IETF Logo Mail Archive

[Anima] Re: Mohamed Boucadair's Discuss on draft-ietf-anima-brski-prm-18: (with DISCUSS and COMMENT)

mohamed.boucadair@orange.com Mon, 07 April 2025 04:28 UTC

Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: anima@mail2.ietf.org
Delivered-To: anima@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 635561838CC0; Sun, 6 Apr 2025 21:28:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.795
X-Spam-Level:
X-Spam-Status: No, score=-2.795 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_NONE=0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WYw1HKSy0Ceq; Sun, 6 Apr 2025 21:28:37 -0700 (PDT)
Received: from smtp-out.orange.com (smtp-out.orange.com [80.12.126.239]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id B98BB1838CB2; Sun, 6 Apr 2025 21:28:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; i=@orange.com; q=dns/txt; s=orange002; t=1744000117; x=1775536117; h=to:cc:subject:date:message-id:references:in-reply-to: mime-version:content-transfer-encoding:from; bh=ftaF299kPNAI4DNOwPNqW8GV17PRiPZWtKKQzLy1xN8=; b=WaCkwZECxnbKrmm7XVE56dyrkfz78O5f7PW3n4AP+4zJc9E+IzZQQYK/ hIzG8bcFLtBWSz/AN+xWNYFYHRE570iWsQJv5SMJhV2dJ2MA21SV+CbRt BOFZZTT887E5vICLmqujCHn4vWiXsfMIyBnk60u4r/cEjNoUUsz9ZKKCD tB+5SdHqV6EJevcqgVcLG9KSiA0WCEDrmIUFSzfee7SVm0jEcNhmnme3f 4lyApkcnJ2q1VeUK2GOFx2IfOcTSqkSxq36kGmLLwqvItC47bP9XQj8oH qcUGscAzrVX40YK42a4CgknyHiuFWer44NnwyUv8/4eAq2ag11kwv8usu A==;
X-CSE-ConnectionGUID: HOFiox3gR320j3zKMtifzw==
X-CSE-MsgGUID: HS6eprAXQs21Yl6JdJSoYA==
Received: from unknown (HELO opfedv1rlp0f.nor.fr.ftgroup) ([x.x.x.x]) by smtp-out.orange.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 07 Apr 2025 06:28:35 +0200
Received: from unknown (HELO opzinddimail3.si.francetelecom.fr) ([x.x.x.x]) by opfedv1rlp0f.nor.fr.ftgroup with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 07 Apr 2025 06:28:35 +0200
Received: from opzinddimail3.si.francetelecom.fr (unknown [127.0.0.1]) by DDEI (Postfix) with ESMTP id 9E42D5201FD7; Mon, 7 Apr 2025 06:28:34 +0200 (CEST)
Received: from opzinddimail3.si.francetelecom.fr (unknown [127.0.0.1]) by DDEI (Postfix) with ESMTP id 8729D5201F2C; Mon, 7 Apr 2025 06:28:34 +0200 (CEST)
Received: from smtp-out365.orange.com (unknown [x.x.x.x]) by opzinddimail3.si.francetelecom.fr (Postfix) with ESMTPS; Mon, 7 Apr 2025 06:28:34 +0200 (CEST)
Received: from mail-francecentralazlp17012055.outbound.protection.outlook.com (HELO PR0P264CU014.outbound.protection.outlook.com) ([40.93.76.55]) by smtp-out365.orange.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 07 Apr 2025 06:28:34 +0200
Received: from PASP264MB5786.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:49b::10) by PR1P264MB3530.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:255::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8606.34; Mon, 7 Apr 2025 04:28:32 +0000
