IETF Logo Mail Archive

[bfcpbis] PROTO review comments on draft-ietf-bfcpbis-rfc4582bis-10

Mary Barnes <mary.ietf.barnes@gmail.com> Thu, 19 December 2013 20:27 UTC

Return-Path: <mary.ietf.barnes@gmail.com>
X-Original-To: bfcpbis@ietfa.amsl.com
Delivered-To: bfcpbis@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0A11E1AE7AE for <bfcpbis@ietfa.amsl.com>; Thu, 19 Dec 2013 12:27:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.301
X-Spam-Level:
X-Spam-Status: No, score=0.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, MANGLED_LIST=2.3, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IG1BfZaPYUaJ for <bfcpbis@ietfa.amsl.com>; Thu, 19 Dec 2013 12:27:22 -0800 (PST)
Received: from mail-wi0-x232.google.com (mail-wi0-x232.google.com [IPv6:2a00:1450:400c:c05::232]) by ietfa.amsl.com (Postfix) with ESMTP id F226B1AE7AD for <bfcpbis@ietf.org>; Thu, 19 Dec 2013 12:27:21 -0800 (PST)
Received: by mail-wi0-f178.google.com with SMTP id bz8so2775420wib.5 for <bfcpbis@ietf.org>; Thu, 19 Dec 2013 12:27:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:cc:content-type; bh=EgXOSUIVTB4JpkOjQUDbvmwd3s/eiS8uWu8lPhEj67s=; b=KMQ4+wifTR6voyi6RYX/z51U8eh4w/nWv+zpvUuGcCZ/e63BbkYDrHzud65EKYLInz n8IHrQkH65iSQFx1elBiRhIovkxxPn3X4RxLwT52s+ri5QPiIHjG+8my73l7BM+4OZrj Y3oviccKm0Ww3LOpvTE813NWkFMBbcnGwD/2JngQEhcfPMMg6nGAzkN34xJY5ojFGfB+ jH+rpUjbC/DSushmQp5qi61rVjgimUOqgLEbWAynKhEZUBzdvhN3sfiEc1LfcigQn3lC 2UrBjyqKI4NuprexPob8qRo+STFsKRMDaJ5ADBZf/TUQZToDIv3L1pE3N3vyeqY+VTg1 jfVg==
MIME-Version: 1.0
X-Received: by 10.180.13.170 with SMTP id i10mr4209680wic.36.1387484839441; Thu, 19 Dec 2013 12:27:19 -0800 (PST)
Received: by 10.216.172.9 with HTTP; Thu, 19 Dec 2013 12:27:19 -0800 (PST)
Date: Thu, 19 Dec 2013 14:27:19 -0600
Message-ID: <CAHBDyN425aOuEVpvy3gkeTdrrySXApugdsb1wnYGJFXBj-A7Hg@mail.gmail.com>
From: Mary Barnes <mary.ietf.barnes@gmail.com>
To: "draft-ietf-bfcpbis-rfc4582bis.authors@tools.ietf.org" <draft-ietf-bfcpbis-rfc4582bis.authors@tools.ietf.org>, "bfcpbis@ietf.org" <bfcpbis@ietf.org>
Content-Type: multipart/alternative; boundary="001a11c242e0fc7b1604ede8fcc8"
Cc: Richard Barnes <rlb@ipv.sx>, "bfcpbis-chairs@tools.ietf.org" <bfcpbis-chairs@tools.ietf.org>
Subject: [bfcpbis] PROTO review comments on draft-ietf-bfcpbis-rfc4582bis-10
X-BeenThere: bfcpbis@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: BFCPBIS working group discussion list <bfcpbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/bfcpbis/>
List-Post: <mailto:bfcpbis@ietf.org>
List-Help: <mailto:bfcpbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Dec 2013 20:27:25 -0000

I have agreed to shepherd this document on behalf of the WG.  I have
reviewed this document in preparation for doing the PROTO write-up.

