Re: [Ace] Barry Leiba's No Objection on draft-ietf-ace-coap-est-17: (with COMMENT)
Barry Leiba <barryleiba@computer.org> Fri, 27 December 2019 14:25 UTC
Return-Path: <barryleiba@gmail.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C5CBF120052; Fri, 27 Dec 2019 06:25:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.401
X-Spam-Level:
X-Spam-Status: No, score=-1.401 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.249, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iD3qzH5jHoJF; Fri, 27 Dec 2019 06:25:08 -0800 (PST)
Received: from mail-io1-f65.google.com (mail-io1-f65.google.com [209.85.166.65]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 35328120046; Fri, 27 Dec 2019 06:25:08 -0800 (PST)
Received: by mail-io1-f65.google.com with SMTP id v3so25923979ioj.5; Fri, 27 Dec 2019 06:25:08 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=gVdfYM0yIzNKYdF3gQ8gE1ku8c8OkWTyKHWrOWm0iMY=; b=s26vMce4Z64QknktzU4pERf7Wc47mVpSV7eSSuIAAx1FCS9ldZEk7a4Yvco0ma0qIE P0C7cRzWu4EhS7JSgWZBkbs3BjcIAErYlSnf4z26rUNORy+myAew1UAcxKD9B+kiYabg QrWKYnxMBb6t+hqlQwmHUtQnOgXYkiodnpLjvEmGpFCr4kPr7I3ne2hXIXRV3WMPqPz2 O7ArFmA2F8Nesr+z3JazowXByaI+JO5teRtm3Rg43f0JT3gzAig33IaYkqGT4PXBEhIB 2s60X9r9b69Jo8mBR5Ce69CkIEnrEK7kNWb452fUllSEAOxaj5ldDV0kzyEbzAvL+gmd 1w+A==
X-Gm-Message-State: APjAAAVzEFDdziyM3+RnOwUukjCnNW6DA3U2O7mQgHrF93sCeoJ5j/7L BQnoVNg+htvMmXpOpQ2YgYvPz2yu4UwuhBMz808=
X-Google-Smtp-Source: APXvYqyffV0bxBYWfJ4v+7DlMEITddQ64mY4aQx8A7NsJyQDWRElXPFAbnk4Z/vQKeJHuUqY/oqyNtWGszdULHRqHzQ=
X-Received: by 2002:a5e:d907:: with SMTP id n7mr31599992iop.187.1577456707193; Fri, 27 Dec 2019 06:25:07 -0800 (PST)
MIME-Version: 1.0
References: <157655152334.24617.3401591731456466633.idtracker@ietfa.amsl.com> <BN7PR11MB25476B4B22CED73F2DA25A4BC92F0@BN7PR11MB2547.namprd11.prod.outlook.com> <BN7PR11MB25479D9113B80CE5A76AB63CC9290@BN7PR11MB2547.namprd11.prod.outlook.com>
In-Reply-To: <BN7PR11MB25479D9113B80CE5A76AB63CC9290@BN7PR11MB2547.namprd11.prod.outlook.com>
From: Barry Leiba <barryleiba@computer.org>
Date: Fri, 27 Dec 2019 09:24:56 -0500
Message-ID: <CALaySJKZruFdBppsLkFeh7WgZiwCUHsWnvsijuW-W+JyHz2PKA@mail.gmail.com>
To: "Panos Kampanakis (pkampana)" <pkampana@cisco.com>
Cc: The IESG <iesg@ietf.org>, "draft-ietf-ace-coap-est@ietf.org" <draft-ietf-ace-coap-est@ietf.org>, "ietf@augustcellars.com" <ietf@augustcellars.com>, "ace-chairs@ietf.org" <ace-chairs@ietf.org>, "ace@ietf.org" <ace@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/n-ySR8O6eJwLab0YqU1QlQ0WXLU>
Subject: Re: [Ace] Barry Leiba's No Objection on draft-ietf-ace-coap-est-17: (with COMMENT)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Dec 2019 14:25:10 -0000
Thanks, Panos; it all looks good, and thanks for considering my comments. Barry On Tue, Dec 24, 2019 at 10:50 AM Panos Kampanakis (pkampana) <pkampana@cisco.com> wrote: > > Hi Barry, > > This commit https://github.com/SanKumar2015/EST-coaps/commit/01f7014e2348d09c0a1ff768eea7d53f4c5471f2 tries to address your feedback. The full discussion is in https://github.com/SanKumar2015/EST-coaps/issues/153 > > Let us know if it does not make sense. > > Rgs, > Panos > > -----Original Message----- > From: Ace <ace-bounces@ietf.org> On Behalf Of Panos Kampanakis (pkampana) > Sent: Saturday, December 21, 2019 10:49 PM > To: Barry Leiba <barryleiba@computer.org>; The IESG <iesg@ietf.org> > Cc: draft-ietf-ace-coap-est@ietf.org; ietf@augustcellars.com; ace-chairs@ietf.org; ace@ietf.org > Subject: Re: [Ace] Barry Leiba's No Objection on draft-ietf-ace-coap-est-17: (with COMMENT) > > Hi Barry, > > Thank you for the thorough review. We are tracking your feedback and our responses in a git issue https://github.com/SanKumar2015/EST-coaps/issues/153 We mostly confirm all your minor text changes and nit fixes. The TBD one we will not fix as we are waiting on IANA. > > Let us know if something does not make sense. > > Rgs, > Panos > > > -----Original Message----- > From: Ace <ace-bounces@ietf.org> On Behalf Of Barry Leiba via Datatracker > Sent: Monday, December 16, 2019 9:59 PM > To: The IESG <iesg@ietf.org> > Cc: draft-ietf-ace-coap-est@ietf.org; ietf@augustcellars.com; ace-chairs@ietf.org; ace@ietf.org > Subject: [Ace] Barry Leiba's No Objection on draft-ietf-ace-coap-est-17: (with COMMENT) > > Barry Leiba has entered the following ballot position for > draft-ietf-ace-coap-est-17: No Objection > > When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-ace-coap-est/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Thanks for this — a useful document. I have a bunch of comments, but they’re all editorial. Please consider them, but there’s not a need to give a detailed reply. > > -- Section 4 -- > > In that case, the > server MAY want to authenticate a client certificate against its > trust store although the certificate is expired (Section 10). > > Total nit: Why "want to"? Why not "server MAY authenticate"? > > As described in Section 2.1 of [RFC5272] proof-of-identity refers to > a value that can be used to prove that the private key corresponding > to the certified public key is in the possession of and can be used > by an end-entity or client. > > I find the passive voice to be quite awkward here, and suggest making it active: > > NEW > As described in Section 2.1 of [RFC5272], proof-of-identity refers > to a value that can be used to prove that an end-entity or client is > in possession of and can use the private key corresponding to the > certified public key. > END > > the event of handshake message fragmentation, the Hash of the > handshake messages used in the MAC calculation of the Finished > message must be computed as if each handshake message had been sent > as a single fragment (Section 4.2.6 of [RFC6347]). > > I know this wording is directly from 6347, but I think it's unclear and would like to suggest an alternative. The "as a single fragment" part is odd, because I think what it's really saying is that it's computed as if it had not been fragmented. My suggestion is to change it thus (and similarly for the next paragraph after): > > NEW > the event of handshake message fragmentation, the Hash of the > handshake messages used in the MAC calculation of the Finished > message must be computed on each reassembled message, as if > each handshake message had not been fragmented (Section 4.2.6 > of [RFC6347]). > END > > If that's not correct, please take that as further evidence that it's unclear, and adjust accordingly. > > To alleviate this > situation, an EST-coaps DTLS connection MAY remain open for > sequential EST transactions which was not the case with [RFC7030]. > For example, an EST csrattrs request that is followed by a > simpleenroll request can use the same authenticated DTLS connection. > > Two total nits: > a. Comma before "which", please. > b. The "for example" needs some rewording to make it work: > NEW > For example, if an EST csrattrs request is followed by a > simpleenroll request, both can use the same authenticated > DTLS connection. > END > > -- Section 5.1 -- > > EST-coaps is targeted for low-resource networks with small packets. > Two types of installations are possible (1) rigid ones where the > address and the supported functions of the EST server(s) are known, > and (2) flexible one where the EST server and it supported functions > need to be discovered. > > This needs a colon (:) after "possible", a comma after "rigid ones", "a" before "flexible one", another comma after "flexible one", and make it "its supported". > > -- Section 5.5 -- > > Similarly, 2.04 > > is used in successfull response to EST-coaps POST requests (/sen, > /sren, /skg, /skc). > > There's odd spacing here; please fix it. And "successful" is misspelled. > > -- Section 5.7 -- > > If the server is very slow (i.e., minutes) in providing the response > (i.e., when a manual intervention is needed), > > I think you mean "e.g." for both of those, evidence for my general aversion to using Latin abbreviations that many people don't fully understand. It also feels odd to have the two examples separated in this way. I suggest this: > > NEW > If the server is very slow in providing the response (for example, > manual intervention is required and it could take minutes for it > to respond), > END > > it SHOULD respond with > an ACK containing response code 5.03 (Service unavailable) and a Max- > Age Option to indicate the time the client SHOULD wait to request the > content later. > > Perhaps, "to indicate the time the client SHOULD wait before sending another request to obtain the content." ? > > After a delay of Max-Age, the client SHOULD resend > the identical CSR to the server. As long as the server