Received: from PASP264MB5786.FRAP264.PROD.OUTLOOK.COM ([fe80::181:ad8:3f16:395]) by PASP264MB5786.FRAP264.PROD.OUTLOOK.COM ([fe80::181:ad8:3f16:395%3]) with mapi id 15.20.8606.029; Mon, 7 Apr 2025 04:28:32 +0000
From: mohamed.boucadair@orange.com
X-CSE-ConnectionGUID: YW/ZkFyZTEGzaOY75OqSrg==
X-CSE-MsgGUID: QTYeMDKOSfKsJRV7Y0+N2Q==
X-TM-AS-ERS: 10.218.35.131-127.5.254.253
X-TM-AS-SMTP: 1.0 c210cC1vdXQzNjUub3JhbmdlLmNvbQ== bW9oYW1lZC5ib3VjYWRhaXJAb 3JhbmdlLmNvbQ==
X-DDEI-TLS-USAGE: Used
X-CSE-ConnectionGUID: Qx+z93ibR9G/FNNsW0Dc/A==
X-CSE-MsgGUID: RiqsK5JOSCWrDtzHJp3xMg==
Authentication-Results: smtp-out365.orange.com; dkim=none (message not signed) header.i=none
IronPort-Data: A9a23:iQkgPaj+JM/chS57TrZVmD9zX161FBcKZh0ujC45NGQN5FlHY01je htvXjvTbqqIYmKjL95/Po61pktQ6pLTy4JjSQM4/Cs0EC8W8JqUDtmndUqhZCn6wu8v7a5EA 2fyTvGacajYm1eF/k/F3oDJ9CQ6jefSAOKnVIYoAwgpLSd8UiAtlBl/rOAwh49skLCRDhiE0 T/Ii5W31GSNhXgtbwr414rZ8Eky5Kiq52tC1rADTasjUGH2xiB94K03dfnZw0vQGuF8AuO8T uDf+7C1lkuxE8AFU47Nfh7TKyXmc5aKVeS8oiM+t5uK23CukhcPPpMTb5LwX6v1ZwKhxLidw P0V3XC5pJxA0qfkwIzxWDEAe81y0DEvFLLveRCCXcKvI0LuSmuv0aQ1DUsMbKJf1MBRGl4W2 fdfAWVYBvyDr7reLLOTctM0vp59cOLWZNpD/HZ90TveEPAqB4jZRLnH7sNZ2zF2gd1SGfHZZ IwSbj8HgBboP0UJawxRV8x4wbrAanrXK1W0rHqQoqo+5mXfigZ2zbPkPNPUYPSNX8xTkUver WXDl4j8Kk5KbYfPkGvZmp6qrtXOhDjYBaA1L5aH7NJ2kn2x3jcDLRJDADNXptHi0RTiBLqzM Xc8/yE07qk/6EKDVdD7UxC8pXeC+BUVM/JRHvY1wACA1qSS5ByWbkAIVDdPdJknudM4ADUs1 1qA2tnzHj9u9aWPTFqc+6ua6zSoNkA9JGkDYCZBRgsM4sP4iIA+khyJScxseIa8iNzwEBnxz iyE6i8kiN07jMMX2Y24+k7Onymnpt7PQxJdzhnLU0qu9UV3bZPja4HA1LTAxfNJLYLcQEOIu nMJkMWY8PoHCZifkDTUH71URun0urCCLSHWhkNpE9857TOx9nW/fIdWpjZjOENuNcVCcjjsC KPOhe9PzKZDf2n7Nq59WdOeTOoM67PfTfjuEdmBO7KifaNNXAOA+ShvY2uZ0GbsjFUgnMkD1 XGzIZbE4ZEyWfQP8dame9rxx4PH0QgQ/wvuqX3Tyh2m1f+QfneTQroOPV2SdOk95bGAuFyKq 48Fb5bXjRJCTOf5fy/bt5YJKkwHJmQ6ApawrNFLcumEIUxtH2RJ5x7tLVEJJdINc0d9z72gE pSBtqlwlAqXaZrvdVviV5ybQOmzNauTVFpiVcDWAX6m2mI4faGk57oFep08cNEPrbM/lq8qE 6JUIZ7cU5yjrwgrHRxNPfERS6QyJXyWaf6mYnf1OFDTgrY8GVOUooO6ImMDCgFVVnHu6pBWT 0KcOvPzGsFZG1sK4Df+bfOk1VSqunYB0Ol1RVOgHzWgUBSEzWSeEASo1qVfC5hVcX3rn2LGv y7IW0twjbeW+ecdroKW7Z1oWq/1SYOS6GIGRTGDtd5b9EDyogKe/GO3eLbWJ2uNDjiuos1Pp 4x9lpnBDRHOp34S26IULlqh5ftWCwfHz1OC8jlZIQ==
IronPort-HdrOrdr: A9a23:h7qRQaHL6gk5014ypLqFaZHXdLJyesId70hD6qkvc3Fom52j/f xGws5x6fatskdoZJkh8erhBEDyewKmyXcT2/hbAV7CZnivhILGFvAH0WKP+VPd8mjFh5dgPM RbAuJD4b/LfD9HZK/BiWHVfOrIguP3lpxA7t2urEuFODsaDp2ImD0JaDpzfHcWeCB2Qb4CUL aM7MtOoDStPV4NaN6gO3UDV+/f4/XWiZPPe3c9dlIawTjLqQntxK/xEhCe0BtbeShI260e/W /MlBG8zrm/ssu81gTX2wbonttrcZrau5V+7f63+4gowwbX+0WVjUNaKv+/VQUO0aCSAZAR4Z zxSlkbToBOAjjqDxuISFPWqnTdOXAVmjLfIBaj8ATeScCVfkNHN+NRwY1eaRfX8EwmoZV117 9KxXuQs95NAQrHhzmV3am+a/hGrDvAnZMZq59ms1VPFY8FLLNBp40W+01YVJ8GASLh8YgiVO 1jFtvV6vpaeU6TKymxhBgn/PW8GnAoWhuWSEkLvcKYlzBQgXBi1kMdgMgShG0J+p4xQ4RNo+ 7ELqNrnrdTSdJ+V9MKOM4RBc+sTmDdSxPFN2yfZVzhCaEcInrI74X65b0kjdvaCqDgDKFC66 gpfGkoxVLaIXied/Fm9Kc7gyzwfA==
