This document is an Internet-Draft and is subject to all provisions of Section 3 of RFC 3667. By submitting this Internet-Draft, each author represents that any applicable patent or other IPR claims of which he or she is aware have been or will be disclosed, and any of which he or she become aware will be disclosed, in accordance with RFC 3668.
Internet-Drafts are working documents of the Internet Engineering Task Force (IETF), its areas, and its working groups. Note that other groups may also distribute working documents as Internet-Drafts.
Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."
The list of current Internet-Drafts can be accessed at http://www.ietf.org/ietf/1id-abstracts.txt.
The list of Internet-Draft Shadow Directories can be accessed at http://www.ietf.org/shadow.html.
This Internet-Draft will expire on August 4, 2005.
Copyright (C) The Internet Society (2005).
This document describes the "tag" Uniform Resource Identifier (URI) scheme. Tag URIs (also known as "tags") are designed to be unique across space and time while being tractable to humans. They are distinct from most other URIs in that there is no authoritative resolution mechanism. A tag may be used purely as an entity identifier. Furthermore, using tags has some advantages over the common practice of using "http" URIs as identifiers for non-HTTP-accessible resources.
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.
The views and opinions of authors expressed herein do not necessarily state or reflect those of the World Wide Web Consortium, and may not be used for advertising or product endorsement purposes. This proposal has not undergone technical review within the Consortium and must not be construed as a Consortium recommendation.
Information about the tag URI scheme additional to this document -- motivation, genesis and discussion -- can be obtained from http://www.taguri.org.
Earlier drafts of this document have been discussed on email@example.com. The authors welcome further discussion and comments.
2. Tag Syntax and Rules
2.1 Tag Syntax and Examples
2.2 Rules for Minting Tags
2.3 Resolution of Tags
2.4 Equality of Tags
3. Security Considerations
4. IANA Considerations
5.1 Normative References
5.2 Informative References
§ Authors' Addresses
§ Intellectual Property and Copyright Statements
A tag is a type of Uniform Resource Identifier (URI)
Berners-Lee, T., Fielding, R. and L. Masinter, Uniform Resource Identifier (URI): Generic Syntax, January 2005.
designed to meet the following requirements:
For example, the above requirements may apply in the case of a user who wants to place identifiers on their documents:
- The user wants to be reasonably sure that the identifier is unique. Global uniqueness is valuable because it prevents identifiers from becoming unintentionally ambiguous.
- The identifiers should be tractable to the user, who should, for example, be able to mint new identifiers conveniently, to memorise them, and to type them into emails and forms.
- The user does not want to have to communicate with anyone else in order to mint identifiers for their documents.
- The user wants to avoid identifiers that might be taken to imply the existence of an electronic resource accessible via a default resolution mechanism, when no such electronic resource exists.
Existing identification schemes satisfy some but not all of the requirements above. For example:
UUIDs Leach, P. and R. Salz, UUIDs and GUIDs, 1997., , Information technology - Open Systems Interconnection - Remote Procedure Call (RPC), 1996. are hard for humans to read.
OIDs , Specification of abstract syntax notation one (ASN.1), 1988., Mealling, M., A URN Namespace of Object Identifiers, February 2001. and Digital Object Identifiers Paskin, N., Information Identifiers, April 1997. require entities to register as naming authorities, even in cases where the entity already holds a domain name registration.
URLs (in particular, "http" URLs) are sometimes used as identifiers that satisfy most of the above requirements.
Many users and organisations have already registered a domain name, and the use of the domain name to mint
identifiers comes at no additional cost. But there are drawbacks to URLs-as-identifiers:
Lastly, many entities -- especially individuals -- are assignees of email addresses but not domain names. It would be preferable to enable those entities to mint unique identifiers.
This section first specifies the syntax of tag URIs and gives examples. It then describes a set of rules for minting tags designed to make them unique. Finally, it discusses the resolution and comparison of tags.
