Re: [bfcpbis] AUTH48 [JM]: RFC 8855 <draft-ietf-bfcpbis-rfc4582bis-16.txt> NOW AVAILABLE

Christer Holmberg <christer.holmberg@ericsson.com> Thu, 17 September 2020 15:42 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: bfcpbis@ietfa.amsl.com
Delivered-To: bfcpbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4B0B13A09F5; Thu, 17 Sep 2020 08:42:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.795
X-Spam-Level:
X-Spam-Status: No, score=-3.795 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.695, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Pv9Xqei7nJBz; Thu, 17 Sep 2020 08:42:15 -0700 (PDT)
Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-he1eur04on0614.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe0d::614]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D70B33A046D; Thu, 17 Sep 2020 08:42:14 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=GGZW3h5WYQWUtHvdCNbVQyhS3oozeBiKLJDySq1SMDi+Hkk3XJ0B6RsWZgIedtzJ1ZMyvxusUOzna9i5jTPaCSF++grmA6OrxMKeEkNHCo0GXeUMt2egwbScs7MjBGXOYsE249+GxMPVw15qKyounmCPFgyrgCPZTg9ziSO5jaBH/w9lhTYKSJP2VcK/QwFLm0paCCwqfy2EKMpZ7sFWPKr8RNWbaFpB8t/ChrxmI92qA0BLg9HiVtNPW2JSSGarOQ3laiqc9WKOfgAR1vEPLbO1q4QShBvMJuVzCdwK5G5noIRwNCxk5cqA9Xd41hruLVBVbpVYZHfwcXkpDbaSVg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JZ+sqgyGXI9MFRyipcYm5GEGEPeuPFTGMwvpMaYwo7Q=; b=XhVtBkTOUemnctsKVh82LOIoKUxHKQs9btCAwceVr/SLaUIU5kmyAFOZl8iUbNQgnDOSlCSQziTc5Nb2A93K6C9kNo/Rye7gmm+mfJWQPEDHzHlnVCfyITdHZtq4Xh70h9djTi8X9i1YsHPcSIMm77UiK/SSzFHPbrmb+dyRAhSAbEsC3yL2qxMAwTXUw7/jLJ4CqdbsLyZjv//3KVV3ac1bGulyliWMAHGwuUC/U8tZ8H3QeUwY5VraborLw+lUaEWofM8lIUEBmgx5O2LwxqiKF/uLFcFZPUuxI85jZMc9ViyocR10g2szR41jQgBfx1gj9I5xmsnxrF8CMe9Oaw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JZ+sqgyGXI9MFRyipcYm5GEGEPeuPFTGMwvpMaYwo7Q=; b=FGN7T/Ds8z8sYGVsEPytS80ouHME83tBbHTN08WO+BYeyL0gdOTm4L48udlxPk+ltuX3u9OQOnc2A26XZU3XWx6hK49E4snfLvb8bp6OJDNDbzy/xarEu+QTkyU/p141Werc2X86VNw6T7Jf2KX6hwxZdyLFcJSAZAb9GdyMrps=
Received: from AM0PR07MB3860.eurprd07.prod.outlook.com (2603:10a6:208:4c::18) by AM4PR07MB3476.eurprd07.prod.outlook.com (2603:10a6:205:b::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3412.4; Thu, 17 Sep 2020 15:42:12 +0000
Received: from AM0PR07MB3860.eurprd07.prod.outlook.com ([fe80::6cc3:4783:280b:d741]) by AM0PR07MB3860.eurprd07.prod.outlook.com ([fe80::6cc3:4783:280b:d741%7]) with mapi id 15.20.3412.007; Thu, 17 Sep 2020 15:42:12 +0000
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: "Charles Eckel (eckelcu)" <eckelcu=40cisco.com@dmarc.ietf.org>, "bfcpbis@ietf.org" <bfcpbis@ietf.org>
CC: Jean Mahoney <jmahoney@amsl.com>, "bfcpbis-chairs@ietf.org" <bfcpbis-chairs@ietf.org>, Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>, Keith Drage <drageke@ntlworld.com>, "bfcpbis-ads@ietf.org" <bfcpbis-ads@ietf.org>, "jo@comnet.tkk.fi" <jo@comnet.tkk.fi>, "mary.ietf.barnes@gmail.com" <mary.ietf.barnes@gmail.com>, "tom@kristensen.larvik.no" <tom@kristensen.larvik.no>, RFC Editor <rfc-editor@rfc-editor.org>
Thread-Topic: AUTH48 [JM]: RFC 8855 <draft-ietf-bfcpbis-rfc4582bis-16.txt> NOW AVAILABLE
Thread-Index: AQHWIqViT1RAXKn/9EqC4786COJ18aiZBvMAgBhveoCAAOmHgIAAkKiAgAAuaICAtgG1gIAA5eYwgAAgLgCAAHW5sP//mYeAgAOWvfA=
Date: Thu, 17 Sep 2020 15:42:12 +0000
Message-ID: <AM0PR07MB386095C52A763C34EA94DA8C933E0@AM0PR07MB3860.eurprd07.prod.outlook.com>
