Re: [Anima] Shepherd review draft-ietf-anima-bootstrapping-keyinfra-09
Toerless Eckert <tte@cs.fau.de> Tue, 20 February 2018 22:04 UTC
Return-Path: <eckert@i4.informatik.uni-erlangen.de>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 472FD12DB71 for <anima@ietfa.amsl.com>; Tue, 20 Feb 2018 14:04:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.959
X-Spam-Level:
X-Spam-Status: No, score=-3.959 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.25, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TuTnOFCYweeE for <anima@ietfa.amsl.com>; Tue, 20 Feb 2018 14:04:31 -0800 (PST)
Received: from faui40.informatik.uni-erlangen.de (faui40.informatik.uni-erlangen.de [131.188.34.40]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10CF5120724 for <anima@ietf.org>; Tue, 20 Feb 2018 14:04:30 -0800 (PST)
Received: from faui40p.informatik.uni-erlangen.de (faui40p.informatik.uni-erlangen.de [IPv6:2001:638:a000:4134::ffff:77]) by faui40.informatik.uni-erlangen.de (Postfix) with ESMTP id A081C58C562; Tue, 20 Feb 2018 23:04:26 +0100 (CET)
Received: by faui40p.informatik.uni-erlangen.de (Postfix, from userid 10463) id 74BB5B0DB01; Tue, 20 Feb 2018 23:04:26 +0100 (CET)
Date: Tue, 20 Feb 2018 23:04:26 +0100
From: Toerless Eckert <tte@cs.fau.de>
To: Michael Richardson <mcr+ietf@sandelman.ca>
Cc: "anima@ietf.org" <anima@ietf.org>
Message-ID: <20180220220426.GC23498@faui40p.informatik.uni-erlangen.de>
References: <20180214010910.GA27823@faui40p.informatik.uni-erlangen.de> <11878.1518662730@obiwan.sandelman.ca> <89C98637-ACD2-423A-A8C4-52191C35FA53@cisco.com> <19137.1519158417@obiwan.sandelman.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <19137.1519158417@obiwan.sandelman.ca>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/9RAlX75uS5FaZjcIxe20xscQqSw>
Subject: Re: [Anima] Shepherd review draft-ietf-anima-bootstrapping-keyinfra-09
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Feb 2018 22:04:33 -0000
I always welcome, support and root for removal, avoidance and rephrasing of redundant, unnecessary, confusing, contradicting or otherwise irritating words, sentences, phrases or other elements of IETF drafts. I just reserve the right to be pretty bad at it myself, given how i was raised with a language that is defective in this regard. See also: https://www.cs.utah.edu/~gback/awfgrmlg.html Cheers Toerless On Tue, Feb 20, 2018 at 03:26:57PM -0500, Michael Richardson wrote: > > Max Pritikin (pritikin) <pritikin@cisco.com> wrote: > >>> b) Key infrastructure > >> > >>> There is no definition/reference for this term. Please describe on > >>> first use and in terminology. Is there a difference > >>> between "key infrastructure" and "keying material" ? If not, then > >>> maybe remove one term otherwise pls. describe difference. > >> > >> The term is in the title and in section 1. > >> And you are right that it does not appear again, nor is it defined. > >> I think it generally refers to the mechanism of PKI, but I'm not sure what to do. > > > An ???infrastructure??? is the basic entities and protocols necessary for > > the operations of key management. I think it comes from the common > > language term and can???t find a normative definition within IETF > > document. As a native english speaker who has used the concept in IETF > > interactions for eons it feels silly to try and define it. Odd. > > The words "keying material" is used in the "Other Bootstrapping Approaches" > only. In that paragraph, it refers to some "other" stuff... I'm loath to > boil the ocean to define what we aren't doing... > > I suggest the insertion of the marked text: > > without external help is also an impossibility. Today it is commonly > accepted that the initial connections between nodes are insecure, until > key distribution is complete, or that domain-specific keying material > *new* (often pre-shared keys, including mechanisms like SIM cards) > is pre-provisioned on each new device in a costly and non-scalable > manner. Existing mechanisms are known as non-secured 'Trust on > > Now, to the term Key Infrastructure: > > <t hangText="(Public) Key Infrastructure:"> The collection of systems and > processes that sustain the activities of a public key system. > In an ANIMA Autonomic system, this includes a Domain > Certification Authority (CA), (Join) Registrar which acts as an > <xref target="RFC5280" /> Registrar, as well as appropriate > certificate revocation list (CRL) distribution points and/or OCSP > (<xref target="RFC6960" />) servers.</t> > > I note that RFC6960 doesn't bother to define Key Infrastructure at all, or > even use the term except in the title... > > -- > Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works > -= IPv6 IoT consulting =- > > > > _______________________________________________ > Anima mailing list > Anima@ietf.org > https://www.ietf.org/mailman/listinfo/anima -- --- tte@cs.fau.de
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Brian E Carpenter
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Toerless Eckert
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Brian E Carpenter
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Michael Richardson
- [Anima] Shepherd review draft-ietf-anima-bootstra… Toerless Eckert
- Re: [Anima] Shepherd review draft-ietf-anima-boot… peter van der Stok
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Max Pritikin (pritikin)
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Toerless Eckert
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Max Pritikin (pritikin)
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Toerless Eckert
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Toerless Eckert
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Toerless Eckert
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Max Pritikin (pritikin)
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Toerless Eckert
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Toerless Eckert
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Brian E Carpenter
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Eliot Lear
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Brian E Carpenter
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- [Anima] Proto 41 [Shepherd review draft-ietf-anim… Brian E Carpenter
- Re: [Anima] Proto 41 [Shepherd review draft-ietf-… Michael Richardson
- Re: [Anima] Proto 41 [Shepherd review draft-ietf-… Brian E Carpenter
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- [Anima] dns-sd [was Shepherd review draft-ietf-an… Brian E Carpenter
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] Shepherd review draft-ietf-anima-boot… Michael Richardson
- Re: [Anima] dns-sd [was Shepherd review draft-iet… Michael Richardson
- Re: [Anima] dns-sd [was Shepherd review draft-iet… Brian E Carpenter
- [Anima] [Closed] Re: Shepherd review draft-ietf-a… Toerless Eckert
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Brian E Carpenter
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Michael Richardson
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Toerless Eckert
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Michael Richardson
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Toerless Eckert
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Michael Richardson
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Michael Richardson
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Brian E Carpenter
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Brian E Carpenter
- Re: [Anima] [Closed] Re: Shepherd review draft-ie… Michael Richardson