I think the document needs a bit of work before it's ready to progress.  I
have a few questions/comments, as well as editorial nits which I think
would improve readability and ease of understanding.

Regards,
Mary.


*General:*
1) I still have not had a response from Keith Drage nor Joerg Ott with
regards to IPR, so I cannot forward the document to the AD even after the
document is updated until I get those responses.

2) Obviously, the WG needs to agree proposed solutions to the points made
by Joerg:
http://www.ietf.org/mail-archive/web/bfcpbis/current/msg00249.html
At this time, I've not seen the authors post any proposals as to how to
deal with those comments/concerns

3) I have reviewed the document in detail - both the entire document and
the diffs between RFC4582. I have both comments and nits on text that was
also in RFC 4582, as well as on the new text, detailed below. Note, that a
number of nits are around the use of lower case normative words which ought
to be uppercase to distinguish them from the normal English usage. I think
there are a number of cases where "may"s for example would be much better
stated as "can"s.  I've identified some of those below, but I don't think
it's worth the effort to change them all (nor my effort to identify them
all). `


*Comments/questions:*

1) Section 3.4, 1st paragraph.  You need to specify what you mean by the
parenthetical "in a certain way" - that doesn't tell you anything.
 Something like "depending upon policies, privileges, etc." is probably
more appropriate.

2) Section 6.2.
a) 3rd paragraph, 1st sentence: I don't think this is normative since
you're referring to the normative section.  I suggest "shall form" ->
"forms".
b) 4th paragraph. Under what conditions would a server not send an Error
message or is that statement just specifically sending an error message
with a parameter value of 10?  I can't see why this isn't a MUST. If it's
really a should, more text is needed as to what happens if it isn't sent
(or why not sending the Error message is okay).
c) 4th para, last sentence: "shall" -> "SHALL"
d) last para, next to last sentence.  Why isn't this "MUST" request the use
of DTLS? If it's a SHOULD, then the impacts or criteria under which DTLS
isn't REQUIRED should be clarified.  I see that the paragraph has
references to  5018 Section 5.  I think it also should be clarified that
the "section 6" reference in that paragraph is also in 5018 (as I don't
think you're referring to section 6 of this document).

3) Section 6.2.1
a) 1st para, 3rd sentence. I don't think "previous paragraph" is accurate.
 I think it would be better to include an explicit reference to section 6.2
or say "previous section".
b) next to last sentence ought to be written normatively
OLD
   The default initial
   interval is set to 500ms and the interval is doubled after each
   retransmission attempt.
NEW
   The default initial
   interval MUST be set to 500ms and the interval MUST be doubled after each
   retransmission attempt.

4) Section 6.2.2, 1st sentence.  What happens if the connection isn't
treated as closed (since this is a SHOULD and not a MUST)?  Either this is
a MUST or the reasons one wouldn't treat the connection as closed and what
happens when it's not treated as closed need to be explained.

5) Section 6.2.3, indented paragraph.  What happens if the cookie exchange
mechanisms in DTLS aren't used and/or what other mechanisms could be used?
  (Note, also that the should ought to be SHOULD).

6) Section 9.1.
a) 1st para, 2nd sentence. (Similar to comment 9 on rfc4583-bis).  The
"assumes" needs to a REQUIRED.
OLD:
   BFCP assumes that there is an integrity-
   protected channel between the client and the floor control server
   that can be used to exchange their self-signed certificates or, more
   commonly, the fingerprints of these certificates.

NEW:
   An initial integrity-protected channel is REQUIRED between the client
   and the floor control server that can be used to exchange their
   self-signed certificates or, more commonly, the fingerprints of
   these certificates.