References: <20200505062106.40196F4072C@rfc-editor.org> <20200505062634.GA22852@rfc-editor.org> <90116eda-0692-e727-8901-98aeeb578e6e@amsl.com> <FFB537B8-6FD4-4D8C-AC4A-9DB4CC9411DE@cisco.com> <09c10dfd-9d48-49b7-764b-a41923c90186@amsl.com> <45c39325-5f5b-6161-304e-91beae81dd20@ntlworld.com> <089754DF-62D6-4544-9B9D-FA3DD18C5F57@cisco.com> <AM0PR07MB38607B50A6FE921CD2288C6493200@AM0PR07MB3860.eurprd07.prod.outlook.com> <620E4721-DE3D-4091-8E4D-5AB7535478C4@cisco.com> <AM0PR07MB3860B2C54BCAB8CDF86BA23C93200@AM0PR07MB3860.eurprd07.prod.outlook.com> <D5B11705-0744-4FFB-8244-EF38FCBB27F2@cisco.com>
In-Reply-To: <D5B11705-0744-4FFB-8244-EF38FCBB27F2@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dmarc.ietf.org; dkim=none (message not signed) header.d=none;dmarc.ietf.org; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [213.216.234.38]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 83e50b2d-d310-40d1-90a7-08d85b203eb0
x-ms-traffictypediagnostic: AM4PR07MB3476:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <AM4PR07MB3476CEF064509580379BE492933E0@AM4PR07MB3476.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: j7V1AeLWWKGT096SEvyiom2ilo4hUdhHAp28lQSkWXYjWnr79HSMJUUUjSE6FzagvzJf8xgrcTL+RtNVHaQGShuLQmMl1nXepX/SYXA5/nc9Z0boqBj0eaJEHEFI0bc0XxZColUHr6Fud9d8hdiLtLYhfSkEs6oczc6jZ4frhHUJlAB1RUiDQP75vs9SDyXDxh9nhIFqszROZgcxNFWJ181JwKevBUhsO7HPAPydqvAV+LuBNQEKT8LQ3CaL6kZEWAIRb9aGYfeu6myBi7LPr+5FyYY5GT6RIwY0VyPlIK9wKHKpSNoH3GPxK58j89cQnrLErcblfU1GeBuHn2JwQ1/RSWQbBJSPNK+Xk0bFN7P17yh7Mn+JHYTi55E+Gn9l4llU9ziYDXUEQILIv6TQQw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR07MB3860.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(366004)(376002)(136003)(346002)(396003)(7416002)(186003)(26005)(316002)(7696005)(44832011)(110136005)(54906003)(86362001)(53546011)(83380400001)(6506007)(2906002)(52536014)(8676002)(8936002)(5660300002)(9686003)(966005)(66556008)(66446008)(64756008)(4326008)(71200400001)(66946007)(55016002)(66476007)(33656002)(478600001)(76116006); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: dUaPuUs0hRQauK47N5zy2ZJRVSfC7ST9P02IaPh/7t62NtR/w23C0yRFBZdCc7h3UJ35vjSm4Ok6TqRf15KbfDr3rnwmOkVIg9TEk5Z+k5KhqlkayXaKcYlfbJzY2dKYvfRowwIAHUlA2WQGQXMxPgKS/TWZlxptA7oxnxD77Rrfb/DZ7aSEBmA8ibpJtUHkUl1X2XGoiNHjN/Kr/fzH6stykFWHpY95SZgWI1mkTBnZrpjkFgRnuUi5rzLxiX1vtUgDdQ/A2OZu9IdcM3tXV4McMLtAkkLDlT3CuKWep/hRtWMMgxY1mCuq6FsKzMofUVh6hGLVnoOFRG2zTnv+e8xegPipMAtgsHYxxz5bdccHnLlzEhmuHiKOSm1noVHfkLbVA+Nl/d8lI1NrMsMY0DQr2YfHAhOQrx3fp8Dkns2mGtM0otpcphk1zZiAz4vcPvmuQSR5qMCJbugQNC9WdzGY7GFqG1qP+AsrT0825XxXjfLVyjs8WhIj7IElQN1ZW6gZvfrY6C9PslJMLULC1l/eO+in8Cj5wINXR672XQ5Bm1m5zw50iLyULi/na4XSVU7K0jY4dUS3ow1IV9kuog21jld3Erz7vcFDZGP9j1XGQC/krD53HoC5mrWM6kQ6Leo9nC9lbRpZPWWhc7K/vQ==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR07MB3860.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 83e50b2d-d310-40d1-90a7-08d85b203eb0
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Sep 2020 15:42:12.1395 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Hm9f6V/xyCDAirYkXDHB/NU5lKaCEy+APFyzFHJW5sh4htraT6jfijYqFXqEw87U6CHwneKdmyu83ZspsX5spfZ9zH9TwnOqHS8ZGmx9OR4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR07MB3476
Archived-At: <https://mailarchive.ietf.org/arch/msg/bfcpbis/7AoPV3YQabKeIqkJ-EuC8uYXzhg>
X-Mailman-Approved-At: Thu, 17 Sep 2020 08:46:51 -0700
Subject: Re: [bfcpbis] AUTH48 [JM]: RFC 8855 <draft-ietf-bfcpbis-rfc4582bis-16.txt> NOW AVAILABLE
X-BeenThere: bfcpbis@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BFCPBIS working group discussion list <bfcpbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bfcpbis/>
List-Post: <mailto:bfcpbis@ietf.org>
List-Help: <mailto:bfcpbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Sep 2020 15:42:18 -0000

