Re: [core] John Scudder's Discuss on draft-ietf-core-oscore-edhoc-10: (with DISCUSS)
Marco Tiloca <marco.tiloca@ri.se> Thu, 04 April 2024 17:31 UTC
Return-Path: <marco.tiloca@ri.se>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B38FEC14F5ED; Thu, 4 Apr 2024 10:31:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ri.se
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9w_2s83uOMuQ; Thu, 4 Apr 2024 10:31:16 -0700 (PDT)
Received: from GVYP280CU001.outbound.protection.outlook.com (mail-swedencentralazon11022011.outbound.protection.outlook.com [52.101.75.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC810C14F748; Thu, 4 Apr 2024 10:31:14 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=KdNpADLtCA0WaL/M0cey1+NUJFQlk3P6ipx+94Bnbmb1Gvy68+bivxJ/OdK3lN7n4MyLO4S16ILGr9z8SsYQOXzHpn8cEom1sxuTQ4FYLAika4fBan9pazy4ry1YjRkQIf+xAqbb3ipScl6gHbd8vxCn5Pw+B+cMtfKMExsjkXTc4Q2RJ3//RVDrm/aM/1ROnVhU8/ZlefW/zTEzAvruZs6B9L1W1IuIOnF8lvTYUndCPkW0tlZVxMH21Fo/fZU2JS4PtHGYxYwRGzFw6Q5GV8JVLcHTHuFnQ/BgjeYWUR2MG9D3qO3cGoMLDgOZlV9bbwfFiruR+ZNX91ZD7J3z/w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=3G9wEfRSSoZaIX0HJfvjamlSgE8/qRIU3zTV1i6tJUQ=; b=Z7ra+7PV52Lw0y/FbdUcsaEDyDRA0zufBqQNUqPlWGMdbRi1WQ46zTgGo+X37Q+pwWuWIub+xaHWew7e0GvidMIIbE3scH8gDl3KanlexUg0b6AsLvibfrSreolr/QjySVJ8UifMMlncR30K7cjviYnMcZtX4jvrdPkMipw0hTAamkj1Ufqfyj7PtqUX559oQgxU4Bf+sfhr2IXxQVxV7/rWDmHQ5gCq5sD7o/bfbcINtbhwmX1hbkcJO9zu6cvMzUidmzU2hbhVfLDy56Xpztd4DL9O9WyM/W69Xt00sBIXRJ1SCdgDPEmXI1jqFLuI+w0mKuSf+mk1/DqMdJ12wQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ri.se; dmarc=pass action=none header.from=ri.se; dkim=pass header.d=ri.se; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ri.se; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=3G9wEfRSSoZaIX0HJfvjamlSgE8/qRIU3zTV1i6tJUQ=; b=U+notV3FbuQJzGX/hkxwoq5UzyvaOKYV33XyQ64nHrkAsRA2RJwzN2Qw5aB+4/LYzoI6qvUnCtLbinajReywO3weJOx/b5rtXq4N2ixdyELWkJI7uR3y9D3zFSZj53mNf276/SXPyZETjD2euA8zi+7Gm+r+kLUZrEQUYdvyMeI=
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17) by GV3P280MB0163.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:e::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7409.46; Thu, 4 Apr 2024 17:31:11 +0000
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::ac07:ed64:c098:f1f9]) by GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::ac07:ed64:c098:f1f9%4]) with mapi id 15.20.7409.042; Thu, 4 Apr 2024 17:31:11 +0000
Message-ID: <e03aba78-1349-42c7-b0e1-1f464ef7b711@ri.se>
Date: Thu, 04 Apr 2024 19:31:09 +0200
User-Agent: Mozilla Thunderbird
To: John Scudder <jgs@juniper.net>, Carsten Bormann <cabo@tzi.org>
Cc: The IESG <iesg@ietf.org>, "draft-ietf-core-oscore-edhoc@ietf.org" <draft-ietf-core-oscore-edhoc@ietf.org>, "core-chairs@ietf.org" <core-chairs@ietf.org>, "core@ietf.org" <core@ietf.org>
References: <171209295110.36690.2503046078430078938@ietfa.amsl.com> <BB6803D5-7D3B-4F63-A757-B0DE825CD5AD@tzi.org> <D823F4E7-EC8C-4494-9A61-824103C78BED@tzi.org> <A78F18F9-54A9-4907-9461-AB6D90FF02D8@juniper.net>
Content-Language: en-US
From: Marco Tiloca <marco.tiloca@ri.se>
