Re: [Gen-art] Genart last call review of draft-ietf-sipcore-sip-token-authnz-12
Christer Holmberg <christer.holmberg@ericsson.com> Tue, 14 April 2020 14:24 UTC
Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E344C3A07ED for <gen-art@ietfa.amsl.com>; Tue, 14 Apr 2020 07:24:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.268
X-Spam-Level:
X-Spam-Status: No, score=-2.268 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.168, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gyIJT0LD337X for <gen-art@ietfa.amsl.com>; Tue, 14 Apr 2020 07:24:51 -0700 (PDT)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2048.outbound.protection.outlook.com [40.107.20.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 653573A07F5 for <gen-art@ietf.org>; Tue, 14 Apr 2020 07:24:51 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BAQ41Qyu9bjMGf2ZyK/2Le2LSAXNgnLZlFGo23JHliUlIpvnEtN6pWsgObmQSDd8JJ7E9vPuYefVBOJP3CTIe6CiaD2v+eMu5T7J4Gl6PD7lPNAfk8rmNUiNGVyfnh4w53kP5+E+hbY1uNvIFsIsK+3q+nclf51wp9PudZucUmzcFPOl1DZOH9NosVpcLQL7C9JlcTgKCguGDlLLOWa3JNIEfAvwUDbvPUYA3dtnUlkWINr1jaS7x9FI8/XXi3adqeQsfzYFiAA69m+MktCI/zzjr8jbGtmFyfFJXSOL73C9Eclan8ca9vepBS80S/yVNGXjvKjwAxWX/EFVfMyQzg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SzPkba9kTrzCURKFHrCAR4hkjO1Xkx2zONGXzwUG2rY=; b=HmXylhCIO67oHU9XHxMOrvlEQbKKxUyyaR6JragU7qsVjDoSR3OPvU0mgh7thw/qs1MWKQ9ZCJegLZdGPk0ZIW4eEvO4Pc+WVFMpCAXdG8NMvdJVriRaK1rkdpulobq7V/rM2WMDxlcn8RVqPkWTE/6ADse2EXXYoTc7Q1GjJX+E8cIHPUkDkaHaHlsifk6lnds4QeoPxMFawkDkA7EFNbYQUIpcCj6x5Ymmwvy6D0R6B+CpjiUq5lZpz6uhR/YI187i1gFUpqFT2cQGOWN05zQLoxuKeo9BB/bHzVlUJKSpV1qMzrZBaYrAMaLkVcq+uJacIxYlWK2RIq8uktwKeg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SzPkba9kTrzCURKFHrCAR4hkjO1Xkx2zONGXzwUG2rY=; b=NIJlQxqCdi+ylv/XZkpVAibtErKesEtL0XWoRIIviaeNGSaaahRY7rYPt802E+2QMhCi0ma4GcnZuvUR96zAe9oiVN9wjoC1hXz+0m+Pupf1VLDEg5Xj/lnoB/5HTyyFpYzWCeK6NnZuxPGb1vcg3A+L8Xw/NQZoGbZQvEgIy2c=
Received: from AM0PR07MB3987.eurprd07.prod.outlook.com (2603:10a6:208:46::31) by AM0PR07MB5956.eurprd07.prod.outlook.com (2603:10a6:208:10c::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2921.14; Tue, 14 Apr 2020 14:24:49 +0000
Received: from AM0PR07MB3987.eurprd07.prod.outlook.com ([fe80::b929:4e5c:6b46:3ccc]) by AM0PR07MB3987.eurprd07.prod.outlook.com ([fe80::b929:4e5c:6b46:3ccc%7]) with mapi id 15.20.2921.024; Tue, 14 Apr 2020 14:24:49 +0000
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Linda Dunbar <linda.dunbar@futurewei.com>, "gen-art@ietf.org" <gen-art@ietf.org>
Thread-Topic: [Gen-art] Genart last call review of draft-ietf-sipcore-sip-token-authnz-12
Thread-Index: AQHWEfOIGOOzcqccME6+phJZGgMUEKh43kWA
Date: Tue, 14 Apr 2020 14:24:49 +0000
Message-ID: <EF441940-8620-4081-8A3F-2003A48E574D@ericsson.com>
References: <158682405513.12380.9514894653338982196@ietfa.amsl.com>
In-Reply-To: <158682405513.12380.9514894653338982196@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.1e.0.191013
authentication-results: spf=none (sender IP is ) smtp.mailfrom=christer.holmberg@ericsson.com;
x-originating-ip: [188.127.223.154]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 526a963a-d9f6-4aef-7555-08d7e07f96c8
x-ms-traffictypediagnostic: AM0PR07MB5956:
x-microsoft-antispam-prvs: <AM0PR07MB5956AC4F7BD3563BCA4BF60893DA0@AM0PR07MB5956.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0373D94D15
