Re: [alto] SECDIR review of draft-ietf-alto-new-transport-07
Lachlan Keller <lachlan.keller@yale.edu> Thu, 30 March 2023 21:46 UTC
Return-Path: <lachlan.keller@yale.edu>
X-Original-To: alto@ietfa.amsl.com
Delivered-To: alto@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C22E3C151B14 for <alto@ietfa.amsl.com>; Thu, 30 Mar 2023 14:46:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.096
X-Spam-Level:
X-Spam-Status: No, score=-7.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=yale.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F2VwJApMIMOz for <alto@ietfa.amsl.com>; Thu, 30 Mar 2023 14:46:50 -0700 (PDT)
Received: from mail-ed1-x529.google.com (mail-ed1-x529.google.com [IPv6:2a00:1450:4864:20::529]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DC6DBC14CE2B for <alto@ietf.org>; Thu, 30 Mar 2023 14:46:50 -0700 (PDT)
Received: by mail-ed1-x529.google.com with SMTP id ek18so82139117edb.6 for <alto@ietf.org>; Thu, 30 Mar 2023 14:46:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yale.edu; s=googleprd; t=1680212808; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=8oUib1WBTMviMywPGeagFgmYrpHCh8YqDFzm64WbGPU=; b=1PXhDpuNb1g8rUAwTJez6+LL45yhMjGOPWLY7y+Scj3aUWPDE48ORLlixVHFvBPx3p 8xhhixmSU5SycJPY22YTudbLQdnaOHrg4j9eW6XZgpmCRninE1dsrLkRzgrmc9rewGcH mVAPLN2l+tGTb/HqZ0uePv1jLJo4aBXJ1ewcE=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1680212808; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=8oUib1WBTMviMywPGeagFgmYrpHCh8YqDFzm64WbGPU=; b=EHNhlh60ar5tnXRQbVAzughipGsvXS4Px0ZP+zbnnlsjDefmkoAtH1DN0O0pNeXyvV 14oEI7enIgQgQ+6Pj08x4p3Fu2Bf6JEvWGobZpMALDk3qYSVRKl2e70vNPe1x1VNkeEq LCp98HjMsEyhas9Lfs/7RDbtCSV8Nrcv1CkiCy7DTlXiiaBTsMs0H0H+rzPgoMsqX19r q5E5I0K1+UjEWruDTAV05eGSxnt8a6yLi7S8rehhG7V/N9+WrqiQiFeNAtp2wU0oyJca 2nKInE4jpeQ6XnRBWJk9pcaI/dV4U7Ni+foOGOKt/ESnoJ9Y5dmTPuE/vGOmYQbGaJ+1 UhLQ==
X-Gm-Message-State: AAQBX9cT277rIhbZ7Unng+k9GK0xxmNt+j8j8XLZEYgM9EsMSlIzwPaD KepCK06hBsb7qPAlhjrOUrhQT4iGmuJyZhwRY6ya+g==
X-Google-Smtp-Source: AKy350a9PTjMq6rwWua8OK5nOysst9ZjG82eEejk7Y6+3x21ZDwHQXb7QyiaPARSDOJpKo6P5YCcWF171ArqNo2WnwQ=
X-Received: by 2002:a17:906:4f1a:b0:930:528b:91e5 with SMTP id t26-20020a1709064f1a00b00930528b91e5mr12190664eju.4.1680212808670; Thu, 30 Mar 2023 14:46:48 -0700 (PDT)
MIME-Version: 1.0
References: <CAF4+nEHvsgTs3DKz99sa3Uqxz2wkbpXcChqiknUtA4WQLcxvqg@mail.gmail.com>
In-Reply-To: <CAF4+nEHvsgTs3DKz99sa3Uqxz2wkbpXcChqiknUtA4WQLcxvqg@mail.gmail.com>
From: Lachlan Keller <lachlan.keller@yale.edu>
Date: Thu, 30 Mar 2023 17:46:22 -0400
Message-ID: <CAOj3RjYk51ev2FwJtBRrr1LTuSLyZdFaEnkdPoWuiq+0ExXaOg@mail.gmail.com>
To: Donald Eastlake <d3e3e3@gmail.com>
Cc: "iesg@ietf.org" <iesg@ietf.org>, secdir <secdir@ietf.org>, draft-ietf-alto-new-transport.all@ietf.org, IETF ALTO <alto@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000009bb57f05f8250754"
Archived-At: <https://mailarchive.ietf.org/arch/msg/alto/yePDi_ShSppTYHtog5xruIEWOZI>
Subject: Re: [alto] SECDIR review of draft-ietf-alto-new-transport-07
X-BeenThere: alto@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Application-Layer Traffic Optimization \(alto\) WG mailing list" <alto.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/alto>, <mailto:alto-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/alto/>
List-Post: <mailto:alto@ietf.org>
List-Help: <mailto:alto-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/alto>, <mailto:alto-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Mar 2023 21:46:54 -0000