X-Talos-CUID: 9a23:s5yGbGiPx7s7q8lCyIB1STGV9jJuS22e3iaLIkWCWEkuZpuzUmDI1Kgjup87
X-Talos-MUID: 9a23:QBVMmQjB8BDC6JZ0GndnTcMpDsZx+IfzKmc2uqocl9WWFQ5oYCe4g2Hi
X-IronPort-AV: E=Sophos;i="6.15,193,1739833200"; d="scan'208";a="78138194"
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=NOJUwXEj3r6T9/epyON7zwxasBbT1RgXX5tB/RDurTVdCzhzQOI/XlyY0uXKAXw1i+/tmCujREVKa47yUfo03PEsefU0zkAc+C0vlsN+kRDC7tvbRHvcelSegjScI7PlP0pFl3NbFOf9MEubKdqowkSOgp05t7BbvNZs32Iq3r5ZNtE5Z0ZkN2gwjXhEoK33v67uDGWLANBTezyJWfitg69k2s1yGBSznB35bQISWAof5TWjIbM/pYi4SlTDtp6ULxGl7pWQ6qp6qCpu+9o+cuN5K2dXZowA3vzsWx7OaeB0xZKdAHkD+IHWUku0U8REj+aW0KYeQcpF/LluGXnilA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=wNf+QwdBMJaEYy/sD7um5+LFUTJTRMlYzndiE5jIIj4=; b=o3ycZlsztFh16j+ZP4Ab75LbV3BF16BQn7UagNq/Lyq2GZR+cRJhnX/A7RXh43ghFdLAD1p5XltNNycr9vCrAHLV6Ky2HtrDmVDzVA7x9fE13rgGjf8VHbvz5WHIRqbu8T5veUe2xCYKShbr4NtJnucaz4wLdfOVOC32bld8qZ5oy+QRDrMsIMh+UDWFnZBz8Txrf+EJe1ID4Zx2E/MivaBoW/ABQU+63HJrfhogBH80mIOo3jc0qYXohycS4l9UXcIh3v+0FOxpboFdmTgeKCnFS0lBnisN2qvRNMY+A9MTsymR32tEH5LJdujBLciIgIv3fJGdWf2mzcU9ktO9PQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=orange.com; dmarc=pass action=none header.from=orange.com; dkim=pass header.d=orange.com; arc=none
To: Michael Richardson <mcr+ietf@sandelman.ca>
Thread-Topic: Mohamed Boucadair's Discuss on draft-ietf-anima-brski-prm-18: (with DISCUSS and COMMENT)
Thread-Index: AQHbpwU15o6EeuFypEeXZYEncA8rwbOXKa2AgABqE4A=
Date: Mon, 07 Apr 2025 04:28:32 +0000
Message-ID: <PASP264MB57865F93620D247097337B2288AA2@PASP264MB5786.FRAP264.PROD.OUTLOOK.COM>
References: <174395186493.249581.5702510245186761176@dt-datatracker-64c5c9b5f9-hz6qg> <20895.1743975347@obiwan.sandelman.ca>
In-Reply-To: <20895.1743975347@obiwan.sandelman.ca>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ActionId=88af8025-dcb2-4365-816f-afbf92f059cb;MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ContentBits=0;MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Enabled=true;MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Method=Privileged;MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Name=unrestricted_parent.2;MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SetDate=2025-04-07T04:28:21Z;MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SiteId=90c7a20a-f34b-40bf-bc48-b9253b6f5d20;MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_ContentBits=0;MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_Enabled=true;MSIP_Label_f47c794b-e3ab-43f0-9e0f-29fc3e503192_Method=Standard;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PASP264MB5786:EE_|PR1P264MB3530:EE_
x-ms-office365-filtering-correlation-id: 21ae809f-4eaf-45d5-259f-08dd758ca7c8
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|376014|366016|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PASP264MB5786.FRAP264.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(376014)(366016)(38070700018);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
