Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf-dmm-4283mnids-04: (with DISCUSS)
Mirja Kühlewind <ietf@kuehlewind.net> Thu, 16 February 2017 12:56 UTC
Return-Path: <ietf@kuehlewind.net>
X-Original-To: dmm@ietfa.amsl.com
Delivered-To: dmm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0C08C129495 for <dmm@ietfa.amsl.com>; Thu, 16 Feb 2017 04:56:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.903
X-Spam-Level:
X-Spam-Status: No, score=-1.903 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jarnAvvdfilb for <dmm@ietfa.amsl.com>; Thu, 16 Feb 2017 04:56:23 -0800 (PST)
Received: from kuehlewind.net (kuehlewind.net [83.169.45.111]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 75B3D129578 for <dmm@ietf.org>; Thu, 16 Feb 2017 04:56:23 -0800 (PST)
Received: (qmail 30102 invoked from network); 16 Feb 2017 13:56:21 +0100
Received: from nb-10510.ethz.ch (HELO ?82.130.103.143?) (82.130.103.143) by kuehlewind.net with ESMTPSA (DHE-RSA-AES128-SHA encrypted, authenticated); 16 Feb 2017 13:56:21 +0100
To: Charlie Perkins <charles.perkins@earthlink.net>, Suresh Krishnan <suresh.krishnan@ericsson.com>
References: <148674648728.29247.8373715746303934157.idtracker@ietfa.amsl.com> <D8A9FEC1-6A1D-4AA8-BF42-E6FD3157BB70@ericsson.com> <C2C2AFB9-99D5-459A-AAF5-1613ABAF4716@kuehlewind.net> <a3ec3108-65e7-ef5b-59de-981376b8f232@earthlink.net> <6a8360d0-f214-3b41-1529-b767e545793c@kuehlewind.net> <69ea2b13-de60-a8f7-ac48-62280dd93c69@earthlink.net>
From: Mirja Kühlewind <ietf@kuehlewind.net>
Message-ID: <b3f97c9e-d705-6fb9-9805-0e7428ac064f@kuehlewind.net>
Date: Thu, 16 Feb 2017 13:56:20 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.5.1
MIME-Version: 1.0
In-Reply-To: <69ea2b13-de60-a8f7-ac48-62280dd93c69@earthlink.net>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmm/JqVt0hW9XyH5bchYrRSS8OoKwKs>
Cc: "max.ldp@alibaba-inc.com" <max.ldp@alibaba-inc.com>, "draft-ietf-dmm-4283mnids@ietf.org" <draft-ietf-dmm-4283mnids@ietf.org>, "dmm-chairs@ietf.org" <dmm-chairs@ietf.org>, The IESG <iesg@ietf.org>, "dmm@ietf.org" <dmm@ietf.org>
Subject: Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf-dmm-4283mnids-04: (with DISCUSS)
X-BeenThere: dmm@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Distributed Mobility Management Working Group <dmm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmm>, <mailto:dmm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmm/>
List-Post: <mailto:dmm@ietf.org>
List-Help: <mailto:dmm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmm>, <mailto:dmm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Feb 2017 12:56:26 -0000
Hi Charlie, okay, yes I think a MUST is the right thing to do here and I probably already enough. I'll clear my discuss now. Mirja On 16.02.2017 01:08, Charlie Perkins wrote: > Hello Mirja, > > My previous answer was intended to mean that I would change to MUST. > > Would you be willing to suggest some text about the non-leakage? I > thought that the point of strengthening to MUST was to ensure that > sensitive identifier information was not leaked. If there is something > more to be said, I'll be happy to say it. > > Regards, > Charlie P. > > > > On 2/15/2017 4:46 AM, Mirja Kühlewind wrote: >> Hi Charlie, >> >> can you please also answer the question below on SHOULD vs. MUST? Thanks! >> >> Also, does it maybe make sense to then add something in the security >> section that information should/must not be leaked to other networks? >> >> Thanks! >> Mirja >> >> >> On 13.02.2017 22:06, Charlie Perkins wrote: >>> Hello Mirja and Suresh, >>> >>> I am