Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-transport-10.txt
Paul Wouters <paul.wouters@aiven.io> Fri, 26 May 2023 19:33 UTC
Return-Path: <paul.wouters@aiven.io>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 703B9C151093 for <ace@ietfa.amsl.com>; Fri, 26 May 2023 12:33:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aiven.io
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dd6bt8-GdUrx for <ace@ietfa.amsl.com>; Fri, 26 May 2023 12:33:25 -0700 (PDT)
Received: from mail-wm1-x336.google.com (mail-wm1-x336.google.com [IPv6:2a00:1450:4864:20::336]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 404CDC14F747 for <ace@ietf.org>; Fri, 26 May 2023 12:33:25 -0700 (PDT)
Received: by mail-wm1-x336.google.com with SMTP id 5b1f17b1804b1-3f6d3f83d0cso11939115e9.2 for <ace@ietf.org>; Fri, 26 May 2023 12:33:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aiven.io; s=google; t=1685129603; x=1687721603; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Ghps1SqvMiv2M4XmTc6fxvsdnea7DYG1EwS7HZ7LcAY=; b=IdvADQtNgxH45qIVQh+47wZLVJkn/3DKE3WQiekVV5N/zS7pl3xgtprN1EsVsy4poM Nsh1DC5lGHRGhx6QqChEtbv/V7tUMNNNxv0zkhMQw5/V1+RoxDV3luSKaiMKnBH2V2fB Vj6t+ZZfxarBgWaFh/LErYvU4QpoLaCLaQRJA=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1685129603; x=1687721603; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=Ghps1SqvMiv2M4XmTc6fxvsdnea7DYG1EwS7HZ7LcAY=; b=ZCAMCloJzE98JH5Pqo0wCXRPKqgJ4O1bUtUmvSZOkTR8gPy5/okQ/9qjA8cf5qdLOS k12ga+TkutnIjUpFfK3w+cMm/HKphrGmIIWl1Z05WwItyyLXNNAdDwgurne4PDhOpE04 F9ptUAwClQ+nXRp6PSpMejcB1NCAkTZcw23FFQkCBTuInY3/rvB6sr1O8sNZ4ELUVA4X KGGxZn0pA4svTLQh3w++qW+HYmc048rU/Ij7mx8fZBvLur73vt/x0/STNYX+XTD90v4g rsXHxkxVmP8qhUsWf5TKmF/PqhAJiLWrkmQzP4QjflyXePmIyY2zq/XhzS1qltE5mrzV 6I7g==
X-Gm-Message-State: AC+VfDz9a5XsIZPMb8J36j4yu+xLbt3GSdtk5pL0wa9pztWrl3M5XwRH rSl3pr5oZ/URYImt96cZaDFVk3CDoSiqjw5lyXPJhw==
X-Google-Smtp-Source: ACHHUZ6pnzqmjBF4XBI+l/DvR9Fay5ClAV8YIDiS/KOGBRw/ipSYmcy1RFaNoOOffwqzoIQkxOdKLLciKfM02uTGjo0=
X-Received: by 2002:adf:ce09:0:b0:307:a4ee:4a25 with SMTP id p9-20020adfce09000000b00307a4ee4a25mr2002374wrn.28.1685129603541; Fri, 26 May 2023 12:33:23 -0700 (PDT)
MIME-Version: 1.0
References: <168418347235.50512.7582333536525758484@ietfa.amsl.com> <DM6PR15MB36896A17B018D633B0E47BDBE3799@DM6PR15MB3689.namprd15.prod.outlook.com> <DB9PR10MB5715C7CADF69AE5EA1B95B43FE469@DB9PR10MB5715.EURPRD10.PROD.OUTLOOK.COM> <CADZyTkm9ZU8-2_JEN4-0DbaVVXuCi73tRWqgXzFz9Rsq6FdGRA@mail.gmail.com> <CAGL5yWazaQ=0Lf2TnEc+56P2nETuseG=GTkst83YZhJdCNU0ng@mail.gmail.com> <CAEpwuw30NcwE6ABfsDR3aFtNb4i8pOeO23vbQwj1KNeNovHUhg@mail.gmail.com>
In-Reply-To: <CAEpwuw30NcwE6ABfsDR3aFtNb4i8pOeO23vbQwj1KNeNovHUhg@mail.gmail.com>
From: Paul Wouters <paul.wouters@aiven.io>
Date: Fri, 26 May 2023 15:33:12 -0400
Message-ID: <CAGL5yWbQCQCX3aLU0CEzmHD6-c-NRY-T-eGf3e=VrWrADjKPgw@mail.gmail.com>
To: Mohit Sahni <mohit06jan@gmail.com>
Cc: Daniel Migault <mglt.ietf@gmail.com>, "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>, "ace@ietf.org" <ace@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000006bc43805fc9dcfa2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/7g0J44gHdeF8AqQmmB88LZ9P6io>
Subject: Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-transport-10.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 May 2023 19:33:29 -0000
On Thu, May 25, 2023 at 1:15 PM Mohit Sahni <mohit06jan@gmail.com> wrote: > Hi Paul, > I think you may be looking at the older version of the draft. (Please > check > https://datatracker.ietf.org/doc/html/draft-ietf-ace-cmpv2-coap-transport) > Odd, I was and I wasn't. Maybe a caching issue. Thanks for pointing out most of the ballot comments have been addressed. > I submitted the xml version and the boilerplate is auto generated from the > xml. I am not sure how to change the boiler plate text. My guess is that > it's the xml2rfc tool that's adding the boilerplate. > We will let the RFC Editor worry about that. > The reference of 5280 is added in the below text in the