Skip to main content

Narrative Minutes interim-2020-iesg-03 2020-02-06 15:00
narrative-minutes-interim-2020-iesg-03-202002061500-00

Meeting Narrative Minutes Internet Engineering Steering Group (iesg) IETF
Date and time 2020-02-06 15:00
Title Narrative Minutes interim-2020-iesg-03 2020-02-06 15:00
State (None)
Other versions plain text
Last updated 2024-02-23

narrative-minutes-interim-2020-iesg-03-202002061500-00
INTERNET ENGINEERING STEERING GROUP (IESG)
Narrative minutes for the 2020-02-06 IESG Teleconference

These are not an official record of the meeting.
Narrative Scribe: Liz Flynn, Secretariat

1. Administrivia
1.1 Roll call

ATTENDEES
---------------------------------
Deborah Brungard (AT&T) / Routing Area
Jenny Bui (AMS) / IETF Secretariat
Alissa Cooper (Cisco) / IETF Chair, General Area
Michelle Cotton (ICANN) / IANA Liaison
Roman Danyliw (CERT/SEI) / Security Area
Martin Duke / F5 Networks Inc / incoming Transport Area
Liz Flynn (AMS) / IETF Secretariat, Narrative Scribe
Sandy Ginoza (AMS) / RFC Editor Liaison
Wes Hardaker (USC/ISI) / IAB Liaison
Ted Hardie (Google) / IAB Chair
Benjamin Kaduk (Akamai Technologies) / Security Area
Erik Kline / Loon LLC / incoming Internet Area
Suresh Krishnan (Kaloom) / Internet Area
Murray Kucherawy / Facebook / incoming Applications and Real-Time Area
Mirja Kuehlewind (Ericsson) / Transport Area
Warren Kumari (Google) / Operations and Management Area
Barry Leiba (Futurewei Technologies) / Applications and Real-Time Area
Alexey Melnikov / Applications and Real-Time Area
Cindy Morgan (AMS) / IETF Secretariat
Alvaro Retana (Futurewei Technologies) / Routing Area
Adam Roach (Mozilla) / Applications and Real-Time Area
Amy Vezza (AMS) / IETF Secretariat
Martin Vigoureux (Nokia) / Routing Area
Eric Vyncke (Cisco) / Internet Area
Magnus Westerlund (Ericsson) / Transport Area
Robert Wilton / Cisco Systems / incoming Operations and Management Area

REGRETS
---------------------------------
Ignas Bagdonas (Equinix) /  Operations and Management Area
Jay Daley / IETF Executive Director

OBSERVERS
---------------------------------
Chris Box
Brenda Lyons
Benjamin Schwartz
Greg Wood

1.2 Bash the agenda

Amy: Does anyone want to add anything new to today's agenda?

Alissa: I want to say welcome to our incoming IESG members. I have one agenda
item to add; a discussion of the appeal of 7230bis in executive session. It
should be brief.

1.3 Approval of the minutes of past telechats

Amy: Does anyone have an objection to approving the minutes of the January 23
teleconference? Hearing none, we will get those posted. I saw final narrative
minutes from January 23; any objection to approving those? Hearing none, we'll
get those posted as well.

1.4 List of remaining action items from last telechat

     o Roman Danyliw to draft text to be posted on ietf.org about reporting
       protocol vulnerabilities via an email alias and possible procedures
       on how to assign triage resources.

Roman: Please mark that in progress. Thanks.

     o Alexey Melnikov to think about how to analyze how successful WGs and
       protocols are and why they failed or not.

Alexey: All of my items are in progress please.

     o Martin Vigoureux with Wes, and Alvaro to work on some
       mechanism to obtain wider or private feedback from people who are
       disenfranchised; anonymous flagging of offensive emails to inform
       leadership; more opportunities for private feedback.

Martin: This hasn't progressed; I need to re-activate it.

     o Alvaro Retana with Warren, Alexey, Martin, Barry, and Roman
       to work on more transparency in the Datatracker about how long each
       phase of doc process takes / New datatracker flag to indicate who
       has the ball, area directors, authors, or chairs.

