Re: [Gen-art] Gen-ART of draft-dukhovni-opportunistic-security-05
Jari Arkko <jari.arkko@ericsson.com> Tue, 25 November 2014 15:59 UTC
Return-Path: <jari.arkko@ericsson.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8295A1AC3A6 for <gen-art@ietfa.amsl.com>; Tue, 25 Nov 2014 07:59:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.601
X-Spam-Level:
X-Spam-Status: No, score=-3.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_19=0.6, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WhbNO2T1DI_G for <gen-art@ietfa.amsl.com>; Tue, 25 Nov 2014 07:59:39 -0800 (PST)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D48631A9176 for <gen-art@ietf.org>; Tue, 25 Nov 2014 07:59:38 -0800 (PST)
X-AuditID: c1b4fb25-f791c6d00000617b-4d-5474a76838be
Received: from ESESSHC020.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id 79.41.24955.867A4745; Tue, 25 Nov 2014 16:59:36 +0100 (CET)
Received: from mail.lmf.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.80) with Microsoft SMTP Server id 14.3.195.1; Tue, 25 Nov 2014 16:59:35 +0100
Received: from nomadiclab.lmf.ericsson.se (nomadiclab.lmf.ericsson.se [131.160.33.3]) by mail.lmf.ericsson.se (Postfix) with ESMTP id 183161102B1; Tue, 25 Nov 2014 17:59:36 +0200 (EET)
Received: from nomadiclab.lmf.ericsson.se (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id F34345F638; Tue, 25 Nov 2014 18:00:13 +0200 (EET)
Received: from [IPv6:::1] (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id A0DA65F637; Tue, 25 Nov 2014 18:00:13 +0200 (EET)
Content-Type: multipart/signed; boundary="Apple-Mail=_FFC16A1E-F391-458D-A874-D38FB4957714"; protocol="application/pkcs7-signature"; micalg="sha1"
MIME-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
From: Jari Arkko <jari.arkko@ericsson.com>
In-Reply-To: <CABkgnnUzdM31hiHT9JFB06b5azAheh+Ckshx2tNDe-9dRPo9JA@mail.gmail.com>
Date: Tue, 25 Nov 2014 16:59:35 +0100
Message-ID: <22C95D45-C7E1-4C06-BC94-975CF3DDE13C@ericsson.com>
References: <CABkgnnUzdM31hiHT9JFB06b5azAheh+Ckshx2tNDe-9dRPo9JA@mail.gmail.com>
To: Martin Thomson <martin.thomson@gmail.com>
X-Mailer: Apple Mail (2.1878.6)
X-Virus-Scanned: ClamAV using ClamSMTP
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmpnkeLIzCtJLcpLzFFi42KZGfG3RjdjeUmIwd0nehaXlrawWFx99ZnF 4tqZf4wOzB47Z91l91iy5CeTx5fLn9kCmKO4bFJSczLLUov07RK4MtZeO8Va8Dew4v/Tx4wN jG1eXYycHBICJhINhw6yQ9hiEhfurWfrYuTiEBI4wihxbuV1FpCEkMAGRonnM5gh7D1AiflZ EEVrGSX6Ny5ih3DmMkpcmPuAEcRhFpjCKLHq6Xqwdl4BA4nj33+C2cICXhL/f+8Gs9kEtCQ2 Ll/ABmJzCgRKHJ7/lAnEZhFQlTj04S6YzSyQLnHvYAc7xBx7iX/PDkGdESAx5898RhBbREBX YtHZB1A/yEt8+HAcylaTuHpuE1S9isStv2fZJjCKzEJ23ywk980C26ctsWzha2YI20Diaecr VgjbVOL10Y+MELa1xIxfB9kgbEWJKd0P2Rcwsq9iFC1OLU7KTTcy1kstykwuLs7P08tLLdnE CIy5g1t+q+5gvPzG8RCjAAejEg/vhg/FIUKsiWXFlbmHGKU5WJTEeReemxcsJJCeWJKanZpa kFoUX1Sak1p8iJGJg1OqgXGSeQx35artyz5Y1zy6nXu2ud21z77w4QnjU7fVuatS5mkc5zWN 2/0x7bKe8Ia1UxJbXcK/8Tz9n+Wz59nRiVvFD3DMa70gvD9sB19+37RcVtcH7E/ED1RyZksb Jrx20hPk3HNEQybcR+3GdUkXvV3qXqvnivzZtlTZouZo9Ifw46WTFrG48ymxFGckGmoxFxUn AgDUHJzUmgIAAA==
Archived-At: http://mailarchive.ietf.org/arch/msg/gen-art/zoBdtf2uehv_K4w5mt3tGhK14ls
Cc: "gen-art@ietf.org" <gen-art@ietf.org>, draft-dukhovni-opportunistic-security.all@tools.ietf.org
Subject: Re: [Gen-art] Gen-ART of draft-dukhovni-opportunistic-security-05
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Nov 2014 15:59:44 -0000