X-OriginatorOrg: orange.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PASP264MB5786.FRAP264.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 21ae809f-4eaf-45d5-259f-08dd758ca7c8
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Apr 2025 04:28:32.6956 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 90c7a20a-f34b-40bf-bc48-b9253b6f5d20
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: wBdg09d2gpQ3jWR1qAfmq2z6PMtxJSZNfUEIpRTMqFQ5g6PnJs8DepiD7bOEmooaT78y9Y3IBQIRNVJyMH6o7U+e7fgDA/ELkO2IsGt6siw=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PR1P264MB3530
X-TM-AS-ERS: 10.218.35.131-127.5.254.253
X-TM-AS-SMTP: 1.0 c210cC1vdXQzNjUub3JhbmdlLmNvbQ== bW9oYW1lZC5ib3VjYWRhaXJAb 3JhbmdlLmNvbQ==
X-TMASE-Version: DDEI-5.1-9.1.1004-29100.005
X-TMASE-Result: 10--37.373600-10.000000
X-TMASE-MatchedRID: 9vvqFUF7IWmuInHn323YIg2bPyoJqnZLC/ExpXrHizytYjW9XGZ0vH99 21QF6UAeu8ifaWw+xYj1BCRucMKoiGr9HOtJn0L7MGAKZueP0mak8yaNAmZfIYc5XWJfryop61b KbSbT1B/C9yzbGWobnJGWjVBbFO0X7Ef9eUvyqg70hv/rD7WVZD2FgAEiDHa/DlLOAk1ICsv/VG eoSOqFadgVqCEKzwLT5qNIUnfXLotSN5j/GgtDwdEJQUcCarUjHLMdyB+LKtx9GT4ye9aN7pwF3 ZQCfcm1z9YXdGTB0gNvUtvOrBqhIMRK6++0DZtA7kIYxuaO6ZTcAmu1xqeetmfIvzHS0qU7KrP1 ubT5jAcBFb+M9w7b/399/Pzc7iwDhe3BjgAAYjFIcJTn2HkqsQTHaede/M0j5iz6kcjHWeOYlws /utSEvVY28M8LlAOSp0+A4pTZmFUOWZqWJcBvDL3+Qwz7LRxR2FA7wK9mP9ewZuykSn6+/Po/Cd vNUnR1S2zC3N51ajIkmOFvt2j4EBlNN9F7oe3yDDzmS9l9fYqCmGLk45dvJfyCVujX30lNXNw3v igB/An3Wuu4o+UjZ/AxcVsuATs1WcYSOWxqzbLww+675HNN/i6mN2PVdanl99Nzi4RENBHimW/U g378hOLzNWBegCW2PZex/kxUIHW3sNbcHjySQd0H8LFZNFG7/nnwJ52QYi+pygCGKFPC+BeYl5u S2QAg
X-TMASE-SNAP-Result: 1.821001.0001-0-1-22:0,33:0,34:0-0
X-TMASE-INERTIA: 0-0;;;;
X-TMASE-XGENCLOUD: 68a0d572-87de-4c7d-974c-ad7623103455-0-0-200-0
Content-Transfer-Encoding: base64
Message-ID-Hash: ATRYECWFPWIUG2RZYLTA4GBNXBX6WUNN
X-Message-ID-Hash: ATRYECWFPWIUG2RZYLTA4GBNXBX6WUNN
X-MailFrom: mohamed.boucadair@orange.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-anima.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: The IESG <iesg@ietf.org>, "draft-ietf-anima-brski-prm@ietf.org" <draft-ietf-anima-brski-prm@ietf.org>, "anima-chairs@ietf.org" <anima-chairs@ietf.org>, "anima@ietf.org" <anima@ietf.org>, "ietf@kovatsch.net" <ietf@kovatsch.net>, "tte@cs.fau.de" <tte@cs.fau.de>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Anima] Re: Mohamed Boucadair's Discuss on draft-ietf-anima-brski-prm-18: (with DISCUSS and COMMENT)
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/d1sfGPQtqGOC3Ghfo_0GIrjHjAI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Owner: <mailto:anima-owner@ietf.org>
List-Post: <mailto:anima@ietf.org>
List-Subscribe: <mailto:anima-join@ietf.org>
List-Unsubscribe: <mailto:anima-leave@ietf.org>