happy to make the proposed changes as agreed below. >>> >>> Regards, >>> Charlie P. >>> >>> >>> On 2/11/2017 1:00 AM, Mirja Kuehlewind (IETF) wrote: >>>> Hi Suresh, >>>> >>>> sounds all good! I’m happy to quickly resolve my discuss if the >>>> authors agree! >>>> >>>> Mirja >>>> >>>> >>>>> Am 11.02.2017 um 05:05 schrieb Suresh Krishnan >>>>> <suresh.krishnan@ericsson.com>: >>>>> >>>>> HI Mirja, >>>>> >>>>>> On Feb 10, 2017, at 12:08 PM, Mirja Kuehlewind >>>>>> <ietf@kuehlewind.net> wrote: >>>>>> >>>>>> Mirja Kühlewind has entered the following ballot position for >>>>>> draft-ietf-dmm-4283mnids-04: Discuss >>>>>> >>>>>> When responding, please keep the subject line intact and reply to all >>>>>> email addresses included in the To and CC lines. (Feel free to cut >>>>>> this >>>>>> introductory paragraph, however.) >>>>>> >>>>>> >>>>>> Please refer to >>>>>> https://www.ietf.org/iesg/statement/discuss-criteria.html >>>>>> for more information about IESG DISCUSS and COMMENT positions. >>>>>> >>>>>> >>>>>> The document, along with other ballot positions, can be found here: >>>>>> https://datatracker.ietf.org/doc/draft-ietf-dmm-4283mnids/ >>>>>> >>>>>> >>>>>> >>>>>> ---------------------------------------------------------------------- >>>>>> >>>>>> DISCUSS: >>>>>> ---------------------------------------------------------------------- >>>>>> >>>>>> >>>>>> I would realy like to see the following changes in the security >>>>>> considerations section: >>>>>> OLD >>>>>> "If used in the MNID extension as defined in this >>>>>> document, the packet including the MNID extension should be >>>>>> encrypted >>>>>> so that personal information or trackable identifiers would not be >>>>>> inadvertently disclosed to passive observers." >>>>>> NEW >>>>>> "If used in the MNID extension as defined in this >>>>>> document, the packet including the MNID extension SHOULD be >>>>>> encrypted >>>>>> so that personal information or trackable identifiers would not be >>>>>> inadvertently disclosed to passive observers.” >>>>> Is this just for changing the "should" to upper case? I think that >>>>> makes sense. >>>>> >>>>>> Or even better make it a MUST? Is there a reason for only having a >>>>>> SHOULD? >>>>> Authors, any specific reason for this to be a SHOULD? >>>>> >>>>>> as well as the following change: >>>>>> OLD >>>>>> "Moreover, MNIDs containing sensitive identifiers might only be used >>>>>> for signaling during initial network entry. " >>>>>> NEW >>>>>> "Moreover, MNIDs containing sensitive identifiers MUST only be used >>>>>> for signaling during initial network entry and MUST NOT be >>>>>> leaked to >>>>>> other networks.” >>>>> The statement in OLD: is just a statement of fact that in some >>>>> networks use temporary identifiers for reattachment and they use >>>>> long term (and hence sensitive) identifiers only at initial attach. >>>>> I don’t think it makes sense to change this to 2119 language. >>>>> >>>>> Thanks >>>>> Suresh >>>>> >>>> >>> >> >
- [DMM] Mirja Kühlewind's Discuss on draft-ietf-dmm… Mirja Kuehlewind
- Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf… Suresh Krishnan
- Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf… Mirja Kuehlewind (IETF)
- Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf… Charlie Perkins
- Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf… Suresh Krishnan
- Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf… Mirja Kühlewind
- Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf… Charlie Perkins
- Re: [DMM] Mirja Kühlewind's Discuss on draft-ietf… Mirja Kühlewind