I agree with many of these comments (were they observed?) but I also agree with the part about “ship it” :-) Jari On 01 Nov 2014, at 06:10, Martin Thomson <martin.thomson@gmail.com> wrote: > I am the assigned Gen-ART reviewer for this draft. For background on > Gen-ART, please see the FAQ at > <http://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>. > > Please resolve these comments along with any other Last Call comments > you may receive. > > Document:draft-dukhovni-opportunistic-security-05 > Reviewer: Martin Thomson > Review Date: 2014-10-31 > IETF LC End Date: 2014-11-18 > IESG Telechat date: (if known) > > Summary: Ship it; it's more important to have this stake in the ground > than it is to have it right. > > Major issues: > > This is the first attempt at definition, which appears at the bottom of page 3: > > "Opportunistic Security" (OS) is defined as the use of cleartext as > the baseline communication security policy, with encryption and > authentication negotiated and applied to the communication when > available. > > So I can't start from an unauthenticated, encrypted baseline? And I > can't opportunistically add other features (like length hiding)? How > about: > > "Opportunistic Security" (OS) is defined as a security policy that > adds security features - such as encryption or authentication - based > on availability, using negotiation to enable commonly supported > features. > > (the next paragraph establishes that cleartext is the baseline anyway) > > > I still find the paragraph that starts "An OS protocol first > determines the capabilities of the peer with [...]" goes nowhere. > There's no "then" or "second". It just wanders off. This is a > crucial part of the definition. (This also appears too far down in > the document, I'm inclined to suggest that this belongs in the newly > empty Section 1). > > OLD: > An OS protocol first determines the capabilities of the peer with > which it is attempting to communicate. Peer capabilities may be > discovered by out-of-band or in-band means. (Out-of-band mechanisms > include the use of DANE records or cached keys or credentials > acquired via TOFU. In-band determination implies negotiation between > peers.) The capability determination phase may indicate that the > peer supports authenticated, encrypted communication; > unauthenticated, encrypted communication; or only cleartext > communication. > NEW: > An OS protocol enables security features based on the capabilities that > can be learned about a communications peer. This might use out of > band information, or an in-band negotiation. As capabilities are discovered, > they are enabled. Failure to enable any given feature is not considered > cause to terminate communications, since each feature is enabled > independently. > > (then you can get into f'rexamples, like the whole auth+enc - > unauth+enc - clear continuum; the STARTTLS quagmire, a DANE example = > to cover opportunistic authentication.) > > > Minor issues: I'm not excited about writing this, because Victor has > made a genuine effort to engage, and I understand the pressures that > are being applied from multiple directions, but here goes.... > > My original review noted a couple of structural issues: > - the document had too many words > - the definition of OS in S3 was obfuscated > > Though some aspects of the draft are greatly improved, and arguably a > new definition is provided (see above), I suggest that these have not > been addressed. I contributed text and specific editorial > suggestions[1] that would have drastically reduced the amount of text, > but those were apparently only sparingly sampled. > > This is only a personal reaction, but the emphasis on DANE is perhaps > a little strong. I suggested less of that last time (i.e., none); but > there is now more. > > [1] https://github.com/martinthomson/saag/commit/63bf358d1101b06460350a6fc5068fdedb3ff6d3 > [2] https://tools.ietf.org/rfcdiff?url2=draft-dukhovni-opportunistic-security-05.txt > > _______________________________________________ > Gen-art mailing list > Gen-art@ietf.org > https://www.ietf.org/mailman/listinfo/gen-art
- [Gen-art] Gen-ART of draft-dukhovni-opportunistic… Martin Thomson
- Re: [Gen-art] Gen-ART of draft-dukhovni-opportuni… Jari Arkko
- Re: [Gen-art] Gen-ART of draft-dukhovni-opportuni… Martin Thomson
- Re: [Gen-art] Gen-ART of draft-dukhovni-opportuni… Stephen Farrell