Re: "Discuss" criteria

Dave is probably correct that the specific criteria are of broader interestthan just ADs, WG chairs, editors, and process wonks, and might become evenmore perfect with broader review, but that's another issue.
And, since the criteria are public, I'm sure the IESG would be interested infeedback on the criteria, especially now that WGs and




Meta-point:

     Something quite basic that is missing from the draft on
     Discuss Criteria is a requirement that any Discuss not only
     explain its precise normative basis, but that it give a clear
     statement of what actions must be taken to clear the Discuss.


From the draft:

* The specification is impossible to implement due to technical or clarityissues.


When this assertion is made, is it sufficient to cite existing implementations

based on the current version of the specification? Is the AD at least requiredto explain the assertion in detail?

* The protocol has technical flaws that will prevent it from workingproperly, or the description is unclear in such a way that the reader cannotunderstand it without ambiguity.


Will demonstrations of interoperability be sufficient to counter this claim?

* It is unlikely that multiple implementations of the specification wouldinteroperate, usually due to vagueness or incomplete specification.


Will demonstrations of interoperability be sufficient to counter this claim?

* Widespread deployment would be damaging to the Internet or an enterprisenetwork for reasons of congestion control, scalability, or the like.

Beyond the simple assertion of this claim, what requirements are there for theAD to substantiate it?

* The specification would create serious security holes, or the describedprotocol has self-defeating security vulnerabilities (e.g. a protocol thatcannot fulfill its purpose without security properties it does not provide).

* It would present serious operational issues in widespread deployment, byfor example neglecting network management or configuration entirely.

There is often a failure to distinguish between new and peculiar problemscreated by a particular specification, versus general problems that already exist.

A classic example of this is citing basic DNS problems, for specifications thatare merely consumers of the DNS and, hence, are not creating any new problems.

* Failure to conform with IAB architecture (e.g., RFC1958 (Carpenter, B.,“Architectural Principles of the Internet,” June 1996.) [2], or UNSAF(Daigle, L., “IAB Considerations for UNilateral Self-Address Fixing (UNSAF)Across Network Address Translation,” November 2002.) [3]) in the absence ofany satisfactory text explaining this architectural decision.


This is an interesting item.

1. At what point in time did publication of IAB preferences take on the forceof law?

2. Note that the list gives some examples, but does not supply a complete list.How are working groups to know which IAB documents have been declared normativestandards for all IETF work and which have not?

3. Why is the IAB allowed to create normative standards that cover all IETFwork, without requiring that they first gain IETF-wide approval?

* The specification was not properly vetted against the I-D Checklist.Symptoms include broken ABNF or XML, missing Security Considerations, and soon.

* The draft omits a normative reference necessary for its implementation, orcites such a reference merely informatively rather than normatively.

* The document does not meet criteria for advancement in its designatedstandards track, for example because it is a document going to Full Standardthat contains 'down references' to RFCs at a lower position in the standardstrack, or a Standards Track document that contains only informationalguidance.

* IETF process related to document advancement was not carried out; e.g.,there are unresolved and substantive Last Call comments which the documentdoes not address, the document is outside the scope of the charter of the WGwhich requested its publication, and so on.

* The IETF as a whole does not have consensus on the technical approach ordocument. There are cases where individual working groups or areas haveforged rough consensus around a technical approach which does not garner IETFconsensus. An AD may DISCUSS a document where she or he believes this to bethe case. While the Area Director should describe the technical area whereconsensus is flawed, the focus of the DISCUSS and its resolution should be on
 how to forge a cross-IETF consensus.

This is perhaps the scariest of the criteria. It says that a knowledgeable,motivated constituency can spend months on solving a problem that it needs tohave solved, and then others who have not participated in the work can comealong and sabotage it.

Yes, I know that is not the intend of this criterion, but it is what the effectwill be -- and in some cases already is.

Once upon a time, the rule in the IETF was that working group consensus was whatmattered, absent a clear technical basis for saying that a specification "wouldnot work".

That is quite different from now saying that after a working group is done wesomehow must be assured that the specification has acquired an IETF-widepolitically correct acceptance.

If this last criterion is meant to be taken as it is stated, there is a prettystraightforward basis for believing that ever bringing new work to the IETF is avery questionable decision.

The criterion presumes that the IETF, as a whole, must agree on the One TrueSolution to a problem.

In the IETF's history, that has been a requirement in some special cases, butnot others. The default view has been to let the market decide among choices.Requirement for a single choice has been asserted only when there is a strongargument that having multiple choices will cause damage.


d/
--

  Dave Crocker
  Brandenburg InternetWorking
  bbiw.net



_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf