IETF Logo Mail Archive

Re: [Dime] Alissa Cooper's Discuss on draft-ietf-dime-rfc4006bis-08: (with DISCUSS and COMMENT)

"Bertz, Lyle T [CTO]" <Lyle.T.Bertz@sprint.com> Wed, 23 May 2018 12:29 UTC

Return-Path: <Lyle.T.Bertz@sprint.com>
X-Original-To: dime@ietfa.amsl.com
Delivered-To: dime@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ACEA4126FB3; Wed, 23 May 2018 05:29:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aemUFs2Ls_gU; Wed, 23 May 2018 05:29:46 -0700 (PDT)
Received: from NAM03-CO1-obe.outbound.protection.outlook.com (mail-co1nam03on0700.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe48::700]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 83EA9126D74; Wed, 23 May 2018 05:29:46 -0700 (PDT)
Received: from BN7PR05CA0019.namprd05.prod.outlook.com (2603:10b6:406:ee::32) by BLUPR05MB1955.namprd05.prod.outlook.com (2a01:111:e400:52ad::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.797.8; Wed, 23 May 2018 12:29:44 +0000
Received: from BY2NAM01FT032.eop-nam01.prod.protection.outlook.com (2a01:111:f400:7e42::209) by BN7PR05CA0019.outlook.office365.com (2603:10b6:406:ee::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.797.8 via Frontend Transport; Wed, 23 May 2018 12:29:44 +0000
Authentication-Results: spf=pass (sender IP is 144.230.32.82) smtp.mailfrom=sprint.com; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=bestguesspass action=none header.from=sprint.com;
Received-SPF: Pass (protection.outlook.com: domain of sprint.com designates 144.230.32.82 as permitted sender) receiver=protection.outlook.com; client-ip=144.230.32.82; helo=preapdm3.corp.sprint.com;
Received: from preapdm3.corp.sprint.com (144.230.32.82) by BY2NAM01FT032.mail.protection.outlook.com (10.152.69.209) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.20.776.10 via Frontend Transport; Wed, 23 May 2018 12:29:43 +0000
Received: from pps.filterd (preapdm3.corp.sprint.com [127.0.0.1]) by preapdm3.corp.sprint.com (8.16.0.21/8.16.0.21) with SMTP id w4NCJ2BM015688; Wed, 23 May 2018 08:29:43 -0400
Received: from prewe13m03.ad.sprint.com (prewe13m03.corp.sprint.com [144.226.128.22]) by preapdm3.corp.sprint.com with ESMTP id 2j2e677f4d-2 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Wed, 23 May 2018 08:29:43 -0400
Received: from PLSWE13M04.ad.sprint.com (2002:90e5:d617::90e5:d617) by PREWE13M03.ad.sprint.com (2002:90e2:8016::90e2:8016) with Microsoft SMTP Server (TLS) id 15.0.1365.1; Wed, 23 May 2018 08:29:42 -0400
Received: from PLSWE13M04.ad.sprint.com ([fe80::2c01:fcb8:e729:4a7a]) by plswe13m04.ad.sprint.com ([fe80::2c01:fcb8:e729:4a7a%24]) with mapi id 15.00.1365.000; Wed, 23 May 2018 07:29:42 -0500
From: "Bertz, Lyle T [CTO]" <Lyle.T.Bertz@sprint.com>
To: Ben Campbell <ben@nostrum.com>
CC: Alissa Cooper <alissa@cooperw.in>, The IESG <iesg@ietf.org>, "dime-chairs@ietf.org" <dime-chairs@ietf.org>, "dime@ietf.org" <dime@ietf.org>, "draft-ietf-dime-rfc4006bis@ietf.org" <draft-ietf-dime-rfc4006bis@ietf.org>
Thread-Topic: [Dime] Alissa Cooper's Discuss on draft-ietf-dime-rfc4006bis-08: (with DISCUSS and COMMENT)
Thread-Index: AQHT8b0gV92dBty11EiaZD5n7O1P+6Q8gdpAgABzQACAAEdUQA==
Date: Wed, 23 May 2018 12:29:41 +0000
Message-ID: <0e9e72c11cde4097b9d698327882be42@plswe13m04.ad.sprint.com>
References: <152698725939.7754.12532481695345574563.idtracker@ietfa.amsl.com> <50deaa6d510944beafa49868eea7a6b1@plswe13m04.ad.sprint.com> <48C95314-5F5D-4CFC-963B-36017BB364A1@nostrum.com>
In-Reply-To: <48C95314-5F5D-4CFC-963B-36017BB364A1@nostrum.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.123.104.25]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-Forefront-Antispam-Report: CIP:144.230.32.82; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(396003)(39380400002)(346002)(39860400002)(376002)(2980300002)(438002)(13464003)(189003)(199004)(102836004)(47776003)(4326008)(53546011)(7696005)(11346002)(108616005)(24736004)(76176011)(5660300001)(97736004)(436003)(446003)(2486003)(426003)(23676004)(59450400001)(476003)(126002)(486006)(336012)(8676002)(6116002)(5890100001)(3846002)(5250100002)(54906003)(45080400002)(8936002)(81166006)(81156014)(316002)(72206003)(7736002)(305945005)(966005)(14454004)(106466001)(478600001)(106002)(356003)(53936002)(229853002)(186003)(2900100001)(575784001)(86362001)(2906002)(6306002)(26005)(50466002)(68736007)(6916009)(6246003); DIR:OUT; SFP:1102; SCL:1; SRVR:BLUPR05MB1955; H:preapdm3.corp.sprint.com; FPR:; SPF:Pass; LANG:en; PTR:InfoDomainNonexistent; MX:1; A:1;
X-Microsoft-Exchange-Diagnostics: 1; BY2NAM01FT032; 1:2+RzcRPGTSUQTjfSPgmlkadki/BK4EH8ePrYvAbV1vb/1O/mPso/UlW+jPm2Ojly8y3vhkHYn8w8ugODpwJxztpRyLjcYscnfwsOZ95IeqiiXBxNd9UByjkkuChCfDau
X-MS-PublicTrafficType: Email
X-Microsoft-Antispam: UriScan:(18430343700868); BCL:0; PCL:0; RULEID:(7020095)(4652020)(8989080)(5600026)(4608076)(4534165)(4627221)(201703031133081)(201702281549075)(8990040)(2017052603328)(7153060)(7193020); SRVR:BLUPR05MB1955;
X-Microsoft-Exchange-Diagnostics: 1; BLUPR05MB1955; 3:12z4V7+u0nLfKRtK82D+de3Shzw4YVxwCKQ/KUtKgPCQaYWN6F6gK85nrRM6dNIHxzCJO3rqE9fQrWbCqekO5+yAeGGG+rgYqOD/yBbdYE/R5MTxYKsmVzOIyrcVw2Qzs+C6BPCeM7GFrXFv9L2q7imcbISaqcMbHmuRr661Y5901EbtVphyx/P9Vv566MLgsbwAmS12MHsnIEzZaHEFFpuUVY4HGkV1M3MJO0GgWF14JaxeTz5IWWFltdsnpOxM00Q3FnQ8ap2MUxdAUK4O0EB40pri0vXYqsq951YzTl+a/inJBD3050XtpzoA8qScQ1mwbau5XUW1qfEWptLwM/NlvtDOayM/4uK46NoXFqM/9oTphVSlh+aA2KwBvS4Z9Z7PEIduhTH7Q8jUfTrvlA==; 25:rGRfdjrcSTNV7vdmsHyLG8D91vpYuDEErviWlqd3XlRp3SRhmbPheVVezo+repRdckB8ihTliIOvH3FRtJzhG0i+QTumvn6GzpOEESbDreHxIOb6c/BvIDVDH4E4M47UYdVWID8fJ58jvL0+IsFXaNKCxj0m8I0q1oeQD9vd2Omp5llR/T2zN4objmPqUWYNtAcPSFTade6B3/Pi9U8hQgb8r4QVeTiJfxBedaxpFImAgvW5OAO7ptWowNKWi2KKV6nuakDhJcMtu/jrfBSYmDTAqBVikxBZYAv/VfMMH2BOI8qIuI75HNz0QXq8E+iQlEmtO3zi1QIYuPE98/LgPONfEQuGBYUl/1/8ifktn/M=
X-MS-TrafficTypeDiagnostic: BLUPR05MB1955:
X-Microsoft-Exchange-Diagnostics: 1; BLUPR05MB1955; 31:HoWG/pMIzPwzpXQpAoZZ13zLNbOp7XPNbfm3JQ+jty10I+sKGEdRLUhIoG4FL8L2WQeQRScLaCvpofXAFNnOUgFEJV48OW5eSrabmcRJqI3TrHSnvNBaOZdn3Es5kSHKTHux7Qp5y7A9emUDIBZ0Xph8kaB7vumcHiTpkf3yoMTEraioS00hE/+hRGl3fO8tFpk6k4Li3wpltABuj8gnHrb9dxTnRuJK1ZENEFxeBBA=; 20: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
X-Microsoft-Antispam-PRVS: <BLUPR05MB19550B4984C1B93DCA3E0903A46B0@BLUPR05MB1955.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(158342451672863)(192374486261705)(18430343700868)(189930954265078)(35073007944872)(788757137089)(219752817060721);
