Re: [Gen-art] [stir] Genart telechat review of draft-ietf-stir-oob-06

Alissa Cooper <alissa@cooperw.in> Wed, 04 December 2019 20:12 UTC

Return-Path: <alissa@cooperw.in>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F48512093F; Wed, 4 Dec 2019 12:12:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cooperw.in header.b=FODBYuwP; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=WZjM3t4x
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BLkSFNYJUNND; Wed, 4 Dec 2019 12:12:32 -0800 (PST)
Received: from wout5-smtp.messagingengine.com (wout5-smtp.messagingengine.com [64.147.123.21]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB1D91200A3; Wed, 4 Dec 2019 12:12:28 -0800 (PST)
Received: from compute7.internal (compute7.nyi.internal [10.202.2.47]) by mailout.west.internal (Postfix) with ESMTP id 751BD7FD; Wed, 4 Dec 2019 15:12:27 -0500 (EST)
Received: from mailfrontend1 ([10.202.2.162]) by compute7.internal (MEProxy); Wed, 04 Dec 2019 15:12:27 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cooperw.in; h= content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; s=fm1; bh=R L71+wcL/4Why9j/uLVloSkfWG9w2YLhEniL05jhtTw=; b=FODBYuwPGDfpLVBIu X01rTgY3ql5eM3ww3oeeXkBVM8SUaluGLeHICOIrusL2kHGDUFltCaE58KHQIAtE wE91eMIGEYItGsuFBFzL0bW0vX/IqI9kyMUukJmMB55Y2YH1qPESSJXUSR+ZSkEr dGrzj+MJzGcN4T7379n4/33FIFaKiPwu6kwLw5XcFTCswbn2ptKWVGmA9hx1wdNE ARQQ3UqsoyuZxbKdYt5+DkdrwbmI35UMl6OSASsYlp/1FeJqF1NQhP1ffr1e5OID rOqC0xHEhP+D+z0PF8812lFiVfm3tV0REMJQLuYCxRmQHDBfDNWe+BxnS+iBvy5J bhJKQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; bh=RL71+wcL/4Why9j/uLVloSkfWG9w2YLhEniL05jht Tw=; b=WZjM3t4xyEeziDnBUUXFE2U6mb6y3UCRXWRTfOJB7k9hT8xBZ4jbt4xYq 8ObDkac2mUX0Ub3klk3f45tqP5gRw3el5V0TKvG7gAbCiKw847pN3HB8ig+VN01x oYs7sV1Vz8++Cpj1W4zurmbNqSJPL8eNEuZSnmhs2vkCkzMn+I4rF3xbnwaFXzhK F0RjIWNX8m/XUeVIlbTw0jTpOtVpwhQ5soEh8FK3GbkC8zZIP8ZoU/D62EJE5TzY zq+wNzVxgtAvN4NLTBjhIh+QRBePDvZPNFYGB1bq4Iq0XxP0kRO/QBmVnneaQz0p YmaxU6nq4AzdeLR0OXuD61NJwlPFw==
X-ME-Sender: <xms:KhPoXQwNLE-YLxkjCcwlHMf_0XoW8rWLAfYrxwkQpJOEeSYM3qm-6g>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedrudejledgudefvdcutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecunecujfgurheptggguffhjgffgffkfhfvofesth hqmhdthhdtjeenucfhrhhomheptehlihhsshgrucevohhophgvrhcuoegrlhhishhsrges tghoohhpvghrfidrihhnqeenucffohhmrghinhepihgvthhfrdhorhhgnecukfhppedutd ekrdehuddruddtuddrleeknecurfgrrhgrmhepmhgrihhlfhhrohhmpegrlhhishhsrges tghoohhpvghrfidrihhnnecuvehluhhsthgvrhfuihiivgeptd
X-ME-Proxy: <xmx:KhPoXZhficdUSfIBL0EkLCcrADTKy3SjzREZ6ZxqQle0WshowHDACg> <xmx:KhPoXUDjEyp6cQQq8VsJ89xAlDGhiI0dg47tXcrHlpqZWtxNc-Js-w> <xmx:KhPoXWs47PtJ9UkDxXHagDT3uCFzhx3QkeCqXq0TfncZSvHEMt0xoQ> <xmx:KxPoXVnYOZULm6rOv80jFsv3q7tQwlIJQlIthoqZ3SJpk9_hCyCaNQ>
Received: from alcoop-m-c46z.fios-router.home (pool-108-51-101-98.washdc.fios.verizon.net [108.51.101.98]) by mail.messagingengine.com (Postfix) with ESMTPA id 8FDDA80062; Wed, 4 Dec 2019 15:12:26 -0500 (EST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
From: Alissa Cooper <alissa@cooperw.in>
In-Reply-To: <157549014531.11194.2020475510400637531@ietfa.amsl.com>
Date: Wed, 04 Dec 2019 15:12:25 -0500
Cc: gen-art@ietf.org, last-call@ietf.org, draft-ietf-stir-oob.all@ietf.org, stir@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <1BCB37D9-729B-41B2-887B-F75C05B0F33F@cooperw.in>
References: <157549014531.11194.2020475510400637531@ietfa.amsl.com>
To: Suhas Nandakumar <suhasietf@gmail.com>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/4MdjwM5oOMpedeZfrxqsGLTOpnk>
Subject: Re: [Gen-art] [stir] Genart telechat review of draft-ietf-stir-oob-06
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Dec 2019 20:12:34 -0000

Suhas, thanks for your review. I entered an Abstain ballot as I’m unclear on the archival value of this document. I did request a response to your review though.

Alissa


> On Dec 4, 2019, at 3:09 PM, Suhas Nandakumar via Datatracker <noreply@ietf.org> wrote:
> 
> Reviewer: Suhas Nandakumar
> Review result: Ready with Nits
> 
> Summary: The document is a well written summary and covers the ideas clearly.
> I don't have major concerns  but do have few minor concerns and Nits that might
> help with some clarifications
> 
> Major issues: None
> 
> Minor issues:
> 1. Section 7.2 para 2 states : "The CPS responds with any such PASSporTs
> (assuming they exist)." Given CPS will always respond with a dummy PASSporT,
> the statement in the parentheses doesn't hold. (Referring to section 6.2)
> 
> 2. Section 7.4 Call flow: "Call from CS (forged caller-id info)" . Since its
> the attacker making the call here, we probably need to change it as "Call from
> Attacker (forged caller-id info)".
> 
> 3. Section 7.5 has the following:
> 
> Sign(K_cps, K_temp)
> Sign(K_temp, E(K_receiver, PASSporT)) --->
> 
> This is a clarification question for my understanding. What happens when
> one of the 2 messages sent gets lost when storing the PASSporT. Should we need
> to add any clarifications to that extent ?
> 
> 4. Section 7.5 last para: clarification question
> Since PASSporT is encrypted at CPS , how is it aged out based on the "iat"
> value. Is it a function to VS to age out PASSporTs at a given CPS ?
> 
> Nits/editorial comments:
> 
> 1. Section 5.2 para 1: would be nice to add reference to Section 10
> 2. Section 7.2 Call Flow: "Store PASSporT" --> "Store Encrypted PASSporT"
> 3. Section 7.2 Call Flow: "Ring phone with callerid" --> "Ring phone with
> verified callerid" 4. Section 8.2 Step 3: "number number" --> "number" 5
> Section 8.3 para 2: "Per Step 3" --> "Per Step 3 of Section 8.1"
> 
> 
> _______________________________________________
> stir mailing list
> stir@ietf.org
> https://www.ietf.org/mailman/listinfo/stir