responds with > response code 5.03 (Service Unavailable) with a Max-Age Option, the > client SHOULD keep resending the enrollment request until the server > responds with the certificate or the client abandons the request for > other reasons. > > That last sentence reads very strangely to me. It SHOULD keep resending the request until it decides to stop? What does that actually mean? > > Maybe what you're really trying to say is something like this?: > > NEW > As long as the server continues responding with > response code 5.03 (Service Unavailable) with a Max-Age Option, the > client will continue to delay for Max-Age and then resend the > enrollment request until the server responds with the certificate or > the client abandons the request for policy or other reasons. > END > > -- Section 5.8 -- > > In scenarios where it is desirable that the server generates the > private key, server-side key generation is available. > > This seems like a content-free sentence. Maybe this?: > > NEW > Private keys can be generated on the server. Scenarios where > that makes sense include those where it is considered more > secure... > END > > Of course, that does not eliminate the > need for proper random numbers in various protocols like (D)TLS > (Section 10.1). > > May I suggest this?: > > NEW > As always, it is necessary to use proper random numbers in > various protocols such as (D)TLS (Section 10.1). > END > > server or proxy to generate the private key and the certificate which > are transferred back to the client > > Needs a comma before "which". > > or the asymmetric keypair establishment method is out of scope of the > specification. > > "of this specification". > > [I-D.ietf-core-multipart-ct] containing a CBOR array with four items > > (Section 5.3) > > . The two representations > > More odd spacing. > > Dependent on the request, the > private key can be in unprotected PKCS#8 [RFC5958] format > > "Depending upon the request" > > In > the case where the asymmetric encryption key is suitable for > transport key operations the generated private key is encrypted with > a symmetric key which is encrypted by the client-defined (in the CSR) > asymmetric public key and is carried in an encryptedKey attribute in > a KeyTransRecipientInfo structure. > > Long sentence that needs punctuation: comma after "operations", comma before "which", comma before "and". Also, I would move "(in the CSR)" a few words later, after "public key". > > -- Section 7 -- > > It is recommended, based on experiments, > > to follow the default CoAP configuration parameters ([RFC7252]). > > Odd spacing, again. But "it is recommended to follow" is also odd English. I suggest making this active, rather than passive, thus: > > NEW > Implementations should follow the default CoAP configuration > parameters ([RFC7252]). > END > > I don't think the "based on experiments" bit adds anything, but if you want to keep it you can prepend "Experiments have shown that" to my suggestion. > > -- Section 9.1 -- > Don't you want to remove the "TBD" on "TBD287" here? Wasn't the "TBD" just a flag to remind people that it hadn't been formally allocated yet? > > — Section 10.1 — > > It is important to note that sources contributing to the randomness > pool used to generate random numbers on laptops or desktop PCs are > not available on many constrained devices, such as mouse movement, > timing of keystrokes, or air turbulence on the movement of hard drive > heads, as pointed out in [PsQs]. > > The sentence order is wrong here. For example, mouse movement is not a constrained device. The correct order is more like this: > > NEW > It is important to note that, as pointed out in [PsQs], sources > contributing to the randomness pool used to generate random > numbers on laptops or desktop PCs, such as mouse movement, > timing of keystrokes, or air turbulence on the movement of hard > drive heads, are not available on many constrained devices. > END > > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace
- [Ace] Barry Leiba's No Objection on draft-ietf-ac… Barry Leiba via Datatracker
- Re: [Ace] Barry Leiba's No Objection on draft-iet… Panos Kampanakis (pkampana)
- Re: [Ace] Barry Leiba's No Objection on draft-iet… Panos Kampanakis (pkampana)
- Re: [Ace] Barry Leiba's No Objection on draft-iet… Barry Leiba