X-MS-Exchange-SenderADCheck: 1
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(10201501046)(93006095)(93004095)(3002001)(3231254)(944501410)(52105095)(6055026)(149027)(150027)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123564045)(20161123560045)(20161123562045)(6072148)(201708071742011)(7699016); SRVR:BLUPR05MB1955; BCL:0; PCL:0; RULEID:; SRVR:BLUPR05MB1955;
X-Microsoft-Exchange-Diagnostics: 1; BLUPR05MB1955; 4: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
X-Forefront-PRVS: 06818431B9
X-Microsoft-Exchange-Diagnostics: 1;BLUPR05MB1955;23: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
X-Microsoft-Antispam-Message-Info: w1DaeQzW+6qKljBkdfAYIYFmmBGJ3JEuV0DOjU3NX9CGzBFql2IRpF30Go8godx6NBWmtGYON/rUIHbrLbmmdSV3Z/vAZ8+xFyoaDnavHlD42rnqh3UIcd1RYJjXp00LTxStzcLfsO9O98iBCEuFk8ewrMNehTDMqmtG/jVIv5zoNGZRdUAa/aEYnay1Mae9
X-Microsoft-Exchange-Diagnostics: 1; BLUPR05MB1955; 6:PwwPRxIEXTTa/I2KfKMP77CUEMP94haTphrrZGYIihi5ndi1/sgKtzuDCHHpO3V0pkbQBTftUd8QoWipcL5FkNqY+Ssc4vxIwlp0IASlEL8ohSdO/SsyHtdELzr6U/1vsi3voSjhtggYWdxRg+v234tOOnOaf9OIHJpsQMcXENbrlyR25tOVrQ/T2pwGgAfYjL+lMweDtjt+noOn7o0F69d/xTaf0rLMylU8G8WosqfLAHN3kp7ArFaXLDzMDMqRsk/qv/KpPeXoYrON+DlV781H066podkSL2pC44R1ChUdGWLOLMJGWpms1We02e6HhDDKneB/1obezG0xVWiXwxPH0RtLhbs6cpXd+Jg2Vjv83rv9rs/MT9BxfmXDjkof+I4QfIB+wbjpS5pw8rFPh+RskQO5tTbyRARbqJSMxizKxr5+YeBeRY8R8SrFjMe8yKTc6KbcH1Du+quzLD/YeQ==; 5:74wVlsWpI+xADp5TyrdUFhdxU/o7bKELI7FO9YP20jjLgiSOQl9q4xDCqLcAp9LEoOvdQIX+dNf7Z+TlPDHPSbKt+w3fEh3Q/Iq8rGSv6SW5cA2UatjDB5quLHG3MJ7F7a5Pn3SgoqRWCDRFNY+DttpAjNiZYfZlM6AJLrwwWio=; 24:O1Tz8NY6em2xTURUSuso/PWuPI2saFaWH+qYTmcEtA9Nul032zcO+yOu+ofx2aTxN37GLQAXbtuMCnK6EO4Z534OO5oqRVWflkOP9YsfNGA=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; BLUPR05MB1955; 7:5pcWlD/ExBam2jUyLwaYdtNo51kY6ouHn6TTgshyGK/3im9gSVIisAmSb7G7DrrwJAxNVgANdlMfZBkCF86/thBmlpzMo53AmvdmQBUR+EAclyU0Ctly4bnDvasnDEgyrxf791imkDZ8UkCHlUsHBcCKL3Fk+rJeqsPDWeZJyYncp42QOjqRJDIrh2oK+71iyd4uSRjUh9J0uvuUNXlHcbu+f8XMQjOTxbNFGwrAYGQzQ6K4BBhpNS5szqSkURVJ
X-MS-Office365-Filtering-Correlation-Id: 724f27ac-8180-4243-c9db-08d5c0a8dd31
X-OriginatorOrg: sprint.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 23 May 2018 12:29:43.8359 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 724f27ac-8180-4243-c9db-08d5c0a8dd31
X-MS-Exchange-CrossTenant-Id: 4f8bc0ac-bd78-4bf5-b55f-1b31301d9adf
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=4f8bc0ac-bd78-4bf5-b55f-1b31301d9adf; Ip=[144.230.32.82]; Helo=[preapdm3.corp.sprint.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLUPR05MB1955
Archived-At: <https://mailarchive.ietf.org/arch/msg/dime/XbAFwgECTpMrc3yEXno3dBkh81g>
Subject: Re: [Dime] Alissa Cooper's Discuss on draft-ietf-dime-rfc4006bis-08: (with DISCUSS and COMMENT)
X-BeenThere: dime@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Diameter Maintanence and Extentions Working Group <dime.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dime>, <mailto:dime-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dime/>
List-Post: <mailto:dime@ietf.org>
List-Help: <mailto:dime-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dime>, <mailto:dime-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 May 2018 12:29:51 -0000