Alvaro: This one, as well as all my other ones, are in progress.

     o Alexey Melnikov and Warren Kumari to add keyword tags to WG charters
       to identify specs that pertain to some general concept.

In progress as noted above.

     o Alvaro Retana to work on a framework for analyzing new proposals.

In progress as noted above.

     o Warren Kumari to work on acknowledging shepherds, directorate
       reviewers in a more standardized/formal way.

Warren: In progress.

     o Alexey Melnikov to organize IoT overview discussion with interested
       ADs.

In progress as noted above.

     o Ignas Bagdonas to write a draft of an IoT Systems charter.

Suresh has volunteered to take this over.

     o Alvaro Retana and Adam Roach to look at updating the I-D Checklist.

In progress as noted above.

     o Roman Danilyw to find designated experts for RFC 8471 [IANA
       #1156118].

Amy: We have this as a management item to approve those experts so we'll mark
this as provisionally done.

     o Eric Vyncke to write up draft text on Special Interest
       Groups and send to the IESG for comment.

Eric: In progress.

     o All IESG to submit their metrics data priorities to Roman (deadline
       January 23, 2020).
     o Roman Danyliw to collect feedback from the IESG on the metrics
       data priorities for the IESG to discuss at a future meeting.

Roman: I didn't get input from everyone but I think I got as much as I'm going
to get, so thank you to the IESG for providing all that feedback. I sent out a
data call saying 'this is what I believe is the subset of metrics that's our
consensus position.' Unless there's an objection I'll go with that as the list
we agree to. Thanks everyone; I'll assume the shorter list we made is consensus
and I'll think about resources and followup now.

     o Ben Kaduk, Alvaro Retana, and Suresh Krishnan to skim the ietf@ietf
       list and collect a list of topics that seem to be the major concerns
       for the community from recent discussion threads.

Ben: Technically that's done, but please keep this in progress so we can
remember what the next steps are.

Amy: Okay, we'll keep this in progress. Let us know if you want to update the
text.

     o Martin Vigoureux to put together a proposal on disambiguating side
       meetings from IETF meetings.

Martin: The slide is ready; I still need to share it with you all for comments.
Let's keep it in progress until I share it.

     o Magnus Westerlund to draft an IESG Statement regarding the IETF
       as the default change controller for IANA Registration requests.

Magnus: In progress.

     o Suresh Krishnan to draft a "best errata practices" document and
       post it on the IESG Wiki.

Suresh: Please keep this in progress.

     o Adam Roach to draft a message to the WG Chairs email list
       regarding the ability to dispense with milestone dates in the
       datatracker.

Adam: This is done.

     o Roman Danyliw to find designated experts for RFC 7636 [IANA
       #1160634].

Roman: Still in progress.

2. Protocol actions
2.1 WG submissions
2.1.1 New items

 o draft-ietf-6lo-ap-nd-19  - IETF stream
   Address Protected Neighbor Discovery for Low-power and Lossy
   Networks (Proposed Standard)
   Token: Suresh Krishnan

Amy: I have a Discuss in the tracker; do we need to discuss that today?

Ben: I should be clearing shortly. I believe all the changes are in; I just
need to double check one of the dependencies.

Suresh: I think the authors have responded to pretty much everything, so I
don't think we need to discuss anything. Pascal just replied this morning at 7
am and I don't expect you to clear yet; take your time and get back if there's
an issue. There's also an IANA change that's going to happen here so no matter
what it's going to get updated. Keep it in IESG eval and most likely Revised ID
Needed.

 o draft-ietf-dtn-bpbis-22  - IETF stream
   Bundle Protocol Version 7 (Proposed Standard)
   Token: Magnus Westerlund

Amy: I have a few Discusses in the tracker; do we need to discuss any of those
today?

Magnus: I don't know; I haven't read them. Is there anything the Discuss
holders want to discuss? Or we'll just go to Revised ID.

Alexey: I have a request about my discuss, because I didn't have enough time to
put it in more details. Can I have until tomorrow evening to update my discuss
and expand it a little bit?

Magnus: I think that's fine, yes.

Alexey: I initially suggested I might defer the document, but it might be
better if I can just do all of it by tomorrow.

