IETF Logo Mail Archive

Re: [bfcpbis] AUTH48 [JM]: RFC 8855 <draft-ietf-bfcpbis-rfc4582bis-16.txt> NOW AVAILABLE

"Charles Eckel (eckelcu)" <eckelcu@cisco.com> Tue, 15 September 2020 15:53 UTC

Return-Path: <eckelcu@cisco.com>
X-Original-To: bfcpbis@ietfa.amsl.com
Delivered-To: bfcpbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1B7FA3A0C7C; Tue, 15 Sep 2020 08:53:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.601
X-Spam-Level:
X-Spam-Status: No, score=-9.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=cOmAfKAi; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=vSETBmJX
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mfWq05dc3Jj1; Tue, 15 Sep 2020 08:53:35 -0700 (PDT)
Received: from alln-iport-1.cisco.com (alln-iport-1.cisco.com [173.37.142.88]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 239513A0C6E; Tue, 15 Sep 2020 08:53:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=7128; q=dns/txt; s=iport; t=1600185215; x=1601394815; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=TATbGYjID72vByFkkotggX6B0ZJVj9sOy38SotYIxEM=; b=cOmAfKAilKLeaS2qDZlJHX0xjrJKCJOBlDIeVzG+R6+cKiYL4I+WhVmo khKaTMoBSNOcsEo1XIyKIsUhZRta6roCKcSKDoSiQOBGMWhB6l1LLAkTF EkD9wePrzfStM7CivJgGcegl5SYCppSxTa4nBkQg91DGf2AwsigeUeAmh M=;
IronPort-PHdr: 9a23:EWeB+B8xTxI/uP9uRHGN82YQeigqvan1NQcJ650hzqhDabmn44+7ZhCN6fBkllSPXIjH5bRDkeWF+6zjWGlV55GHvThCdZFXTBYKhI0QmBBoG8+KD0D3bZuIJyw3FchPThlpqne8N0UGFMP3fVaUo3Cu43gVABqsfQZwL/7+T4jVicn/3uuu+prVNgNPgjf1Yb57IBis6wvLscxDiop5IaF3wRzM8XY=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CQBgAb42Bf/4UNJK1gHAEBAQEBAQcBARIBAQQEAQFAgU+BUiMGKAdwWS8shDmDRgONSiaYcoJTA1ULAQEBDQEBGAsKAgQBAYQHRAIXgggCJDgTAgMBAQsBAQUBAQECAQYEbYVcDIVyAQEBAQIBAQEQEREMAQEpAwsBDwIBCBgCAiYCAgIlCxUQAgQBDQUigwQBgksDDiABDqooAoE5iGF2gTKDAQEBBYUoGIIQAwaBDiqCcYNphlIbggCBEScMEIJNPoEEgVgBAQKBXReDADOCLZA4gjIBPJJokQQKgmWPRIp+Ax6DCYl1BoQSj1iBWJERgXSddgIEAgQFAg4BAQWBayOBV3AVOyoBgj5QFwINjh8MDAuBAgEIgkOFFIVCdAIBNAIGAQkBAQMJfI9UAQE
X-IronPort-AV: E=Sophos;i="5.76,430,1592870400"; d="scan'208";a="542369776"
Received: from alln-core-11.cisco.com ([173.36.13.133]) by alln-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 15 Sep 2020 15:53:34 +0000
Received: from XCH-ALN-004.cisco.com (xch-aln-004.cisco.com [173.36.7.14]) by alln-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 08FFrX8S029637 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 15 Sep 2020 15:53:34 GMT
Received: from xhs-aln-002.cisco.com (173.37.135.119) by XCH-ALN-004.cisco.com (173.36.7.14) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 15 Sep 2020 10:53:33 -0500
Received: from xhs-aln-003.cisco.com (173.37.135.120) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 15 Sep 2020 10:53:32 -0500