Comments inline.

> -----Original Message-----
> From: Ben Campbell [mailto:ben@nostrum.com]
> Sent: Tuesday, May 22, 2018 10:02 PM
> To: Bertz, Lyle T [CTO] <Lyle.T.Bertz@sprint.com>
> Cc: Alissa Cooper <alissa@cooperw.in>; The IESG <iesg@ietf.org>; dime-
> chairs@ietf.org; dime@ietf.org; draft-ietf-dime-rfc4006bis@ietf.org
> Subject: Re: [Dime] Alissa Cooper's Discuss on draft-ietf-dime-rfc4006bis-08:
> (with DISCUSS and COMMENT)
>
> Hi,
>
> I’m having some trouble telling your comments from Alissa’s. Somehow the
> quoting is reversed from normal convention, so it looks like Alissa is quoting
> you. But I will try to figure it out :-)
>
> > On May 22, 2018, at 9:21 PM, Bertz, Lyle T [CTO] <Lyle.T.Bertz@sprint.com>
> wrote:
> >
> > Comments inline.
> >
> > -----Original Message-----
> > From: DiME [mailto:dime-bounces@ietf.org] On Behalf Of Alissa Cooper
> > Sent: Tuesday, May 22, 2018 6:08 AM
> > To: The IESG <iesg@ietf.org>
> > Cc: dime@ietf.org; dime-chairs@ietf.org; draft-ietf-dime-
> rfc4006bis@ietf.org
> > Subject: [Dime] Alissa Cooper's Discuss on draft-ietf-dime-rfc4006bis-08:
> (with DISCUSS and COMMENT)
> >
> > CAUTION: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
> >
> >
> > Alissa Cooper has entered the following ballot position for
> > draft-ietf-dime-rfc4006bis-08: Discuss
> >
> > When responding, please keep the subject line intact and reply to all email
> addresses included in the To and CC lines. (Feel free to cut this introductory
> paragraph, however.)
> >
> >
> > Please refer to
> https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.i
> etf.org%2Fiesg%2Fstatement%2Fdiscuss-
> criteria.html&data=02%7C01%7Clyle.t.bertz%40sprint.com%7Ca619c2ae255a
> 4e3db64f08d5bfd44063%7C4f8bc0acbd784bf5b55f1b31301d9adf%7C0%7C0%
> 7C636625840688755751&sdata=TSuSzLz5Ey2TL45eg2TDQf%2BVQXBei6cxbVz5
> tU%2FtlRo%3D&reserved=0
> > for more information about IESG DISCUSS and COMMENT positions.
> >
> >
> > The document, along with other ballot positions, can be found here:
> >
> https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatr
> acker.ietf.org%2Fdoc%2Fdraft-ietf-dime-
> rfc4006bis%2F&data=02%7C01%7Clyle.t.bertz%40sprint.com%7Ca619c2ae255
> a4e3db64f08d5bfd44063%7C4f8bc0acbd784bf5b55f1b31301d9adf%7C0%7C0
> %7C636625840688755751&sdata=rOjsjxdmG7IcUDzAuDhvkB9cCOopAv70yPH
> CckL%2B9SA%3D&reserved=0
> >
> >
> >
> > ----------------------------------------------------------------------
> > DISCUSS:
> > ----------------------------------------------------------------------
> >
> > = Section 5.6.2 =
> >
> > I'm having a little trouble understanding the expected behavior described
> in Section 5.6.2 so wanted to see if I'm just confused or if there is something
> to be clarified. The text says:
> >
> > "In addition to the Redirect-Server AVP or Redirect-Server-Extension
> >   AVP, the credit-control server MAY include one or more Restriction-
> >   Filter-Rule AVPs, one or more Filter-Rule AVPs, or one or more
> >   Filter-Id AVPs in the Credit-Control-Answer message to enable the
> >   user to access other services (for example, zero-rated services).  In
> >   such a case, the access device MUST drop all the packets not matching
> >   the IP filters specified in the Restriction-Filter-Rule AVPs, Filter-
> >   Rule AVPs or Filter-Id AVPs.  If enforcement actions other than
> >   allowing the packets (e.g., QoS), are indicated in the Filter-Rule
> >   AVPs or Filter-Id AVPs, they SHOULD be performed as well.  In
> >   addition, if possible, to redirecting the user to the destination
> >   specified in the Redirect-Server AVP or Redirect-Server-Extension
> >   AVP."
> >
> > It seems like if the server sends a Redirect-Server AVP or Redirect-Server-
> Extension AVP without any of the other AVPs, then all the traffic is supposed
> to be redirected. But if a Restriction-Filter-Rule AVP, Filter-Rule AVP, or
> Filter-Id AVP is also included, then the non-matching traffic MUST be
> dropped, in which case how does the user get redirected? Is the last
> sentence (which is a sentence fragment, actually) supposed to address this
> somehow? And in the case of enforcement actions involving QoS, the text
> seems to say that packets matching the filter MUST be dropped AND have
> the QoS rules applied to them, so I don't understand how that works.
> >
> >> The statement "In such a case, the access device MUST drop all the
> packets not matching the IP filters specified in the Restriction-Filter-Rule
> AVPs" and is redundant with the definition of Restriction-Filter-Rule.  Filter-
> Rule and the rule referred to by Filter-Id also contain the appropriate traffic
> filter and actions. I would propose a simplification, replace all text from "In
> such a case ..." with
> >
> > "In such a case, the access device MUST treat all packets according to the
> Restriction-Filter-Rule AVPs, Filter-Rules AVPs and the rules referred to by
> the Filter-Id AVP.  This is in addition to, if possible, redirecting the user to the
> destination specified in the Redirect-Server AVP or Redirect-Server-
> Extension AVP.”
>
> I think Alissa’s point is to ask how redirection and filtering interact when both
> are active. Does _remaining_ traffic gets redirected after applying the filter?
> Note that some forms of redirection (e.g. HTTP) may not work very well if
> only some traffic makes it.
>
> I also have to wonder if some of this behavior is really governed by local
> policy at the NAS?
>

