Time Zone Data Distribution Service
RFC 7808
Note: This ballot was opened for revision 09 and is now closed.
(Ben Campbell) Yes
Comment (2015-07-07 for -09)
No email
send info
send info
Thank you for the privacy considerations.
(Spencer Dawkins) Yes
Barry Leiba Yes
(Jari Arkko) No Objection
(Alia Atlas) No Objection
Deborah Brungard No Objection
(Benoît Claise) No Objection
Comment (2015-07-06 for -09)
No email
send info
send info
A detail, really. "Discussion of this document has taken place on the tzdist working group mailing list <tzdist@ietf.org>." is this a new practice for WG document?
Alissa Cooper No Objection
Comment (2015-07-08 for -09)
No email
send info
send info
Well-written spec. And some info about defeating traffic analysis, what a novelty!
(Stephen Farrell) No Objection
Comment (2015-07-08 for -09)
No email
send info
send info
- 62 pages! urgh;-) But it's actually a pretty good spec, just be nice if it were shorter. - 4.2.1.2 - I don't get why HTTP authentication (401 etc) is being used here. Is it that you want personalisation but you're hacking that via HTTP authentication? I'd argue that not trying for that via the TXT RR scheme would be better, that is, to say that you don't get personalisation when you use a TXT RR to get the path. Or just say the server can try set a cookie if it wants personalisation. I can't see that clients here will sensibly handle HTTP authentication in any case (well, not unless you adopt something like RFC7486:-) - for example, how would a HTTP UA pick a username here? (The same comment applies to all HTTP authentication uses in the draft.) - 4.2.1.3 - maybe useful to point forward to section 8 here and/or say that you can't go from TLS to port 80 via the .well_known 3xx. - 4.2.2.1 - it'd have been nice to indicate the amount of data that'd be downloaded here just so's some developer doesn't make a bad assumption about when it's ok to do this. - section 8, 2ndary-primary MUST use TLS - thanks! And for the SHOULD use for client-server. - section 9: thanks!
(Brian Haberman) No Objection
(Joel Jaeggli) No Objection
Comment (2015-07-08 for -09)
No email
send info
send info
Qin Wu performed the opsdir review it looks like change have been incorporated into -10
(Terry Manderson) No Objection
(Kathleen Moriarty) No Objection
Comment (2015-07-08 for -09)
No email
send info
send info
I support Stephen's comments and do not have any additional ones to add. Thanks for your work on this draft and the security & privacy considerations.
Alvaro Retana No Objection
(Martin Stiemerling) No Objection
Comment (2015-07-09 for -09)
No email
send info
send info
Thank you for the elaborated security and privacy considerations!