[Ace] Gen-ART Last Call review of draft-ietf-ace-extend-dtls-authorize-05
Paul Kyzivat <pkyzivat@alum.mit.edu> Fri, 20 January 2023 17:32 UTC
Return-Path: <pkyzivat@alum.mit.edu>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E9707C14CEFA; Fri, 20 Jan 2023 09:32:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.999
X-Spam-Level:
X-Spam-Status: No, score=-6.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=alum.mit.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PxsE6Mu5kdGy; Fri, 20 Jan 2023 09:32:39 -0800 (PST)
Received: from NAM11-DM6-obe.outbound.protection.outlook.com (mail-dm6nam11on2075.outbound.protection.outlook.com [40.107.223.75]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 58AF6C14F727; Fri, 20 Jan 2023 09:32:38 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BBq/P6myJpFBthmbIjhO5weyMQSypAOPs4vrTKRNSDWUiab9537ya40StNsjxvRKL/800QRWzI/9CsraQr36mHevOslUiz0RXcE9fISLZtZB1Ozd2baASz5t8gCUeJfa6S5B0UBtBPLWx9B3CQElhZKke+7HOmqEFjW+CoD5WQ4pNwRvaIFpQVREx5K69BrP+s3Dzcz5C8FRbh4Dp56MbWZI7cTlPS0IatH3FnqaaOnooS/r+Nrqth6E/FoAH6Wu5Zwns8H5IOiQs6ftRs4rwDzIpXXvAYxNjFObqAr0EVd9PgDk8li0gWRi+0UWdxrjgWhMD7FGZisWgPzIr59+zg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=uZbD6fMU5RVGTTu6RnqGk/b6ZzlJhJ+v+6l9t1MAhyU=; b=T26GwOv6KhDb/L244d0EPAPqCaxV3BVUKAIUuGJXQysUseScNWAC3TYYWHz3stT5sJJYSLqit4aK7YTt0FHm5yxPtn1mc+863Waco61hC0IqQVUswYdxuUacoaOo/8aAYbYmO5Y0QePUMUoU5rBd1I1ZQuqjhezkDreG7v6N/rKWD6Zq85P2p/OBxG7lMa4umz9EsEEHUyA+sOByWlvVZIh8xiv7f7zUDl7yqrSNYkzYqnf1RMisKCD7ZwMP8KuCbJPuaEScR3F9SwVk8MhVNNtnSKnoCfML014nH8QNDD4VxiKnB82GbBkAv461bf97q2RVvW4quhSh44F/dfjkyw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 18.7.68.33) smtp.rcpttodomain=ietf.org smtp.mailfrom=alum.mit.edu; dmarc=pass (p=none sp=none pct=100) action=none header.from=alum.mit.edu; dkim=none (message not signed); arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alum.mit.edu; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=uZbD6fMU5RVGTTu6RnqGk/b6ZzlJhJ+v+6l9t1MAhyU=; b=iyYnpkTD7qU9+2OfT6PDTqBJifno3jTOxSXD/Nz0fZ3fLp29rop9oS0yuBB6Joo5HK6GozQCLP2OGyAGe25d+Pz7VxIjWRMsaXfm5muVZ42jmAdZqfPOA4Wjf3WlXTWATEKyX8wUDPrHf89o1iBpXUqU83ebZ2E4MLAaGCJ1gfo=
Received: from DM6PR17CA0035.namprd17.prod.outlook.com (2603:10b6:5:1b3::48) by DM8PR12MB5400.namprd12.prod.outlook.com (2603:10b6:8:3b::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6002.27; Fri, 20 Jan 2023 17:32:36 +0000
Received: from DM3NAM02FT058.eop-nam02.prod.protection.outlook.com (2603:10b6:5:1b3:cafe::bc) by DM6PR17CA0035.outlook.office365.com (2603:10b6:5:1b3::48) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6002.27 via Frontend Transport; Fri, 20 Jan 2023 17:32:36 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 18.7.68.33) smtp.mailfrom=alum.mit.edu; dkim=none (message not signed) header.d=none;dmarc=pass action=none header.from=alum.mit.edu;
Received-SPF: Pass (protection.outlook.com: domain of alum.mit.edu designates 18.7.68.33 as permitted sender) receiver=protection.outlook.com; client-ip=18.7.68.33; helo=outgoing-alum.mit.edu; pr=C
Received: from outgoing-alum.mit.edu (18.7.68.33) by DM3NAM02FT058.mail.protection.outlook.com (10.13.5.42) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6023.16 via Frontend Transport; Fri, 20 Jan 2023 17:32:36 +0000
Received: from [192.168.1.52] (c-73-143-251-114.hsd1.ct.comcast.net [73.143.251.114]) (authenticated bits=0) (User authenticated as pkyzivat@ALUM.MIT.EDU) by outgoing-alum.mit.edu (8.14.7/8.12.4) with ESMTP id 30KHWX0X003524 (version=TLSv1/SSLv3 cipher=AES128-GCM-SHA256 bits=128 verify=NOT); Fri, 20 Jan 2023 12:32:34 -0500
