[Anima] Re: Opsdir last call review of draft-ietf-anima-brski-prm-15
"Fries, Steffen" <steffen.fries@siemens.com> Tue, 07 January 2025 10:25 UTC
Return-Path: <steffen.fries@siemens.com>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E1E68C169438; Tue, 7 Jan 2025 02:25:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=siemens.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x8OBlSZogjil; Tue, 7 Jan 2025 02:25:40 -0800 (PST)
Received: from EUR03-AM7-obe.outbound.protection.outlook.com (mail-am7eur03on2080.outbound.protection.outlook.com [40.107.105.80]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C614DC14F61B; Tue, 7 Jan 2025 02:25:34 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=e2ZkL3iYajqjq5i1SS+8g90xGfOnLC5wvgCjgW+rBSM/3CG8kOFKjd7Lk8UH2cQ8z0dLFs2YOdkkwCHyXJ9ek9og2VsWArCLYnwiBApIlYcB3QkuxmKzlkbOHawiYO31rkCI5pNELAni3W7FSX8vXZcXE8DmEaLrgTQs6KchfknhQrSYn+QCxobcN1k0jz94PKSeFAxRN0ABhDoWU4AoxrD5tSCoqD4vohNNxzSHPD4w2OEkfDedoHPwrGl9Ob3uYFvbixclhkZuYVs+RGiXQlCc2SHGYF0Cv6Qdl/5bb0N08H9e055GXpwovmu8MN2+dsgnr3hm0dLfm4i99CPdPQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=0E3+gEkseAl66qg5/ClUn6fkCkhk49NYldUFwovhvMM=; b=NlAuYSWP8zIg4NjPd5omoULqhCPzTPlnyqEkWc+lKBhtrT5w1WK2pXgIoW0Pz6RJIlv8KkwOSuLj4KWKxlI4NuU/mVwpIqZeZMdptSiYPO+yTtjcJkc3YLenFQj0AcrU4eNusP9we27ZnSfIbbFRJl5M8ga6F+DgeOnV1vpLtWObe49XqGGaB8EtRD5Ljf64MeTDYM5Md4ffLGBAV6gUh6+VrVJkutv9/2U6uQWa/pPqaNeUOV9mopkhbcuijJNHdAW8RnAbK8JsRD5HnDIYdjZCMwMKeCid4wiwP2kZ7OK0y/9f2OHBIf/R4FPqn9tYjWbR7iyyB1UZ5kQiKk2LSQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0E3+gEkseAl66qg5/ClUn6fkCkhk49NYldUFwovhvMM=; b=Yn9ZSsJtRG6QujNWQ3N14wA3a5SFdBwIAv7q2KQ6Fag3uGpK3ZSBgSXYtaO3Jufpy7KycX7RiXM8LBPY3QskH1UDCP+fcs5Z+apivw2zMrq8YarUUPu4oZL0gvEPwVnY7TyVvjipvE+aDIEWK2d29wMxJf6GjdQaroOneqHujvuODkbwrn9A/Hdr0jyAyq2T0g3yrPfVEqtUBaX1XN9bhF0X8UcUqlC/9T38xubJWJ+qv0zQkAv4Co+EUkGHdXxpR0RUQhe+EGhGUrrUNB7LMTnCiQRn0PaA/4smiz7o0xT3lJm7SwCl4QA5tE/wpskBzRJ6qKTkqLUDHPZWgCcL9Q==
Received: from DB9PR10MB6354.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:10:3c6::22) by VI1PR10MB3598.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:800:139::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8335.10; Tue, 7 Jan 2025 10:25:32 +0000
Received: from DB9PR10MB6354.EURPRD10.PROD.OUTLOOK.COM ([fe80::634b:e5d0:8c00:762a]) by DB9PR10MB6354.EURPRD10.PROD.OUTLOOK.COM ([fe80::634b:e5d0:8c00:762a%3]) with mapi id 15.20.8335.007; Tue, 7 Jan 2025 10:25:32 +0000
From: "Fries, Steffen" <steffen.fries@siemens.com>
To: Ran Chen <chen.ran@zte.com.cn>, "ops-dir@ietf.org" <ops-dir@ietf.org>
Thread-Topic: Opsdir last call review of draft-ietf-anima-brski-prm-15
Thread-Index: AQHbYOeL4/UZeHvuxEK0xe9HPSj9grMLGZ0A
Date: Tue, 07 Jan 2025 10:25:32 +0000
Message-ID: <DB9PR10MB63544E9EBD634971404BDC26F3112@DB9PR10MB6354.EURPRD10.PROD.OUTLOOK.COM>
References: <173624254702.2012441.1057660583683023730@dt-datatracker-65f549669d-2xld9>
In-Reply-To: <173624254702.2012441.1057660583683023730@dt-datatracker-65f549669d-2xld9>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_ActionId=48b4b0ed-ab22-4efe-b045-3171c12e176b;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_ContentBits=0;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Enabled=true;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Method=Standard;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Name=restricted;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_SetDate=2025-01-07T10:20:01Z;MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_SiteId=38ae3bcd-9579-4fd4-adda-b42e1495d55a;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=siemens.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DB9PR10MB6354:EE_|VI1PR10MB3598:EE_