Magnus: Could you send email to the authors and chairs saying that and cc me?

Alexey: I put a Discuss placeholder but I will update it. That's fine. Thank
you.

Warren: I didn't ballot on this document; there were a couple of other
documents I didn't ballot on this round because I was traveling. Just figured
I'd mention; no need to check with me on each of them.

Magnus: Does it have enough positions currently if the discusses clear?

Warren: Yes, I think so.

Amy: If all the Discusses move to Yes or No Objection, yes you have enough
positions.

Magnus: So Revised ID Needed, then.

 o draft-ietf-dtn-bpsec-18  - IETF stream
   Bundle Protocol Security Specification (Proposed Standard)
   Token: Magnus Westerlund

Amy: I have a couple of Discusses; do we need to discuss any of those today?

Magnus: Same question here. Does anyone have anything they want to discuss?
Otherwise email is fine. [pause] Sounds like nothing. Revised ID Needed, please.

 o draft-ietf-sipcore-locparam-05  - IETF stream
   Location Source Parameter for the SIP Geolocation Header Field
   (Proposed Standard)
   Token: Adam Roach

Amy: There are no Discusses in the tracker, so unless there's an objection now
it looks like this is approved.

Adam: I think there are enough editorial comments on this we're probably going
to need a new version of it.

Amy: So Approved, Announcement to be sent, revised ID needed?

Adam: Yes, thank you.

Amy: There also looks to be a downref in it. Should we be adding RFC 3325 to
the downref registry on approval of this document?

Adam: I think that's correct.

Amy: We'll make sure that happens once that approval notice goes out.

 o draft-ietf-dprive-bcp-op-08  - IETF stream
   Recommendations for DNS Privacy Service Operators (Best Current
   Practice)
   Token: Eric Vyncke

Amy: I have a couple of Discusses; do we need to discuss any of those today?

Eric: I don't think so. Alissa and Ben have very clear Discusses that are
easily addressed. Thank you for those comments. The main author is not
available right now so put it as Revised ID Needed please.

Alexey: Can I ask Alissa to explain her last point? Basically it's text about a
document in legal jurisdictions and what kind of corporation might apply. From
the user point of view, this is information I would like to have. I understand
it's a minefield and all the legal implications can be difficult, but can you
maybe elaborate what your concern is?

Alissa: I think this is not really a technical or operational concern. It just
seems a little odd to me that we would say we have IETF consensus on this, that
you want these policies to go into detail about all the privacy laws that apply
when you're using this DNS service and that you expect these policies to be
specific about which law enforcement agencies the operator is sharing data
with. These practices are not in line with what anybody publishes today as far
as I know, so it seems a little bit strange for us as a technical organization
to set out a marker that assumes these things which don't happen today, might
be a good idea, or might not be, depending on how you think people consume
these policies, whether anyone reads them or if you'd rather have a short
focused operational policy and then the longer compliance notice that has all
this other stuff in it. The whole area related to the publication of these
policies is pretty complicated and involves the entity that's publishing the
policy having some position around what they think this policy is doing, and I
think most commercial entities think this is a legal document and not a means
of providing users with actionable information. The whole section makes me a
little queasy but that part in particular seemed like outside the scope of
something where we have the expertise to say this is the best current practice.

Alexey: Thank you. Your expanded explanation is much better. I understand the
concern.

Alissa: I probably should have put more of that in the ballot.

Alexey: If you could expand the background, that would be helpful.

Eric: It will help the authors to fix the text.

Alissa: I'll make a note of it.

Ben: I also had a point I wanted to talk about briefly that was kind of buried
in my comment section. There was a part of the document where they essentially
make the statement that it is a legitimate reason for DNS operators to inspect
DNS traffic in order to monitor for network security threats. The word
'legitimate' stuck out to me as a subjective statement that this is a value
judgment, and I wasn't sure if that was really something that had been reviewed
by the IETF, given that it's not the main focus of the document and kind of
buried in there. I'd proposed some alternate wording that had less of a value
judgment associated with it. If people think I'm being overly sensitive I'd
like to know.