Hi,

"Christer, please confirm if I have capture this correctly."

Confirmed.

Regards,

Christer

-----Original Message-----
From: Charles Eckel (eckelcu) <eckelcu=40cisco.com@dmarc.ietf.org> 
Sent: tiistai 15. syyskuuta 2020 18.53
To: Christer Holmberg <christer.holmberg@ericsson.com>; bfcpbis@ietf.org
Cc: Jean Mahoney <jmahoney@amsl.com>; bfcpbis-chairs@ietf.org; Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>; Keith Drage <drageke@ntlworld.com>; bfcpbis-ads@ietf.org; jo@comnet.tkk.fi; mary.ietf.barnes@gmail.com; tom@kristensen.larvik.no; RFC Editor <rfc-editor@rfc-editor.org>
Subject: Re: AUTH48 [JM]: RFC 8855 <draft-ietf-bfcpbis-rfc4582bis-16.txt> NOW AVAILABLE

Thanks Christer.

To recap, the updated proposal is to:

1) maintain the normative reference to RFC 5389 STUN rather than replace it with a reference to RFC 8489
2) update the reference to RFC 5245 ICE to RFC 8445 ICE (this change has already been made a result of AUTH 48)
3) make the informative reference to RFC 8445 ICE a normative reference to be consistent with the normative reference to RFC 5389 STUN and with the normative reference to RFC 8845 ICE in rfc4583bis.

