[core] Re: Ketan Talaulikar's No Objection on draft-ietf-core-oscore-groupcomm-27: (with COMMENT)
Ketan Talaulikar <ketant.ietf@gmail.com> Sat, 13 December 2025 00:41 UTC
Return-Path: <ketant.ietf@gmail.com>
X-Original-To: core@mail2.ietf.org
Delivered-To: core@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id C7DA799EA8A4 for <core@mail2.ietf.org>; Fri, 12 Dec 2025 16:41:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hFe7qyNPGGdx for <core@mail2.ietf.org>; Fri, 12 Dec 2025 16:41:55 -0800 (PST)
Received: from mail-pl1-x630.google.com (mail-pl1-x630.google.com [IPv6:2607:f8b0:4864:20::630]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 2239A99EA899 for <core@ietf.org>; Fri, 12 Dec 2025 16:41:55 -0800 (PST)
Received: by mail-pl1-x630.google.com with SMTP id d9443c01a7336-29812589890so22400335ad.3 for <core@ietf.org>; Fri, 12 Dec 2025 16:41:55 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1765586514; x=1766191314; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=AA8XzR54UpNCkdJdDmze0LltIhHarqMHc7jCLwiLPmI=; b=c0M9A9T79aUGTSfvGWGw9ttj3RQ2i7IyJMvBN9uEyfwRRRrOUguk6m9+rFHXWa6WqG YtRvh1oWBb94OH7tfeiSn/0LkbQWuv5W/muU2qAasWhK6ebYhm7llV8C5RWbMUILHocd ZJGlfGyRT1m+smH/citN/MIkrVjZbvboez6nSZzdqWWdR/Wmw6vVHrenMXYj8TOWaB7o f/PXauLWD9HT5Gwfz7o1BNnuMqPRJjQArv+6W1LmpecHRAvMmWADwXRMN7vbDWt9Dpc9 M5lcRa5XP6hdoeUPmvhJURiPF2VKnZnLs14r+7weXpetExiw9NTQO0hgE3RDm6rOYC/l c0Tg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1765586514; x=1766191314; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=AA8XzR54UpNCkdJdDmze0LltIhHarqMHc7jCLwiLPmI=; b=CvX3IJyXhjSISxUsxyCkT0sh9MN6kEdv6ewBnUTg0sB1l9cXMw6s6RiqxceegGToSZ +xYObnfGGDRSpccc5JkJPF8scLpcS+LJFiHe+SMVB5w6kUmy91P1PzvOQFy2BrY+b8sa UUI4iYuv8egQPSTubJYGMOUgF8jI4nJOZhEp6Z/OYHrLSSSlFr0/69+PVdIZHThspV7H 9bCexh/klpWqwpIEb3124p00YXOSxWW207gFEzXxYOyuCniATBt1E7ZonHqs9CFIwNZ8 Avr9Mgrh7+BN/6Vlt8EL3LoFDOwoALSPWsc07CeTwOJ4m1DSW6kza69s1JAkjEZr4Dxn JIrA==
X-Forwarded-Encrypted: i=1; AJvYcCWgMFu/BHhZapD01YFsaMzlWiL7b2ZcS13GkBKK7LdrFQx/UHa4kpDw3KlND9YrYj7s743i@ietf.org
X-Gm-Message-State: AOJu0YynjHkzlkQOI55lsz0pFD+nLv3SUmsnfufOcqP8q9L9kEbvnCKY OElF98aY/3iMWi4kSqHd1uW8tiCNvUlNYun05a85Aj4uUd7IT+0ojd13jQwq7UaJFuj/e0fv1LV hDeuFqQINP9HljR14Puq6UXPdDteKi+I=
X-Gm-Gg: AY/fxX5YpahN7wtd7MMrJUl29elYfq7/tzHFPhkdY39bSccbLzYj9mKra9bXzNTkHT3 aSs4tPUN3oTgpW15qbPV/tQEa95f9u629m+UYDBYePag+sveT++vF4iLgWCkFGeJj10NpklDxHu T6akpCkkzsA5CPVpm0qtSiT4dSQF9MMlZ93c4cgAJjkgFuZ5M3TUDcYcCqGELwphaYHPj/yahwp jkRU1Stl8JCoHFYCfSlDtysaKazF9dB8H5VjA1P3uUfOEckKZN5hse0KhHgUMUUN3Xo5UpDiw==
X-Google-Smtp-Source: AGHT+IEuOR1YGSY7+eRU+egWg0BX7P86lmfoBwCLQWeH7Qt5v1Q0HICsgu1jlXblbpq25Tt/mLMpbR7almyuiLNQ1rg=
X-Received: by 2002:a17:902:d54d:b0:298:2616:c8e2 with SMTP id d9443c01a7336-29f26eff3cfmr29842885ad.53.1765586513849; Fri, 12 Dec 2025 16:41:53 -0800 (PST)
MIME-Version: 1.0
References: <176035770525.665200.7682838919909962863@dt-datatracker-84f8f646b-tg6mn> <GV3P280MB04501F9A1248127A674460F899AEA@GV3P280MB0450.SWEP280.PROD.OUTLOOK.COM>
In-Reply-To: <GV3P280MB04501F9A1248127A674460F899AEA@GV3P280MB0450.SWEP280.PROD.OUTLOOK.COM>
From: Ketan Talaulikar <ketant.ietf@gmail.com>
Date: Fri, 12 Dec 2025 16:41:42 -0800
X-Gm-Features: AQt7F2qKO-SnN7BALhdIhi57SNg4Zla5OOi48AJqf9sD1mJDRsED4QcN56L_FB4