Warren: As noted earlier I didn't read and ballot on some of this because I was
busy last week. I'm beginning to think maybe that was a mistake, since there's
much in this discussion that's making me twitch.

Ben: I believe the 'defer' button is still active, just saying.

Warren: I think you and Alissa have things in hand, but let me think about
that. It's probably still not too late for me to ballot.

Roman: Ben, I'd agree with not using subjective language like 'legitimate'. One
man's legitimate is another woman's illegitimate. I think what you have removes
some of the subjectivity so I think that makes sense.

Alissa: This is the section that's the subject of the first point of my
Discuss, so I'm hoping that it will get edited anyway. The text there doesn't
really make sense to me. I don't understand the point that is being made.

Ben: I did miss that was the same section that you'd been covering. Thanks for
pointing that out.

Alissa: I don't know, Eric, if you want to talk about this or wait until Sara
is back, but it's a little odd to me. The whole document is focused on the
operators of the DNS resolution service, but this says there are other people
who will have trouble, so it just seems a little mixed.

Eric: It may also be relating to the fact that the authors use the word
'operator' but this word is ambiguous in this context. It could be read
multiple ways, which isn't good. I will let the authors fix it.

Roman: There's certainly some subjectivity in the language which Ben had
alluded to. The text to me read like it's acknowledging the  continuing reality
that there is going to be some inspection that is going to happen relating to
security operations.

Adam: The section is aimed at the wrong people. This is a different set of
operators than the operators the document is ostensibly directed to.

Eric: That is exactly what I'm saying. It's ambiguous what is meant by operator
here. So you put your own meaning on it, I put my own, and it's unclear. It
needs to be fixed.

Adam: The title of the document is "Recommendations for DNS Privacy Service
Operators" so I think it's pretty clear which operators are the subject of this
document. This section does not apply to them, it applies to other operators.

Eric: It's unclear.

Alissa: We can keep an eye out for this 'legitimate' language when we get a
response on the bigger point.

Eric: I fully agree with the comments; 'legitimate' is the wrong word to be
used here.

Adam: I also have a couple of comments on this section that if it stays in, I
want to get those taken care of. But I assume this is going to be removed
because it really does feel like it doesn't belong in here.

Eric: I can only agree.

Amy: So this will stay in IESG Evaluation with a substate of Revised ID Needed.

2.1.2 Returning items

 o draft-ietf-perc-srtp-ekt-diet-11  - IETF stream
   Encrypted Key Transport for DTLS and Secure RTP (Proposed Standard)
   Token: Alexey Melnikov

Amy: I have a Discuss in the tracker; do we need to discuss it today?

Alexey: I don't think so; it seemed quite straightforward. There are also
several comments that need to be addressed. This needs a revised ID please.

2.2 Individual submissions
2.2.1 New items

 NONE

2.2.2 Returning items

 NONE

2.3 Status changes
2.3.1 New items

 NONE

2.3.2 Returning items

 NONE

3. Document actions
3.1 WG submissions
3.1.1 New items

 o draft-ietf-dots-architecture-16  - IETF stream
   Distributed-Denial-of-Service Open Threat Signaling (DOTS)
   Architecture (Informational)
   Token: Roman Danyliw

Amy: I have Consensus Unknown for this. Should it be a yes?

Roman: Yes, thank you.

Amy: Okay. There are no Discusses in the tracker so unless there's an objection
it looks like this is complete.

Roman: Thank you everyone for the review. Can you please mark it Revised ID
Needed? There are some good comments in there the authors are going to fold
into the text.

Amy: Great. You can let us know when it's ready.

3.1.2 Returning items

 NONE

3.2 Individual submissions via AD
3.2.1 New items

 NONE

3.2.2 Returning items

 NONE

3.3 Status changes
3.3.1 New items

 NONE

3.3.2 Returning items

 NONE

3.4 IRTF and Independent Submission stream documents
3.4.1 New items

 NONE

3.4.2 Returning items

 NONE

4. Working Group actions
4.1 WG creation
4.1.1 Proposed for IETF review

 o Web Packaging (wpack)

Amy: I have a Block on this charter.

