attachment
<div dir="ltr"><div><div><div><div><div><div>Hi Mike,<br><br></div>Very good points. TLS means the system must have a reasonable<br></div>notion of network time. And TLS is certainly a must-have for firmware<br></div>or most other Resource-related operations.<br><br></div>I'd be happy to get some input on the Security Considerations section<br></div>about the importance of meaningful network time (e.g., for both session <br>restart and certificate validation/revocation).<br><br></div><div>I was feeling very queasy about downgrading required attributes from<br></div><div>IPP Everywhere, which ought to be our "floor" for printers with System<br></div><div>Service. Shouldn't we require IPP Everywhere in System Service?<br><br></div><div>Cheers,<br></div><div>- Ira<br><br></div><div><br></div></div><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr">Ira McDonald (Musician / Software Architect)<br>Co-Chair - TCG Trusted Mobility Solutions WG<br>Chair - Linux Foundation Open Printing WG<br>Secretary - IEEE-ISTO Printer Working Group<br>Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG<br>IETF Designated Expert - IPP & Printer MIB<br>Blue Roof Music / High North Inc<br><a style="color:rgb(51,51,255)" href="http://sites.google.com/site/blueroofmusic" target="_blank">http://sites.google.com/site/blueroofmusic</a><br><a style="color:rgb(102,0,204)" href="http://sites.google.com/site/highnorthinc" target="_blank">http://sites.google.com/site/highnorthinc</a><br>mailto: <a href="mailto:blueroofmusic@gmail.com" target="_blank">blueroofmusic@gmail.com</a><br>Jan-April: 579 Park Place Saline, MI 48176 734-944-0094<br>May-Dec: PO Box 221 Grand Marais, MI 49839 906-494-2434<br><br><div style="display:inline"></div><div style="display:inline"></div><div style="display:inline"></div><div></div><div></div><div></div><div></div></div></div></div></div></div>
<br><div class="gmail_quote">On Sun, Oct 2, 2016 at 1:09 PM, Michael Sweet <span dir="ltr"><<a href="mailto:msweet@apple.com" target="_blank">msweet@apple.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Ira,<br>
<span class=""><br>
> On Oct 2, 2016, at 11:41 AM, Ira McDonald <<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>> wrote:<br>
><br>
> Hi,<br>
><br>
> The System Service requirement for a running tick counter and<br>
> for an actual RTC w/ meaningful time would prevent the use of any<br>
> Resource operations by some printers.<br>
<br>
</span>How exactly?<br>
<br>
TLS basically requires the date and time to be set to generate an X.509 certificate or do validation of certificates in things like firmware updates and applications.<br>
<span class=""><br>
> Also, the firmware update<br>
> and graceful restart abilities, which move away from traditional<br>
> vendor- and model-specific approaches and improve Managed<br>
> Print Service compatibility.<br>
><br>
> Questions:<br>
><br>
> (1) Should we reduce the various "date-time-at-xxx" attributes to<br>
> RECOMMENDED?<br>
> -- Comment - they are REQUIRED in IPP Everywhere<br>
<br>
</span>Given that we require TLS, we are requiring a real-time clock of some sort and thus we should make these REQUIRED (better for accounting).<br>
<span class=""><br>
> (2) Should we allow the various "time-at-xxx" attributes to be<br>
> trivial implementations (i.e., without meaningful tick counter)?<br>
> -- Comment - they are REQUIRED in RFC2911/RFC2911bis,<br>
> with some ambiguity about implementation<br>
<br>
</span>These should follow the same rules as for Jobs - copy the printer-up-time/system-up-time value while running, report 0 if the time is before the service started.<br>
<span class=""><br>
> Note that I've personally been a proponent of required RTC<br>
> with meaningful date/time for years, so I'm conflicted about<br>
> bringing this subject up.<br>
<br>
</span>I think that ship sailed as soon as we required TLS. And for resource validation we need a date and time as well.<br>
<br>
I think the only ambiguity is "how does the date and time get set", which should be talked about in security considerations since the wrong date/time can have consequences. (thus the work in the IETF for a secure version of NTP)<br>
<span class="im HOEnZb"><br>
<br>
><br>
> WDYT?<br>
><br>
> Cheers,<br>
> - Ira<br>
><br>
> Ira McDonald (Musician / Software Architect)<br>
> Co-Chair - TCG Trusted Mobility Solutions WG<br>
> Chair - Linux Foundation Open Printing WG<br>
> Secretary - IEEE-ISTO Printer Working Group<br>
> Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG<br>
> IETF Designated Expert - IPP & Printer MIB<br>
> Blue Roof Music / High North Inc<br>
> <a href="http://sites.google.com/site/blueroofmusic" rel="noreferrer" target="_blank">http://sites.google.com/site/<wbr>blueroofmusic</a><br>
> <a href="http://sites.google.com/site/highnorthinc" rel="noreferrer" target="_blank">http://sites.google.com/site/<wbr>highnorthinc</a><br>
> mailto: <a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a><br>
> Jan-April: 579 Park Place Saline, MI 48176 <a href="tel:734-944-0094" value="+17349440094">734-944-0094</a><br>
> May-Dec: PO Box 221 Grand Marais, MI 49839 <a href="tel:906-494-2434" value="+19064942434">906-494-2434</a><br>
><br>
</span><div class="HOEnZb"><div class="h5">> ______________________________<wbr>_________________<br>
> ipp mailing list<br>
> <a href="mailto:ipp@pwg.org">ipp@pwg.org</a><br>
> <a href="https://www.pwg.org/mailman/listinfo/ipp" rel="noreferrer" target="_blank">https://www.pwg.org/mailman/<wbr>listinfo/ipp</a><br>
<br>
______________________________<wbr>___________________________<br>
Michael Sweet, Senior Printing System Engineer<br>
<br>
</div></div></blockquote></div><br></div>