IETF Logo Mail Archive

Re: [Gen-art] Genart last call review of draft-ietf-lpwan-coap-static-context-hc-12

Alissa Cooper <alissa@cooperw.in> Wed, 11 March 2020 19:44 UTC

Return-Path: <alissa@cooperw.in>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CDC43A0831; Wed, 11 Mar 2020 12:44:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cooperw.in header.b=0tjUNw1V; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=tl+YGFMh
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8OYELLuJYRJU; Wed, 11 Mar 2020 12:44:24 -0700 (PDT)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4D23C3A07FE; Wed, 11 Mar 2020 12:44:14 -0700 (PDT)
Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.west.internal (Postfix) with ESMTP id DB96D4C5; Wed, 11 Mar 2020 15:44:12 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute4.internal (MEProxy); Wed, 11 Mar 2020 15:44:13 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cooperw.in; h= from:message-id:content-type:mime-version:subject:date :in-reply-to:cc:to:references; s=fm2; bh=921SZpWL5A1xjRElIiqYaf2 BkVsqz4BGz5uEZEESBj8=; b=0tjUNw1VSHhMSkx3TIuJL1cK6gLm4GaQ+Tcg/gZ hk9KmNsAaUMdvH+aURLKrUokvLkyUkJB/Cn6vNKrmg5a2MTk7/96gbv2av3CN5z+ NNIbGiXbfjhfY52EgVTnUHsOGlUdSsn1/qzSxevuzrhVSddhqhh3lv5v3p7nhRIa 5XiJqKC+j97TlLSa3Rqf3HPdkWL9gouGOQo3692sSXLJw4Kfd+MkEtCjCz7FVs+z 50B/uZItzqaqFcwWCNN+oUkgDIm1v/g5KLYWxCsL5D8/sa4gZinJwoXsAA0rKweC /DbU//n4R4JkoNxC39+Obyu5Uxd1bD47Sd8/vJoniKxOWCw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=921SZp WL5A1xjRElIiqYaf2BkVsqz4BGz5uEZEESBj8=; b=tl+YGFMh/rjhUyJSfpfLpR 3xcz1nuR2m8bVeCANkv6YxFwL4h7Q072nvdQ+i0ffjK4eKITFfIrxGwFHK6AaRSM U6tJ90hLEtFjYbDao0DNFKnbBIyLFpjFsc4Wlc285D2i/cBDuneIGohR1AgxkD07 mQa2xnDHylRY2MjSPiuvMsRWEJb66rkpHnVug7+YajUEGJk/gH/sX2g4AgJnjCfF 8evnivm2G7dPJS29Csa/8XcxhPadfQT0glPRd0T9avq/B2BJWMfpNGEtpFl+1Px+ hajzmaVPpmft7H59vreOGS/Xa0iwUPHLrFJJoCDz7APblQlT7Xb70ZVvSuqp2w/w ==
X-ME-Sender: <xms:iz9pXts-L_TuYe0HgdRMi4Dzyqy716bBTvEHIAKMyslKRnrpRWn_4Q>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedugedruddvfedgudegucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhephffktgggufffjgfvfhfosegrtdhmrehhtdejnecuhfhrohhmpeetlhhishhs rgcuvehoohhpvghruceorghlihhsshgrsegtohhophgvrhifrdhinheqnecuffhomhgrih hnpehivghtfhdrohhrghenucfkphepudejfedrfeekrdduudejrdekieenucevlhhushht vghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpegrlhhishhsrgestghooh hpvghrfidrihhn
X-ME-Proxy: <xmx:iz9pXr7KJRoK0TqOaKoXe180pV1VO6i1KoTz2uECqbT9LBiwdX93FQ> <xmx:iz9pXp6gdi5GT_ntkPJ3hZGdyGivtZuHI963H27n6gOI4VucsZK-GQ> <xmx:iz9pXvWP6HqKYItzSl03J-My4L6-J_r2QDQXR0JsWfwBh40ByC3PPg> <xmx:jD9pXuN20XdUyKPTvc2am1Q-XrtNXrYMwGk4gnJKJFhndi-zZxXpqA>
Received: from rtp-alcoop-nitro2.cisco.com (unknown [173.38.117.86]) by mail.messagingengine.com (Postfix) with ESMTPA id 3DAE13280066; Wed, 11 Mar 2020 15:44:11 -0400 (EDT)
From: Alissa Cooper <alissa@cooperw.in>
Message-Id: <1CED6BF7-86A4-4A11-A782-DD22CAD74123@cooperw.in>
Content-Type: multipart/alternative; boundary="Apple-Mail=_D0211C45-4AF9-4904-BF53-5011693026AC"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Date: Wed, 11 Mar 2020 15:44:10 -0400
In-Reply-To: <7ba83379-9c1b-d499-4742-bdfc026a9b74@tenghardt.net>
Cc: Laurent Toutain <laurent.toutain@imt-atlantique.fr>, draft-ietf-lpwan-coap-static-context-hc.all@ietf.org, gen-art@ietf.org, Ana Minaburo <ana@ackl.io>, last-call@ietf.org, lpwan-chairs@ietf.org, lp-wan <lp-wan@ietf.org>, Ricardo Andreasen <randreasen@fi.uba.ar>, Xavier Lagrange <xavier.lagrange@imt-atlantique.fr>
To: Theresa Enghardt <ietf@tenghardt.net>
References: <158134757509.4049.18293449395965880444@ietfa.amsl.com> <CAAbr+nSgQjD1o==i5rPQgAv7mA8buWueCUMkHnt=Ls=s09QXwQ@mail.gmail.com> <f63d996b-f13f-e574-65f0-fdd091b1c5fb@tenghardt.net> <CABONVQYgc_Mtuxh4rzsyhAg_DJmTMWfd2Wn9f3nqdVKdY77__g@mail.gmail.com> <7ba83379-9c1b-d499-4742-bdfc026a9b74@tenghardt.net>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/COYnfvR_lDEmjY5b-trIcYSX_HU>
Subject: Re: [Gen-art] Genart last call review of draft-ietf-lpwan-coap-static-context-hc-12
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Mar 2020 19:44:27 -0000