Hi Michael,

Pleasee see inline.

Cheers,
Med

> -----Message d'origine-----
> De : Michael Richardson <mcr+ietf@sandelman.ca>
> Envoyé : dimanche 6 avril 2025 23:36
> À : BOUCADAIR Mohamed INNOV/NET <mohamed.boucadair@orange.com>
> Cc : The IESG <iesg@ietf.org>; draft-ietf-anima-brski-
> prm@ietf.org; anima-chairs@ietf.org; anima@ietf.org;
> ietf@kovatsch.net; tte@cs.fau.de
> Objet : Re: Mohamed Boucadair's Discuss on draft-ietf-anima-brski-
> prm-18: (with DISCUSS and COMMENT)
> 
> 
> 
> Mohamed Boucadair via Datatracker <noreply@ietf.org> wrote:
>     > # Unconditional MUST
> 
>     > CURRENT:
>     > The pledge MUST respond to all requests regardless of the
>     > Host header field provided by the client (i.e., ignore it).
> 
>     > I don’t think that is safe.
> 
> Why?
> 

[Med] Because you make it an absolute requirement to reply independent of any other condition, including the sender behavior. An obvious case to break the MUST here is to no reply to an avalanche of requests from the same sender. Some rate-limit can be provided to the pledge as a basic guard.

We don't need to identify all exceptions, but you can turn all such absolute MUST with something such as "Absent policy otherwise, the pledge MUST respond to all requests ...".

> The Registrar Agent really has *only* the IP address of the
> pledge.
> No virtual hosting is possible.  So, **anything** it puts into the
> Host: header will be wrong.  mDNS may well return IPv6-LL
> addresses.
> 
>     > I’m afraid this needs some scoping; as there are other
> legitimate conditions
>     > where the pledge does not have to reply.
> 
> Like... what?

