summaryrefslogtreecommitdiff
path: root/doc/rfc/rfc3933.txt
blob: 8f4fc417ff2c897460db2b189f668d78c3ccbcf6 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
Network Working Group                                         J. Klensin
Request for Comments: 3933                                    S. Dawkins
BCP: 93                                                    November 2004
Category: Best Current Practice


                  A Model for IETF Process Experiments

Status of this Memo

   This document specifies an Internet Best Current Practices for the
   Internet Community, and requests discussion and suggestions for
   improvements.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (C) The Internet Society (2004).

Abstract

   The IETF has designed process changes over the last ten years in one
   of two ways: announcement by the IESG, sometimes based on informal
   agreements with limited community involvement and awareness, and
   formal use of the same mechanism used for protocol specification.
   The first mechanism has often proven to be too lightweight, the
   second too heavyweight.

   This document specifies a middle-ground approach to the system of
   making changes to IETF process, one that relies heavily on a "propose
   and carry out an experiment, evaluate the experiment, and then
   establish permanent procedures based on operational experience" model
   rather than those previously attempted.

Table of Contents

   1.  Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 2
   2.  Background and Specification . . . . . . . . . . . . . . . . . 2
   3.  Security Considerations  . . . . . . . . . . . . . . . . . . . 5
   4.  Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 5
   5.  References . . . . . . . . . . . . . . . . . . . . . . . . . . 5
       5.1.  Normative Reference. . . . . . . . . . . . . . . . . . . 5
       5.2.  Informative References . . . . . . . . . . . . . . . . . 5
   6.  Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . 6
       Full Copyright Statement . . . . . . . . . . . . . . . . . . . 7







Klensin & Dawkins        Best Current Practice                  [Page 1]
^L
RFC 3933          A Model for IETF Process Experiments     November 2004


1.  Introduction

   This document specifies a middle-ground approach to the system of
   making changes to IETF process, one that relies heavily on a "propose
   and carry out an experiment, evaluate the experiment, and then
   establish permanent procedures based on operational experience" model
   rather than those previously attempted.

2.  Background and Specification

   Since the 1992 changes documented in [RFC1396], the IETF has used two
   mechanisms for process changes.

   1. IESG has adopted a number of procedural changes on its own
      initiative and documented them informally, utilizing the wide
      discretion implicitly granted to them by [RFC2026].  This provided
      a lightweight mechanism for change, but the lightness came with a
      cost: There was sometimes too little alignment with the larger
      IETF community.

   2. The IETF has also used the [RFC2026] protocol standards
      development process to identify a community of interest, hold one
      or more BoFs, charter a working group, discuss proposed changes
      within the community, develop IETF-wide consensus on the changes,
      and publish (usually) Best Current Practice specifications.  This
      provided full community involvement but also came with a cost in
      flexibility.  The IETF does not change its formal processes often
      (the IPR clarifications in [RFC3667, RFC3668] are the first
      documented changes to [RFC2026] since 1996), and the community is
      understandably reluctant to permanently alter or extend formally
      adopted processes with untried new procedures.

   There is a middle ground between BCP process updates and informal
   agreements.  This document specifies regularizing and formalizing the
   informal IESG mechanisms listed in 1 above as a means of moving
   forward with procedural changes that might prove valuable.

   The mechanisms outlined here add to the IESG's range of tools for
   dealing with process issues on an ongoing basis.  They supplement the
   existing tools rather than attempting to replace them with a single
   "magic bullet".  The choice of using the procedure outlined in this
   document or other mechanisms available to the IESG and the community
   -- present or future -- remains in the IESG's hands.  If the IESG
   does not exercise this discretion wisely, this document provides no
   additional remedies.






Klensin & Dawkins        Best Current Practice                  [Page 2]
^L
RFC 3933          A Model for IETF Process Experiments     November 2004


   Some have interpreted the current procedures as giving the IESG all
   of the capabilities outlined here.  If this were true, this document
   only encourages the IESG to use this type of mechanism more
   frequently in preference to less streamlined ones, and to more
   explicitly document its actions and decisions.

