Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583bis
"Charles Eckel (eckelcu)" <eckelcu@cisco.com> Thu, 03 August 2017 21:32 UTC
Return-Path: <eckelcu@cisco.com>
X-Original-To: bfcpbis@ietfa.amsl.com
Delivered-To: bfcpbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2CD821275F4 for <bfcpbis@ietfa.amsl.com>; Thu, 3 Aug 2017 14:32:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.522
X-Spam-Level:
X-Spam-Status: No, score=-14.522 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ku5y77Y3qU1T for <bfcpbis@ietfa.amsl.com>; Thu, 3 Aug 2017 14:32:30 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7C91612706D for <bfcpbis@ietf.org>; Thu, 3 Aug 2017 14:32:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=23598; q=dns/txt; s=iport; t=1501795948; x=1503005548; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=NjASTU3+HIJhUY2jAP8s3+2ghHWXlwII2JnoUZSdQcQ=; b=Zoxv08jWq1lUyESZhjVxR110+2qR1bkuoT2pQKAaA0I1hoBeAK3e+M2u 6qLYBbgHXPJT5cUUrmqskX6UuX+lHbBCdnbOtrsHjLS6vH+uTh6Kg6U/9 AaF2pcSKt2DCXVwf+g93iiIeBhmIsjvK55Ay+li5BlYBvSVDIyMVna6pe U=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AGAgAPloNZ/4YNJK1dGQEBAQEBAQEBAQEBBwEBAQEBgm8+LWRtJweOCJAIgW6CcIVGiCyFM4ISIQEKhExPAhqEJD8YAQIBAQEBAQEBayiFGAEBAQEDAQEbBksLDAQCAQgOAwMBAigDAgICHwYLFAkIAgQOBYlLTAMVEK1QgiYnhw0NhAEBAQEBAQEBAQEBAQEBAQEBAQEBAQEdgyiCAoMvK4J8gleCIxkWAoJbMIIxBZ9BPAKHUYdphHGCD1mEf4phjCiJWAEPEDiBCncVSRIBhwd2AYZtK4EFgQ8BAQE
X-IronPort-AV: E=Sophos;i="5.41,317,1498521600"; d="scan'208,217";a="267974013"
Received: from alln-core-12.cisco.com ([173.36.13.134]) by rcdn-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 03 Aug 2017 21:32:10 +0000
Received: from xch-rcd-011.cisco.com (xch-rcd-011.cisco.com [173.37.102.21]) by alln-core-12.cisco.com (8.14.5/8.14.5) with ESMTP id v73LWAOQ003248 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 3 Aug 2017 21:32:10 GMT
Received: from xch-aln-018.cisco.com (173.36.7.28) by XCH-RCD-011.cisco.com (173.37.102.21) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Thu, 3 Aug 2017 16:32:09 -0500
Received: from xch-aln-018.cisco.com ([173.36.7.28]) by XCH-ALN-018.cisco.com ([173.36.7.28]) with mapi id 15.00.1210.000; Thu, 3 Aug 2017 16:32:09 -0500
From: "Charles Eckel (eckelcu)" <eckelcu@cisco.com>
To: Roman Shpount <rshpount@turbobridge.com>
CC: "bfcpbis@ietf.org" <bfcpbis@ietf.org>, Christer Holmberg <christer.holmberg@ericsson.com>, Alan Ford <alan.ford@gmail.com>, "Tom Kristensen (tomkrist)" <tomkrist@cisco.com>, Gonzalo Camarillo <Gonzalo.Camarillo@ericsson.com>
Thread-Topic: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583bis
Thread-Index: AQHS/tQqacZkSf+3+0+Qd13paCNRh6Jak8qAgBkj0wA=
Date: Thu, 03 Aug 2017 21:32:08 +0000
Message-ID: <323DB18F-A9FA-4D4E-BA40-2CE24FEED1EC@cisco.com>
References: <33AC90F8-1963-4F79-ACB2-0DB2873D5E34@cisco.com> <CAD5OKxswNRuYFt_XQZ=caDB5WQDXS27KbH3M-AxhKL9Pq0WwPA@mail.gmail.com>
In-Reply-To: <CAD5OKxswNRuYFt_XQZ=caDB5WQDXS27KbH3M-AxhKL9Pq0WwPA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.22.0.170515
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.20.182.36]
Content-Type: multipart/alternative; boundary="_000_323DB18FA9FA4D4EBA402CE24FEED1ECciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/bfcpbis/MLwDS8eTdGPK6rWFiUOXYRa9fX4>
Subject: Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583bis
X-BeenThere: bfcpbis@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: BFCPBIS working group discussion list <bfcpbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bfcpbis/>
List-Post: <mailto:bfcpbis@ietf.org>
List-Help: <mailto:bfcpbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Aug 2017 21:32:34 -0000
Comments inline [cue] From: Roman Shpount <rshpount@turbobridge.com> Date: Tuesday, July 18, 2017 at 4:37 PM To: Charles Eckel <eckelcu@cisco.com> Cc: "bfcpbis@ietf.org" <bfcpbis@ietf.org>, Christer Holmberg <christer.holmberg@ericsson.com>, Alan Ford <alan.ford@gmail.com>, Tom Kristensen <tomkrist@cisco.com>, Gonzalo Camarillo <Gonzalo.Camarillo@ericsson.com> Subject: Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583bis Hi All, I have reviewed the document and have the following comments: Section 8 BFCP Connection Management: It specifies that BFCP can use TCP or UDP as underlying transport. It does not specify what happens when ICE, TCP/DTLS/BFCP, TCP/TLS/BFCP, or UDP/TLS/BFCP are used. I suggest to explicitly specify that ICE, TCP/DTLS/BFCP, and UDP/TLS/BFCP follow the same procedures for connection management as UDP/BFCP. TCP/TLS/BFCP follows the same procedures as TCP/BFCP [cue] Seems a worthwhile clarification to me. Christer voiced agreement in another thread as well. Section 9 Authentication: Not sure why we are talking about SIP here. I think we should restate When SDP is used to perform an offer/answer exchange, the initial mutual authentication takes place at the SIP level. Additionally, SIP uses S/MIME [6] to provide an integrity-protected channel with optional confidentiality for the