[Gen-art] Genart last call review of draft-ietf-dtn-bpsec-default-sc-07
Thomas Fossati via Datatracker <noreply@ietf.org> Tue, 25 May 2021 10:13 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: gen-art@ietf.org
Delivered-To: gen-art@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 6714B3A0806; Tue, 25 May 2021 03:13:35 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Thomas Fossati via Datatracker <noreply@ietf.org>
To: gen-art@ietf.org
Cc: draft-ietf-dtn-bpsec-default-sc.all@ietf.org, dtn@ietf.org, last-call@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.30.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <162193761536.8339.7326792575918799885@ietfa.amsl.com>
Reply-To: Thomas Fossati <thomas.fossati@arm.com>
Date: Tue, 25 May 2021 03:13:35 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/Pi2b54tlo8qIbJTVJfuQbzV3fj0>
Subject: [Gen-art] Genart last call review of draft-ietf-dtn-bpsec-default-sc-07
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 May 2021 10:13:36 -0000
Reviewer: Thomas Fossati Review result: Ready with Nits I am the assigned Gen-ART reviewer for this draft. The General Area Review Team (Gen-ART) reviews all IETF documents being processed by the IESG for the IETF Chair. Please treat these comments just like any other last call comments. For more information, please see the FAQ at <https://trac.ietf.org/trac/gen/wiki/GenArtfaq>. Document: draft-ietf-dtn-bpsec-default-sc-?? Reviewer: Thomas Fossati Review Date: 2021-05-25 IETF LC End Date: 2021-06-01 IESG Telechat date: Not scheduled for a telechat Summary: This document defines two default security contexts (clear-text integrity and authenticated encryption) for the BPSec protocol. The raison d'être of this specification is to provide basic security services for interop testing and operational use on the terrestrial Internet. This is a very well written document. I have checked the CBOR examples and they look good (as noted in the Nits section below, the use of CBOR Sequences might be more explicitly indicated.) The requests to IANA are clear and actionable. (Just a note: in my experience as an implementer -- albeit not of this particular security protocol -- I have found that relying on canonicalisation tends to make interop an arcane job. I trust the DTN people have weighed their pro and cons and made this choice consciously.) Major issues: None Minor issues: None Nits/editorial comments: * The references to Table 7 of RFC8152 might be replaced by references to Table 3. of draft-ietf-cose-rfc8152bis-algs (now in RFC-Ed queue) * The references to Table 9 of RFC8152 might be replaced by references to Table 5. of draft-ietf-cose-rfc8152bis-algs * In Section 5.1, the name of the registry should be "BPSec Security Context Identifiers" (plural "Identifiers") * Since the document examples make use of CBOR Sequences, it'd be worth stating that in the relevant places (e.g., A.1.3.2) -- and maybe sticking a reference to RFC8742.
- [Gen-art] Genart last call review of draft-ietf-d… Thomas Fossati via Datatracker