IETF Logo Mail Archive

Re: [clue] Kathleen Moriarty's Discuss on draft-ietf-clue-data-model-schema-14: (with DISCUSS)

Alissa Cooper <alissa@cooperw.in> Wed, 01 June 2016 17:27 UTC

Return-Path: <alissa@cooperw.in>
X-Original-To: clue@ietfa.amsl.com
Delivered-To: clue@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F33A312D5B7; Wed, 1 Jun 2016 10:27:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.721
X-Spam-Level:
X-Spam-Status: No, score=-2.721 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cooperw.in header.b=iCDXpYYA; dkim=pass (1024-bit key) header.d=messagingengine.com header.b=pHS6FD3W
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id m6D9Gw0QLuJS; Wed, 1 Jun 2016 10:27:04 -0700 (PDT)
Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EDEEB12D0E5; Wed, 1 Jun 2016 10:27:03 -0700 (PDT)
Received: from compute6.internal (compute6.nyi.internal [10.202.2.46]) by mailout.nyi.internal (Postfix) with ESMTP id 4880E2126E; Wed, 1 Jun 2016 13:27:03 -0400 (EDT)
Received: from frontend1 ([10.202.2.160]) by compute6.internal (MEProxy); Wed, 01 Jun 2016 13:27:03 -0400
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=cooperw.in; h=cc :content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-sasl-enc :x-sasl-enc; s=mesmtp; bh=aRtvz3sJF/0Qmk2j50on2hpCtYE=; b=iCDXpY YAJ9QB7DWvkTBcFBmLcE/Vavk5aKaD6vNtPb4WcptQjIylvmcVI521xshsBYfeDu 7HZj5ttKMSe3cQ+F3DxD+rVu2KDvuDVnBTmumoYsv7qtnnZcwF/BihVanO+o+hFW 1pdEHAu+zYPrWlU3mKjFPRGWbzhDMoVjZ2H1s=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-sasl-enc:x-sasl-enc; s=smtpout; bh=aRtvz3sJF/0Qmk2 j50on2hpCtYE=; b=pHS6FD3WbtbpXaUbQ1qHQG+wan1vvMku82v5soF9USQSqkZ tUrdm4fAXos/zCLmNid0WpEBcLk8KvMQBNXg8/6xDZ7XoNgr7sshItIY5IGDNTWC IGYY2gmMtnxYRFEKcuUjYMsSZWGSXKu/6Jr7mykYMOo7O2bY2wKRdgr28zG0=
X-Sasl-enc: BXHRtLHfUFvly+3cRzMBCsydPtMrzECQOSqBi7bXiGtP 1464802022
Received: from dhcp-171-68-20-157.cisco.com (dhcp-171-68-20-157.cisco.com [171.68.20.157]) by mail.messagingengine.com (Postfix) with ESMTPA id 83D96F2A4D; Wed, 1 Jun 2016 13:27:02 -0400 (EDT)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Alissa Cooper <alissa@cooperw.in>
In-Reply-To: <20160531213800.20195.51327.idtracker@ietfa.amsl.com>
Date: Wed, 01 Jun 2016 10:27:01 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <45F69808-DBC1-4A03-95B2-7E8357F59034@cooperw.in>
References: <20160531213800.20195.51327.idtracker@ietfa.amsl.com>
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
X-Mailer: Apple Mail (2.3124)
Archived-At: <http://mailarchive.ietf.org/arch/msg/clue/YkQme_O9bXm1qPhB0dgsgbyEONY>
Cc: clue-chairs@ietf.org, CLUE <clue@ietf.org>, IESG <iesg@ietf.org>, draft-ietf-clue-data-model-schema@ietf.org
Subject: Re: [clue] Kathleen Moriarty's Discuss on draft-ietf-clue-data-model-schema-14: (with DISCUSS)
X-BeenThere: clue@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: CLUE - ControLling mUltiple streams for TElepresence <clue.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/clue>, <mailto:clue-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/clue/>
List-Post: <mailto:clue@ietf.org>
List-Help: <mailto:clue-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/clue>, <mailto:clue-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Jun 2016 17:27:06 -0000

Hi Kathleen,

> On May 31, 2016, at 2:38 PM, Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> wrote:
> 
> Kathleen Moriarty has entered the following ballot position for
> draft-ietf-clue-data-model-schema-14: Discuss
> 
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
> 
> 
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about IESG DISCUSS and COMMENT positions.
> 
> 
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-clue-data-model-schema/
> 
> 
> 
> ----------------------------------------------------------------------
> DISCUSS:
> ----------------------------------------------------------------------
> 
> The document looks good, I just have a couple of items on the security
> considerations to discuss as they are not mentioned and I'm not sure if
> they have a good reason to be excluded.
> 
> 1. Session encryption to prevent active (tampering) or passive
> (information gathering for example) attacks.  Integrity protection and
> authentication are mentioned, but without looking through a few
> documents, I don't know if that means encryption or some hash value
> comparisons or something else. 

This is covered in the documents referenced in Section 25: draft-ietf-clue-framework, draft-ietf-clue-datachannel, and draft-ietf-clue-protocol.

Alissa

> 
> 2. Schema drafts tend to cover the need for well-formed schemas as part
> of the security considerations.  Can you add something in about that (not
> much is required, but it's good for implementers to know this is
> important)?  You can see two recent examples for guidance:
> YANG - https://datatracker.ietf.org/doc/draft-ietf-netmod-rfc6020bis/
> IODEF - https://datatracker.ietf.org/doc/draft-ietf-mile-rfc5070-bis/
> 
> 
> 
> 
> _______________________________________________
> clue mailing list
> clue@ietf.org
> https://www.ietf.org/mailman/listinfo/clue

v2.23.0 | Report a Bug | By Email