[GROW] Re: Roman Danyliw's No Objection on draft-ietf-grow-nrtm-v4-09: (with COMMENT)

Sasha Romijn <sasha@reliablycoded.nl> Wed, 15 April 2026 11:42 UTC

Return-Path: <sasha@reliablycoded.nl>
X-Original-To: grow@mail2.ietf.org
Delivered-To: grow@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id C8935DCB2EAB; Wed, 15 Apr 2026 04:42:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1776253363; bh=DMs98Ivm8ubMrZH98HmQ5zRVGl4NE2bp/EnB9ex3UjI=; h=Subject:From:In-Reply-To:Date:Cc:References:To; b=qMz3PyxdWc9AOy9Qx1gyR/u6te3UyEcjzxdMWbnPlplzxk6677EfSuDDpEOMahpAD h+DBz//5Lc2R7s+G8MetehiCVCIYIWRUlvG7WYsMLfLCuL27n0TV9rysgnKaJHjl7C WPWGuCOXTK370MJynVOaQ3xMNCeGSwYakyEn4lsY=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=reliablycoded.nl
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RW6tAiV-vLIy; Wed, 15 Apr 2026 04:42:43 -0700 (PDT)
Received: from mx.s42.re (mx.s42.re [2.57.252.3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 2F486DCB2520; Wed, 15 Apr 2026 04:41:57 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=reliablycoded.nl; s=2025022501; t=1776253316; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=P83TodEQ1FVgdCFY0VOplSYvZ/iOR9wp0uQTo7L3C3o=; b=r4SaOW4By946Aa8ByKJtM+NA+WCHXaTxag+gN+vSIUvLZc6+cA8ODtHAgtuVkW99mmmHes AcwdrgixmPZSpUAVIHrDgWTYUT/NZ714g0dQiNShsL3kdkf4L/fWQWFsLptbz5JCQmnQ9q 4w5n7kdUhvL7mPSCPNu6VBsW9buZLkP7YBXL0QTikY+t4oJzeoPzud5dbBHpX82bQbL1PK tBJOQ8LUNcIAyyqIfKg+l7BhNJJxRY6eOwC6dSmO6MRA5EyvB8UOuRDjdL7HLJ9zzFBjMP YRJoDUr0/IgOBoBvXH5T5q6+3aQWkpFD80OhcLi6BBXPvWBl6P36lxswW0p+iQ==
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3864.500.181\))
From: Sasha Romijn <sasha@reliablycoded.nl>
In-Reply-To: <177618127716.801880.8286911929609232904@dt-datatracker-647897bf7-7f2k5>
Date: Wed, 15 Apr 2026 13:41:45 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <DB7C76D5-F4DF-4797-8747-CE166A1A2844@reliablycoded.nl>
References: <177618127716.801880.8286911929609232904@dt-datatracker-647897bf7-7f2k5>
To: Roman Danyliw <rdd@cert.org>
Message-ID-Hash: Y2ZMFRAGRRCJTXCIAZ76N2I6TZUFOPGY
X-Message-ID-Hash: Y2ZMFRAGRRCJTXCIAZ76N2I6TZUFOPGY
X-MailFrom: sasha@reliablycoded.nl
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-grow.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: The IESG <iesg@ietf.org>, draft-ietf-grow-nrtm-v4@ietf.org, grow-chairs@ietf.org, grow@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [GROW] Re: Roman Danyliw's No Objection on draft-ietf-grow-nrtm-v4-09: (with COMMENT)
List-Id: Grow Working Group Mailing List <grow.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/grow/cEYB0-iv82syifYpToHcKccc4EI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/grow>
List-Help: <mailto:grow-request@ietf.org?subject=help>
List-Owner: <mailto:grow-owner@ietf.org>
List-Post: <mailto:grow@ietf.org>
List-Subscribe: <mailto:grow-join@ietf.org>
List-Unsubscribe: <mailto:grow-leave@ietf.org>

Hello Roman,

Thank you for reviewing our draft. Responses inline:

On 14 Apr 2026, at 17:41, Roman Danyliw via Datatracker <noreply@ietf.org> wrote
> ** Section 6.3
>   *  The hash attribute in snapshot and delta elements MUST be the
>      hexadecimal encoding of the SHA-256 hash [SHS] of the referenced
>      file.  The mirror client MUST verify this hash when the file is
>      retrieved and reject the file if the hash does not match.
> 
> This document is hard-coding SHA-256.  What is the proposed approach for
> algorithm agility?

The SHA-256 hash is intentionally fixed. The hash is security-relevant, as substitution of a different file that matches the hash in the signed Update Notification File would be problematic. However, to the best of my knowledge, SHA-256's resistance to this is not under any credible threat. Adding hash algorithm flexibility would introduce significant extra complexity (additional fields, negotiation, migration) that we don't feel is justified at this time.

> ** Section 6.4
>   *  Implementations MUST support ES256 for interoperability.  The
>      algorithm MUST NOT be Deprecated
> 
> Consider if it worth emphasizing (since RFC9864 needed to clarify) that “The
> selected algorithm MUST NOT be marked as Deprecated or _Prohibited_”? (i.e.,
> add text about “Prohibited”).

Yes, we adopted this. This section was also mentioned in other reviews, and we have made additional refinements in:
https://github.com/mxsasha/nrtmv4/commit/a4b1105e48247ce6a64bcbc2b8ecd570b0810e55

Sasha