Re: [Ace] Gen-ART Last Call review of draft-ietf-ace-extend-dtls-authorize-05
John Mattsson <john.mattsson@ericsson.com> Sun, 22 January 2023 08:40 UTC
Return-Path: <john.mattsson@ericsson.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 81E08C1522C4; Sun, 22 Jan 2023 00:40:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tusdYlyg2bi7; Sun, 22 Jan 2023 00:40:12 -0800 (PST)
Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-he1eur04on2048.outbound.protection.outlook.com [40.107.7.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 32EC6C1522A1; Sun, 22 Jan 2023 00:40:11 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jIXdyetq8qOv6COWpZ5xuQbUGkH3rNqySvg6p/IarKP0J5SHHsvKUsdN5eZgU92EUXawjh3nCLhKCbzk9nUvhFhr78HUIMWfmaLnLUps6DcJYg/JFBh9fUl4g8TE2N+MFB08eyeoQx0JNFlTi+LSeGRQF2GSnD+/qdW5Nfu4ZYiobaUQIdXlFLR5K3QoT5Tv7V9usY/RUSK3MRAIh12V9mWGDM2qHLiJUSOTvazSxy281czAYLQaVspSqxObvwVbiLaUPtQN0zF5QJ1Xw+XZC2yZR0o+u3l5Yt3Mam2da3DKTGbcvQiVjztNcl3UzRpxxE5lP01Ur4tY6y7V7IHw6A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=U+VxRo1lfqgKitrqyhzYJRL2qXuqdvtSzva5zfiigRk=; b=VohenPZfF3u4XKhwYfV/gyS1Px9s4dyZ2dobfHsyH/MDTlyk8BxiNg4a/PcwrXquaAHhiXhX31pjLAKXwjWa7CMlqLxrTcJO1yHus3mzQ7tzVn1QoU0sAXdwjxuQlViTLJEgHOEBUfwXDnlZ7OvW+FjB7YI1WsDLBbSd2AC7crVspiiYFK7vvUvFlXauNN/Zux0/a6i+r0F8VY3k86O94Hk4/jAz7pnktzQQ7MYCgGX8Hmumn8BLMVEB7xlzC+yeiv4MYkZ4FeHQylkSvHVNl9JUiFoHBfuhxjYvAUpjJc07y7KAfUp6jL/18u7Mx1xx96RCh0dZDlT0VuiIDCgqfQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=U+VxRo1lfqgKitrqyhzYJRL2qXuqdvtSzva5zfiigRk=; b=UaPyNc+ntkD9K7Tb5015YOfq77ioys+kiAVY2KnIiZQhSpczmWPUH0WuUiF2ITdp9UNHC79gOCAmtZH3mnzqYEAb4UCQnZm+F2De5uuG4Wf8EW7wyrJ6qHHUWDZwlyZjzNqHFWBGhu7XuW3TppfXiTe7++tOrjF9q96jJj+KfJE=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by PR3PR07MB8066.eurprd07.prod.outlook.com (2603:10a6:102:14d::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6002.27; Sun, 22 Jan 2023 08:40:07 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::fc77:42d2:1bc6:ec49]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::fc77:42d2:1bc6:ec49%12]) with mapi id 15.20.6002.027; Sun, 22 Jan 2023 08:40:07 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: Paul Kyzivat <pkyzivat@alum.mit.edu>, "draft-ietf-ace-extend-dtls-authorize.all@ietf.org" <draft-ietf-ace-extend-dtls-authorize.all@ietf.org>
CC: General Area Review Team <gen-art@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>, "ace@ietf.org" <ace@ietf.org>
Thread-Topic: Gen-ART Last Call review of draft-ietf-ace-extend-dtls-authorize-05
Thread-Index: AQHZLPU6ohalIgPd+0G4e7BhwgGmm66qHGXI
Date: Sun, 22 Jan 2023 08:40:07 +0000
Message-ID: <HE1PR0701MB3050F0D5FD6770CDA2F888B889CB9@HE1PR0701MB3050.eurprd07.prod.outlook.com>
References: <27d3f8fb-1598-2eb1-a560-48428d9826ec@alum.mit.edu>
In-Reply-To: <27d3f8fb-1598-2eb1-a560-48428d9826ec@alum.mit.edu>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: HE1PR0701MB3050:EE_|PR3PR07MB8066:EE_
x-ms-office365-filtering-correlation-id: 6b971ce3-44b0-4a57-5f4f-08dafc5443d9
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(396003)(366004)(39860400002)(136003)(346002)(376002)(451199015)(41300700001)(5660300002)(8936002)(52536014)(66946007)(316002)(9686003)(186003)(64756008)(8676002)(66556008)(66476007)(66446008)(76116006)(91956017)(26005)(82960400001)(38070700005)(38100700002)(122000001)(166002)(44832011)(4326008)(83380400001)(86362001)(2906002)(55016003)(33656002)(478600001)(6506007)(110136005)(53546011)(54906003)(7696005)(71200400001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_HE1PR0701MB3050F0D5FD6770CDA2F888B889CB9HE1PR0701MB3050_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6b971ce3-44b0-4a57-5f4f-08dafc5443d9