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-003.cisco.com (173.37.135.120) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Tue, 15 Sep 2020 10:53:32 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=UXG0606wafQwhPLY/h2FhwzaGZyzM6OT+TC87dblL1NXTFY3rTH+EPY9bM/JpckoiBVqCtuUmrjW6EbrldsLv/62ymBCY87SoE0ZQFNP4Co6F4h1w5KABy3qJOqPokMUYZC4wjOK6bze/z4FO/TVjOpQjNA2yIQ9yqJEk7Q/NQwstk1fAyfPXNVmQd0iW5CYB0CDcW+5r05vVw6ukwoHzk64bxzc2VCR3uVFjpIMEKBOK8icakm9zyv5rGe0C/AhCIbpVTkEFLYjZwgP+S1sjfMB934LJsqSLegmtoube9t+zPxYmLi6blbk5SH5F9ADypEOb6V+1whVswQvnn/9jA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TATbGYjID72vByFkkotggX6B0ZJVj9sOy38SotYIxEM=; b=QU164UUQzwUcLJQt5tgi1oIWswdt8DtoJ+hDJDI1VY1D+jJEH/05nd7i9mSjqNQaPo1N8/k/5gVWZyqDM7xFjHQQC3TzuB/IG0gM9gtI59P2djKFweOATazalrIAGn1jLtzPMoav4v5jHO2uX876g6iZniRQ+Pt8MTXnWlgw96tCT+eqRbJ6K6aZux1p/JinqTXMdEy9bJAwNyh0QA/YCk9dbhQN7bRFEAZIrHzMf8PbQ53pAi4t7oPrD8Xm2C9CR49Pjk0DhKeG22+GaJhZn+YNb5B0FSw7PYMuGDptskTGxz70id9MZqlixEdkEfdJ3qx2tZeQ6u9tWW6fZAkVKg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TATbGYjID72vByFkkotggX6B0ZJVj9sOy38SotYIxEM=; b=vSETBmJXsJ5Ht75RhHVlPctlahD22mmhT27SEHDBMaCpRy0vtR1kI/mGk1Mp/uitQ+q1eoHzRcNH64lp5TNXsgG+ptVEOrsb70orBKOanf+thiq3LWtE4nqiyA1IUk3K23YJOSLMlNheRqrxituPGKJPGdTyDvsqGEAHOeHjCdg=
Received: from BYAPR11MB3237.namprd11.prod.outlook.com (2603:10b6:a03:1e::19) by BYAPR11MB3655.namprd11.prod.outlook.com (2603:10b6:a03:f6::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3370.16; Tue, 15 Sep 2020 15:53:26 +0000
Received: from BYAPR11MB3237.namprd11.prod.outlook.com ([fe80::d43b:cd64:b100:84b5]) by BYAPR11MB3237.namprd11.prod.outlook.com ([fe80::d43b:cd64:b100:84b5%7]) with mapi id 15.20.3391.011; Tue, 15 Sep 2020 15:53:26 +0000
From: "Charles Eckel (eckelcu)" <eckelcu@cisco.com>
To: Christer Holmberg <christer.holmberg=40ericsson.com@dmarc.ietf.org>, "bfcpbis@ietf.org" <bfcpbis@ietf.org>
CC: Jean Mahoney <jmahoney@amsl.com>, "bfcpbis-chairs@ietf.org" <bfcpbis-chairs@ietf.org>, Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>, Keith Drage <drageke@ntlworld.com>, "bfcpbis-ads@ietf.org" <bfcpbis-ads@ietf.org>, "jo@comnet.tkk.fi" <jo@comnet.tkk.fi>, "mary.ietf.barnes@gmail.com" <mary.ietf.barnes@gmail.com>, "tom@kristensen.larvik.no" <tom@kristensen.larvik.no>, RFC Editor <rfc-editor@rfc-editor.org>
Thread-Topic: AUTH48 [JM]: RFC 8855 <draft-ietf-bfcpbis-rfc4582bis-16.txt> NOW AVAILABLE
Thread-Index: AQHWIqViT1RAXKn/9EqC4786COJ18aiZBvMAgBhveoCAAOmHgIAAkKiAgAAuaICAtgG1gIAA5eYwgAAgLgCAAHW5sP//mYeA
Date: Tue, 15 Sep 2020 15:53:26 +0000
Message-ID: <D5B11705-0744-4FFB-8244-EF38FCBB27F2@cisco.com>
References: <20200505062106.40196F4072C@rfc-editor.org> <20200505062634.GA22852@rfc-editor.org> <90116eda-0692-e727-8901-98aeeb578e6e@amsl.com> <FFB537B8-6FD4-4D8C-AC4A-9DB4CC9411DE@cisco.com> <09c10dfd-9d48-49b7-764b-a41923c90186@amsl.com> <45c39325-5f5b-6161-304e-91beae81dd20@ntlworld.com> <089754DF-62D6-4544-9B9D-FA3DD18C5F57@cisco.com> <AM0PR07MB38607B50A6FE921CD2288C6493200@AM0PR07MB3860.eurprd07.prod.outlook.com> <620E4721-DE3D-4091-8E4D-5AB7535478C4@cisco.com> <AM0PR07MB3860B2C54BCAB8CDF86BA23C93200@AM0PR07MB3860.eurprd07.prod.outlook.com>
In-Reply-To: <AM0PR07MB3860B2C54BCAB8CDF86BA23C93200@AM0PR07MB3860.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.40.20081000
authentication-results: dmarc.ietf.org; dkim=none (message not signed) header.d=none;dmarc.ietf.org; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2601:647:4401:e580:ac26:d9a6:e383:c7b4]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4d276428-2481-44de-4aa6-08d8598f7bf3