[Med] See above. Guards again overload/abuse, typically.

> 
>     > # Compliance with HTTP BCP (RFC9205)
> 
>     > CURRENT:
>     > If the pledge is unable to create the PVR, it SHOULD respond
> with an
>     > HTTP error status code to the Registrar-Agent.  The
> following client
>     > error status codes SHOULD be used:
> 
>     > The use of normative language is IMO not compliant with the
> guidance in
>     > RFC9205, about error handling.
> 
> okay, we'll review.

[Med] ACK.

> 
>     > # Cluster with 8366bis
> 
>     > CURRENT:
> 
>     > The JSON PVR Data MUST contain the following fields of the
> “ietf-
>     > voucher-request” YANG module as defined in
>     > [I-D.ietf-anima-rfc8366bis];
> 
>     > I think this spec should be clustered with 8366bis. There
> are several structure
>     > that used in this document and which depends on what is
> defined in 8366bis.
>     > Changes to the bis will have implications on this one.
> 
> Yes, it's all gonna be in a cluster.
> Is there something you think we need to put into the I-D to make
> that so, other than a normative reference, which it already has?

[Med] Given the impact on data serialization, my current take is to not send this document to the RFC editor. I know this is frustrating but this is imposed by the structure and strong dependency of the two anima pieces. 

Even if the document was approved now, it has to wait in MISSREF with a risk to be revisited to reflect changes to the 8366bis.

I did check the bis quickly before making the DISCUSS point. There are signs that might let me think that the work is not stable yet (the yang module does not validate, for example).

> 
>     > With that in mind, I tend to suggest holding approval of
> this specification
>     > till we finalize the bis spec.
> 
> No, because that creates a loop of getting document X done before
> document Y can proceed.  We already, as a WG, said that rfc8366bis
> would wait until all others are done.  RFC8366bis could otherwise
> progress without the others, and when we discover problems that
> require updates to two places, would wind up making us yank it
> back from the RFC-editor.  We went through this with
> RFC8995 already, and the WG learnt it's lesson.

[Med] I appreciate sharing that background. I don't think that we are making a service to ourselves by not prioritization draft-ietf-anima-rfc8366bis given that all theses pieces depend on it:

* draft-ietf-anima-brski-cloud 	Proposed Standard	normatively references	
* draft-ietf-anima-brski-prm	BRSKI Proposed Standard	normatively references	
* draft-ietf-anima-constrained-join-proxy	Proposed Standard	normatively references	
* draft-ietf-anima-constrained-voucher	Proposed Standard	normatively references	
* draft-ietf-anima-jws-voucher	Proposed Standard	normatively references

Let's think about how to better streamline things here.

> 
>     > # Requires TLS1.3
> 
>     > CURRENT:
>     > As already stated in [RFC8995], the use of TLS 1.3 (or
> newer) is
>     > encouraged.  TLS 1.2 or newer is REQUIRED on the Registrar-
> Agent
>     > side.  TLS 1.3 (or newer) SHOULD be available on the
> registrar, but
>     > TLS 1.2 MAY be used.  TLS 1.3 (or newer) SHOULD be available
> on the
>     > MASA, but TLS 1.2 MAY be used.
> 
>     > Please update to take into to reflect draft-ietf-uta-
> require-tls13.
> 
> The reality that many platforms do not have FIPS-140 appproved TLS
> 1.3
> stacks remains true.   It's getting better, but it's just not
> there yet.
> 

[Med] May be add a note to explain the current approach in the draft. Interesting to see that you are scheduled in the same telechat as that UTA spec :-) 

> 
> --
> Michael Richardson <mcr+IETF@sandelman.ca>   . o O ( IPv6 IøT
> consulting )
>            Sandelman Software Works Inc, Ottawa and Worldwide
> 
> 
> 

____________________________________________________________________________________________________________
Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.

v2.31.3 | Report a Bug | By Email | System Status