The rules are always enforced prior to redirection on the NAS.

To your point, the policy *could* govern local behavior of redirect in the rule but in general this is poor practice, e.g. what if two rules with the same precedence redirect to different locations for overlapping traffic and a Redirect-Server-Extension AVP is present?  This would definitely be poor design on their part.  Users of the Redirect-Server and Redirect-Server-Extension AVP align the rules with the redirect use case.

> >
> > = Section 15.1
> >
> > RFC 6733 lists a bunch of sensitive AVPs and then says this about them:
> >
> > "Diameter messages containing these or any other AVPs considered to be
> >   security-sensitive MUST only be sent protected via mutually
> >   authenticated TLS or IPsec.  In addition, those messages MUST NOT be
> >   sent via intermediate nodes unless there is end-to-end security
> >   between the originator and recipient or the originator has locally
> >   trusted configuration that indicates that end-to-end security is not
> >   needed."
> >
> > It seems like the list of AVPs in Section 15.1 should have these same
> requirements applied to them explicitly.
> >
> >> 6733 is clear about what applies when declared as security sensitive but
> the addition of the following may help.
> >
> > "As sensitive AVPs the Diameter message requirements specified in
> Section 13.3 of RFC 6733 apply.”
>
> I was going to say something similar; 6733 is the base protocol. This draft
> inherits the normative rules by way of using Diameter. But it doesn’t hurt to
> reinforce them more strongly descriptive language. How about something to
> the effect of ” The privacy-sensitive AVPs listed in this section must be sent
> across non-trusted networks or Diameter agents without end-to-end
> authentication and confidentiality protection, as described in [RFC6733]
> section 13.3"
>

Perfect! We will fix.

