Abstract Syntax Notation X (ASN.X)
draft-legg-xed-asd-07
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2007-07-16
|
07 | (System) | This was part of a ballot set with: draft-legg-xed-asd-gserei, draft-legg-xed-asd-xerei, draft-legg-xed-rxer, draft-legg-xed-rxer-ei |
2007-03-16
|
07 | Amy Vezza | State Changes to RFC Ed Queue from Approved-announcement sent by Amy Vezza |
2007-03-14
|
07 | (System) | IANA Action state changed to No IC from In Progress |
2007-03-13
|
07 | David Kessens | [Ballot comment] Judging from the discussion on the IETF list, I am not convinced that anybody actually cares for the publication of this document set. |
2007-03-13
|
07 | David Kessens | Created "Approve" ballot |
2007-03-13
|
07 | (System) | IANA Action state changed to In Progress |
2007-03-12
|
07 | Amy Vezza | IESG state changed to Approved-announcement sent |
2007-03-12
|
07 | Amy Vezza | IESG has approved the document |
2007-03-12
|
07 | Amy Vezza | Closed "Approve" ballot |
2007-03-08
|
07 | Amy Vezza | State Changes to Approved-announcement to be sent from IESG Evaluation by Amy Vezza |
2007-03-08
|
07 | Mark Townsley | [Ballot Position Update] New position, No Objection, has been recorded by Mark Townsley |
2007-03-08
|
07 | Jari Arkko | [Ballot Position Update] New position, No Objection, has been recorded by Jari Arkko |
2007-03-08
|
07 | Dan Romascanu | [Ballot Position Update] New position, No Objection, has been recorded by Dan Romascanu |
2007-03-08
|
07 | Bill Fenner | [Ballot Position Update] New position, No Objection, has been recorded by Bill Fenner |
2007-03-07
|
07 | Ross Callon | [Ballot Position Update] New position, No Objection, has been recorded by Ross Callon |
2007-03-07
|
07 | Cullen Jennings | [Ballot Position Update] New position, No Objection, has been recorded by Cullen Jennings |
2007-03-07
|
07 | David Kessens | [Ballot Position Update] New position, Abstain, has been recorded by David Kessens |
2007-03-05
|
07 | Russ Housley | [Ballot comment] Comments are based on the SecDir Review by Steve Kent. draft-legg-xed-asd-07: Some of the introductory text for asd-07 abstract reads … [Ballot comment] Comments are based on the SecDir Review by Steve Kent. draft-legg-xed-asd-07: Some of the introductory text for asd-07 abstract reads more like a marketing pitch than a technical abstract, touting the purported advantages of this syntax over ASN.1 I suggest that this text be modified to be more appropriate for an RFC. The Security Considerations section is short and to the point. In general, a syntax definition language like ASN.1 OR ASN.X is not intrinsically security relevant. Experience has shown that buggy implementations of encoders and decoders for such syntax can have adverse security implications, but this is not a property of the syntax per se. The author describes the need to "normalize" the syntax of an ASN.X module to ensure that decoding and re-encoding preserves the canonicalization. The normalization rules appear in another of these documents (draft-legg-xed-rxer-07.txt). Canonicalization is a security-relevant aspect of any syntax language, as one usually digitally signs canonical representations of data, to ensure that the signature can be verified despite possible encoding changes that may occur in transmission or storage of (digitally signed) data. draft-legg-xed-rxer-07: The Security Considerations section discusses the implications of the non-canonical representations under RXER, and thus the need to employ CRXER whenever a canonical representation must be preserved, e.g., in support of digital signatures. It also emphasizes the need to perform comparisons on "underlying abstract values," vs. encodings, in contexts such as comparisons used for access control determinations. draft-legg-xed-rxer-ei-04: The Security Considerations section in this document alerts the reader to a possible problem with regard to one specific encoding instruction (GROUP). Implementers of ASN.1 compliers are waned to be very careful re this encoding instruction, to avoid possible encode/decode errors that would break digital signatures and that might adversely affect access control decisions. My only concern with this warning is that is only says "don't get it wrong" without indicating what the author believes are common ways to "get it wrong," likely mis-interpretations of specs, etc. |
