IETF Logo Mail Archive

Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-16.txt

Mohit Sethi M <mohit.m.sethi@ericsson.com> Fri, 11 June 2021 16:20 UTC

Return-Path: <mohit.m.sethi@ericsson.com>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 55FEF3A0E65 for <emu@ietfa.amsl.com>; Fri, 11 Jun 2021 09:20:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.799
X-Spam-Level:
X-Spam-Status: No, score=-2.799 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.698, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Wte-1MVc5jof for <emu@ietfa.amsl.com>; Fri, 11 Jun 2021 09:20:50 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2076.outbound.protection.outlook.com [40.107.21.76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 382BC3A0E71 for <emu@ietf.org>; Fri, 11 Jun 2021 09:20:50 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EMEEYPoZ8HNEw2EuJPnX4KN8T5l+328gPVb2/hUdoAk/aEiXYsXQGU1m6ndKcu5XO7d3UNbiHRrnS+TAIX9Psi+m/e1jTWEGUq3W+B/t4toxV7jJjU3+Z9c9MGLMWc1tJPylc0OhM4Qo6+JQJTHRmGAeHATqrZL1d0zvdr9OvNoar1ql+nSpQbofg2AJ7ohdi9fxUc3ChHMH1yJczdJN0KkIufrEzBtAZsb58dcrLAWZS59XA5PgKfM7gJOjN7fS+A6F+CcxePhMBJEi//XliClmmXTf8fZdt/qvHsGbuYY2yEL1pz1xtAMlneKhoNQLP8jmB+tpuQVtuNwjDhV2pw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=D8bMBTFWfer+ZNqvvvOL+O4VdyUxML3vnk1og1MhqLU=; b=WOXVOtSCHZ5JmdnA+vt2cJCdHuhnrHKRE/hyqDM3cd8hv/kOCB2h+f4QUOWZ9882M2O6XEpnSA2godp7Z7Yz/OmMwm7dwbmHpBsZ+S5/PMp3haEJFYeHiEreKQZJybfwRw2of8z5gUrhZ/wbK/kka2E4OfUWaijH8i9RbNwOGfyEKHkqMj34yTa8njfoBJ1MlisC4mwBl+4WXW199K4k63eJV0TAu9RVNwhJqp2Wf9F6Ddx8fBcW3BKh/9rsibNFzl6lWoLExgzV5dkw8aWQ1JmrvpB9GSpVKPYTuN6AR3sURCjokK40RJ+Pcck8AkzN8czMcx/4gz2USLfyGqkE/Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=D8bMBTFWfer+ZNqvvvOL+O4VdyUxML3vnk1og1MhqLU=; b=MwjO1OPSIUJrgKNItW1F9ql7+LSqiyYhxHMCCGzHXJKeu/gQwnG1SCpaqqjMBnQYdd9Sykx1IK7jmilGmcQLiG24LjuhDWYOpUTr9d7/bSkyJsFcTGB2V+B38sVukoMrmxNeM85UIRIYil8//pEFzr3VQYFMHzsnNi+9MNIl0YU=
Received: from HE1PR07MB3436.eurprd07.prod.outlook.com (2603:10a6:7:37::31) by HE1PR0701MB2827.eurprd07.prod.outlook.com (2603:10a6:3:49::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4219.12; Fri, 11 Jun 2021 16:20:41 +0000
Received: from HE1PR07MB3436.eurprd07.prod.outlook.com ([fe80::9dbf:3074:b496:7704]) by HE1PR07MB3436.eurprd07.prod.outlook.com ([fe80::9dbf:3074:b496:7704%7]) with mapi id 15.20.4242.013; Fri, 11 Jun 2021 16:20:41 +0000
From: Mohit Sethi M <mohit.m.sethi@ericsson.com>
To: Alan DeKok <aland@deployingradius.com>, Mohit Sethi M <mohit.m.sethi@ericsson.com>
CC: Roman Danyliw <rdd@cert.org>, "emu@ietf.org" <emu@ietf.org>
Thread-Topic: [Emu] I-D Action: draft-ietf-emu-eap-tls13-16.txt
Thread-Index: AQHXXsLoFe4h2206HUu2xxVGKsGzqKsO0OcAgAAEnwCAAAXcgIAAIogA
Date: Fri, 11 Jun 2021 16:20:41 +0000
Message-ID: <f548ccd9-5e2b-6f5c-1c0f-83da13ae8e6c@ericsson.com>
References: <162341585509.25821.12001005879203873531@ietfa.amsl.com> <fde152d8-ff88-ea03-cbad-330a302a9442@ericsson.com> <49E7E4C8-CB9C-4A96-A7E4-1EE778BD58F5@deployingradius.com> <a9934d97-c01d-ad9a-bb95-f397d73e6140@ericsson.com> <3039B712-15E2-4C32-95C4-48CE5B73A0F7@deployingradius.com>
In-Reply-To: <3039B712-15E2-4C32-95C4-48CE5B73A0F7@deployingradius.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.8.1
authentication-results: deployingradius.com; dkim=none (message not signed) header.d=none;deployingradius.com; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [2001:14bb:1c1:9213:18c8:d286:224d:fbbb]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 975ebe50-f905-490f-a612-08d92cf4dba7
x-ms-traffictypediagnostic: HE1PR0701MB2827:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <HE1PR0701MB28273890A3E9FEDCCD77B481D0349@HE1PR0701MB2827.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB3436.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(346002)(366004)(136003)(39860400002)(396003)(2906002)(8676002)(86362001)(38100700002)(478600001)(966005)(6486002)(76116006)(66946007)(5660300002)(71200400001)(64756008)(4326008)(186003)(66556008)(66476007)(110136005)(316002)(66446008)(83380400001)(2616005)(36756003)(122000001)(166002)(6512007)(8936002)(31686004)(31696002)(53546011)(54906003)(6506007)(43740500002)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_f548ccd95e2b6f5c1c0f83da13ae8e6cericssoncom_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB3436.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 975ebe50-f905-490f-a612-08d92cf4dba7
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Jun 2021 16:20:41.6566 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tBpbCCMhW+aHjvwWjoTbizKQaRlOHr34q3Mr6UfVxohEJyOdMRNHmWwZh0XpXbU9ME6BJsi/GG/9Za0u3EozpRiPgm3XsLltWSLkaMw7uXE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2827
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/Dtm25Ss7eoQSV8Fnk4ctj9bAAOE>
Subject: Re: [Emu] I-D Action: draft-ietf-emu-eap-tls13-16.txt
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Jun 2021 16:20:55 -0000