Message-ID: <27d3f8fb-1598-2eb1-a560-48428d9826ec@alum.mit.edu>
Date: Fri, 20 Jan 2023 12:32:33 -0500
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.6.1
From: Paul Kyzivat <pkyzivat@alum.mit.edu>
To: draft-ietf-ace-extend-dtls-authorize.all@ietf.org
Cc: General Area Review Team <gen-art@ietf.org>, last-call@ietf.org, ace@ietf.org
Content-Language: en-US
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-EOPAttributedMessage: 0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: DM3NAM02FT058:EE_|DM8PR12MB5400:EE_
X-MS-Office365-Filtering-Correlation-Id: 75545647-487f-44c0-4ba7-08dafb0c522e
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:18.7.68.33; CTRY:US; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:outgoing-alum.mit.edu; PTR:outgoing-alum.mit.edu; CAT:NONE; SFS:(13230022)(346002)(396003)(376002)(39860400002)(136003)(451199015)(40470700004)(36840700001)(46966006)(2906002)(26005)(186003)(786003)(2616005)(956004)(316002)(478600001)(31696002)(36860700001)(40460700003)(75432002)(86362001)(7596003)(356005)(40480700001)(82740400003)(336012)(47076005)(41320700001)(41300700001)(4326008)(5660300002)(31686004)(8936002)(70586007)(450100002)(6916009)(70206006)(82310400005)(8676002)(43740500002); DIR:OUT; SFP:1101;
X-OriginatorOrg: alum.mit.edu
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Jan 2023 17:32:36.1104 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 75545647-487f-44c0-4ba7-08dafb0c522e
X-MS-Exchange-CrossTenant-Id: 3326b102-c043-408b-a990-b89e477d582f
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=3326b102-c043-408b-a990-b89e477d582f; Ip=[18.7.68.33]; Helo=[outgoing-alum.mit.edu]
X-MS-Exchange-CrossTenant-AuthSource: DM3NAM02FT058.eop-nam02.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM8PR12MB5400
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/nLNKENqcCzRFr87ycJ2FZlT-1yk>
Subject: [Ace] Gen-ART Last Call review of draft-ietf-ace-extend-dtls-authorize-05
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Jan 2023 17:32:42 -0000
I am the assigned Gen-ART reviewer for this draft. The General Area Review Team (Gen-ART) reviews all IETF documents being processed by the IESG for the IETF Chair. Please treat these comments just like any other last call comments. For more information, please see the FAQ at <https://trac.ietf.org/trac/gen/wiki/GenArtfaq>. Document: draft-ietf-ace-extend-dtls-authorize-05 Reviewer: Paul Kyzivat Review Date: 2023-01-20 IETF LC End Date: 2023-01-24 IESG Telechat date: ? Summary: This draft is on the right track but has open issues, described in the review. Issues: 1 1) ISSUE: Form and completeness of the document This document reads as a good concept document proposing how RFC 9202 could be revised to allow use of both TLS and DTLS. But it fails to do the work of actually making those revisions. It leaves that work to the reader. It is hard to believe that all readers will infer the identical set of changes. I suggest that this document's status be changed to an informational, and then work begin on an rfc9202bis document that incorporates the proposed changes.
- [Ace] Gen-ART Last Call review of draft-ietf-ace-… Paul Kyzivat
- Re: [Ace] Gen-ART Last Call review of draft-ietf-… John Mattsson
- Re: [Ace] Gen-ART Last Call review of draft-ietf-… Paul Kyzivat
- Re: [Ace] [Last-Call] Gen-ART Last Call review of… Lars Eggert