Each access type must have a unique name. This name appears in the
access-type parameter in the message/external-body content-type
header field, and must conform to MIME content type parameter syntax.
3.1.2. Mechanism Specification Requirements
All of the protocols, transports, and procedures used by a given
access type must be described, either in the specification of the
access type itself or in some other publicly available specification,
in sufficient detail for the access type to be implemented by any
competent implementor. Use of secret and/or proprietary methods in
access types are expressly prohibited. The restrictions imposed by
RFC 1602 on the standardization of patented algorithms must be
respected as well.
3.1.3. Publication Requirements
All access types must be described by an RFC. The RFC may be
informational rather than standards-track, although standard-track
review and approval are encouraged for all access types.
3.1.4. Security Requirements
Any known security issues that arise from the use of the access type
must be completely and fully described. It is not required that the
access type be secure or that it be free from risks, but that the
known risks be identified. Publication of a new access type does not
require an exhaustive security review, and the security
considerations section is subject to continuing evaluation.
Additional security considerations should be addressed by publishing
revised versions of the access type specification.
3.2. Registration Procedure
Registration of a new access type starts with the construction of a
draft of an RFC.
RFC 2048 MIME Registration Procedures November 1996
3.2.1. Present the Access Type to the Community
Send a proposed access type specification to the "ietf-
types@iana.org" mailing list for a two week review period. This
mailing list has been established for the purpose of reviewing
proposed access and media types. Proposed access types are not
formally registered and must not be used.
The intent of the public posting is to solicit comments and feedback
on the access type specification and a review of any security
considerations.
3.2.2. Access Type Reviewer
When the two week period has passed, the access type reviewer, who is
appointed by the IETF Applications Area Director, either forwards the
request to iana@isi.edu, or rejects it because of significant
objections raised on the list.
Decisions made by the reviewer must be posted to the ietf-types
mailing list within 14 days. Decisions made by the reviewer may be
appealed to the IESG.
3.2.3. IANA Registration
Provided that the access type has either passed review or has been
successfully appealed to the IESG, the IANA will register the access
type and make the registration available to the community. The
specification of the access type must also be published as an RFC.
Informational RFCs are published by sending them to "rfc-
editor@isi.edu" (please follow the instructions to RFC authors [RFC-
1543]).
3.3. Location of Registered Access Type List
Access type registrations will be posted in the anonymous FTP
directory "ftp://ftp.isi.edu/in-notes/iana/assignments/access-types/"
and all registered access types will be listed in the periodically
issued "Assigned Numbers" RFC [currently RFC-1700].
3.4. IANA Procedures for Registering Access Types
The identity of the access type reviewer is communicated to the IANA
by the IESG. The IANA then only acts in response to access type
definitions that either are approved by the access type reviewer and
forwarded by the reviewer to the IANA for registration, or in
response to a communication from the IESG that an access type
definition appeal has overturned the access type reviewer's ruling.
RFC 2048 MIME Registration Procedures November 1996
=9= |
