IETF Logo Mail Archive

Re: [dtn] Francesca Palombini's Discuss on draft-ietf-dtn-bpsec-default-sc-08: (with DISCUSS and COMMENT)

Francesca Palombini <francesca.palombini@ericsson.com> Tue, 13 July 2021 11:32 UTC

Return-Path: <francesca.palombini@ericsson.com>
X-Original-To: dtn@ietfa.amsl.com
Delivered-To: dtn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18EB73A14EE; Tue, 13 Jul 2021 04:32:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.552
X-Spam-Level:
X-Spam-Status: No, score=-2.552 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7hvLz3blrCLF; Tue, 13 Jul 2021 04:32:21 -0700 (PDT)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50064.outbound.protection.outlook.com [40.107.5.64]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 939053A1535; Tue, 13 Jul 2021 04:32:20 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=nKYE1rfbvci/vcO0PZ6MAmL8HZesKWDiIh3vbSshqb4E5yNlLoNSc8Gr+R+NxlBmSdCeXR2wcuzkySsvYlBMzAIcLHFNVfWkbKxczSM+OOts+/t4UG7n9i2JIdWDARKhHAr5tvNFG9ZfGLkhn25gLPIaUVjiWohCLKHfL/U3M49lon0CIjHsOg/97NBP0LYnYNt/iU3SAqVpYcLFGbFrsazfxsMVOv/XPvrxxMTm7dMlfzdEmJUuN0IBIHqVelYi2oFcAwqWPQktDaDJKslD69Y98ITR4TS6jAfJFUNetyKaRERmR5c379kQjeKU2oZPNpNPwWHHW3XyNWjRAWXOyQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=yzlOLRup2UcU9AbywhQ393G1qyLg/Lt1tEHvo4sRplk=; b=BaEuOarSs2BtHbor7TY+L3cwyttTmf3uNLlAtgXjqwZ+TCPsPt5xEJ9/Qf7DAvhwcGn55uNHMNi/l6SVifxkojdjSO4k7TBl9QnC3ZXJO24BmsRcPR9SNX7bTgfV/kA78H/oCbyu8CrdH7CjvmpWQGScKaM0PbgjL00eHKn+zOZ4Rin3/ie/4KZomUj08oeRRf2RSd7EdqiMqT0m7Q9m9D7LmsLxIArhu2ECmxhM1x02RraSoI4t/Zup7gYWaScRn7I2+lkxo2XxBnTE5A23XwEJzVQEnhjwxLDzDUCbXSb7YR3SwSqxKs0HicnGSlYqcSs4MrDfjhPpxvC0Y1er+A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=yzlOLRup2UcU9AbywhQ393G1qyLg/Lt1tEHvo4sRplk=; b=o9GRdUS1+UeCiLPTPDLujMXqCdAdRONKggmeVawZIzgtHy74agWWX93BajWwhc1Zwu/PoJimCC2Luicecje4bRZQuHFPpyJq3eao+0RYdcP41MQ36mdqSJkY8cgO17vnHojvVvlFOTj/fISwyieNLlEu34Ary3Cm/jqbvHCK9Hk=
Received: from HE1PR07MB4217.eurprd07.prod.outlook.com (2603:10a6:7:96::33) by HE1PR07MB4443.eurprd07.prod.outlook.com (2603:10a6:7:a1::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4331.17; Tue, 13 Jul 2021 11:32:17 +0000
Received: from HE1PR07MB4217.eurprd07.prod.outlook.com ([fe80::6ce5:7088:a9a8:15d9]) by HE1PR07MB4217.eurprd07.prod.outlook.com ([fe80::6ce5:7088:a9a8:15d9%7]) with mapi id 15.20.4331.021; Tue, 13 Jul 2021 11:32:17 +0000
From: Francesca Palombini <francesca.palombini@ericsson.com>
To: "Birrane, Edward J." <Edward.Birrane@jhuapl.edu>, The IESG <iesg@ietf.org>, "<sec-ads@ietf.org>" <sec-ads@ietf.org>
CC: "draft-ietf-dtn-bpsec-default-sc@ietf.org" <draft-ietf-dtn-bpsec-default-sc@ietf.org>, "dtn-chairs@ietf.org" <dtn-chairs@ietf.org>, "dtn@ietf.org" <dtn@ietf.org>, Brian Sipos <BSipos@rkf-eng.com>
Thread-Topic: Francesca Palombini's Discuss on draft-ietf-dtn-bpsec-default-sc-08: (with DISCUSS and COMMENT)
Thread-Index: AddtJ4up9ai93tCKTmCQdr167K9S3wH+KGiAAJ0ajjAAFbn8gA==
Date: Tue, 13 Jul 2021 11:32:17 +0000
Message-ID: <7ABAD71A-2E26-4ED0-9B98-2A6370F3E21E@ericsson.com>