x-ms-office365-filtering-correlation-id: 6a2d8021-0a77-4928-7333-08dd2f059d9b
x-ms-exchange-atpmessageproperties: SA
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|366016|376014|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DB9PR10MB6354.EURPRD10.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(376014)(38070700018);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DB9PR10MB6354.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 6a2d8021-0a77-4928-7333-08dd2f059d9b
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Jan 2025 10:25:32.1615 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: QZ0mh2dymcVMNATc/Wge9uaiO5nhYZXA2ATFPULmVePF0jOGQpcEUYXtklwq+UtaLaVODxdKs2+QmyfO66JkEWBTkvH4Pwq7dZGWwYPFPIE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR10MB3598
Message-ID-Hash: J4ZV3U3XVYRULLVOXUXFDPZ3AYW5NPKA
X-Message-ID-Hash: J4ZV3U3XVYRULLVOXUXFDPZ3AYW5NPKA
X-MailFrom: steffen.fries@siemens.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-anima.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "anima@ietf.org" <anima@ietf.org>, "draft-ietf-anima-brski-prm.all@ietf.org" <draft-ietf-anima-brski-prm.all@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Anima] Re: Opsdir last call review of draft-ietf-anima-brski-prm-15
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/dFNxyK4LNc4S-klYgTzWwtfg4vM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Owner: <mailto:anima-owner@ietf.org>
List-Post: <mailto:anima@ietf.org>
List-Subscribe: <mailto:anima-join@ietf.org>
List-Unsubscribe: <mailto:anima-leave@ietf.org>
Hello Ran, Thank you for your review. We will address your points in the next draft update, which is currently in preparation. I put some more comments inline. > -----Original Message----- > From: Ran Chen via Datatracker <noreply@ietf.org> > Sent: Tuesday, January 7, 2025 10:36 AM > To: ops-dir@ietf.org > Cc: anima@ietf.org; draft-ietf-anima-brski-prm.all@ietf.org; last-call@ietf.org > Subject: Opsdir last call review of draft-ietf-anima-brski-prm-15 > > Reviewer: Ran Chen > Review result: Has Nits > > This document extends the original BRSKI (Bootstrapping Remote Secure Key > Infrastructure) protocol by introducing a new operational mode—Pledge in > Responder Mode (PRM). This extension is particularly useful in constrained or > dynamic network environments where the traditional initiator-based workflow of > BRSKI may not be feasible. It would be better to have a separate section for > operational consideration. [stf] Your comment emphasizes the comment we got from Mahesh during his AD review. We are currently working on an operational consideration section, which will on one hand summarizes some of the points mentioned in the architecture (section 5) and component (section 6) description but also provide further information. > > ## Minor > For Normative References: > I-D.ietf-netconf-sztp-csr updated to RFC9646. [stf] already corrected > Please pay more attention to I-D. draft-ietf-anima-rfc8366bis, which is still in WG > draft status. [stf] some of the initial content from BRSKI-PRM regarding voucher enhancements was moved to RFC8366bis, so we are in constant exchange to ensure alignment. > > Section 6.2.1 > The term described in rfc8995 is Slowloris-like attack, not Slowloris attack. > It is recommended to change it to Slowloris-like attack. [stf
- [Anima] Opsdir last call review of draft-ietf-ani… Ran Chen via Datatracker
- [Anima] Re: Opsdir last call review of draft-ietf… Fries, Steffen
- [Anima] Re: [Last-Call] Re: Opsdir last call revi… chen.ran