Christer, please confirm if I have capture this correctly.
Everyone else, your feedback here is greatly appreciated as well.

Cheers,
Charles

On 9/15/20, 8:13 AM, "Christer Holmberg" <christer.holmberg=40ericsson.com@dmarc.ietf.org> wrote:

    Hi,

    ...

    >>>2) make the reference to RFC 5389/STUN an informative reference as is already done for RFC 5245/ICE
    >>
    >>My suggestion would actually be to update the ICE reference to RFC 8445. Again, that would align with other C238 cluster documents that reference ICE.
    >
    > [cue] Good point. This reference has already been updated to RFC 8445 as part of AUTH-48.

    Good.

    >> And, in RFC 8445 STUN is a *normative* reference.
    >
    > [cue] In rfc4582bis, the reference to ICE is currently Informative, whereas the reference to STUN is Normative. I believe they should either both be Normative or both be Informative. 
    > Do you happen to know which way would be more consistent with similar references to STUN/ICE in cluster C238? In rfc4583bis, the reference to ICE is currently Normative.

    Correct. rfc4583bis actually defines ICE procedures for BFCP, so Normative is fine.

    4582bis contains the following sentence:

       "In order to facilitate the initial establishment of NAT bindings, and
       to maintain those bindings once established, BFCP entities using an
       unreliable transport are RECOMMENDED to use STUN [12] Binding
       Indication for keep-alives, as described for ICE [17]."

    As you can see, it is actually described in the ICE spec on how to use STUN. So, therefore I agree that both should be either Normative or Informative. And, since there is a "RECOMMENDED", I assume that means they would have to be Normative.

    Regards,

    Christer



        On 5/21/20, 1:55 PM, "Keith Drage" <drageke@ntlworld.com> wrote:

            I do note that the normative requirement is at SHOULD strength.

            However there are no statements that support an implementor to decide 
            under what conditions the requirement can be ignored, or the 
            consequences of ignoring, one or other of which should really be there.

            The lack of that information does not help in trying to evaluate the 
            consequences of updating the reference, versus leaving the reference as 
            it is - note that there is a risk both ways.

            The quick review I did, resulted in my feeling that the upgrade would be 
            OK, but I am not an expert in that area. Certainly I think either way it 
            should go to the WG for a quick review.

            Keith

            On 21/05/2020 19:09, Jean Mahoney wrote:
            > Hi Charles,
            >
            > On 5/21/20 11:31 AM, Charles Eckel (eckelcu) wrote:
            >> Hi Jean,
            >>
            >> I am more comfortable sticking with RFC 5389 at this point in time.
            >
            >
            > Ack.
            >
            >
            >> That said, I know that in another thread Christer made the point of 
            >> being consistent across the cluster in terms of referencing RFC 5389 
            >> vs. RFC 8489. If the decision is for the cluster switch to RFC 8489, 
            >> we can consider that. However, I think we would need to take it back 
            >> to the working group to see if there are any issues because I do not 
            >> believe the working group was not tracking this update and did not 
            >> anticipate its publication.
            >
            >
            > FWIW, so far, the one C238 document that has updated their STUN 
            > reference to RFC 8489 has an informative ref to it, not a normative one.
            >
            > Thanks!
            >
            > RFC Editor/jm
            >
            >
            >>
            >> Cheers,
            >> Charles
            >>
            >> On 5/20/20, 12:36 PM, "Jean Mahoney" <jmahoney@amsl.com> wrote:
            >>
            >>      Authors,
            >>
            >>      We note that this document has a normative reference to RFC 5389 
            >> (STUN),
            >>      which was obsoleted just recently by RFC 8489.  Do you wish to 
            >> update
            >>      this reference to RFC 8489?
            >>
            >>      Thanks!
            >>
            >>      RFC Editor/jm
            >>
            >>

        _______________________________________________
        bfcpbis mailing list
        bfcpbis@ietf.org
        https://www.ietf.org/mailman/listinfo/bfcpbis