   This specification permits and encourages the IESG to adopt and
   institute "process experiments" by using the following procedure:

   1. An I-D is written describing the proposed new or altered
      procedure.  A statement of the problem expected to be resolved is
      desirable but not required (the intent is to keep the firm
      requirements for such an experiment as lightweight as possible).
      Similarly, specific experimental or evaluative criteria, although
      highly desirable, are not required -- for some of the process
      changes we anticipate, having the IESG reach a conclusion at the
      end of the sunset period that the community generally believes
      things to be better (or worse) will be both adequate and
      sufficient.  The I-D must state an explicit "sunset" timeout
      typically, not to exceed one year after adoption.

   2. If the IESG believes the proposal is plausible and plausibly
      useful, a four-week IETF Last Call is initiated.  The IESG can
      institute whatever procedures it wishes to make this determination
      and to avoid denial of service attacks from large numbers of
      spurious or unimportant proposals.  In particular, they might
      institute a procedure requiring a number of endorsements, or
      endorsements of a particular type, before the IESG considers the
      proposal.  The IESG is, however, expected to understand that
      procedures or review processes that act as a mechanism for
      significant delays do not fall within the intent of this
      specification.

   3. At the conclusion of the Last Call, the IESG reevaluates the
      plausibility and appropriateness of the proposal.  If they
      conclude that the proposed experiment is appropriate, a second I-D
      is generated (either by the IESG or by the original authors with
      IESG advice) that cleans up any definitional issues exposed in the
      Last Call and that explicitly identifies and responds to issues
      raised during the Last Call.

   4. The document and experiment are then announced, the experiment is
      begun, and the document is forwarded for publication as an
      Experimental RFC.







Klensin & Dawkins        Best Current Practice                  [Page 3]
^L
RFC 3933          A Model for IETF Process Experiments     November 2004


   The IESG is explicitly authorized to use this mechanism (based on
   Experimental RFCs) to gain experience with proposed changes to BCP
   specifications.  There is no requirement to approve a BCP
   specification for the experiment until the experiment is found to
   have value.

   The IESG could, of course, reach a "bad idea" conclusion at any stage
   in this process and abandon the experiment.  It might recommend
   publication of the experimental document, with a discussion of why it
   was a bad idea, but is not required to do so.  The list above is
   deliberately vague about where the I-Ds come from: a WG, design team,
   individual contribution, editing group, or other mechanism could be
   used in the first and/or third steps, but no specific mechanisms are
   required, and the IESG is explicitly permitted to generate such
   proposals internally.

   In each case, the IESG's decision to go forward (or not) with a
   procedural experiment, or the steps leading up to one, is expected to
   reflect their judgment of the existence of rough consensus in the
   community.  That judgment may be appealed using the usual procedures,
   but the IESG and the community are reminded that an experimental
   attempt to try something for a fixed period is typically a better
   engineering approach than extended philosophical discussion without
   any experience to back it up.

   Nothing above is to be construed as requiring an IETF-wide attempt
   for any given process experiment.  A proposal for such an experiment
   may specify selected areas, selected working groups, working groups
   meeting some specific criteria (e.g., those created after a
   particular time or of a specified age), or be specific in other ways.

   At or before the end of the "sunset" timeout, the IESG would either
   revise (or cause to be revised) the document into a BCP RFC or the
   procedure would expire and, presumably, not be tried again unless
   something changed radically.  A document describing why the
   experiment had succeeded or failed would be desirable but could not,
   realistically, be a requirement.  If the procedure went to BCP, the
   BCP would reflect what we would call "operational experience" in the
   real world.

   We note that, if the procedures the IESG has adopted (and the
   procedural exceptions it has made) over the last decade are
   legitimate, then the IESG has the authority to institute the changes
   specified here by bootstrapping this process.