Hi Donald, Thank you so much for your review and comments. Please see the responses inline. Best, Lachlan On Tue, Mar 28, 2023 at 11:10 AM Donald Eastlake <d3e3e3@gmail.com> wrote: > I have reviewed this document as part of the security directorate's > ongoing effort to review all IETF documents being processed by the IESG. > Document editors and WG chairs should treat these comments just like any > other comments. > > The summary of the review is Ready with Nits. > > *Security:* > > While I'm not all that into ALTO, it seems to me that this draft is all > about messages and message exchanges between ALTO entities where the > security (authentication, encryption, ...) has been specified in previous > standards track documents such as RFC 7285. There are a few additional > security considerations which seem to be well covered by the Security > Considerations section of this draft. > > *Nits:* > > Section 1.0, Page 4: > OLD > functioning for HTTP/1.x. TIPS also provides an ALTO server to > NEW > functioning for HTTP/1.x. TIPS also provides for an ALTO server to > LACHLAN: fixed > > Section 2.1.1, Page 8: Seems too vague. A sentence about tips-view-uri > wouldn't hurt. At the bottom it says "Use the URI as above". Which URI > above? What exactly does "use" mean? > LACHLAN: Thanks for this comment - propose changing "Use the URI as above" to "Construct same URIs as with client pull for push promise URIs." As for the tips-view-uri clarification, propose adding "<tips-view-uri> // relative URI to TIPS view (see Section 4.2)" > > Section 2.2, Page 9, Figure 3: Figure looks kind of incomplete. Shouldn't > there be arrows from R1 to R2/R3? > LACHLAN: You are right that figure 3 is technically incomplete. We will move it to the appendix as it was supposed to just show the thought process of part of the design decisions we made. > > Section 2.3, Page 10: In the text on "Information Resource Directory" the > first sentence is confusing. What is the thing that is requested to > discover? Maybe you should replace "Requested" at the start of the sentence > with "Produced when a server is requested"... > LACHLAN: Propose changing text to "Contains a list of available information resources provided by an ALTO server that can be requested by ALTO clients" to clarify the section. > > Section 2.3, Page 11 at top: That's Figure 4, not 1. > LACHLAN: good catch > > Section 2.4, Page 12, 1st paragraph: I think a service runs "over" a > connection, not "inside" a connection. > LACHLAN: fixed > > Section 4.4, Page 23: Seems kind of feeble. How about, given that a > disconnect is treated as a DELETE, something like the following, which > probably implies that the server maintains a use count. (This document need > not mention such a count.) > OLD > set associated with the TIPS view. A server will not want to delete > NEW > set associated with the TIPS view. A server MUST NOT delete > > LACHLAN: Great point. Because there are actually multiple options with how to treat the DELETE, we’ve now added a new considerations section that discusses management of shared TIPS views for clarity. See Kai’s response to the ART ART review for more details, where this was pointed out as well. > > Thanks, > Donald > =============================== > Donald E. Eastlake 3rd +1-508-333-2270 (cell) > 2386 Panoramic Circle, Apopka, FL 32703 USA > d3e3e3@gmail.com >
- [alto] SECDIR review of draft-ietf-alto-new-trans… Donald Eastlake
- Re: [alto] SECDIR review of draft-ietf-alto-new-t… Lachlan Keller
- Re: [alto] SECDIR review of draft-ietf-alto-new-t… Donald Eastlake