Ben: It's a fairly soft block but I want to hear from the proponents. Alexey, I
don't know if you saw but I sent a slightly updated version as the call was
starting.

Alexey: No I haven't. I'd like, if we can, to come up with some suggested
changes today or tomorrow to get this unblocked. I have lots of very good
comments from others about items that should be dropped or reworded. I'd like
to send this for external review sooner rather than later and make sure all of
them are addressed by the time it comes back for final approval.

Ben: I think we can probably do that.

Ted: Ben, I posted a pointer in the jabber to some additional information about
the unsigned bundle case. The confusion there can be probably cleared up with
additional language clarifying that those are user created, and because they're
user created they don't share the same name space or URI scheme as the web
itself. It also ties into your question about efficiency, because some of this
is for efficient management of resources which you got from the web and might
be storing right now in mhtml or something. So there's probably more language
there needed but you might want to review that particular exchange and the
things linked off it.

Ben: I will try to do so. I was also pondering if even for a single user's own
internal use there would be value in some sort of integrity protection that
only they could verify, like they could use a self-sign certificate to sign the
thing. If you remember that certificate was you, you have evidence of tampering
or protection from tampering, depending on where you're sending the stuff.

Ted: That's a useful question. A lot of the systems we're talking bout here
don't necessarily have the mechanisms to do that right now but may be something
to include as an option so when we are talking about systems which could
generate a self sign certificate and do object security it would work. Again,
it's not clear to me personally what the connection here would be to the
certificates that are already used for things like mime.

Ben: I don't intend to hold this up for a long time.

Alissa: I have a question. This thread from last night about the parallel work
in the HTTP working group; can you summarize what the status is there? We
expect two different efforts that won't end up using the same crypto? What is
the status there? I want to make sure the IESG has an understanding of what's
going on here.

Alexey: I think I agree that it's not clear whether making the two efforts the
same is ... it might cause a delay. It's not clear whether this is necessary.
The way I wanted to address this is by saying the WG will cooperate with
httpbis on messages and make sure much of it can be reused.

Alissa: So you'll add some words to the charter about this?

Alexey: Yeah.

Alissa: Okay. Sounds good.

Amy: With that I think we can move on.

 o WebTransport (webtrans)

Amy: We have a couple of blocks. Do we need to discuss those today?

Barry: We do not. The proponents are discussing it. They unfortunately dropped
the IESG off the copy list for it and I asked them to put them back on when
there's something substantive. I'm in conversation with the proponents and
we'll get that sorted out.

Amy: So similar to the last one, this is in a holding pattern awaiting
instructions from you, Barry.

 o Applications Doing DNS (add)

Amy: I have no Blocks, so is this ready for external review? Unless there's an
objection, it is.

Barry: I want to make sure the change I made to the informational document
ballot is okay with the people who commented on that. The change was proposed
by Ekr. Ben and Adam in particular, are there other things you want me to do to
the charter before we send it out? Ben, you have a couple of editorial things.
Ben and Adam in particular, are you okay with having this go out for external
review modulo a few editorial things?

Ben: Yes.

Adam: Assuming this is the change Ekr proposed, this is the minimal set of
changes that I'm all right with. I had a couple of other comments that I think
could be incorporated but I'm not going to die on that hill.

Barry: Send me an off list email for the main points you think we should tweak.

Adam: They're in my ballot, butI'll reiterate in shorter form.

Barry: I just want to make sure I get the main points.

Murray: The charter variably calls itself "adaptive DNS discovery" and
"applications doing DNS"

Barry: The charter calls itself "adaptive DNS discovery". The "applications
doing DNS" name might show up because that's the name of the BoF that this is
spun off from. That will all get sorted out when it's chartered.

Mirja: Do you think this needs something further before it goes for external
review, or can it start external review?

Adam: I'd prefer to go ahead and tweak it before external review.

Barry: That's my approach as well.

Ben: Those things you said are editorial from me, I'm only mostly sure they're
editorial. There may be a subtle technical distinction involved. Please don't
blindly take it.

Barry: I'll have a look at it and get back to you if I need to.

 o Trustworthy Multipurpose Remote ID (tmrid)

Amy: I have some blocks for this charter. Do we need to discuss those?

