IETF Logo Mail Archive

[Anima] AD review of draft-ietf-anima-jws-voucher-10

Mahesh Jethanandani <mjethanandani@gmail.com> Tue, 27 August 2024 22:46 UTC

Return-Path: <mjethanandani@gmail.com>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 38F12C1CAF2A; Tue, 27 Aug 2024 15:46:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2377ELr6x44t; Tue, 27 Aug 2024 15:46:13 -0700 (PDT)
Received: from mail-pl1-x632.google.com (mail-pl1-x632.google.com [IPv6:2607:f8b0:4864:20::632]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 57355C14CEFF; Tue, 27 Aug 2024 15:46:12 -0700 (PDT)
Received: by mail-pl1-x632.google.com with SMTP id d9443c01a7336-201e52ca0caso42959885ad.3; Tue, 27 Aug 2024 15:46:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1724798771; x=1725403571; darn=ietf.org; h=to:cc:date:message-id:subject:mime-version:from:from:to:cc:subject :date:message-id:reply-to; bh=hP85l/OOdHz/MIYUkicu8K5Ymht3XWHXTxyddqlQJEg=; b=jdXUWy4I4a4r/2xpA08XEyRLODF9JoQf5oihNFgBu1IRXAbakOXmzFRYC6KwM0OKBL F89V80qgV/uIhV1RpZxzTP1eYFH7Eo0lKLkkzHJKeufIM37HHO6B2mdgubVX2Aav00xl yMHDb7SH8vWpfC0yJRUqjTixPkcNV1gJlzHNBYAdevGC0Ipz4ZvnZZiTjKvu4U6fxBWl fc/oWk4bdnVmITYWGJ9uGtDYjOXw1pqVfX1InzNmW/rdRI+Q/Cu7guKk02ImgD1MNAVD X77AR9CGcJBs6J2Jwr9zubiL8uD8x95OyAIVWGQZ5cxLjaKwGQ58ShoXIJZXvCHzazId 4WcA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1724798771; x=1725403571; h=to:cc:date:message-id:subject:mime-version:from:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=hP85l/OOdHz/MIYUkicu8K5Ymht3XWHXTxyddqlQJEg=; b=RjsJnEU++gqtr7Lm34SCHFu6pJcAhOGempuIGAfkcsDJ4x9Sq5/hsagYCkW0FwxluD xFno0+FfJQ0Kd7ekgQ/Sm9wDE5ZayMANEJ3XZganFaYK0gD3Yb2iE6yflQkew0YyNTIM TZZok3E/ba3REWVjV58qnOHEZgXMrpSC9l7vouTPRatwogfLKMF3cupfitUHTB3kAhGf U+OSturn8kNDT4w/HnDGTGP/kKVWbnklNeNutbHZGiIpp8abqjW+92V62J5zPaU9c3G4 /TmXUBQ90CJniZoB0JaztAEX4H3KvN9ag56PKM1GqdixcyLb6b1XoEjKUVXkIen1I7c5 vaPA==
X-Forwarded-Encrypted: i=1; AJvYcCUUdakCt35L04qekpXP7XvDRslsHM4OAQyOrmi7yEg+Ww/CwBTpbjDUTJApDkrkiN0ZEUt7jA==@ietf.org
X-Gm-Message-State: AOJu0Yy/avvzPO1o+0hnnb9YGbD58Ote3dmb/Oml1v9OQOr9SUKUkWF8 QZwXEpHvBZRFBgBHC+0/2WfZe9UzAW761iXfWcjkmdNxdek2CzJQ2TQVmlVgTTk=
X-Google-Smtp-Source: AGHT+IGTHfDy9O7qhxgPIaho87BnhOGKkAstAIlOT3gSVdY7zGgmBa/h+CRhOjnOaDu9SmSvpcOP5g==
X-Received: by 2002:a17:903:1d0:b0:202:330f:1512 with SMTP id d9443c01a7336-2039e4e84e1mr135576765ad.44.1724798771073; Tue, 27 Aug 2024 15:46:11 -0700 (PDT)
Received: from smtpclient.apple ([70.234.233.187]) by smtp.gmail.com with ESMTPSA id d9443c01a7336-203855811fcsm87753355ad.103.2024.08.27.15.46.09 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Tue, 27 Aug 2024 15:46:09 -0700 (PDT)
From: Mahesh Jethanandani <mjethanandani@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_B2B62351-55B5-4B12-8F95-619AD3D30887"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.15\))
Message-Id: <8D26525D-BEE5-427C-ABA4-5F4B5A1021D1@gmail.com>
Date: Tue, 27 Aug 2024 15:46:08 -0700
To: draft-ietf-anima-jws-voucher@ietf.org
X-Mailer: Apple Mail (2.3654.120.0.1.15)
Message-ID-Hash: QQXJY4CJBH4CIN3HLV4HOMV5QC6NPPYF
X-Message-ID-Hash: QQXJY4CJBH4CIN3HLV4HOMV5QC6NPPYF
X-MailFrom: mjethanandani@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-anima.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: anima-chairs@ietf.org, anima@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Anima] AD review of draft-ietf-anima-jws-voucher-10
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/WktHzFruwOPXjQWN1O8xeRQWQME>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Owner: <mailto:anima-owner@ietf.org>
List-Post: <mailto:anima@ietf.org>
List-Subscribe: <mailto:anima-join@ietf.org>
List-Unsubscribe: <mailto:anima-leave@ietf.org>

Back in February I had provided comments as an individual contributor. Thanks for addressing them.

This is my AD comments that are divided between COMMENTs and NITs. I hope to see responses to the COMMENTs. while NITs are there FYI. 