The general syntax of a tag URI, in ABNF Crocker, D. and P. Overell, Augmented BNF for Syntax Specifications: ABNF, November 1997., is:
tagURI = "tag:" taggingEntity ":" specific [ "#" fragment ]
taggingEntity = authorityName "," date
authorityName = DNSname / emailAddress
date = year ["-" month ["-" day]]
year = 4DIGIT
month = 2DIGIT
day = 2DIGIT
DNSname = DNScomp *( "." DNScomp ) ; see RFC 1035 Mockapetris, P., Domain names - implementation and specification, November 1987.
DNScomp = alphaNum [*(alphaNum /"-") alphaNum]
emailAddress = 1*(alphaNum /"-"/"."/"_") "@" DNSname
alphaNum = DIGIT / ALPHA
specific = *( pchar / "/" / "?" ) ; pchar from RFC 3986 Berners-Lee, T., Fielding, R. and L. Masinter, Uniform Resource Identifier (URI): Generic Syntax, January 2005.
fragment = *( pchar / "/" / "?" ) ; same as RFC 3986 Berners-Lee, T., Fielding, R. and L. Masinter, Uniform Resource Identifier (URI): Generic Syntax, January 2005.
The component "taggingEntity" is the name space part of the URI. To avoid ambiguity, the domain name in "authorityName" (whether an email address or a simple domain name) MUST be fully qualified. It is RECOMMENDED that the domain name should be in lowercase form. Alternative formulations of the same authority name will be counted as distinct and hence tags containing them will be unequal (see Section 2.4Equality of Tags). For example, tags beginning "tag:EXAMPLE.com,2000:" are never equal to those beginning "tag:example.com,2000:", even though they refer to the same domain name.
Authority names could, in principle, belong to any syntactically distinct namespaces whose names are assigned to a unique entity at a time. Those include, for example, certain IP addresses, certain MAC addresses, and telephone numbers. However, to simplify the tag scheme, we restrict authority names to be domain names and email addresses. Future standards efforts may allow use of other authority names following syntax that is disjoint from this syntax. To allow for such developments, software that processes tags MUST NOT reject them on the grounds that they are outside the syntax defined above.
The component "specific" is the name-space-specific part of the URI: it is a string of URI characters (see restrictions in syntax specification) chosen by the minter of the URI. Note that the "specific" component allows for "query" subcomponents as defined in RFC 3986 Berners-Lee, T., Fielding, R. and L. Masinter, Uniform Resource Identifier (URI): Generic Syntax, January 2005.. It is RECOMMENDED that specific identifiers should be human-friendly.
Tag URIs may optionally end in a fragment identifier, in accordance with the general syntax of RFC 3986 Berners-Lee, T., Fielding, R. and L. Masinter, Uniform Resource Identifier (URI): Generic Syntax, January 2005..
In the interests of tractability to humans, tags SHOULD NOT be minted with percent-encoded parts. However, the tag syntax does allow percent-encoded characters, in the "pchar" elements (defined in RFC 3986 Berners-Lee, T., Fielding, R. and L. Masinter, Uniform Resource Identifier (URI): Generic Syntax, January 2005.).
Examples of tag URIs are:
As Section 2.1 has specified, each tag includes a "tagging entity" followed, optionally, by a specific identifier. The tagging entity is designated by an "authority name" -- a fully qualified domain name or an email address containing a fully qualified domain name -- followed by a date. The date is chosen to make the tagging entity globally unique, exploiting the fact that domain names and email addresses are assigned to at most one entity at a time. That entity then ensures that it mints unique identifiers.
