Re: [Anima] [6tisch] [Netconf] Cross-WGs WGLC (second) on draft-ietf-anima-voucher-04 - Respond by Aug 08, 2017
Kent Watsen <kwatsen@juniper.net> Mon, 21 August 2017 15:53 UTC
Return-Path: <kwatsen@juniper.net>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A28513213F; Mon, 21 Aug 2017 08:53:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.011
X-Spam-Level:
X-Spam-Status: No, score=-3.011 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H5=-1, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4vKqtksR6Xv5; Mon, 21 Aug 2017 08:53:05 -0700 (PDT)
Received: from NAM01-BN3-obe.outbound.protection.outlook.com (mail-bn3nam01on0109.outbound.protection.outlook.com [104.47.33.109]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CD3E9132026; Mon, 21 Aug 2017 08:53:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=pytki0EiuGJ36EWRO2PDAeEwvuTS9sft70xTuIVPR6w=; b=Hcsvf3LEajESu1gR2a7xTZngXODk0AK/DrheNHFg4cqhbdUtecM9FbIUnXi2SZmnV6QdPJhVT+0iMnDiTGOsrqNt/B4EwM+z/qt6LnzXJsmYI3/dLI7qa/tGBiA1AfX7l1E62kp1OM4SFMKgpHlGzPq3EBGoTL2io5dgaCDgy5U=
Received: from CY1PR0501MB1450.namprd05.prod.outlook.com (10.160.149.11) by CY1PR0501MB2170.namprd05.prod.outlook.com (10.164.3.156) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.1.1385.4; Mon, 21 Aug 2017 15:53:02 +0000
Received: from CY1PR0501MB1450.namprd05.prod.outlook.com ([10.160.149.11]) by CY1PR0501MB1450.namprd05.prod.outlook.com ([10.160.149.11]) with mapi id 15.01.1385.008; Mon, 21 Aug 2017 15:53:02 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: "consultancy@vanderstok.org" <consultancy@vanderstok.org>
CC: "anima-chairs@ietf.org" <anima-chairs@ietf.org>, "6tisch@ietf.org" <6tisch@ietf.org>, "netconf@ietf.org" <netconf@ietf.org>, "anima@ietf.org" <anima@ietf.org>, Sheng Jiang <jiangsheng@huawei.com>
Thread-Topic: [6tisch] [Netconf] [Anima] Cross-WGs WGLC (second) on draft-ietf-anima-voucher-04 - Respond by Aug 08, 2017
Thread-Index: AdMKmFTPR22MviVNQvGwNG9FbFt4tQAG0+8AAvnwfwAAVqYFgAADVm+AAJM6s4AACPICgA==
Date: Mon, 21 Aug 2017 15:53:02 +0000
Message-ID: <599334D6-083B-45B2-B3CB-0D048D2BAEAF@juniper.net>
References: <5D36713D8A4E7348A7E10DF7437A4B927CE3D826@NKGEML515-MBX.china.huawei.com> <76229c58f5d60d3a0c185c6645ba4355@xs4all.nl> <3F9D68E6-57C9-48EF-A4EB-3CA8B613D42D@juniper.net> <1fee7f82c855def7345d506fbb720dbc@xs4all.nl> <8168023A-AC1F-4A7E-B8BA-026651EFEF33@juniper.net> <d508d9834764e62af74957e3224430b9@xs4all.nl>
In-Reply-To: <d508d9834764e62af74957e3224430b9@xs4all.nl>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.20.0.170309
authentication-results: spf=none (sender IP is ) smtp.mailfrom=kwatsen@juniper.net;
x-originating-ip: [66.129.241.14]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; CY1PR0501MB2170; 6:i5lPY6YKR+ZSiZiYLFevsNIhiDjjsGgZk/eyhnag5z40+L9PlV2J9eOTxuBKnh+P0WepJZnDHTSXCWP0R2EEgMEr1qG9qbn8zxSuFXf19EeKGgTIsaMnCNO7pEqqHdEipTyGwbM27cNn1d1NCOlr7g7P1ONUVIoA8MUzceQHkjVzwxXn7zUb2IdOq4y+ApORiA9Dy8/paoA2u8wRE4enf4B/dvlz7dngQ7Lw9onbjziI1XKeMPocl7i9lnIAXV/+tFijnRhtob31UprYCzf3ds8egcAIjpOXOQX31WdLaqFVv4zwE3r9pPx4RT1oKlIoCUm0UDMTxbcP/1842lpvag==; 5:yOkTMQCtKbhzO6lHjeFALFoBa6GlTDMfKb5taawseC/3HOdoATrCtQexelJx01oNBHMfMk++pdm+1+PdphtriNJya7jBN/4kPMDh1yWsx0mKtE/FzB+cBFfV2LEWr/VexJgzesD1bXaVk0umdkPd0w==; 24:wVMMFD6zGpNUxVqiLW8EdToZKLMoPtZ+FS3+ySrbnjRCx6sGinBlptxBuK4hO9VZZvjeJiXCuEm4Gn1bS7BP7Pb7qiK8Bw7uoqlzHiPyOFQ=; 7:JX2juk1BOk5evGC+VCWNeowdvFde45n3NxChiUQVfYv277ofkJnmg86Gp6HmgGv7wlk50Icq+EVjeoG6jM8AUH+qjvKIbHz+06yXSNjwjxtgDWaNB4pkBZ3CRgzcm+ZhpL2urAHGP/AE8h6rY4QqMW7Y+87xtSP34ze3pMQG2PK74cUUATmk9UwZ5caoMa3WPmPXGiUSh6A6LYroMfvcMlYdd2HVzmhN5238mzDnsEk=
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 2da59772-b817-4f03-9955-08d4e8acb481
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254152)(48565401081)(300000503095)(300135400095)(2017052603031)(201703131423075)(201703031133081)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:CY1PR0501MB2170;
x-ms-traffictypediagnostic: CY1PR0501MB2170:
x-exchange-antispam-report-test: UriScan:(60795455431006)(17755550239193);
x-microsoft-antispam-prvs: <CY1PR0501MB21708EED1B9DEA33941913E1A5870@CY1PR0501MB2170.namprd05.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(8121501046)(5005006)(3002001)(93006095)(93001095)(100000703101)(100105400095)(10201501046)(6055026)(6041248)(20161123564025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123562025)(20161123558100)(20161123555025)(20161123560025)(6072148)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:CY1PR0501MB2170; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:CY1PR0501MB2170;