2007-03-05
|
07 | Russ Housley | [Ballot Position Update] New position, No Objection, has been recorded by Russ Housley |
2007-03-05
|
07 | (System) | State Changes to IESG Evaluation from IESG Evaluation - Defer by system |
2007-03-04
|
07 | Ted Hardie | [Note]: 'Note updated intended status.' added by Ted Hardie |
2007-03-04
|
07 | Ted Hardie | Community discussion has strongly indicated that it is too early for this work to be confirmed as a Proposed Standard by the IETF community. Putting … Community discussion has strongly indicated that it is too early for this work to be confirmed as a Proposed Standard by the IETF community. Putting it forward as Experimental makes the specifications available, and increases the chance the interested user communities will be able to define their need for this work. It can be reconsidered as a proposed standard (or an updated document set, incorporating any changes can be) when the constinuency is more visible and the use cases more clear. |
2007-03-04
|
07 | Ted Hardie | Area acronymn has been changed to app from gen |
2007-03-04
|
07 | Ted Hardie | Intended Status has been changed to Experimental from Proposed Standard |
2007-02-23
|
07 | (System) | Removed from agenda for telechat - 2007-02-22 |
2007-02-20
|
07 | Russ Housley | State Changes to IESG Evaluation - Defer from IESG Evaluation by Russ Housley |
2007-02-15
|
07 | Ted Hardie | State Changes to IESG Evaluation from Waiting for AD Go-Ahead by Ted Hardie |
2007-02-15
|
07 | Ted Hardie | Last call comment from Tom Yu The potential upcoming approval of these documents on the Standards Track makes me uneasy, for reasons I can't yet … Last call comment from Tom Yu The potential upcoming approval of these documents on the Standards Track makes me uneasy, for reasons I can't yet articulate well. I can try to produce an improved analysis before these drafts come up on next week's telechat. I was not aware of the existence of these drafts until recently. These five documents appear to be a set of individual submissions intended for the Standards Track. I have concerns that such a large (they collectively number about 375 pages) and ambitious body of work may not have received adequate IETF review. Steve Kent's review for SecDir was useful to me in getting oriented within this massive quantity of text. A few questions came to my mind concerning these drafts: * Should a working group have reviewed this effort? (It's possible that this has happened and I was not aware of it.) * Is any of this work better addressed within the OSI standards process? * Are these documents intended to have wider applicability than XED? * For that matter, has XED itself actually had wide IETF review? These drafts need to be checked by multiple ASN.1 experts to ensure that they are consistent with the relevant ASN.1 standards. The sheer size of the drafts, combined with the size of the corresponding ASN.1 standards, makes this a massive undertaking. draft-legg-xed-asd-07 describes a method of translating the entire ASN.1 language; it necessarily has to be complete and consistent with respect to the relevant ASN.1 standards. Likewise, draft-legg-xed-rxer-07 describes a set of ASN.1 encoding rules; it necessarily has to have a complete specification for how to encode all ASN.1 types. The other drafts probably have related issues. A somewhat fragmentary overview of my thoughts on these documents follows. These documents appear to support the XML-Enabled Directory (XED) effort, which appears to be outlined in draft-legg-xed-roadmap-05. It took me significant effort to determine the motivations for these documents, as I did not know that I needed to read xed-roadmap. I'm not sure that xed-roadmap is referenced in any of these documents, either. It is unclear whether these documents are intended for use by other IETF protocols. If that is the intent, they could use wider IETF review. The absence of obvious mentions of XED within these documents suggests to me that they are intended for more general usage outside of XED, in which case perhaps a great many different groups of people