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR07MB3987.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(10009020)(4636009)(136003)(366004)(376002)(346002)(39860400002)(396003)(33656002)(36756003)(44832011)(66556008)(8936002)(316002)(8676002)(26005)(186003)(110136005)(478600001)(81156014)(5660300002)(6506007)(66946007)(64756008)(76116006)(71200400001)(66476007)(66446008)(2906002)(2616005)(86362001)(6486002)(6512007); DIR:OUT; SFP:1101;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: mIBAOwrHKVgQ1FWzuhQS8w67VA1OF26l/X+FKQqpcUrgobm9A4pgyt5yn78EXWtuR2vuIGam6Au3YnO7sC+4GXttHXaVwufDKD0J4Vds5ms6G8gSu9hkUkplP77/qB++J066y6xkCkxkcNUp0URnxws28VMxzGPxKvAKSPSFBEFzMRk0gBwEsXXWxhKMNilGtPJ6K/nRsGTzfVaW+TCOdQCC6sj7g0tPIYHfndTyZLB1r79EyOpeLy//fXRomHH1OOAzT1WpqrmhgPtNLmH6yObAxy5QfzBgbMTOZal+EanAqwYi6yBxGCumhe5kTTP44nMUfCo3/QQK+Asc9jJqJvf1UYwyudzi3FZOCaaZNmIF6cwrFd9Fo2p2kAeexFpdMRvlDWpyVrvUE+T+9Y9o/PW/Gx38w1n/S5oYLMV4VG6YD4Aii8U1z1KentDGX0tZ
x-ms-exchange-antispam-messagedata: 5wNSnAzwYXofwf+4fk2JKncyHJqDGHTjQlxg0NybSMIl+rmAaNiPycfKFajD5pv3wGUGHW8UKcMRdEmMRjPtsZS+p1G2dpwyqkloUiesYGcYSMP0HCpPk/8sp+jKLslxk66EbAmSuaXwJWLIPWXnFg==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <F07257D51144A848A331DB643351D293@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 526a963a-d9f6-4aef-7555-08d7e07f96c8
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Apr 2020 14:24:49.1162 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: kjdoXXl18pIsvDupNhOFjqNwVWO81z7ZKGHNkjE1jkK/6IJsj3IcvdCf4aILpb+0Q+0zGZQ2UKrk2I/uygJaGNBsghHA81VP0g/+iiMNJzo=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR07MB5956
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/m2IUzAWsJnffW_LttK3ObDZXfxM>
Subject: Re: [Gen-art] Genart last call review of draft-ietf-sipcore-sip-token-authnz-12
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Apr 2020 14:24:53 -0000
Hi Linda,
Thank You for the review! Please see inline.
> Section 1.4.1: the first paragraph is very confusing. The steps after the
> figure is much clear on what to be done. It is better to delete the the
> sub-phrase "... where the registrar informs the UAC about the authorization ...
> ". The actual step is actually the UAC sends the request to Registrar and get
> the response .. as described in the steps after the Figure.
The purpose of the first sentence is to highlight the difference between 1.4.1 and 1.4.2: In 1.4.1 we describe the case where Registrars informs the UAC about the AS, while in 1.4.2 we describe the case where the AS is preconfigured in the UAC.
However, I do agree that the sentence is very long and confusing. Perhaps we could remove the "in a 401 response to the REGISTER request" part?
---
> Section 2.1.2 the paragraph before the last one (Page 8), I can' parse the
> sentence. What do you want to say?
I assume you mean Section 2.1.1?
> "If the UAC receives a 401/407 response with multiple WWWAuthenticate/
> Proxy-Authenticate header fields, providing challenges
> using different authentication schemes for the same realm, the UAC
> provides credentials for one or more of the schemes that it supports,
> based on local policy."
We want to say that, if the UAC receives multiple challenges, with different authentication schemes, for the same realm, the UAC picks one (and provides credentials) based on local policy.
Would it be more clear if we said something like:
"....for the same realm, the UAC selects one or more of the provided schemes (based on local policy) and provides credentials for those schemes."
---
> Section 2.1.3: What is AOR?
Address-of-Record.
We will enhance the abbreviation, and add a reference to RFC 3261.
---
Regards,
Christer
- [Gen-art] Genart last call review of draft-ietf-s… Linda Dunbar via Datatracker
- Re: [Gen-art] Genart last call review of draft-ie… Christer Holmberg
- Re: [Gen-art] Genart last call review of draft-ie… Linda Dunbar
- Re: [Gen-art] Genart last call review of draft-ie… Alissa Cooper