OR  this needs to be a SHOULD and then include the text that's in the
"Note…" in the 3rd paragraph that indicates if there are additional
authentication mechanisms defined that don't require the integrity
protected channel.

b) 2nd paragraph, last sentence.  Under what criteria would a client NOT
ignore unauthenticated messages or what bad things can happen if a client
doesn't ignore the messages.  It might be better to make this a MUST.

c) 4th paragraph, 2nd sentence.  "SHOULD check" -> "MUST check" or explain
what might happen if the floor control servers doesn't check that the
messages aren't using an authorized User ID.

7) Section 11.1.
a) 4th paragraph.  There's three SHOULDs in there that all ought to be
MUSTs OR the situations under which the action doesn't need to be done
needs to be specified.
b) 5th paragraph: I don't think that the use of Queue position field in the
last sentence prior to the indented text ought to be normative - i.e., I
think the "MAY use the Queue Position field" ought to be "can use the
Queue Position field".
c) Indented text (1st para) after 5th para.   There are several "may"s:
(lower case) in this paragraph (and the next note), that probably all ought
to be "can"s
d) last paragraph. It's not clear to me whether this "may" ought to be
normative. If so, it should be a MAY and perhaps reworded as I think it's
trying to say that "the floor chair MAY include STATUS-INFO attributes" in
   Otherwise, a "can" would suffice.

8) Section 12.1.2.  There is no normative language in this section.  It
needs to be revisited.  For example, 2nd para, 1st sentence.  It would seem
that "the floor control server will
   respond with a FloorStatus message or with an Error message"
ought to be "MUST respond.

9) Section 13.6, 1st para.  Under what circumstances would the server NOT
generate an Error response (i.e., why is it a SHOULD and not a MUST)?

10) Section 13.7, 1st para. Same comment as 9 above.

11) Section 16.1.  I think there should be mention of the additional text
added for handling incorrect payload length.

12) Section 16.1. "Requiring timely response".  Shouldn't there be a
reference to section 8.3 (Timers)?

13) Appendix A. Has there been anyone that has verified the call flows with
a tool or in the lab?  If so, who was that?

*Nits:*

1) Section 3.1, last paragraph.  I would prefer this be updated to be much
more precise in terms of CCMP.  I realize that this document was published
well before CCMP, so the text in RFC 4582 is based on draft versions.
OLD:
   Conference control clients using CCMP [17] can specify such floor-
   related settings by editing the floor-information section of the
   to-be created conference object provided in the body of a CCMP
   confRequest/create message issued to the conference control server.

NEW:
    Conference control clients using CCMP [17] can specify such floor-
   related settings in the <floor-information> [RFC6501]element of the
   to-be created conference object provided in the body of a CCMP
   confRequest/create message issued to the conference control server.

2) Section 3.2, 1st para, 2nd sentence.  "These data include…" -> This data
includes

3) Section 3.3, last paragraph. "<floor-information> section" ->
 "<floor-information> element"

4) Section 6.2, 4th para, last sentence: "shall" -> "SHALL"

5) Section 6.2.3:
- seventh paragraph. "must then retransmit" -> "MUST then retransmit"
- indented paragraph. "the Payload Length field may be compared" - > "can
be compared"

6) Section 8, 2nd indented paragraph. "must be non-zero" -> "MUST be
non-zero"

7) Section 10.1.1. 1st paragraph after 2nd indented para. "must insert" ->
"MUST insert"

8) Section 10.1.2, 5th & 6th paragraphs.  "MAY display" -> "can display"

9) Section 12.2.1. last paragraph. "must insert" -> "MUST insert"

10) Section 12.3.1.   last paragraph. "must insert" -> "MUST insert"

11) Section 16.1.  This is a bit hard to read.  I would suggest you use a
bulleted or numbered list rather than this hanging list format.

12) References:
a) Per the first nit, a reference to RFC 6501 (XCON Data model) should be
added to this document.
b) RFC 4582 should be a normative reference
c) I also suggest that RFC 5018 is normative as this document relies on RFC
5018 for authentication and security.

v2.23.0 | Report a Bug | By Email