need to look at these documents. These drafts present two major concepts: Robust XML Encoding Rules (RXER), which is a new set of encoding rules for ASN.1, and ASN.X, which is effectively an XML representation of the semantic content of the ASN.1 language. draft-legg-xed-rxer-07 describes Robust XML Encoding Rules (RXER), an alternative set of XML encoding rules for ASN.1. X.693 is an OSI standard for XML Encoding Rules for ASN.1 (XER), but xed-rxer argues that RXER overcomes some flaws present in XER. draft-legg-xed-asd-07 describes how to take an ASN.1 module and translate it into an XML representation called ASN.X. The semantic content of a ASN.1 module and its ASN.X representation are meant to be identical, thus defining identical data types and values. While the document does not describe the translation process in terms of producing an RXER encoding, ASN.X modules are themselves valid RXER encodings. Appendix A is a tour de force which specifies ASN.X using ASN.1... effectively an ASN.1 module which can represent other ASN.1 modules. It should in principle be possible to encode ASN.X using an encoding more compact than RXER, but the document does not mention this possibility. The motivation for ASN.X appears to be that the grammar of the ASN.1 language is difficult parse by machine, and having a readily machine-parseable (XML, in this case) representation of the abstract syntax of a protocol is useful. It seems that XED uses ASN.X as a means of communicating things such as user-defined syntaxes for directory attributes. draft-legg-xed-gserei-03, -asd-xerei-03, and -rxer-ei-04 concern the notation called Encoding Instructions, defined in X.680 Amendment 1. The drafts describe how to represent X.680amd1 Encoding Instructions using ASN.X, thus allowing ASN.1 modules which make use of this notation to be represented in ASN.X. (Encoding Instructions are somewhat poorly named: they are not encoding rules, but are ASN.1 language elements introduced in X.680amd1 which can alter how a given set of encoding rules encodes the value of a type.) |
2007-02-14
|
07 | (System) | State has been changed to Waiting for AD Go-Ahead from In Last Call by system |
2007-02-14
|
07 | Ted Hardie | Placed on agenda for telechat - 2007-02-22 by Ted Hardie |
2007-02-14
|
07 | Ted Hardie | [Ballot Position Update] New position, Yes, has been recorded for Ted Hardie |
2007-02-14
|
07 | Ted Hardie | Ballot has been issued by Ted Hardie |
2007-02-14
|
07 | Ted Hardie | Created "Approve" ballot |
2007-02-06
|
07 | Yoshiko Fong | IANA Last Call Comments; As described in the IANA Considerations section, we understand this document to have NO IANA Actions. |
2007-02-01
|
07 | Samuel Weiler | Request for Last Call review by SECDIR Completed. Reviewer: Stephen Kent. |
2007-01-18
|
07 | Samuel Weiler | Request for Last Call review by SECDIR is assigned to Stephen Kent |
2007-01-18
|
07 | Samuel Weiler | Request for Last Call review by SECDIR is assigned to Stephen Kent |
2007-01-12
|
07 | Amy Vezza | Last call sent |
2007-01-12
|
07 | Amy Vezza | State Changes to In Last Call from Last Call Requested by Amy Vezza |
2007-01-12
|
07 | Ted Hardie | Last Call was requested by Ted Hardie |
2007-01-12
|
07 | (System) | Ballot writeup text was added |
2007-01-12
|
07 | (System) | Last call text was added |
2007-01-12
|
07 | (System) | Ballot approval text was added |
2007-01-12
|
07 | Ted Hardie | State Changes to Last Call Requested from Publication Requested by Ted Hardie |
2007-01-08
|
07 | Dinara Suleymanova | Draft Added by Dinara Suleymanova in state Publication Requested |
2006-12-22
|
07 | (System) | New version available: draft-legg-xed-asd-07.txt |
2006-10-20
|
06 | (System) | New version available: draft-legg-xed-asd-06.txt |
2005-11-11
|
05 | (System) | New version available: draft-legg-xed-asd-05.txt |
2005-07-15
|
04 | (System) | New version available: draft-legg-xed-asd-04.txt |
2005-04-11
|
03 | (System) | New version available: draft-legg-xed-asd-03.txt |
2004-06-17
|
02 | (System) | New version available: draft-legg-xed-asd-02.txt |
2003-12-22
|
01 | (System) | New version available: draft-legg-xed-asd-01.txt |
2003-08-07
|
00 | (System) | New version available: draft-legg-xed-asd-00.txt |