The date specifies, according to the Gregorian calendar and UTC, any particular day on which the authority name was assigned to the tagging entity at 00:00 UTC (the start of the day). The date MAY be a past or present date on which the authority name was assigned at that moment. The date is specified using one of the "YYYY", "YYYY-MM" and "YYYY-MM-DD" formats allowed by the ISO 8601 standard , Data elements and interchange formats -- Information interchange -- Representation of dates and times, 1988. (see also RFC 3339 Klyne, G. and C. Newman, Date and Time on the Internet: Timestamps, July 2002.). The tag specification permits no other formats. Tagging entities MUST ascertain the date with sufficient accuracy to avoid accidentally using a date on which the authority name was not in fact assigned (many computers and mobile devices have poorly synchronised clocks). The date MUST be reckoned from UTC -- which may differ from the date in the tagging entity's local timezone at 00:00 UTC. That distinction can generally be safely ignored in practice, but not on the day of the authority name's assignment. In principle it would otherwise be possible on that day for the previous assignee and the new assignee to use the same date and thus mint the same tags.
In the interests of brevity, the month and day default to "01". A day value of "01" MAY be omitted; a month value of "01" MAY be omitted unless it is followed by a day value other than "01". For example, "2001-07" is the date 2001-07-01 and "2000" is the date 2000-01-01. All date formulations specify a moment (00:00 UTC) of a single day, and not a period of a day or more such as "the whole of July 2001" or "the whole of 2000". Assignment at that moment is all that is required to use a given date.
Tagging entities should be aware that alternative formulations of the same date will be counted as distinct and hence tags containing them will be unequal. For example, tags beginning "tag:example.com,2000:" are never equal to those beginning "tag:example.com,2000-01-01:", even though they refer to the same date (see Section 2.4Equality of Tags).
An entity MUST NOT mint tags under an authority name that was assigned to a different entity at 00:00 UTC on the given date, and it MUST NOT mint tags under a future date.
An entity that acquires an authority name immediately after a period during which the name was unassigned MAY mint tags as if the entity was assigned the name during the unassigned period. This practice has considerable potential for error and MUST NOT be used unless the entity has substantial evidence that the name was unassigned during that period. The authors are currently unaware of any mechanism that would count as evidence, other than daily polling of the "whois" registry.
For example, Hewlett-Packard holds the domain registration for hp.com and may mint any tags rooted at that name with a current or past date when it held the registration. It must not mint tags such as "tag:champignon.net,2001:" under domain names not registered to it. It must not mint tags dated in the future, such as "tag:hp.com,2999:". If it obtains assignment of "extremelyunlikelytobeassigned.org" on 2001-05-01, then it must not mint tags under "extremelyunlikelytobeassigned.org,2001-04-01" unless it has evidence proving that that name was continuously unassigned between 2001-04-01 and 2001-05-01.
A tagging entity mints specific identifiers that are unique within its context, in accordance with any internal scheme that uses only URI characters. Tagging entities SHOULD use record-keeping procedures to achieve uniqueness. Some tagging entities (e.g. corporations, mailing lists) consist of many people, in which case group decision-making SHOULD also be used to achieve uniqueness. The outcome of such decision-making could be to delegate control over parts of the namespace. For example, the assignees of example.com could delegate control over all tags with the prefixes tag:example.com,2004:fred: and tag:example.com,2004:bill: respectively to the individuals with internal names "fred" and "bill" on 2004-01-01.
There is no authoritative resolution mechanism for tags. Unlike most other URIs, tags can only be used as identifiers, and are not designed to support resolution. If authoritative resolution is a desired feature, a different URI scheme should be used.
Tags are simply strings of characters and are considered equal if and only if they are completely indistinguishable in their machine representations when using the same character encoding. That is, one can compare tags for equality by comparing the numeric codes of their characters, in sequence, for numeric equality. This criterion for equality allows for simplification of tag-handling software, which does not have to transform tags in any way to compare them.
Minting a tag, by itself, is an operation internal to the tagging entity with no external consequences. The consequences of using an improperly minted tag (due to malice or error) in an application depends on the application, and must be considered in the design of any application that uses tags.
There is a significant possibility of minting errors by people who fail to apply the rules governing dates, or who use a shared (organizational) authority-name without prior organization-wide agreement. Tag-aware software MAY help catch and warn against these errors. As stated in Section 2, however, to allow for future expansion, software MUST NOT reject tags which do not conform to the syntax specified in Section 2.