version 10 of the > draft: > Section 4 bullet point 4: > An EE might not witness all of the Announcement messages when using the > CoAP Observe option [RFC7641], since the Observe option is a "best-effort" > approach and the server might lose its state for subscribers to its > announcement messages. The EEs may use an alternate method described in > section 2.6 to obtain time critical changes such as CRL [RFC5280] updates. > right. > > Reference to draft-ietf-lamps-lightweight-cmp-profile-13 > <https://datatracker.ietf.org/doc/draft-ietf-lamps-lightweight-cmp-profile/13/> has > been updated to version 21 now in the latest draft. > Indeed. > The comment "without compromising the integrity of " be better than > "without compromising the security" (given CMP does not provide > confidentiality" was not directed me but to the ADs (i.e. Paul) If you > agree, I can make the change to the text. > I agree that it is a better word, however since the bullet point immediatly following it talks about confidentiality, I think it is fine to leave it too. If you were to do another update, please fold it in. Otherwise perhaps we can change the one word during the RFC Editor phase. I've cleared the state, so the document will proceed onwards now. Paul > Thanks > Mohit > > On Thu, May 25, 2023 at 9:07 AM Paul Wouters <paul.wouters= > 40aiven.io@dmarc.ietf.org> wrote: > >> I should probably put it in Revised ID needed, as there are a few bugs >> left: >> >> - the 2119 boilerplate triggers warning (although I don't see the >> discrepancy) >> - RFC 5280 is listed as informative reference but it is not references >> anywhere in the text >> - outdated reference to draft-ietf-lamps-lightweight-cmp-profile-13 >> <https://datatracker.ietf.org/doc/draft-ietf-lamps-lightweight-cmp-profile/13/> >> - "without compromising the integrity of " be better than "without >> compromising the security" (given CMP does not provide confidentiality >> >> It seems the authors haven't gone yet through all the ballot comments at >> https://datatracker.ietf.org/doc/draft-ietf-ace-cmpv2-coap-transport/ballot/ >> >> I'll put it in revised ID needed now since at least the the above bullet >> points should be fixed. >> >> Paul >> >> On Thu, May 25, 2023 at 11:13 AM Daniel Migault <mglt.ietf@gmail.com> >> wrote: >> >>> As far as I understand it, the document is in " Approved-announcement >>> to be sent::AD Followup", which means the AD needs to approve the latest >>> version to be sent to the RFC editor. Th elatest version has been published >>> on may 15, so my guess is that the approval should come in the next few >>> days. >>> >>> Yours, >>> Daniel >>> >>> >>> On Thu, May 25, 2023 at 8:52 AM Brockhaus, Hendrik < >>> hendrik.brockhaus@siemens.com> wrote: >>> >>>> Thanks to Mohit and Saurabh for the update also from my side. >>>> Are there any further changes planned or is anything else necessary >>>> before moving the draft to RFC Editor state? >>>> >>>> Hendrik >>>> >>>> > Von: Ace <ace-bounces@ietf.org> Im Auftrag von Daniel Migault >>>> > >>>> > Thanks for the submission Mohit. >>>> > >>>> > Yours, >>>> > Daniel >>>> > >>>> > ________________________________________ >>>> > From: Ace <ace-bounces@ietf.org> on behalf of >>>> internet-drafts@ietf.org >>>> > <internet-drafts@ietf.org> >>>> > Sent: Monday, May 15, 2023 4:44 PM >>>> > To: i-d-announce@ietf.org >>>> > Cc: ace@ietf.org >>>> > Subject: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-transport-10.txt >>>> > >>>> > >>>> > A New Internet-Draft is available from the on-line Internet-Drafts >>>> > directories. This Internet-Draft is a work item of the Authentication >>>> and >>>> > Authorization for Constrained Environments (ACE) WG of the IETF. >>>> > >>>> > Title : CoAP Transfer for the Certificate Management >>>> Protocol >>>> > Authors : Mohit Sahni >>>> > Saurabh Tripathi >>>> > Filename : draft-ietf-ace-cmpv2-coap-transport-10.txt >>>> > Pages : 11 >>>> > Date : 2023-05-15 >>>> > >>>> > Abstract: >>>> > This document specifies the use of Constrained Application Protocol >>>> > (CoAP) as a transfer mechanism for the Certificate Management >>>> > Protocol (CMP). CMP defines the interaction between various PKI >>>> > entities for the purpose of certificate creation and management. >>>> > CoAP is an HTTP-like client-server protocol used by various >>>> > constrained devices in the IoT space. >>>> > >>>> > The IETF datatracker status page for this Internet-Draft is: >>>> > https://datatra/ >>>> > cker.ietf.org%2Fdoc%2Fdraft-ietf-ace-cmpv2-coap- >>>> > transport%2F&data=05%7C01%7Chendrik.brockhaus%40siemens.com%7Cb7 >>>> > 45642c8925408378c508db55a8f629%7C38ae3bcd95794fd4addab42e1495d55 >>>> > a%7C1%7C0%7C638197956407483228%7CUnknown%7CTWFpbGZsb3d8eyJ >>>> > WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7 >>>> > C3000%7C%7C%7C&sdata=NRMWomPpx1FbVSzl%2FLu0U0HQX3tpT9gXX2cbu >>>> > Tq4cro%3D&reserved=0 >>>> > >>>> > There is also an htmlized version available at: >>>> > https://datatra/ >>>> > cker.ietf.org%2Fdoc%2Fhtml%2Fdraft-ietf-ace-cmpv2-coap-transport- >>>> > 10&data=05%7C01%7Chendrik.brockhaus%40siemens.com%7Cb745642c892 >>>> > 5408378c508db55a8f629%7C38ae3bcd95794fd4addab42e1495d55a%7C1%7 >>>> > C0%7C638197956407483228%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4w >>>> > LjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C >>>> > %7C%7C&sdata=VlTKaJOKWtgld6rtRVKIen9ic5etr%2B3%2FXME4JIwoBG0%3D >>>> > &reserved=0 >>>> > >>>> > A diff from the previous version is available at: >>>> > https://author/ >>>> > -tools.ietf.org >>>> %2Fiddiff%3Furl2%3Ddraft-ietf-ace-cmpv2-coap-transport- >>>> > 10&data=05%7C01%7Chendrik.brockhaus%40siemens.com%7Cb745642c892 >>>> > 5408378c508db55a8f629%7C38ae3bcd95794fd4addab42e1495d55a%7C1%7 >>>> > C0%7C638197956407483228%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4w >>>> > LjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C >>>> > %7C%7C&sdata=Nzg9WKRaw3P47ucvb3zEF0%2BsePKxR6Ps1oKjtdrZAXc%3D& >>>> > reserved=0 >>>> > >>>> > Internet-Drafts are also available by rsync at rsync.ietf.org: >>>> :internet-drafts >>>> > >>>> > >>>> > _______________________________________________ >>>> > Ace mailing list >>>> > Ace@ietf.org >>>> > https://www.ie/ >>>> > tf.org%2Fmailman%2Flistinfo%2Face&data=05%7C01%7Chendrik.brockhaus% >>>> > 40siemens.com%7Cb745642c8925408378c508db55a8f629%7C38ae3bcd9579 >>>> > 4fd4addab42e1495d55a%7C1%7C0%7C638197956407483228%7CUnknown% >>>> > 7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWw >>>> > iLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=gHv%2FbNIlQSoDTUBx1NY6S >>>> > Snkc%2BtzbcFbp%2BXwInvd6Ss%3D&reserved=0 >>>> > >>>> > _______________________________________________ >>>> > Ace mailing list >>>> > Ace@ietf.org >>>> > https://www.ie/ >>>> > tf.org%2Fmailman%2Flistinfo%2Face&data=05%7C01%7Chendrik.brockhaus% >>>> > 40siemens.com%7Cb745642c8925408378c508db55a8f629%7C38ae3bcd9579 >>>> > 4fd4addab42e1495d55a%7C1%7C0%7C638197956407483228%7CUnknown% >>>> > 7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWw >>>> > iLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=gHv%2FbNIlQSoDTUBx1NY6S >>>> > Snkc%2BtzbcFbp%2BXwInvd6Ss%3D&reserved=0 >>>> >>> >>> >>> -- >>> Daniel Migault >>> Ericsson >>> >> _______________________________________________ >> Ace mailing list >> Ace@ietf.org >> https://www.ietf.org/mailman/listinfo/ace >> >
- [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-trans… internet-drafts
- Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-t… Daniel Migault
- Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-t… Brockhaus, Hendrik
- Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-t… Daniel Migault
- Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-t… Paul Wouters
- Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-t… Mohit Sahni
- Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-t… Paul Wouters
- Re: [Ace] I-D Action: draft-ietf-ace-cmpv2-coap-t… Daniel Migault