References: <b6db7bf27bba42889d0762efb17a293d@aplex01.dom1.jhuapl.edu> <70E007DB-7EA1-4CB2-ADD4-C7F1A8E98F30@ericsson.com> <7e5fe61377ff40059fd4931ac175f049@aplex01.dom1.jhuapl.edu>
In-Reply-To: <7e5fe61377ff40059fd4931ac175f049@aplex01.dom1.jhuapl.edu>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.50.21061301
authentication-results: jhuapl.edu; dkim=none (message not signed) header.d=none;jhuapl.edu; dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: a79f30fc-178e-4c80-1a6c-08d945f1dec8
x-ms-traffictypediagnostic: HE1PR07MB4443:
x-microsoft-antispam-prvs: <HE1PR07MB44437FDC234D7F637CF9C58D98149@HE1PR07MB4443.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: DiOccM/0VX7gTo8oCIDSmrRrInr41HUJeRc3bHuQA5deqqMoE30Bft9BKG0txoatQulDJUts3MYxXf3bBTn7X9ZedzjkZ/hHP9F8nXvDNWUzXeR6bPooeu0xAwxoAqXkjMc/J3cR3Ip+qgeXqJouEPfqAprfItAtXTsHoxLHx5Sr8Kunoxc1N6qRYSVXD9uvE/Rv94ikS9qEkOtx7sCqe82x36gl17WplaSuWEOAWhWnOmnvIHrk77AA0vaT4pLWhvlgFwt1WKfI8c1Hl3azOH6VPXU8pLrNjRqc8WSBRpCQpCoXjeSy+0G5nmpRVdxHAZlcWc5ozargLuE0KwLGGZ9FkGw8/QyoY6svyjZWrfIpM1ZGnHOos0feydREypuSGLMvCu7yvygrco6HDIqr8elvWgfuS1lS5UbKnGK3EidesvALajPNmgvQJdMCmlOzuCZZ85fSKMxdSsxGzEtEcKWeltUD7Noo6ovAKI7w3w1ra9Y4SUc+Apyi2Bf3Mhy2YdWA3FUi7Dha1ekJs8lDKcTYmt2ji1Tc4VrrJk1NEktaxtiNGXqRkXSKcBe26x4O/Aef2YCBiWOVKefuaiF0+Br5xWZCiksSO159bikM0hLnaqgPILZPvOJPBSPmR2MUPRzLMvUsK8zpOPbttf08h1tfd6ozDjQFhEiZO+vxQSrON2FQaH+JBvkrnf7LyctQl2nR8JCs7bzFco1B8F7wRR3BzM99iLHEcDsTk+IVMb8Q/cEqPXiYZmdLxaI2SlbhFGY2PTmyt9zZ1ZlB8j+oLTABW/EMGXyLltiCxG2Wl+8=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB4217.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(346002)(136003)(396003)(39860400002)(376002)(366004)(33656002)(83380400001)(122000001)(38100700002)(8676002)(66476007)(44832011)(6512007)(186003)(478600001)(6506007)(966005)(66946007)(6486002)(8936002)(2906002)(2616005)(316002)(66446008)(66556008)(4326008)(76116006)(54906003)(86362001)(64756008)(36756003)(110136005)(5660300002)(71200400001)(491001)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <D83640AAF2ECB648AF436FCD2BA05310@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB4217.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a79f30fc-178e-4c80-1a6c-08d945f1dec8
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jul 2021 11:32:17.6057 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: PV41E27EKPOYah/+SH6OyfMjqDFWskuVbIY65xC41b0OimOWFzOFtOqcUp7CAuuDF2R/SO+zf6x9LoVxerr0CEYRwVUlRt8S5DF5f86vXqumQxyi8s+sTlcjAAlAYHtf
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB4443
Archived-At: <https://mailarchive.ietf.org/arch/msg/dtn/kH8e90XqsGN_G9_EZ8dbTi-GuQk>
Subject: Re: [dtn] Francesca Palombini's Discuss on draft-ietf-dtn-bpsec-default-sc-08: (with DISCUSS and COMMENT)
X-BeenThere: dtn@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Delay Tolerant Networking \(DTN\) discussion list at the IETF." <dtn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtn>, <mailto:dtn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dtn/>
List-Post: <mailto:dtn@ietf.org>
List-Help: <mailto:dtn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtn>, <mailto:dtn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Jul 2021 11:32:26 -0000

Hi Ed! Thanks for the answer.