A malicious party could make it appear that the same domain name or email address was assigned to each of two or more entities. Tagging entities SHOULD use reputable assigning authorities, and verify assignment wherever possible.
Entities SHOULD also avoid the potential for malicious exploitation of clock skew, by using authority names that were assigned continuously from well before to well after 00:00 UTC on the date chosen for the tagging entity -- preferably by intervals in the order of days.
The IANA is asked to register the tag URI scheme as specified in this document and summarised in the following template:
URI scheme name: tag
URI scheme syntax: see Section 2Tag Syntax and Rules
Character encoding considerations: percent-encoding is allowed in 'specific' and 'fragment' components (see Section 2Tag Syntax and Rules)
Intended usage: see Section 1Introduction and Section 2.3Resolution of Tags
Applications and/or protocols that use this URI scheme name: Any applications that use URIs as identifiers without requiring dereference, such as RDF, YAML, and Atom.
Interoperability considerations: none
Security considerations: see Section 3Security Considerations
Relevant publications: none
Contact: Tim Kindberg (firstname.lastname@example.org) and Sandro Hawke (email@example.com)
Author/Change controller: Tim Kindberg and Sandro Hawke
|||Berners-Lee, T., Fielding, R. and L. Masinter, "Uniform Resource Identifier (URI): Generic Syntax", RFC 3986, January 2005.|
|||Crocker, D. and P. Overell, "Augmented BNF for Syntax Specifications: ABNF", RFC 2234, November 1997.|
|||Mockapetris, P., "Domain names - implementation and specification", STD 13, RFC 1035, November 1987.|
|||"Data elements and interchange formats -- Information interchange -- Representation of dates and times", ISO (International Organization for Standardization) ISO 8601:1988, 1988.|
|||Leach, P. and R. Salz, "UUIDs and GUIDs", Internet-Draft draft-leach-uuids-01, 1997.|
|||"Information technology - Open Systems Interconnection - Remote Procedure Call (RPC)", ISO (International Organization for Standardization) ISO/IEC 11578:1996, 1996.|
|||"Specification of abstract syntax notation one (ASN.1)", ITU-T recommendation X.208, (see also RFC 1778), 1988.|
|||Mealling, M., "A URN Namespace of Object Identifiers", RFC 3061, February 2001.|
|||Paskin, N., "Information Identifiers", Learned Publishing Vol. 10, No. 2, pp. 135-156, (see also www.doi.org), April 1997.|
|||Klyne, G. and C. Newman, "Date and Time on the Internet: Timestamps", RFC 3339, July 2002.|
|Bristol BS34 8QZ|
|Phone:||+44 117 312 9920|
|World Wide Web Consortium|
|32 Vassar Street|
|Cambridge, MA 02139|
|Phone:||+1 617 253-7288|
The IETF takes no position regarding the validity or scope of any Intellectual Property Rights or other rights that might be claimed to pertain to the implementation or use of the technology described in this document or the extent to which any license under such rights might or might not be available; nor does it represent that it has made any independent effort to identify any such rights. Information on the procedures with respect to rights in RFC documents can be found in BCP 78 and BCP 79.
Copies of IPR disclosures made to the IETF Secretariat and any assurances of licenses to be made available, or the result of an attempt made to obtain a general license or permission for the use of such proprietary rights by implementers or users of this specification can be obtained from the IETF on-line IPR repository at http://www.ietf.org/ipr.
The IETF invites any interested party to bring to its attention any copyrights, patents or patent applications, or other proprietary rights that may cover technology that may be required to implement this standard. Please address the information to the IETF at firstname.lastname@example.org.
This document and the information contained herein are provided on an "AS IS" basis and THE CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS OR IS SPONSORED BY (IF ANY), THE INTERNET SOCIETY AND THE INTERNET ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.
Copyright (C) The Internet Society (2005). This document is subject to the rights, licenses and restrictions contained in BCP 78, and except as set forth therein, the authors retain all their rights.
Funding for the RFC Editor function is currently provided by the Internet Society.