x-ms-traffictypediagnostic: BYAPR11MB3655:
x-microsoft-antispam-prvs: <BYAPR11MB3655646C9AF0EB912897E188B2200@BYAPR11MB3655.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: OQQeLDrDq6y3aSXdyw/4baKcd4tRqYVBLfhJVHgC55zTqu9jIr0tZDKkG0wz7E+c+O0wCOrsb/WhzwGowdB88Qf16ZS092lH1tjULtJwp+OhQ5BPgcpexRKnXs1+VMCRj+whZODys4lbJAVUN9BU35QmNUqHjVaQ+WB1wQB6CveDztIcH2tMYOlpFlo+C6KEJESrLA0ROvynQ3TmWJV7q01OoYKIdTQ0s9husFfC89sw8PWzXUqKKE5XcM5wrD5R3ksZiEOAy74xEZtoBz9Y/nX53ZLp5wpM0qxi5gBhOKAFaHU7g8VamhtyLxY0bbusTthsYzq+M5eY5l1drzhEY7ed0sfzl+o/pN3wEVfIresac2skCMnRFwpy9K+JRaUv+YwG2lf2DZfLKIzH7869OQ9R4r0vYa7m/9JqCx0MV6gr4l2EbVv3mJAHOR/3X2A1ZwVuSSikAGA7wS+wWHwHLg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB3237.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(136003)(366004)(346002)(376002)(396003)(39860400002)(66556008)(66446008)(66476007)(64756008)(66946007)(86362001)(6486002)(186003)(966005)(71200400001)(2616005)(5660300002)(76116006)(6506007)(83380400001)(53546011)(54906003)(110136005)(478600001)(36756003)(33656002)(6512007)(7416002)(8676002)(316002)(2906002)(4326008)(8936002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 1GvKr+1UoGjaVVN6ncuto752D4GCh3o9/U2DXnuvlhGIh8GdhtBRmnTKR7732xEbY40sMfogH7uqRRZnE/lgj369jekuOcH3tRCWhljg/7cPBbe+U9brl0MZPMelTVtjKz7bT2QrJPuvBAsTWoj2nGWZyw3NkfTVMzn2muy3zsFsPmML5wSSlybH25MtRF90bDtChSeTuZ2hKMYbA9nTW6XPC5caQQoalnIV/WvToE82TqvOfJRJoRMFyE5pDXV5C23td9drYh+ePmHsFzqiRU9KU9/dzd5XR25G9Mwnh4/sFaF6B7gygTIOUwnIbeZetuOC76SsRBDVkqmdGIdkjqYMUBQanmbKgoDYw9XuZMGdkjbEDyLey5xbsBepxA+sROa4AEJGqLolPZmBM26rpsqFqT4NJIv8steH/I1WA87s3CFB9//x7/VeSvm92kgx77Fy6S+4QxOkFQPG8cMqbt/0AHlmwqQrQkaoWwNZWpvRyv98oBSIB3zsakV1C/kQw6JA74gUMD0BrduEJG//hZUXpSKtrYNLNT8lOXsv5Ft6wd+4YNX7kPsLArTZveEmWdXNkGWHwIoQ6zzUDYSCPPzUWRLwqYPzesCw9Zjau1MUqwBz4CSspWgPbe+qZd4nKtXeUeDnxJtFwYan5uv7VJbYVVCO1H5p99+piU/hdl5wYeU/lFOMigydsgy4KrjhUhcrROCKlFqcwOysf8h6Hg==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <E2B386FB9B4881469CC341465CCCA0D9@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB3237.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4d276428-2481-44de-4aa6-08d8598f7bf3
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Sep 2020 15:53:26.6803 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 4D60JYd42hxK9Fcfc3HZFMVzobArVuDyaXRhVboxqTrxwV6CVvLP6+N3W0QL3I8VeLU8yxNgdGWQ8X1h0W1cOg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3655
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.14, xch-aln-004.cisco.com
X-Outbound-Node: alln-core-11.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/bfcpbis/p-srsU7Az27oLmRWerxV21e4lXY>
X-Mailman-Approved-At: Tue, 15 Sep 2020 08:54:50 -0700
Subject: Re: [bfcpbis] AUTH48 [JM]: RFC 8855 <draft-ietf-bfcpbis-rfc4582bis-16.txt> NOW AVAILABLE
X-BeenThere: bfcpbis@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BFCPBIS working group discussion list <bfcpbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bfcpbis/>
List-Post: <mailto:bfcpbis@ietf.org>
List-Help: <mailto:bfcpbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Sep 2020 15:53:37 -0000