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Jan 2023 08:40:07.1649 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: TfvpgOXvM4MH8lEKdt0M+nX9hK2yreocZYY6Hw21KfsoGGRJ574LUhYfBZeBs8mCu7SYEYsfygBPG2GE84Iga1KSeW7dGww8owXT7IesGO0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PR3PR07MB8066
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/jkA4r8_VPiNGlUOiRIMNRMZeDEs>
Subject: Re: [Ace] Gen-ART Last Call review of draft-ietf-ace-extend-dtls-authorize-05
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 22 Jan 2023 08:40:16 -0000
Hi Paul, Thanks for you review. I very much agree with you that this should have been part of the RFC 9202. In fact, I pointed out the need for TLS compatibility very early in the standardization process. The situation right now is that this was unfortunately not done, and that TLS/TCP is very much needed for the 3GPP use of RFC 9202. This should have been standardized yesterday, so any increased delay would not be good. 3GPP is waiting for this draft. A future update to RFC 9202 might be worth doing. > But it fails to do the work of actually making those revisions. It leaves that work to the reader. It is hard to believe that all readers will infer the identical set of changes. I don’t see what is missing and what would be hard to infer, and I am not an author of RFC 9202. It would be more constructive if you could provide advice on how to improve draft-ietf-ace-extend-dtls-authorize. > I suggest that this document's status be changed to an informational I think it would be strange if DTLS transport is standards track and TLS is informal. Also Informational is not compatible with the current IANA actions. I would suggest not doing this. Cheers, John From: Paul Kyzivat <pkyzivat@alum.mit.edu> Date: Friday, 20 January 2023 at 18:32 To: draft-ietf-ace-extend-dtls-authorize.all@ietf.org <draft-ietf-ace-extend-dtls-authorize.all@ietf.org> Cc: General Area Review Team <gen-art@ietf.org>, last-call@ietf.org <last-call@ietf.org>, ace@ietf.org <ace@ietf.org> Subject: Gen-ART Last Call review of draft-ietf-ace-extend-dtls-authorize-05 I am the assigned Gen-ART reviewer for this draft. The General Area Review Team (Gen-ART) reviews all IETF documents being processed by the IESG for the IETF Chair. Please treat these comments just like any other last call comments. For more information, please see the FAQ at <https://trac.ietf.org/trac/gen/wiki/GenArtfaq>. Document: draft-ietf-ace-extend-dtls-authorize-05 Reviewer: Paul Kyzivat Review Date: 2023-01-20 IETF LC End Date: 2023-01-24 IESG Telechat date: ? Summary: This draft is on the right track but has open issues, described in the review. Issues: 1 1) ISSUE: Form and completeness of the document This document reads as a good concept document proposing how RFC 9202 could be revised to allow use of both TLS and DTLS. But it fails to do the work of actually making those revisions. It leaves that work to the reader. It is hard to believe that all readers will infer the identical set of changes. I suggest that this document's status be changed to an informational, and then work begin on an rfc9202bis document that incorporates the proposed changes.
- [Ace] Gen-ART Last Call review of draft-ietf-ace-… Paul Kyzivat
- Re: [Ace] Gen-ART Last Call review of draft-ietf-… John Mattsson
- Re: [Ace] Gen-ART Last Call review of draft-ietf-… Paul Kyzivat
- Re: [Ace] [Last-Call] Gen-ART Last Call review of… Lars Eggert