[Ace] Zaheduzzaman Sarker's No Objection on draft-ietf-ace-oscore-profile-17: (with COMMENT)

Zaheduzzaman Sarker via Datatracker <noreply@ietf.org> Wed, 24 March 2021 20:07 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: ace@ietf.org
Delivered-To: ace@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id DB35E3A34F8; Wed, 24 Mar 2021 13:07:27 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Zaheduzzaman Sarker via Datatracker <noreply@ietf.org>
To: "The IESG" <iesg@ietf.org>
Cc: draft-ietf-ace-oscore-profile@ietf.org, ace-chairs@ietf.org, ace@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.27.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Zaheduzzaman Sarker <Zaheduzzaman.Sarker@ericsson.com>
Message-ID: <161661644738.16417.7404476297359674246@ietfa.amsl.com>
Date: Wed, 24 Mar 2021 13:07:27 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/aSRf-RYy8NvHuuKuGXD75n5OsOs>
Subject: [Ace] Zaheduzzaman Sarker's No Objection on draft-ietf-ace-oscore-profile-17: (with COMMENT)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Mar 2021 20:07:28 -0000

Zaheduzzaman Sarker has entered the following ballot position for
draft-ietf-ace-oscore-profile-17: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-ace-oscore-profile/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Thanks for this document.

I support Roman's discuss and have similar observations when it comes to
normative text usage (see Roman's discuss comments).

Some nits below --

* Section 2:
      This
      profile RECOMMENDS the use of OSCORE between client and AS, to reduce
      the number of libraries the client has to support, but other
      protocols fulfilling the security requirements defined in section 5
      of [I-D.ietf-ace-oauth-authz] (such as TLS or DTLS) MAY be used as
      well.

 [TLS, DTLS] reference is missing.

* Section 3.2:
   Typo : s/parameeter/parameter