Autocrypt: addr=marco.tiloca@ri.se; keydata= xsBNBFSNeRUBCAC44iazWzj/PE3TiAlBsaWna0JbdIAJFHB8PLrqthI0ZG7GnCLNR8ZhDz6Z aRDPC4FR3UcMhPgZpJIqa6Zi8yWYCqF7A7QhT7E1WdQR1G0+6xUEd0ZD+QBdf29pQadrVZAt 0G4CkUnq5H+Sm05aw2Cpv3JfsATVaemWmujnMTvZ3dFudCGNdsY6kPSVzMRyedX7ArLXyF+0 Kh1T4WUW6NHfEWltnzkcqRhn2NcZtADsxWrMBgZXkLE/dP67SnyFjWYpz7aNpxxA+mb5WBT+ NrSetJlljT0QOXrXMGh98GLfNnLAl6gJryE6MZazN5oxkJgkAep8SevFXzglj7CAsh4PABEB AAHNNk1hcmNvIFRpbG9jYSAobWFyY28udGlsb2NhQHJpLnNlKSA8bWFyY28udGlsb2NhQHJp LnNlPsLAdwQTAQgAIQUCWkAnkAIbAwULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAAKCRDuJmS0 DljaQwEvCACJKPJIPGH0oGnLJY4G1I2DgNiyVKt1H4kkc/eT8Bz9OSbAxgZo3Jky382e4Dba ayWrQRFen0aLSFuzbU4BX4O/YRSaIqUO3KwUNO1iTC65OHz0XirGohPUOsc0SEMtpm+4zfYG 7G8p35MK0h9gpwgGMG0j0mZX4RDjuywC88i1VxCwMWGaZRlUrPXkC3nqDDRcPtuEGpncWhAV Qt2ZqeyITv9KCUmDntmXLPe6vEXtOfI9Z3HeqeI8OkGwXpotVobgLa/mVmFj6EALDzj7HC2u tfgxECBJddmcDInrvGgTkZtXEVbyLQuiK20lJmYnmPWN8DXaVVaQ4XP/lXUrzoEzzsBNBFSN eRUBCACWmp+k6LkY4/ey7eA7umYVc22iyVqAEXmywDYzEjewYwRcjTrH/Nx1EqwjIDuW+BBE oMLRZOHCgmjo6HRmWIutcYVCt9ieokultkor9BBoQVPiI+Tp51Op02ifkGcrEQNZi7q3fmOt hFZwZ6NJnUbA2bycaKZ8oClvDCQj6AjEydBPnS73UaEoDsqsGVjZwChfOMg5OyFm90QjpIw8 m0uDVcCzKKfxq3T/z7tyRgucIUe84EzBuuJBESEjK/hF0nR2LDh1ShD29FWrFZSNVVCVu1UY ZLAayf8oKKHHpM+whfjEYO4XsDpV4zQ15A+D15HRiHR6Adf4PDtPM1DCwggjABEBAAHCwF8E GAECAAkFAlSNeRUCGwwACgkQ7iZktA5Y2kPGEwf/WNjTy3z74vLmHycVsFXXoQ8W1+858mRy Ad0a8JYzY3xB7CVtqI3Hy894Qcw4H6G799A1OL9B1EeA8Yj3aOz0NbUyf5GW+iotr3h8+KIC OYZ34/BQaOLzdvDNmRoGHn+NeTzhF7eSeiPKi2jex+NVodhjOVGXw8EhYGkeZLvynHEboiLM 4TbyPbVR9HsdVqKGVTDxKSE3namo3kvtY6syRFIiUz5WzJfYAuqbt6m3TxDEb8sA9pzaLuhm fnJRc12H5NVZEZmE/EkJFTlkP4wnZyOSf/r2/Vd0iHauBwv57cpY6HFFMe7rvK4s7ME5zctO Ely5C6NCu1ZaNtdUuqDSPA==
In-Reply-To: <A78F18F9-54A9-4907-9461-AB6D90FF02D8@juniper.net>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------kXJ6SoPeqS5qjZX0SOdJe10C"
X-ClientProxiedBy: MM0P280CA0039.SWEP280.PROD.OUTLOOK.COM (2603:10a6:190:b::31) To GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: GVYP280MB0464:EE_|GV3P280MB0163:EE_
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(376005)(366007)(1800799015); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-Network-Message-Id: 09551202-c3e4-49c2-f1a8-08dc54cd0516
X-MS-Exchange-CrossTenant-AuthSource: GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 04 Apr 2024 17:31:11.1083 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: DiUluu91kRfJBN64mpvPU5QDbpLNIs07v5aT4IgotHh/kUgFIvAVv1S7YamMDdIrvDB2C30dB2Sv6ouAb+S/IQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GV3P280MB0163
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/a4e4FTTK5wo98o-JzRr6xmdxwtY>
Subject: Re: [core] John Scudder's Discuss on draft-ietf-core-oscore-edhoc-10: (with DISCUSS)
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Apr 2024 17:31:21 -0000
Hello John, Thanks a lot for your review! Please find in line below our detailed replies to your comments. A Github PR where we have addressed your comments is available at [PR]. Unless any concern is raised, we plan to soon merge this PR (and the other ones related to other received reviews), and to submit the result as version -11 of the document. Thanks, /Marco [PR] https://github.com/core-wg/oscore-edhoc/pull/25 On 2024-04-03 18:29, John Scudder wrote: > [You don't often get email fromjgs@juniper.net. Learn why this is important athttps://aka.ms/LearnAboutSenderIdentification ] > >> On Apr 3, 2024, at 11:45 AM, Carsten Bormann<cabo@tzi.org> wrote: > ... >> We could make this a bit more standing out as in RFC 8881: >> >> Hence, all assignments to the registry are made on a Standards Action >> basis per Section 4.6 of [63], with Expert Review required. >> >> ([63] is an obfuscated reference to RFC 8126, where the section referenced of course actually should be 4.9). We could then add that RFC 7120 applies. > That sounds good to me. I might word it as “with Expert Review required in addition” but polish as you see best. > > Given that IANA has also indicated to me in a side channel that the policy name as written already works for them, I’ve moved to COMMENT in any case, but I think it’ll be helpful for innocent bystanders at least, to improve the text in the spec as you suggest. ==>MT We have made the following updates in Sections 8.3 and 8.4. OLD (Section 8.3): > IANA is requested to create a new "EDHOC Authentication Credential Types" registry within the "Ephemeral Diffie-Hellman Over COSE (EDHOC)" registry group defined in [I-D.ietf-lake-edhoc]. > > The registry uses the "Expert Review" registration procedure [RFC8126]. Expert Review guidelines are provided in Section 8.4. > > The columns of this registry are: NEW (Section 8.3): > IANA is requested to create a new "EDHOC Authentication Credential Types" registry within the "Ephemeral Diffie-Hellman Over COSE (EDHOC)" registry group defined in [I-D.ietf-lake-edhoc]. > > As registration policy, the registry uses either "Standards Action with Expert Review", or "Specification Required" per Section 4.6 of [RFC8126]. Expert Review guidelines are provided in Section 8.4. > > All assignments according to "Standards Action with Expert Review" are made on a "Standards Action" basis per Section 4.9 of [RFC8126], with Expert Review additionally required per Section 4.5 of [RFC8126]. The procedure for early IANA allocation of Standards Track code points defined in [RFC7120] also applies. When such a procedure is used, review and approval by the designated expert are also required, in order for the WG chairs to determine that the conditions for early allocation are met (see step 2 in Section 3.1 of [RFC7120]). > > The columns of this registry are: OLD (Section 8.4) > The IANA registry established in this document is defined as "Expert Review". NEW (Section 8.4) > The IANA registry established in this document is defined as "Standards Action with Expert Review" or "Specification Required", depending on the range of values for which an assignment is requested. <== > > Hopefully, we’ll be able to do a less ad-hoc fix in 8216bis/7120bis. > > Thanks, > > —John -- Marco Tiloca Ph.D., Senior Researcher Phone: +46 (0)70 60 46 501 RISE Research Institutes of Sweden AB Box 1263 164 29 Kista (Sweden) Division: Digital Systems Department: Computer Science Unit: Cybersecurity https://www.ri.se
- [core] John Scudder's Discuss on draft-ietf-core-… John Scudder via Datatracker
- Re: [core] John Scudder's Discuss on draft-ietf-c… Carsten Bormann
- Re: [core] John Scudder's Discuss on draft-ietf-c… Carsten Bormann
- Re: [core] John Scudder's Discuss on draft-ietf-c… John Scudder
- Re: [core] John Scudder's Discuss on draft-ietf-c… Carsten Bormann
- Re: [core] John Scudder's Discuss on draft-ietf-c… Marco Tiloca