Theresa, thanks for your review. Authors, thanks for your responses. I entered a No Objection ballot pointing out the remaining issues with the security considerations.

Alissa


> On Mar 9, 2020, at 11:26 PM, Theresa Enghardt <ietf@tenghardt.net> wrote:
> 
> Hi Laurent,
> 
> Thanks for the new revision, which greatly improves the document.
> 
> However, I have a few comments on your new text:
> 
> In the text at the beginning of Section 3, you added text to give more context, which is a great idea.
> However, I'm not sure about the first sentence: 
> "SCHC with CoAP will be used exactly the same way as it is applied in any protocol as IP or UDP with the difference that the fields description needs to be defined based on both headers and target values of the request and the responses."
> To me the last part of this sentence sounds like for CoAP you have to define a rule to match both a request and a reply packet, so you would have to match two packets (in a single rule?). Is this really the case? I thought a single rule always matches one packet, but maybe I misunderstood. In any case, could you rephrase this to make it more clear, please?
> 
> Also, I saw some typos and grammar errors in Section 3:
> s/optmize/optimize/
> s/To performs/To perform/
> s/TV might be use/TV might be used/
> s/Resulting in a smaller compression residue./This results in a smaller compression residue./
> 
> Some more nits in Section 7.3:
> s/TheSCHC/The SCHC/
> s/alreadypresent/already present/
> s/in section Section 4/in Section 4/
> 
> Regarding the Security Considerations, thanks for discussing this in your interim meeting and for adding text.
> 
> I'll leave the judgment of whether any security aspects are still missing etc. to the Secdir reviewer and/or ADs.
> 
> Regarding the text you added:
> On 05.03.20 23:50, Laurent Toutain wrote:
>> For the security section after discussion in the intermin meeting, we propose to add this:
>> 
>> This document does not have any more Security consideration than the ones already raised on {{rfc8724}}. Variable length residues may be used to compress URI elements. They cannot produce a packet expansion either on the LPWAN network or in the Internet network after decompression. The length send is not used to indicate the information that should be reconstructed at the other end, but on the contrary the information sent as a Residue. Therefore, if a length is set to a high value, but the number of bits on the SCHC packet is smaller, the packet must be dropped by the decompressor.
>> 
> Overall, I find this paragraph difficult to follow.
> What is the relationship between the first sentence and the rest of the paragraph?
> First you say there are not more Security Considerations, then you say that there are?
> 
> Please add a sentence that provides a context for your statements. Is this a consideration that implementations need to be aware of in case variable residues are used? Or is this a suggestion to use variable length residues to make something more/less secure?
> 
> What is a packet expansion? I haven't seen this term in the rest of the document. Is it a problem if they (the variable length residues or the URI elements?) cannot produce a packet expanision?
> This sentence is hard to parse and seems gramatically broken: "The length send is not used to indicate the information that should be reconstructed at the other end, but on the contrary the information sent as a Residue."
> 
> 
>> OSCORE compression is also based on the same compression method described in {{rfc8427}}. The size of the Initialisation Vector residue size must be considered carefully. A too large value has a impact on the compression efficiency and a too small value will force the device to renew its key more often. This operation may be long and energy consuming.
>> 
> "This operation may be long and energy consuming." - Which operation? The previous sentence talks about the size of an initialization vector, not about an operation.
> 
> 
> Thanks,
> Theresa
> _______________________________________________
> Gen-art mailing list
> Gen-art@ietf.org
> https://www.ietf.org/mailman/listinfo/gen-art

v2.23.0 | Report a Bug | By Email