Re: [Anima] Genart telechat review of draft-ietf-anima-bootstrapping-keyinfra-28
Michael Richardson <mcr+ietf@sandelman.ca> Wed, 16 October 2019 18:04 UTC
Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 571BB12080C; Wed, 16 Oct 2019 11:04:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x4f8LWZGwySP; Wed, 16 Oct 2019 11:04:37 -0700 (PDT)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [209.87.249.19]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B922D1200FD; Wed, 16 Oct 2019 11:04:37 -0700 (PDT)
Received: from sandelman.ca (obiwan.sandelman.ca [IPv6:2607:f0b0:f:2::247]) by tuna.sandelman.ca (Postfix) with ESMTP id 483713897A; Wed, 16 Oct 2019 14:02:11 -0400 (EDT)
Received: from [IPv6:::1] (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 0ABF6B54; Wed, 16 Oct 2019 14:04:35 -0400 (EDT)
To: anima@ietf.org, iesg@ietf.org
References: <157095596011.20750.2703747454081790983@ietfa.amsl.com>
From: Michael Richardson <mcr+ietf@sandelman.ca>
Message-ID: <07d95e86-28a5-6e7d-fb62-6915192e1c02@sandelman.ca>
Date: Wed, 16 Oct 2019 14:04:34 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <157095596011.20750.2703747454081790983@ietfa.amsl.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/YaQzSFYBPmYhEdIDZ0seSCBRrMs>
Subject: Re: [Anima] Genart telechat review of draft-ietf-anima-bootstrapping-keyinfra-28
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Oct 2019 18:04:41 -0000
On 2019-10-13 4:39 a.m., Dan Romascanu via Datatracker wrote: > Reviewer: Dan Romascanu > Review result: Ready with Issues > > I am the assigned Gen-ART reviewer for this draft. The General Area Thank you for this. I will the majority of your issues with a -29 that I'll post this week. Given that most of your issues are minor, I don't think that they will affect the views of the IESG on Thursday, so I might not post it before Thursday's IESG call. Here is a diff though: https://tinyurl.com/y5l4xz3z > I also observe that the document has consistent Operational implications but > there is no OPS-DIR review so far, as well as a YANG module and several other > references to YANG, but there is no YANG Doctors review. I hope that these will > be available prior to the IESG review. On the topic of YANG Doctor: I think that we did ask for a review at some point a long time ago.. Kent Watsen, one of the authors is also one of the YANG Doctors, so I feel pretty confident that we got that part right, but I agree, we could have asked more clearly. (Update: Tom has done one, and I'll act on it) I don't know why we have no OPS-DIR review. I see in the DT that an ARTART review is pending as well for today. > 1. The Pledge definition in section 1.2: > >> Pledge: The prospective device, which has an identity installed at > the factory. > > while in the Introduction: > >> ... new (unconfigured) devices that are called pledges in this > document. > > These two definitions seem different. The definition in 1.2 does not include > the fact that the device is 'new (unconfigured'. Also, arguably 'identity > installed at the factory' may be considered a form of configuration. To me IDevID that is installed is not really any different than the fact that the device has firmware loaded. If a router needs to be told in the factory that it is a 24+4 switch, I don't consider that configuration, and this is really no different. There is no site-specific configuration is the point. I've made the text between the two places a bit more consistent. > 2. The document lacks an Operational Considerations section, which I believe is > needed, taking into consideration the length and complexity of the document. > There are many operational issues spread across the document concerning the > type and resources of devices, speed of the bootstrapping process, migration > pass, impact on network operation. I suggest to consider adding such a section > pointing to the place where these issues are discussed and adding the necessary > information if missing. Appendix A.1 in RFC 5706 can be used as a checklist of > the issues to be discussed in such a section. I took a look through 5706, and through the Appendix A.1. (I really like the RFC2119-non-text in 5706, and I will use it myself) I had already started two documents: Operational Considerations for Manufacturer Authorized Signing Authority, and Operational Considerations for BRSKI Registrar, but they are just skeletons. I think that a great deal of the ANIMA ACP Operational Considerations are covered in the ACP document. So while I agree that we need the content you are asking for, I'm reluctant to add this new section at this time. Part of this is because I'm not sure that we know enough yet: there are only two known implementations of MASA, and we still have some interop gotchas that we haven't had time to solve those yet. Or to put it another way: trying to make up Operational Considerations is probably going to get in the way of actually gaining operational experience :-) > 3. Section 5.4: > >> Use of TLS 1.3 (or newer) is encouraged. TLS 1.2 or newer is > REQUIRED. > > What is the reason for using 'encouraged'? Why not RECOMMENDED? RECOMMENDED is a synonym for SHOULD. SHOULD is too strong at this point. There are no technical reasons why TLS 1.2 is good enough if you implement it wisely. We already had this discussion with SecAD, etc. A product manager might delay shipping in order to wait for the TLS 1.3 libraries to get through FIPS if we wrote SHOULD, etc. > Nits/editorial comments: > > 1. The Abstract includes: > > 'To do this a Remote Secure Key Infrastructure (BRSKI) is created' > > Later in the document BRSKI is identified as a protocol. It would be good to > clarify if BRSKI = BRSKI protocol I have changed the abstract to say: To do this a Secure Key Infrastructure is bootstrapped. This is done using manufacturer installed X.509 certificates, in combination with a manufacturer's authorizing service, both online and offline. We call this process the Bootstrapping Remote Secure Key Infrastructure (BRSKI) protocol, pronounced "brewski". > 2. In Section 1 - Introduction, 3rd paragraph: > > s/it's default modes/its default modes/ > s/it's strongest modes/its strongest modes/ fixed. > 3. Please expand non-obvious acronyms at first occurrence: EST protocol, Seems to be done correctly. > LLNs, fixed > REST interface, updated, and added reference. > LDAP, This is used once to say that we don't support it, despite RFC5280 describing it. We don't expand HTTP or FTP on that line though. I feel that the RFC5280 reference is good here. > GRASP, CDDL, CSR done. > 4. I would suggest alphabetic order listing of the terms in section 1.2 okay. Done. (everyone sing the alphabet song...) > > 5. Section 1.3.1 - a reference for LDevID would be useful added. It's a 802.1AR term. > 6. Section 7: > > s/Use of the suggested mechanism/Use of the suggested mechanisms/ fixed. I will post -29 once I have dealt with the new DISCUSS comments and YANG Doctor comments.
- [Anima] Genart telechat review of draft-ietf-anim… Dan Romascanu via Datatracker
- Re: [Anima] Genart telechat review of draft-ietf-… Esko Dijk
- Re: [Anima] Genart telechat review of draft-ietf-… Michael Richardson
- Re: [Anima] Genart telechat review of draft-ietf-… tom petch
- Re: [Anima] [Gen-art] Genart telechat review of d… Alissa Cooper
- Re: [Anima] Genart telechat review of draft-ietf-… Michael Richardson
- Re: [Anima] Genart telechat review of draft-ietf-… Dan Romascanu
- Re: [Anima] [Gen-art] Genart telechat review of d… tom petch
- Re: [Anima] [Gen-art] Genart telechat review of d… tom petch
- Re: [Anima] [Gen-art] Genart telechat review of d… Michael Richardson
- Re: [Anima] [Gen-art] Genart telechat review of d… Michael Richardson
- Re: [Anima] [Gen-art] Genart telechat review of d… tom petch
- Re: [Anima] [Last-Call] [Gen-art] Genart telechat… tom petch