-------------------------------------------------------------------------------
COMMENT
———————————————————————————————————————

This document updates RFC8366, but does not seem to include explanatory text
about this in the abstract.

"Abstract", paragraph 0
>    [I-D.draft-ietf-anima-rfc8366bis] defines a digital artifact called
>    voucher as a YANG-defined JSON document that is signed using a
>    Cryptographic Message Syntax (CMS) structure.  This document
>    introduces a variant of the voucher artifact in which CMS is replaced
>    by the JSON Object Signing and Encryption (JOSE) mechanism described
>    in RFC7515 to support deployments in which JOSE is preferred over
>    CMS.

An Abstract cannot have a reference. Please change the reference to I-D.draft-ietf-anima-rfc8366bis to plain text.

Section 2, paragraph 5
>    Voucher:  A short form for voucher artifact and refers to the signed
>       statement from the MASA service that indicates to a pledge the
>       cryptographic identity of the domain it should trust, per
>       [I-D.draft-ietf-anima-rfc8366bis].

Please add definition and expansion on first use of terms such as MASA. Also you need to define Pledge (with a capital P), or point to a definition in another document. Avoid mixing capitalization between Pledge and pledge.

Section 3, paragraph 6
>    A "JWS JSON Serialization Overview" is given in Section 3.2 of
>    [RFC7515] and more details on the JWS serializations in Section 7 of
>    [RFC7515].  This document makes use of the "General JWS JSON
>    Serialization Syntax" of [RFC7515] to support multiple signatures, as
>    already supported by [RFC8366] for CMS-signed vouchers.

Since the document mentions two forms of serialization, it would help to understand the choice. Was the choice of "General JWS JSON Serialization Syntax" to support multiple signatures? Why was the "JWS Compact Serialization" not chosen?

Section 4, paragraph 2
>    This request occurs via HTTP-over-TLS, however, for the Pledge-to-
>    Registrar TLS connection, the Pledge is provisionally accepting the
>    Registrar server certificate.  Hence it is subject to disclosure by a
>    Dolev-Yao attacker (a "malicious messenger") [ON-PATH], as explained
>    in Section 10.2 of [BRSKI].

The first sentence does not parse for me. Can it be reworded?

Found terminology that should be reviewed for inclusivity; see
https://www.rfc-editor.org/part2/#inclusive_language for background and more
guidance:

 * Term "he"; alternatives might be "they", "them", "their"

-------------------------------------------------------------------------------
NIT
-------------------------------------------------------------------------------

All comments below are about very minor potential issues that you may choose to
address in some way - or ignore - as you see fit. Some were flagged by
automated tools (via https://github.com/larseggert/ietf-reviewtool) so there
will likely be some false positives. There is no need to let me know what you
did with these suggestions.

Section 1, paragraph 2
>    This document provides cryptographic signing of the JSON voucher data
>    in form of JSON Web Signature (JWS) [RFC7515] and the media type
>    "application/voucher-jws+json".  The encoding specified in this
>    document is used by [I-D.ietf-anima-brski-prm] and may be more handy
>    for use cases already using Javascript Object Signing and Encryption
>    (JOSE).  This document should be considered as enhancement of
>    [I-D.draft-ietf-anima-rfc8366bis],
>    as it provides a new voucher form with media type "application/
>    voucher-jws+json" and the related serialization.  It does not extend
>    the YANG definition of [I-D.draft-ietf-anima-rfc8366bis].

I continue to see inconsistent use of capitalization for terms defined or used in this document. E.g. JSON voucher data, and JSON Voucher Data.

Section 3.2, paragraph 0
>    The JSON Voucher Data is an unsigned JSON document [RFC8259] that
>    conforms with the data model described by the ietf-voucher YANG
>    module [RFC7950] defined in Section 5.3 of
>    [I-D.draft-ietf-anima-rfc8366bis] and is encoded using the rules
>    defined in [RFC7951].  The following figure provides an example of
>    JSON Voucher Data:

Please correct the reference to the Section number in I-D.draft-ietf-anima-rfc8366bis. It should be 7.3.

Section 3.3, paragraph 3
>    To validate voucher signatures all certificates of the certificate
>    chain are required up to the trust anchor, Note, to establish trust
>    the trust anchor SHOULD be provided out-of-band upfront.  This is
>    consistent with Section 5.5.2 of [BRSKI].

s/to the trust anchor, Note,/to the trust anchor. Note,/

Document references draft-ietf-anima-rfc8366bis-11, but -12 is the latest
available revision.

Document references draft-ietf-anima-brski-prm-12, but -15 is the latest
available revision.

Document references draft-ietf-anima-constrained-voucher-24, but -25 is the
latest available revision.

Paragraph 4
>  type is registered and examples are provided. Status of This Memo This Inte
>                                  ^^^^^^^^^^^^
You have used the passive voice repeatedly in nearby sentences. To make your
writing clearer and easier to read, consider using active voice.

Section 2, paragraph 3
> on first use of terms such as MASA. Also you need to define Pledge (with a c
>                                     ^^^^
A comma may be missing after the conjunctive/linking adverb "Also".

Section 3.1, paragraph 6
>  JSON [RFC8259] optionally allows to escape these with backslashes ('\'). Hen
>                                   ^^^^^^^^^
Did you mean "escaping"? Or maybe you should add a pronoun? In active voice,
"allow" + "to" takes an object, usually a pronoun.

Section 3.3, paragraph 3
>  the Registrar server certificate. Hence it is subject to disclosure by a Do
>                                    ^^^^^
A comma may be missing after the conjunctive/linking adverb "Hence".

Mahesh Jethanandani
mjethanandani@gmail.com

v2.45.0 | Report a Bug | By Email | System Status