document, however, given this is not an IAB document (anymore), I would recommend to do some …
[Ballot comment]
I fully support the publication of this document, however, given this is not an IAB document (anymore), I would recommend to do some more re-wording to rather talk about a design pattern that should be applied in future protocol design work than to give advise about what should not be done.

Also I think it would be good to add a little bit more text that further discusses/explains that endpoints may also need a way to detect middlebox insertion/manipulation to provide an incentive to support host-based explicit actions for metadata provisioning.
2017-03-13
07 Mirja Kühlewind [Ballot Position Update] New position, Yes, has been recorded for Mirja Kühlewind
2017-03-13
07 Alexey Melnikov [Ballot Position Update] New position, No Objection, has been recorded for Alexey Melnikov
2017-03-09
07 Jean Mahoney Request for Telechat review by GENART is assigned to Stewart Bryant
2017-03-09
07 Jean Mahoney Request for Telechat review by GENART is assigned to Stewart Bryant
2017-03-07
07 Stephen Farrell IESG state changed to IESG Evaluation from Waiting for Writeup
2017-03-07
07 Stephen Farrell Ballot has been issued
2017-03-07
07 Stephen Farrell [Ballot Position Update] New position, Yes, has been recorded for Stephen Farrell
2017-03-07
07 Stephen Farrell Created "Approve" ballot
2017-03-07
07 Stephen Farrell Ballot writeup was changed
2017-03-07
07 Stephen Farrell Ballot writeup was changed
2017-03-03
07 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-07.txt
2017-03-03
07 (System) New version approved
2017-03-03
07 (System) Request for posting confirmation emailed to previous authors: Ted Hardie <ted.ietf@gmail.com>
2017-03-03
07 Ted Hardie Uploaded new revision
2017-03-03
06 Stewart Bryant Request for Telechat review by GENART Completed: Ready with Nits. Reviewer: Stewart Bryant.
2017-03-03
06 Stewart Bryant Request for Last Call review by GENART Completed: Ready with Nits. Reviewer: Stewart Bryant. Sent review to list.
2017-03-02
06 Jean Mahoney Request for Telechat review by GENART is assigned to Stewart Bryant
2017-03-02
06 Jean Mahoney Request for Telechat review by GENART is assigned to Stewart Bryant
2017-02-22
06 (System) IANA Review state changed to Version Changed - Review Needed from IANA OK - No Actions Needed
2017-02-22
06 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-06.txt
2017-02-22
06 (System) New version approved
2017-02-22
06 (System) Request for posting confirmation emailed to previous authors: Ted Hardie <ted.ietf@gmail.com>
2017-02-22
06 Ted Hardie Uploaded new revision
2017-02-21
05 (System) IESG state changed to Waiting for Writeup from In Last Call
2017-02-16
05 Michael Tüxen Request for Last Call review by TSVART Completed: Ready with Nits. Reviewer: Michael Tüxen. Sent review to list.
2017-02-14
05 Stephen Farrell Placed on agenda for telechat - 2017-03-16
2017-02-07
05 Yoav Nir Request for Last Call review by SECDIR Completed: Has Nits. Reviewer: Yoav Nir. Sent review to list.
2017-02-01
05 Gunter Van de Velde Request for Last Call review by OPSDIR Completed: Ready. Reviewer: Ron Bonica.
2017-02-01
05 Martin Stiemerling Request for Last Call review by TSVART is assigned to Michael Tüxen
2017-02-01
05 Martin Stiemerling Request for Last Call review by TSVART is assigned to Michael Tüxen
2017-01-26
05 Tero Kivinen Request for Last Call review by SECDIR is assigned to Yoav Nir
2017-01-26
05 Tero Kivinen Request for Last Call review by SECDIR is assigned to Yoav Nir
2017-01-26
05 Jean Mahoney Request for Last Call review by GENART is assigned to Stewart Bryant
2017-01-26
05 Jean Mahoney Request for Last Call review by GENART is assigned to Stewart Bryant
2017-01-25
05 (System) IANA Review state changed to IANA OK - No Actions Needed from IANA - Review Needed
2017-01-25
05 Sabrina Tanamal
(Via drafts-lastcall@iana.org): IESG/Authors/WG Chairs:

The IANA Services Operator has reviewed draft-hardie-privsec-metadata-insertion-05.txt, which is currently in Last Call, and has the following comments:

We …
(Via drafts-lastcall@iana.org): IESG/Authors/WG Chairs:

The IANA Services Operator has reviewed draft-hardie-privsec-metadata-insertion-05.txt, which is currently in Last Call, and has the following comments:

We understand that this document doesn't require any registry actions.

