Re: [Anima] I-D Action: draft-ietf-anima-bootstrapping-keyinfra-08.txt
peter van der Stok <stokcons@xs4all.nl> Tue, 24 October 2017 10:14 UTC
Return-Path: <stokcons@xs4all.nl>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA2FD13F6F2 for <anima@ietfa.amsl.com>; Tue, 24 Oct 2017 03:14:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.722
X-Spam-Level:
X-Spam-Status: No, score=-0.722 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 48hYvqj1rTec for <anima@ietfa.amsl.com>; Tue, 24 Oct 2017 03:14:42 -0700 (PDT)
Received: from lb3-smtp-cloud9.xs4all.net (lb3-smtp-cloud9.xs4all.net [194.109.24.30]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 70E6713F6ED for <anima@ietf.org>; Tue, 24 Oct 2017 03:14:42 -0700 (PDT)
Received: from webmail.xs4all.nl ([IPv6:2001:888:0:22:194:109:20:204]) by smtp-cloud9.xs4all.net with ESMTPA id 6wEHe13aZnIXb6wEHeeIuY; Tue, 24 Oct 2017 12:14:40 +0200
Received: from AMontpellier-654-1-102-56.w90-0.abo.wanadoo.fr ([90.0.5.56]) by webmail.xs4all.nl with HTTP (HTTP/1.1 POST); Tue, 24 Oct 2017 12:14:37 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Date: Tue, 24 Oct 2017 12:14:37 +0200
From: peter van der Stok <stokcons@xs4all.nl>
To: Michael Richardson <mcr@sandelman.ca>
Cc: Brian E Carpenter <brian.e.carpenter@gmail.com>, anima@ietf.org
Organization: vanderstok consultancy
Reply-To: consultancy@vanderstok.org
Mail-Reply-To: consultancy@vanderstok.org
In-Reply-To: <20398.1507990204@obiwan.sandelman.ca>
References: <150791598017.23771.18187732712497738112@ietfa.amsl.com> <649b10ad-6a42-2622-a9b7-21ff53bda9af@gmail.com> <20398.1507990204@obiwan.sandelman.ca>
Message-ID: <098a6e991fa4ab0bf4394c4818c232a0@xs4all.nl>
X-Sender: stokcons@xs4all.nl
User-Agent: XS4ALL Webmail
X-CMAE-Envelope: MS4wfCgrs+PZc9KJQsCEft7Xd4sBPKC+tVmLjy6bqw30+6aAJmRjIDc71SOt/NRKO1pOfhuyfsgXrzNQmTxjKSKjVcJU+Bz9moRkDBkzsCsCmGBTWVbdQIxq a39NDpIPaItC4ILde62cjCitoe2uLYfW5BPq7CvDKoa33tLOSrz24mPtTCpM9X+cLW62TP70/MwJGIb8iolDcvO7bSxXS+une9aHYo0Lyx0dBgnKlJ8PRJ5G 0vFNR84HEOHcDnhs/6rMPA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/BqQGexy4y8csgZvU9EgAmrw02-M>
Subject: Re: [Anima] I-D Action: draft-ietf-anima-bootstrapping-keyinfra-08.txt
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Oct 2017 10:14:45 -0000
Hi keyinfra authors, Glad to see that so much progress has been made since the last version. I had problems with understanding some pieces of text. See below. In the terminology section, the “Join proxy” is introduced. The term is almost never used but the term “circuit proxy” is used. However, in section 4 it is mentioned that join proxy can be a circuit proxy or an IP-in-IP proxy. Therefore, I think that circuit proxy should be replaced by Join proxy, at least in the figures and the accompanying text. In section 1.3, the text from “The bootstrapping process…. such techniques when defined” is confusing in my opinion. It makes the purpose of the draft ambiguous. I recommend removing that text and replacing it with shorter text, like: “Possible constrained devices are the Join Proxy and the Pledge. Draft vanderstok-ace-est-coaps specifies how TLS/HTTP is replaced by DTLS/CoAP. Draft Richardson-anima-state-router discusses different join proxy implementations”. The above text allows removal of last 2 paragraph of section 4 before section 4.1; and removal of section 4.2. First paragraph of section 5 is difficult to parse. What is configuration in this context? End of section 5.1, what is “security paranoia”? Section 5.2 Do the two media types refer to two different requests? Why and which ones? Section 5.4 Only one request media type? Why? Voucher signature consistency, why not refer to 6402 instead of 7030? Section 5.5 2nd paragraph "If the join operation is successful", s/join operation/voucher request/ Section 5.6, paragraph 4 “The client HTTP POSTs the following…” is the client the pledge? What is the following? End of section 5.6 what is Specification Required? Hope this helps, Peter
- [Anima] I-D Action: draft-ietf-anima-bootstrappin… internet-drafts
- Re: [Anima] I-D Action: draft-ietf-anima-bootstra… Brian E Carpenter
- Re: [Anima] I-D Action: draft-ietf-anima-bootstra… Michael Richardson
- Re: [Anima] I-D Action: draft-ietf-anima-bootstra… Brian E Carpenter
- Re: [Anima] I-D Action: draft-ietf-anima-bootstra… Brian E Carpenter
- Re: [Anima] I-D Action: draft-ietf-anima-bootstra… peter van der Stok