Message-ID: <CAH6gdPwLORggkS7KuWMaSMx11_WFM9UkiUBHRkj3-HNnZUOLKQ@mail.gmail.com>
To: Marco Tiloca <marco.tiloca@ri.se>
Content-Type: multipart/alternative; boundary="000000000000fa70610645caa46b"
Message-ID-Hash: ENDQU6LRTEMF6ZWEG3FLO357YOUU35SN
X-Message-ID-Hash: ENDQU6LRTEMF6ZWEG3FLO357YOUU35SN
X-MailFrom: ketant.ietf@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-core.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: The IESG <iesg@ietf.org>, "draft-ietf-core-oscore-groupcomm@ietf.org" <draft-ietf-core-oscore-groupcomm@ietf.org>, "core-chairs@ietf.org" <core-chairs@ietf.org>, "core@ietf.org" <core@ietf.org>, "christian@amsuess.com" <christian@amsuess.com>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [core] Re: Ketan Talaulikar's No Objection on draft-ietf-core-oscore-groupcomm-27: (with COMMENT)
List-Id: "Constrained RESTful Environments (CoRE) Working Group list" <core.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/VgevL-yUteg2uqRhZtzbph0EYOg>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Owner: <mailto:core-owner@ietf.org>
List-Post: <mailto:core@ietf.org>
List-Subscribe: <mailto:core-join@ietf.org>
List-Unsubscribe: <mailto:core-leave@ietf.org>
Hi Marco, Thanks for that detailed explanation. I found it helpful and the document looks good to me. Thanks, Ketan On Fri, Dec 12, 2025 at 10:16 AM Marco Tiloca <marco.tiloca@ri.se> wrote: > Hello Ketan, > > Thanks a lot for your review! Please find in line below our detailed reply > to your comment. > > Thanks, > /Marco > > ------------------------------ > *From:* Ketan Talaulikar via Datatracker <noreply@ietf.org> > *Sent:* Monday, October 13, 2025 2:15 PM > *To:* The IESG <iesg@ietf.org> > *Cc:* draft-ietf-core-oscore-groupcomm@ietf.org < > draft-ietf-core-oscore-groupcomm@ietf.org>; core-chairs@ietf.org < > core-chairs@ietf.org>; core@ietf.org <core@ietf.org>; > christian@amsuess.com <christian@amsuess.com>; christian@amsuess.com < > christian@amsuess.com> > *Subject:* Ketan Talaulikar's No Objection on > draft-ietf-core-oscore-groupcomm-27: (with COMMENT) > > Ketan Talaulikar has entered the following ballot position for > draft-ietf-core-oscore-groupcomm-27: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to > https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fabout%2Fgroups%2Fiesg%2Fstatements%2Fhandling-ballot-positions%2F&data=05%7C02%7Cmarco.tiloca%40ri.se%7C71ea933038fe43664f1d08de0a52256e%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638959545084060536%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=AXlag2Jx3WlNdni5Rz%2FO1T5w026MXd91KwP0G3BSbsU%3D&reserved=0 > <https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/> > for more information about how to handle DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > > https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-core-oscore-groupcomm%2F&data=05%7C02%7Cmarco.tiloca%40ri.se%7C71ea933038fe43664f1d08de0a52256e%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638959545084081142%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=fezdM2RdgD%2ByKfQ64pjp1ZU6%2B0FozLtF9QX0NUuF%2BOs%3D&reserved=0 > <https://datatracker.ietf.org/doc/draft-ietf-core-oscore-groupcomm/> > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Thanks to the authors and the WG for their work on this document. > > I have a question about the normative references that I am moving from > DISCUSS > to COMMENTS following a similar discussion with the rest of the IESG in a > recent telechat: > > Why would the reference to an IANA registry COSE.Algorithms be a normative > reference instead of an informative reference. I find the actual normative > portions are in RFCs 8613, 5869, and 9053 - all of which are correctly > categorized as normative. Isn't the pointer to the registry just an helpful > reference for readers? > > ==>MT > > The reference is used in Section 2.1.2 "HKDF Algorithm", which says: > > > The HKDF Algorithm (see Section 3.1 of [RFC8613]) SHALL identify the > used key derivation function, which MUST be one of the HMAC-based HKDF > [RFC5869] algorithms defined for COSE (see Section 5.1 of [RFC9053]) and > registered at [COSE.Algorithms]. > > Going through the references included there: > > * RFC 8613 is included as related to the HKDF Algorithm parameter in the > Common Context. > > * RFC 5869 is included as related to the HMAC-based HKDF construct as such. > > * RFC 9053 is included as related to the use of HMAC-based HKDF in COSE. > In addition to that, it is sufficient specifically for HKDF SHA-256 and > HKDF SHA-512, which are defined in that document. > > * The "COSE Algorithms" registry is included for generally taking into > account future HMAC-based HKDF. It is needed that also such HKDF are > specifically available for COSE, and an implementor has to check the > registry in order to verify whether that is the case. > > Therefore, we believe that it is appropriate for the reference to the > "COSE Algorithms" registry to be normative as well. > > > For other algorithms that are also used in Group OSCORE (i.e., AEAD > Algorithm, Group Encryption Algorithm, Signature Algorithm, and Pairwise > Key Agreement Algorithm), they are also needed to be specifically available > for COSE and therefore present in the "COSE Algorithms" registry. > > However, a normative reference to the "COSE Algorithms" registry is not > really needed for those algorithms. (If any, an informative reference would > be provided in the spirit of a simple pointer.) > > The reason is that, unlike for the HKDF Algorithm, all those four > algorithms used in the group are indicated within the aad_array structure > that is built to process a message with Group OSCORE (see Section 3.4). In > particular, a specific algorithm is indicated by means of the corresponding > identifier taken from "Value" field of the "COSE Algorithms" registry. > > That is, the need to correctly build the aad_array structure already > requires the developer to look at the "COSE Algorithms" registry for > picking up the correct algorithm identifiers. (At best, a normative > reference here too would be redundant and superfluous.) > > <== > > >
- [core] Ketan Talaulikar's No Objection on draft-i… Ketan Talaulikar via Datatracker
- [core] Re: Ketan Talaulikar's No Objection on dra… Marco Tiloca
- [core] Re: Ketan Talaulikar's No Objection on dra… Ketan Talaulikar