x-forefront-prvs: 040655413E
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(39860400002)(199003)(43784003)(189002)(68736007)(81166006)(25786009)(83506001)(7736002)(105586002)(305945005)(83716003)(110136004)(8936002)(4326008)(3660700001)(230783001)(2900100001)(33656002)(2501003)(6246003)(106356001)(93886005)(8676002)(1730700003)(478600001)(36756003)(81156014)(2351001)(3846002)(66066001)(966005)(102836003)(6116002)(86362001)(82746002)(6306002)(2906002)(6506006)(53936002)(6486002)(77096006)(5660300001)(6436002)(229853002)(99286003)(6512007)(101416001)(2950100002)(5640700003)(6916009)(3280700002)(54906002)(54356999)(189998001)(97736004)(4001350100001)(50986999)(76176999)(14454004); DIR:OUT; SFP:1102; SCL:1; SRVR:CY1PR0501MB2170; H:CY1PR0501MB1450.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <66B6EA7E9F9E2E44B5158E44B15A2DD0@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Aug 2017 15:53:02.4306 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR0501MB2170
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/Jr7f0WcoYrbACaJPM8urMmfdPB8>
Subject: Re: [Anima] [6tisch] [Netconf] Cross-WGs WGLC (second) on draft-ietf-anima-voucher-04 - Respond by Aug 08, 2017
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Aug 2017 15:53:09 -0000
Hi Peter, Thanks, I think we've reached closure. Please review the diffs to the latest. https://www.ietf.org/rfcdiff?url2=draft-ietf-anima-voucher-05 Thanks again, Kent -- Hi Kent, >>> Can a discussion section about "manufacturer additions" be >>> added. Pointing out the consequences for interoperability >>> when using "Augment" to add manufacturer specifics can be >>> helpful. >> >> I'm confused, which section does this comment regard? > > It refers to the document as a whole and especially section 7. > Usually, manufacturers want manufacturer-specific additions to > documents. > They may consider to use Augment for that purpose. > My suggestion is to discuss ways to add manufacturer additions to the > voucher and the consequences. > That may turn out to be a big NO-NO to manufacturer additions. > I think it would be worthwhile to point that out. > > <KENT> Are you asking for the voucher to contain a node > called something like 'opaque' having YANG type 'anyData'? > A sanctioned place where the MASA can stash some extra > stuff not defined by this document? Recall that some of > the motivation for this work being standardized is to > enable inspection by intermediates, and while the opaque > data could be presented to a human, it might be base64 > data. Any concerns bout that? <pvds> My suggestion is a discussion not a standardization. So, no additions to the voucher in this document. However, pointing out the base64 format would be helpful for those thinking about an addition with opaque. </pvds> > >> page 4, Voucher: add: that "acknowledges ownership of the pledge and" >> indicates... >> >> <KENT> what does "acknowledges ownership of the pledge" mean? how >> is it different than "indicates to a Pledge the cryptographic identity >> of the Domain it should trust"? > > Now I am confused. I thought it was 2 ways. Pledge trusts domain, and > domain partners trust pledge. > > <KENT> The pledge trusts the MASA (which signs the voucher) and then > the pledge trusts the domain (whose cert is inside the voucher). > Perhaps you're conflating signing the voucher with acknowledging > ownership? <pvds> I am afraid, that I made the voucher responsible for all keyinfra protocol objectives. Sorry, for the confusion. </pvds> > >
- [Anima] Cross-WGs WGLC (second) on draft-ietf-ani… Sheng Jiang
- Re: [Anima] Cross-WGs WGLC (second) on draft-ietf… peter van der Stok
- Re: [Anima] [6tisch] Cross-WGs WGLC (second) on d… Michael Richardson
- Re: [Anima] [Netconf] Cross-WGs WGLC (second) on … Kent Watsen
- Re: [Anima] [6tisch] [Netconf] Cross-WGs WGLC (se… peter van der Stok
- Re: [Anima] [6tisch] [Netconf] Cross-WGs WGLC (se… Kent Watsen
- Re: [Anima] [6tisch] [Netconf] Cross-WGs WGLC (se… peter van der Stok
- Re: [Anima] [6tisch] [Netconf] Cross-WGs WGLC (se… Kent Watsen
- Re: [Anima] [6tisch] [Netconf] Cross-WGs WGLC (se… peter van der Stok