offer/answer exchange. as When SDP is used to perform an offer/answer exchange, the initial mutual authentication SHOULD take place at the signaling level. Additionally, signaling can use S/MIME [6] to provide an integrity-protected channel with optional confidentiality for the offer/answer exchange. [cue] Seems a worthwhile clarification to me. Christer voiced agreement in another thread as well. This section specifies that "This implies that unless a 'fingerprint' attribute is included in the session description, the certificate provided at the TLS-/DTLS-level MUST either be directly signed by one of the other party's trust anchors or be validated using a certification path that terminates at one of the other party's trust anchors [5]". I thought "fingerprint" attribute are required and certificate signature by trust anchor is irrelevant. [cue] This is a carryover from RFC 4583. I agree that it seems unnecessary. I have no objection to removing. Doing so seems to align with Christer’s suggestion as well to rely more on a reference to https://www.ietf.org/id/draft-ietf-mmusic-dtls-sdp-26.txt Not sure what "When using UDP, the procedure above was preferred since it adheres to [16] as used for DTLS-SRTP" means, especially since [16} is not specific to SRTP-DTLS, but specifies generic rules for all DTLS based protocols. The whole logic is circular since it proposes to follow procedures from [16] since they are compliant with procedures from [16]. [cue] We have gone in circles around this a few times in the past. At this point, I think it is best to remove and refer to https://www.ietf.org/id/draft-ietf-mmusic-dtls-sdp-26.txt as Christer suggests. Section 10. ICE Considerations Please synchronize text with text in https://tools.ietf.org/html/draft-ietf-mmusic-sctp-sdp-26#section-12.2 . This section was updated during WGLC for draft-ietf-mmusic-sctp-sdp, so it would make sense to synchronize those changes here. Let me know if you need help with this. [cue] Sounds good to me. I will leave it to Tom to ask for help if necessary. Cheers, Charles Regards, _____________ Roman Shpount On Mon, Jul 17, 2017 at 4:10 AM, Charles Eckel (eckelcu) <eckelcu@cisco.com<mailto:eckelcu@cisco.com>> wrote: (As WG co-chair) This is a reminder that WGLC ends tomorrow. I realize the time to review overlaps with IETF prep and meeting times. If you require more time to review the draft, please let me know. Otherwise, please share your review comments by the end of tomorrow. Thanks, Charles -----Original Message----- From: bfcpbis <bfcpbis-bounces@ietf.org<mailto:bfcpbis-bounces@ietf.org>> on behalf of Charles Eckel <eckelcu@cisco.com<mailto:eckelcu@cisco.com>> Date: Wednesday, July 5, 2017 at 5:59 PM To: "bfcpbis@ietf.org<mailto:bfcpbis@ietf.org>" <bfcpbis@ietf.org<mailto:bfcpbis@ietf.org>> Subject: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583bis (As WG co-chair) This is to announce an additional working group last call for draft-ietf-bfcpbis-rfc4583bis, "Session Description Protocol (SDP) Format for Binary Floor Control Protocol (BFCP) Streams". http://datatracker.ietf.org/doc/draft-ietf-bfcpbis-rfc4583bis/ This is intended as a Standards Track RFC, obsoleting RFC 4583. Please respond to the list by July 18th (i.e. 2 weeks) with any comments. We had a working group last call previous, but a significant amount of time and some substantial changes and additions have occurred to justify another review of the draft in its entirely. It is helpful to attempt to categorize your comment (e.g. technical issue vs. editorial), and also to provide any replacement text you feel is necessary. If you review the document and have no comments, please tell the chairs that you have reviewed it. This is always useful information in assessing the degree of WG review and consensus behind the document. Note, we have not scheduled a working group session for IETF 99 in Prague. This WGLC will close during IETF 99. If helpful, we can arrange a side meeting to discuss any significant issues, or with any luck, gather at a bar to celebrate the draft being ready to advance to the next step toward RFC. Cheers, Charles _______________________________________________ bfcpbis mailing list bfcpbis@ietf.org<mailto:bfcpbis@ietf.org> https://www.ietf.org/mailman/listinfo/bfcpbis
- [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583bis Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Roman Shpount
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Alan Ford
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Alan Ford
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Alan Ford
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Tom Kristensen
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Roman Shpount
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Tom Kristensen (tomkrist)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)
- Re: [bfcpbis] WGLC for draft-ietf-bfcpbis-rfc4583… Charles Eckel (eckelcu)