Eric: I don't know. I have just sent, one or two hours before this telechat, a
revised charter that I believe fixes Ben and Magnus's issues, as well as a
couple of others. Alissa was kind enough to improve the draft charter. If Ben
and Magnus could have a look and see whether they are okay with the revision,
we can go for external review.

Ben: My calendar claims that they are having a virtual meeting in about three
hours, so I will try to look at things before then. It would be a shame for
them to have to spend their time discussing the charter and not technology.

Magnus: I will have trouble reviewing in that short timeline; I think by Monday
is the earliest I can really review it.

Eric: The only thing is that on Monday I will be on the beach, so external
review will be a low priority for me. Is there any chance you can do it before
Friday?

Magnus: Probably not. I can try but I don't think so.

Eric: I understand. I will try not to forget to contact the Secretariat on
Monday and ask for external review, if you clear your block.

4.1.2 Proposed for approval

 o Reliable and Available Wireless (raw)

Amy: There are no blocks, so unless there's an objection now it looks like this
charter is approved and the WG will be created.

Deborah: I had a last minute comment from Ben to clarify and I think I'll make
some tweaks as he suggested. I'll let you know when it's ready to go.

4.2 WG rechartering
4.2.1 Under evaluation for IETF review

 o QUIC (quic)

Amy: There are no blocks, so unless there's an objection now it looks like this
is ready. Does it need to go for external review?

Magnus: I don't really know what level it is. I'm fine with putting it for
review because it's changed back and forth and everyone should see. I'd think
send it out.

Amy: Okay. This is ready to go out for external review.

Mirja: Sorry I'm super late. The intention of this charter was only to fix some
obvious small things so I don't think we need external review. I just wanted to
state my opinion in case others have the same feeling.

Warren: Nobody is likely to get wildly annoyed if it doesn't go out for
external review. If not I don't think we need to.

Magnus: My state is more, why not?

Warren: As long as the WG can continue getting work done, there's no harm in it
I guess. Okay.

Mirja: I'm fine with 'why not,' but my only concern is we'll see the same thing
that happened on the QUIC list; people will start discussing everything that
should be rechartered. This was intended to only have an interim change to only
fix the things that need fixing, with intention to have a real recharter in the
summer.

Alissa: You can put some words in the announcement that goes out to frame it. I
just think given the level of interest of people outside the IETF who are
paying attention and want to understand what is the next set of steps that's
going to happen here, I do think it's good to send it for external review.

Mirja: But I think that's the confusing part. It doesn't change much, only
small things, and people will ask why things aren't in there.

Alissa: Maybe you can write some sentences to explain.

Mirja: I think that would be useful.

4.2.2 Proposed for approval

 NONE

5. IAB news we can use

Mirja: No news.

6. Management issues

6.1 Designated Experts for RFC 8471 [IANA #1156118] (Roman Danyliw)

Amy: Roman has identified Andrei Popov and Dirk Balfanz. Any objection to
approving these two as designated experts for this registry? Hearing none, so
we will send official note to IANA.

6.2 [IANA 1159844] renewing early allocations for
draft-ietf-bess-evpn-bum-procedure-updates (IANA)

Amy: The IESG needs to approve to extend the early allocations.

Michelle: The authors indicated the document is moving along but we just need
to keep the registrations in there until it gets to the finish line.

Amy: Any objection to renewing? Hearing none, so we'll send note to IANA.

6.4 Retreat timing (Alissa Cooper)

The IESG discussed Doodle results for possible retreat dates in April and June,
and whose conflicts might be moveable. Alissa hopes to have dates finalized
within ten days; looking at the June dates with the IESG first and potentially
IAB second.

7. Any Other Business (WG News, New Proposals, etc.)

Suresh: Amy, I tried to send a conflict review response but the message hasn't
gone out. Is there something I need to do? I cycled it to Approved,
announcement to be sent and I don't know if it triggered something for you.

Amy: It's supposed to but it may not have. Can you email?

Suresh: I'll send a note. Thanks.

6.3 Executive Session: ISOC BoT confirmation (Alissa Cooper)

6.5 Appeal Discussion