Return-Path: <kaduk@mit.edu>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
 by ietfa.amsl.com (Postfix) with ESMTP id A07EB12422F;
 Mon, 12 Mar 2018 15:33:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.231
X-Spam-Level: 
X-Spam-Status: No, score=-4.231 tagged_above=-999 required=5
 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01,
 RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01]
 autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44])
 by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id iBO2_t1NXZH5; Mon, 12 Mar 2018 15:33:42 -0700 (PDT)
Received: from dmz-mailsec-scanner-7.mit.edu (dmz-mailsec-scanner-7.mit.edu
 [18.7.68.36])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by ietfa.amsl.com (Postfix) with ESMTPS id 04C3E129C51;
 Mon, 12 Mar 2018 15:33:37 -0700 (PDT)
X-AuditID: 12074424-957ff700000040cc-07-5aa7003e176a
Received: from mailhub-auth-2.mit.edu ( [18.7.62.36])
 (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by dmz-mailsec-scanner-7.mit.edu (Symantec Messaging Gateway) with SMTP id
 78.18.16588.F3007AA5; Mon, 12 Mar 2018 18:33:36 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11])
 by mailhub-auth-2.mit.edu (8.13.8/8.9.2) with ESMTP id w2CMXUoO022170;
 Mon, 12 Mar 2018 18:33:32 -0400
Received: from kduck.kaduk.org (24-107-191-124.dhcp.stls.mo.charter.com
 [24.107.191.124]) (authenticated bits=56)
 (User authenticated as kaduk@ATHENA.MIT.EDU)
 by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id w2CMXQBj029811
 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT);
 Mon, 12 Mar 2018 18:33:29 -0400
Date: Mon, 12 Mar 2018 17:33:26 -0500
From: Benjamin Kaduk <kaduk@mit.edu>
To: consultancy@vanderstok.org
Cc: Jim Schaad <ietf@augustcellars.com>, draft-ietf-ace-coap-est@ietf.org,
 ace@ietf.org
Message-ID: <20180312223326.GA10699@kduck.kaduk.org>
References: <001d01d3b8b4$f6e71600$e4b54200$@augustcellars.com>
 <e426d5786082bdc863fbe6a5960c112b@xs4all.nl>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <e426d5786082bdc863fbe6a5960c112b@xs4all.nl>
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmpmleLIzCtJLcpLzFFi42IRYrdT0XVgWB5l8OiLiMX3bz3MFo/2r2Kz
 WPtzF7PF6unf2RxYPDbOmc7msWTJTyaPEw3b2QOYo7hsUlJzMstSi/TtErgyvv5LKujlqFje
 OoGpgbGLrYuRg0NCwETi/D+vLkYuDiGBxUwSr07fYIJwNjJK7FixghXCucok8axnFmMXIycH
 i4CqxIl5W1hBbDYBFYmG7svMILaIgJzE9Omz2UBsZoEEia/XjrOCbBAW0JX4dVEdJMwLtGzi
 1XawciGBPIlZ3UuYIOKCEidnPmGBaNWSuPHvJRNIK7OAtMTyfxwgYU4BS4mfM9+BTRcVUJbY
 23eIfQKjwCwk3bOQdM9C6F7AyLyKUTYlt0o3NzEzpzg1Wbc4OTEvL7VI11wvN7NELzWldBMj
 OHxdVHYwdvd4H2IU4GBU4uHtaF0WJcSaWFZcmXuIUZKDSUmUN5kbKMSXlJ9SmZFYnBFfVJqT
 WnyIUYKDWUmEV/k/UI43JbGyKrUoHyYlzcGiJM7rYaIdJSSQnliSmp2aWpBaBJOV4eBQkuAN
 BWkULEpNT61Iy8wpQUgzcXCCDOcBGj4JbHhxQWJucWY6RP4Uoy7HjRev25iFWPLy81KlxHkt
 QYoEQIoySvPg5oDSjkT2/ppXjOJAbwnzGoBU8QBTFtykV0BLmICWXDmxBGRJSSJCSqqBkc9j
 R4ujvOGs3+8uisZ6bH/zVlhip7K6toaJssxG/QaVd2v37OT0OXTUTdPv5bwp1su8d07mb03M
 T4+zN3z23+BrQEa84e7bB9ctVRRfqzA7fHryEmcZjUkH2X/e9E5Q++d1gkXP7GXxs+eKX/q3
 XYxUWBavEhR27MR/j2ltr/VPHl23WqL4sRJLcUaioRZzUXEiADE680IWAwAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/S-Y62VE5UXJXsjYGqZh6xkpa6z4>
Subject: Re: [Ace] draft-ietf-ace-coap-est-00
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments
 \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>,
 <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>,
 <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Mar 2018 22:33:44 -0000

On Mon, Mar 12, 2018 at 09:08:05AM +0100, peter van der Stok wrote:
> Hi Jim,
> 
> thanks for the comments. See my reactions below.
> Jim Schaad schreef op 2018-03-10 22:15:
> > I agree with Hannes, this version of the document is much cleaner and 
> > much
> > clearer.  I think that it has solved most of the problems that I 
> > initially
> > had with the draft.  It is not ready to progress as there are still 
> > sections
> > that are marked as TODO.  But it is much closer to finishing that it 
> > was.
> 
> That sounds hopeful. Agree about the TODOs
> > 
> > I still have a couple of comments from a quick read through of the 
> > document.
> > 
> > In section 2 - There will be a problem in that the port format 
> > extension is
> > being eliminated in TLS 1.3 - We may want to divide this into a 1.2 and 
> > 1.3
> > section for clarity.
> 
> You mean for backward compatibility?

For forwards compatibility, mostly, so we don't claim to require
something that does not exist in TLS 1.3.

-Ben