While it's often helpful for a document's IANA Considerations section to remain in place upon publication even if there are no actions, if the authors strongly prefer to remove it, we do not object.

If this assessment is not accurate, please respond as soon as possible.

Thank you,

Sabrina Tanamal
IANA Services Specialist
PTI
2017-01-25
05 Gunter Van de Velde Request for Last Call review by OPSDIR is assigned to Ron Bonica
2017-01-25
05 Gunter Van de Velde Request for Last Call review by OPSDIR is assigned to Ron Bonica
2017-01-24
05 Amy Vezza IANA Review state changed to IANA - Review Needed
2017-01-24
05 Amy Vezza
The following Last Call announcement was sent out:<br><br>From: The IESG <iesg-secretary@ietf.org>
To: "IETF-Announce" <ietf-announce@ietf.org>
CC: draft-hardie-privsec-metadata-insertion@ietf.org, stephen.farrell@cs.tcd.ie
Reply-To: ietf@ietf.org
Sender: …
The following Last Call announcement was sent out:<br><br>From: The IESG <iesg-secretary@ietf.org>
To: "IETF-Announce" <ietf-announce@ietf.org>
CC: draft-hardie-privsec-metadata-insertion@ietf.org, stephen.farrell@cs.tcd.ie
Reply-To: ietf@ietf.org
Sender: <iesg-secretary@ietf.org>
Subject: Last Call: <draft-hardie-privsec-metadata-insertion-05.txt> (Design considerations for Metadata Insertion) to Informational RFC


The IESG has received a request from an individual submitter to consider
the following document:
- 'Design considerations for Metadata Insertion'
  <draft-hardie-privsec-metadata-insertion-05.txt> as Informational RFC

The IESG plans to make a decision in the next few weeks, and solicits
final comments on this action. Please send substantive comments to the
ietf@ietf.org mailing lists by 2017-02-21. Exceptionally, comments may be
sent to iesg@ietf.org instead. In either case, please retain the
beginning of the Subject line to allow automated sorting.

Abstract


  The IAB has published [RFC7624] in response to several revelations of
  pervasive attack on Internet communications.  This document considers
  the implications of protocol designs which associate metadata with
  encrypted flows.  In particular, it asserts that designs which do so
  by explicit actions of the end system are preferable to designs in
  which middleboxes insert them.




The file can be obtained via
https://datatracker.ietf.org/doc/draft-hardie-privsec-metadata-insertion/

IESG discussion can be tracked via
https://datatracker.ietf.org/doc/draft-hardie-privsec-metadata-insertion/ballot/


No IPR declarations have been submitted directly on this I-D.

There are some minor nits noted by I-D nits that we'll fix as we go.



2017-01-24
05 Amy Vezza IESG state changed to In Last Call from Last Call Requested
2017-01-24
05 Amy Vezza Last call announcement was changed
2017-01-22
05 Stephen Farrell Last call was requested
2017-01-22
05 Stephen Farrell Ballot approval text was generated
2017-01-22
05 Stephen Farrell Ballot writeup was generated
2017-01-22
05 Stephen Farrell IESG state changed to Last Call Requested from Publication Requested
2017-01-22
05 Stephen Farrell Last call announcement was changed
2017-01-20
05 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-05.txt
2017-01-20
05 (System) New version approved
2017-01-20
05 (System) Request for posting confirmation emailed to previous authors: "Ted Hardie" <ted.ietf@gmail.com>
2017-01-20
05 Ted Hardie Uploaded new revision
2017-01-20
04 Stephen Farrell Assigned to Security Area
2017-01-20
04 Stephen Farrell IESG process started in state Publication Requested
2017-01-20
04 Stephen Farrell Shepherding AD changed to Stephen Farrell
2017-01-20
04 Stephen Farrell Changed consensus to Yes from Unknown
2017-01-20
04 Stephen Farrell Intended Status changed to Informational from None
2017-01-20
04 Stephen Farrell Stream changed to IETF from None
2017-01-18
04 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-04.txt
2017-01-18
04 (System) New version approved
2017-01-18
04 (System) Request for posting confirmation emailed to previous authors: "Ted Hardie" <ted.ietf@gmail.com>
2017-01-18
04 Ted Hardie Uploaded new revision
2016-10-11
03 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-03.txt
2016-10-11
03 (System) New version approved
2016-10-11
02 (System) Request for posting confirmation emailed to previous authors: "Ted Hardie" <ted.ietf@gmail.com>
2016-10-11
02 Ted Hardie Uploaded new revision
2016-09-21
02 (System) Document has expired
2016-03-20
02 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-02.txt
2016-03-07
01 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-01.txt
2015-10-12
00 Ted Hardie New version available: draft-hardie-privsec-metadata-insertion-00.txt