Klensin & Dawkins        Best Current Practice                  [Page 4]
^L
RFC 3933          A Model for IETF Process Experiments     November 2004


3.  Security Considerations

   This document specifies a mechanism for evolving IETF procedures.  It
   does not raise or consider any protocol-specific security issues.  In
   considering experimental changes to procedures, the IESG should, of
   course, exercise due caution that such changes not reduce the quality
   of security review and consideration for protocols or, at least, that
   the process experiment proposals contain early detection and
   correction mechanisms should quality deterioration occur.

4.  Acknowledgements

   The first revision of this document benefited significantly from
   suggestions and comments from Avri Doria, Margaret Wasserman, and
   Harald Alvestrand, and from discussions with the General Area
   Directorate and at its open meeting during IETF 59.  After mailing
   list discussion, considerable explanatory material was removed to a
   separate document for the current version.

   The first version of this document was posted as an Internet Draft on
   February 7, 2004.

5.  References

5.1.  Normative References

   [RFC2026] Bradner, S., "The Internet Standards Process -- Revision
             3", BCP 9, RFC 2026, October 1996.

5.2.  Informative References

   [RFC1396] Crocker, S., "The Process for Organization of Internet
             Standards Working Group (POISED)", RFC 1396, January 1993.

   [RFC3667] Bradner, S., "IETF Rights in Contributions", BCP 78, RFC
             3667, February 2004.

   [RFC3668] Bradner, S., "Intellectual Property Rights in IETF
             Technology", BCP 79, RFC 3668, February 2004.












Klensin & Dawkins        Best Current Practice                  [Page 5]
^L
RFC 3933          A Model for IETF Process Experiments     November 2004


6.  Authors' Addresses

   John C Klensin
   1770 Massachusetts Ave, #322
   Cambridge, MA  02140
   USA

   Phone: +1 617 491 5735
   EMail: john-ietf@jck.com


   Spencer Dawkins
   1547 Rivercrest Blvd.
   Allen, TX  75002
   USA

   Phone: +1 469 330 3616
   EMail: spencer@mcsr-labs.org

































Klensin & Dawkins        Best Current Practice                  [Page 6]
^L
RFC 3933          A Model for IETF Process Experiments     November 2004


Full Copyright Statement

   Copyright (C) The Internet Society (2004).

   This document is subject to the rights, licenses and restrictions
   contained in BCP 78, and at www.rfc-editor.org, and except as set
   forth therein, the authors retain all their rights.

   This document and the information contained herein are provided on an
   "AS IS" basis and THE CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS
   OR IS SPONSORED BY (IF ANY), THE INTERNET SOCIETY AND THE INTERNET
   ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED,
   INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE
   INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED
   WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.

Intellectual Property

   The IETF takes no position regarding the validity or scope of any
   Intellectual Property Rights or other rights that might be claimed to
   pertain to the implementation or use of the technology described in
   this document or the extent to which any license under such rights
   might or might not be available; nor does it represent that it has
   made any independent effort to identify any such rights.  Information
   on the ISOC's procedures with respect to rights in ISOC Documents can
   be found in BCP 78 and BCP 79.

   Copies of IPR disclosures made to the IETF Secretariat and any
   assurances of licenses to be made available, or the result of an
   attempt made to obtain a general license or permission for the use of
   such proprietary rights by implementers or users of this
   specification can be obtained from the IETF on-line IPR repository at
   http://www.ietf.org/ipr.

   The IETF invites any interested party to bring to its attention any
   copyrights, patents or patent applications, or other proprietary
   rights that may cover technology that may be required to implement
   this standard.  Please address the information to the IETF at ietf-
   ipr@ietf.org.

Acknowledgement

   Funding for the RFC Editor function is currently provided by the
   Internet Society.







Klensin & Dawkins        Best Current Practice                  [Page 7]
^L