>
> >
> > ----------------------------------------------------------------------
> > COMMENT:
> > ----------------------------------------------------------------------
> >
> > = Section 1 =
> >
> > (1) I know it's a term of art, but the term "next generation wireless
> networks"
> > seems a bit out of place in two ways: (1) "wireless" seems more generic
> than what is implied (i.e., "cellular," I assume), and (2) is Rel-13 considered
> "next generation" still?
> >
> >> Fair point.   We tend to use "wireless" though as opposed to "cellular".
> Dropping 'next generation' makes sense.
>
> How about “mobile networks”?

We are fine with that.

>
> >
> > (2) "Diameter base protocol" should cite RFC 6733.
> >
> >> If the DISCUSS can be resolved and we have a next revision (I assume we
> will) we can update this
>
> Please assume there will be another revision  :-)

:D

>
> >
> > = Section 5.1 =
> >
> > Assuming G-S-U stands for granted service unit, the acronym should be
> given upon first use here.
> >
> >> Can update in next revision along with the DISCUSS items
> >
> > = Section 8.52 =
> >
> > (1) Why do you need to specify the ability to send either the IMEISV or the
> IMEI?
> >
> >> They are distinct structures and the latest generation of networks are
> starting to use IMEISV (with no support for just the IMEI).  However, the
> IMEI value is identical.
> >
> > (2)
> > "If the type of the equipment is one of the
> >   enumerated types of User-Equipment-Info-Type AVP, then the credit-
> >   control client SHOULD send the information in the User-Equipment-Info
> >   AVP, in addition to or instead of the User-Equipment-Info-Extension
> >   AVP."
> >
> > Why is this normative recommendation in support of backwards
> compatibility different from the one given for the Subscription-Id-Extension
> AVP in Sec. 8.58?
> >
> >> It was found that backwards compatibility issues were more prevalent
> with User-Equipment-Info around the IMEISV and some implementations
> can deal with IMEISV and IMEI. The language above is aggressive in
> recommending the "in addition to" in order to maximize compatibility.  8.58 is
> cleaner in terms of its recommendation and production issues have not been
> seen on this AVP so it seemed appropriate to limit the AVP values to one or
> the other and not both as it is for User-Equipment-Info and User-Equipment-
> Info-Extension.
>
> Assuming Alissa is okay with the explanations for both points, please add
> some explanatory text to the section.
>

Yes

> >
> > = Section 15.1 =
> >
> > "Redirect-Server-Address AVP: the service-provider may embed
> >        personal information on the subscriber in the URL/I (e.g. to
> >        create a personalized message)."
> >
> > This seems like a bad idea that, if it's going to be mentioned, should be
> recommended against.
> >
> >> Makes sense.  I would recommend add the sentence "However, this is
> not recommended.”
>
> It’s also commonly done, isn’t it? I think the point is to mention that the AVP
> is sensitive because people might do this, not to offer permission. There’s
> already text recommending against directly using personal information.
> Would it help to change “may” to “might”? to avoid any semblance of
> “permission”?
>
> Some of the other AVPs likely carried in the same message are going to have
> personally identifiable information one way or another (i.e. Subscription-ID).
>

If "might" works for everyone we'll make the change.

> > _______________________________________________
> > DiME mailing list
> > DiME@ietf.org
> >
> https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.i
> etf.org%2Fmailman%2Flistinfo%2Fdime&data=02%7C01%7Clyle.t.bertz%40s
> print.com%7Ca619c2ae255a4e3db64f08d5bfd44063%7C4f8bc0acbd784bf5b55
> f1b31301d9adf%7C0%7C0%7C636625840688755751&sdata=q3LE6zquhvAVJ%
> 2B6rJzlqfep80r3JZrX5wgoASHwii%2BQ%3D&reserved=0
> >
> > ________________________________
> >
> > This e-mail may contain Sprint proprietary information intended for the
> sole use of the recipient(s). Any use by others is prohibited. If you are not
> the intended recipient, please contact the sender and delete all copies of the
> message.
> >
> > _______________________________________________
> > DiME mailing list
> > DiME@ietf.org
> > https://www.ietf.org/mailman/listinfo/dime


________________________________

This e-mail may contain Sprint proprietary information intended for the sole use of the recipient(s). Any use by others is prohibited. If you are not the intended recipient, please contact the sender and delete all copies of the message.

v2.23.0 | Report a Bug | By Email