I have suggested repeatedly that the document contain sufficient information to create a secure and inter-operable implementation.  It's not clear to me why these suggestions have been ignored, or rejected.

I guess you wanted to say that the document does not? contain sufficient information to create a secure and interoperable implementation. I disagree. But that doesn't mean your comments will not be addressed. This is after all a working group document and should reflect rough consensus. So we will address your remaining issues.

 It's not clear to me why these suggestions have been ignored, or rejected.

I find it odd that you claim your suggestions have been ignored or rejected. We have created many issues on github  (https://github.com/emu-wg/draft-ietf-emu-eap-tls13/issues?q=is%3Aissue+is%3Aclosed+Alan) and submitted many pull requests addressing your comments (https://github.com/emu-wg/draft-ietf-emu-eap-tls13/pulls?q=is%3Apr+Alan+is%3Aclosed).

When I merged this PR in the morning: https://github.com/emu-wg/draft-ietf-emu-eap-tls13/pull/71, it looked like all of your comments had been addressed in the PR. Joe (the other co-chair) had approved this PR?

As authors of a working group document of a voluntary standards organization, we have been doing voluntary service over the last several years. We started working on this document in 2018 (https://datatracker.ietf.org/doc/html/draft-mattsson-eap-tls13). You have been helping us with the document since the beginning. So thank you for your voluntary service as well. While it is not mandatory, helping us with github issues/PRs related to your reviews can help us ensure that your comments are not inadvertently left unaddressed; and that this community effort moves forward faster.

--Mohit

On 6/11/21 5:17 PM, Alan DeKok wrote:

On Jun 11, 2021, at 9:56 AM, Mohit Sethi M <mohit.m.sethi@ericsson.com><mailto:mohit.m.sethi@ericsson.com> wrote:



I guess you know that there are several implementations of the draft
some of which are already deployed.



   While that's a nice comment telling me what I already know, it doesn't address my point.  The fact that implementations exist does not mean that the specification is sufficient to create an implementation.

  The implementors have had many "behind the scenes" discussions about how to implement EAP-TLS 1.3.   The outcome of those discussions was shared among implementors.  That information is largely what enabled inter-operability.  Information which is not all reflected in the document.

  I have suggested repeatedly that the document contain sufficient information to create a secure and inter-operable implementation.  It's not clear to me why these suggestions have been ignored, or rejected.



It is of course nice to strive for perfection.



  That comment misrepresents my position.



Could you please submit a pull request addressing your
unaddressed comments.



  I gave suggested text in my messages.  These comments were largely ignored across multiple reviews.  This is not how we should work towards consensus.

  If the goal of this document is simply to get it published, then I withdraw all of my objections.  Implementors will then share extra knowledge behind the scenes.

  If the goal of this document is to enable secure and inter-operable implementations, then it would be useful to address comments from major implementors.

  Alan DeKok.

_______________________________________________
Emu mailing list
Emu@ietf.org<mailto:Emu@ietf.org>
https://www.ietf.org/mailman/listinfo/emu

v2.23.0 | Report a Bug | By Email