c/ietf-draft-analyzer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
9a0dc899a8391bd046c7f125f7072677c5405198
ietf-draft-analyzer/workspace/draft-team/cycles/dynamic-trust-and-reputation/50-reviews-v1/architecture.md
Christian Nennemann 2506b6325a
Some checks failed
CI / test (3.11) (push) Failing after 1m37s
Details
CI / test (3.12) (push) Failing after 57s
Details
feat: add draft data, gap analysis report, and workspace config
2026-04-06 18:47:15 +02:00

1.4 KiB
Raw Blame History

Architecture Review

Findings

Medium: scope discipline is good, but the draft risks under-specifying the portable core

The draft correctly avoids becoming a universal reputation system. The remaining risk is that so much is left to local policy that the portable assertion core becomes too thin. The architecture should define a firmer minimum portable envelope.

Medium: the trust-event object may be more than the first revision needs

The draft has both trust events and trust assertions. That layering is sensible, but the architecture should say more directly whether trust-event interoperability is a primary goal or merely a feeder model for assertions. Otherwise readers may assume both layers are equally mature.

Medium: revocation and supersession deserve a cleaner conceptual split

The draft treats revocation as withdrawal or supersession, but those are not always the same. One invalidates a prior assertion; the other replaces it with a newer one. This distinction should be sharper.

Open questions

  • Is the first implementable milestone portable assertions only, with trust events described as optional supporting input?
  • Should revocation be kept as a general umbrella term or split explicitly into revoke and supersede actions?

Residual risk

The document has good boundaries. The main architectural risk is not scope creep but insufficient commitment to a concrete portable core.

Reference in New Issue View Git Blame Copy Permalink