Thanks Christer.

To recap, the updated proposal is to:

1) maintain the normative reference to RFC 5389 STUN rather than replace it with a reference to RFC 8489
2) update the reference to RFC 5245 ICE to RFC 8445 ICE (this change has already been made a result of AUTH 48)
3) make the informative reference to RFC 8445 ICE a normative reference to be consistent with the normative reference to RFC 5389 STUN and with the normative reference to RFC 8845 ICE in rfc4583bis.

Christer, please confirm if I have capture this correctly.
Everyone else, your feedback here is greatly appreciated as well.

Cheers,
Charles

On 9/15/20, 8:13 AM, "Christer Holmberg" <christer.holmberg=40ericsson.com@dmarc.ietf.org> wrote:

    Hi,

    ...

    >>>2) make the reference to RFC 5389/STUN an informative reference as is already done for RFC 5245/ICE
    >>
    >>My suggestion would actually be to update the ICE reference to RFC 8445. Again, that would align with other C238 cluster documents that reference ICE.
    >
    > [cue] Good point. This reference has already been updated to RFC 8445 as part of AUTH-48.

    Good.

    >> And, in RFC 8445 STUN is a *normative* reference.
    >
    > [cue] In rfc4582bis, the reference to ICE is currently Informative, whereas the reference to STUN is Normative. I believe they should either both be Normative or both be Informative. 
    > Do you happen to know which way would be more consistent with similar references to STUN/ICE in cluster C238? In rfc4583bis, the reference to ICE is currently Normative.

    Correct. rfc4583bis actually defines ICE procedures for BFCP, so Normative is fine.

    4582bis contains the following sentence:

       "In order to facilitate the initial establishment of NAT bindings, and
       to maintain those bindings once established, BFCP entities using an
       unreliable transport are RECOMMENDED to use STUN [12] Binding
       Indication for keep-alives, as described for ICE [17]."

    As you can see, it is actually described in the ICE spec on how to use STUN. So, therefore I agree that both should be either Normative or Informative. And, since there is a "RECOMMENDED", I assume that means they would have to be Normative.

    Regards,

    Christer



        On 5/21/20, 1:55 PM, "Keith Drage" <drageke@ntlworld.com> wrote:

            I do note that the normative requirement is at SHOULD strength.

            However there are no statements that support an implementor to decide 
            under what conditions the requirement can be ignored, or the 
            consequences of ignoring, one or other of which should really be there.

            The lack of that information does not help in trying to evaluate the 
            consequences of updating the reference, versus leaving the reference as 
            it is - note that there is a risk both ways.

            The quick review I did, resulted in my feeling that the upgrade would be 
            OK, but I am not an expert in that area. Certainly I think either way it 
            should go to the WG for a quick review.

            Keith

            On 21/05/2020 19:09, Jean Mahoney wrote:
            > Hi Charles,
            >
            > On 5/21/20 11:31 AM, Charles Eckel (eckelcu) wrote:
            >> Hi Jean,
            >>
            >> I am more comfortable sticking with RFC 5389 at this point in time.
            >
            >
            > Ack.
            >
            >
            >> That said, I know that in another thread Christer made the point of 
            >> being consistent across the cluster in terms of referencing RFC 5389 
            >> vs. RFC 8489. If the decision is for the cluster switch to RFC 8489, 
            >> we can consider that. However, I think we would need to take it back 
            >> to the working group to see if there are any issues because I do not 
            >> believe the working group was not tracking this update and did not 
            >> anticipate its publication.
            >
            >
            > FWIW, so far, the one C238 document that has updated their STUN 
            > reference to RFC 8489 has an informative ref to it, not a normative one.
            >
            > Thanks!
            >
            > RFC Editor/jm
            >
            >
            >>
            >> Cheers,
            >> Charles
            >>
            >> On 5/20/20, 12:36 PM, "Jean Mahoney" <jmahoney@amsl.com> wrote:
            >>
            >>      Authors,
            >>
            >>      We note that this document has a normative reference to RFC 5389 
            >> (STUN),
            >>      which was obsoleted just recently by RFC 8489.  Do you wish to 
            >> update
            >>      this reference to RFC 8489?
            >>
            >>      Thanks!
            >>
            >>      RFC Editor/jm
            >>
            >>

        _______________________________________________
        bfcpbis mailing list
        bfcpbis@ietf.org
        https://www.ietf.org/mailman/listinfo/bfcpbis

v2.23.0 | Report a Bug | By Email