The update looks good, I will go ahead and remove my discuss, thank you for addressing all my comments!

I still think it would be worth to add the CDDL to the document, and Brian has provided some to the list: https://mailarchive.ietf.org/arch/msg/dtn/JGlZ7qaHxgwhdGyDfr5YiMuu1AU/ . I agree with him, that there is value to it, and at least it would have allowed readers to verify that the understanding of the text is correct, and that the examples match. However, I am not blocking the draft because of it, and I'll leave it up to the working group and responsible AD to decide.

Thanks,
Francesca

On 13/07/2021, 05:17, "Birrane, Edward J." <Edward.Birrane@jhuapl.edu> wrote:

    Francesca,

      Thank you for spotting those two items related to your discusses D3 and D5.

      I agree with both comments and have published a -10 version of the document which I believe addresses these DISCUSSes.  

      Please see my comments below, and let me know if there are any remaining concerns.

    -Ed

    ---
    Edward J. Birrane, III, Ph.D. (he/him/his)
    Embedded Applications Group Supervisor
    Space Exploration Sector
    Johns Hopkins Applied Physics Laboratory
    (W) 443-778-7423 / (F) 443-228-3839


    > Hi Ed,
    > 
    > Thank you for your answers, and for implementing the changes. I have gone
    > through v-09 and I have some additional comments. I still have 2 blocking
    > points open: D3 and D5. Everything else looks good, or was minor so that I
    > don't mind the "no change".


    > >> 3. -----
    > >>
    > >>       - Bits 8-15 are unassigned.
    > >>
    > >> FP: I am wondering why the limit on Bit 15, marked as unassigned: I
    > >> think it would make sense to say Bits 8 and higher are unassigned.
    > >> (This change would need to be reflected in the IANA sections)
    > >
    > >D3: Recommend no change.
    > >
    > >To assist with hardware implementations, there is value in allowing
    > implementers to presume an upper-bound to the size of this field.
    > >
    > 
    > FP: I would agree, if such an upper-bound was specified. However this
    > section does not specify any such upper bound, and CBOR integers are not
    > implicitly limited to a certain size either. I see two options here: either 1.
    > specify the upper bound (for example stating that the maximum value of the
    > field is 65535) or 2. remove the limitation to 15 bits, both in this section and in
    > the IANA section, and add a statement that "this field is not expected to
    > have a value higher than 65535". Both these options seem ok to me.

    EJB: I better understand this comment now.  To correct, for both the IPPT and AAD scope flags, I have noted this is to be considered a 16-bit field with a maximum value of 65535 in the -10 version of the document.

    > >> 5. -----
    > >>
    > >>      [1, b'Twelve121212'] / Initialization Vector /,
    > >>
    > >> FP: I think the IV value is wrong here and should be
    > >> h'5477656c7665313231323132'.
    > >
    > >D5: Agree.
    > >
    > >h'5477656c7665313231323132' should be used here for clarity. We can
    > represent this value in this way in an upcoming -09 version of the document.
    > >
    > 
    > FP: Thanks for making the change. However, I noticed that you also made
    > one more change (which I assume must come from another AD?): the scope
    > flag is now encoded as a byte string throughout the Appendix A. However, its
    > definition has not changed, and it is still defined as a CBOR integer in section
    > 3.3.3. That is inconsistent, unless I am missing something, and should either
    > revert back to integer or change to byte string in a number of places where
    > it's still defined as unsigned integer.

    EJB: This was an error in the Appendix. The examples all use the (correct) unsigned integer encoding of the scope flags to generate data, but the diagnostic notation was in error (h'00' instead of 00, and h'07' instead of 07).  I have corrected the notation in the appendix in the -10 version.  Great catch!

v2.23.0 | Report a Bug | By Email