Re: [Hipsec] Need to close all draft-ietf-hip-dex-21 pending issues... before 2021-Jan-13...

"Eric Vyncke (evyncke)" <evyncke@cisco.com> Fri, 13 November 2020 21:48 UTC

Return-Path: <evyncke@cisco.com>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AE3803A0F2F; Fri, 13 Nov 2020 13:48:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.597
X-Spam-Level:
X-Spam-Status: No, score=-9.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=CHi+MloN; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=xgHOq84S
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IHs8zTP0beFO; Fri, 13 Nov 2020 13:48:07 -0800 (PST)
Received: from alln-iport-2.cisco.com (alln-iport-2.cisco.com [173.37.142.89]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C6FA93A0D4F; Fri, 13 Nov 2020 13:47:57 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=19069; q=dns/txt; s=iport; t=1605304077; x=1606513677; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=3EHEWGkdH42rHZ1uQaZ0OUF07oqHj9fpis8/SyTjTTM=; b=CHi+MloNNAsu8x00eoF0KAJXHv6b0ICSv5/t1oIuLdyVoBTigcSJLGLJ pkb2TSKmy3acvn98ehPJspGZqbc6XHAucArEjtjuL2jFFk2QppKaG21IN 5GFH47JCkR3nBy50P6eCtnSa3wPhElfriZHw/1c3N+nJftWJU5CfAaFZU Q=;
X-IPAS-Result: =?us-ascii?q?A0AGCAD5/a5ffYkNJK1GGQMeAQELEgyCBAuBIy8pKHtZL?= =?us-ascii?q?y6EPINJA41ZihaJfoRvgUKBEQNUCwEBAQ0BASMKAgQBAYRKAheCBQIlNwYOA?= =?us-ascii?q?gMBAQEDAgMBAQEBBQEBAQIBBgQUAQGGPAyFcgEBAQEDEhEEGQEBNwEPAgEID?= =?us-ascii?q?gMDAQIoAwICAh8RFAkIAgQBDQUigwQBgX5XAy4BDj+kMQKBPIhodn8zgwQBA?= =?us-ascii?q?QWBR0GDGg0LghADBoE4gnODdoZXG4FBP4ERJxyCTz6BBAGBFkICAgEBFYEMB?= =?us-ascii?q?QEMBgE4CQEMCRGCUDOCLJBSglgBPYcejA6QSlQKgm2JD4xzhRMDH6F5JJMui?= =?us-ascii?q?n2CbpAAgmgCBAIEBQIOAQEFgWoiFFVwcBVlAYIKATNQFwINWI1HDAwLFG4BA?= =?us-ascii?q?YJKhRSFRHQCNgIGAQkBAQMJfIsHgkUBAQ?=
IronPort-PHdr: =?us-ascii?q?9a23=3AfGVUDhGaranjJ3qhE3itIp1GYnJ96bzpIg4Y7I?= =?us-ascii?q?YmgLtSc6Oluo7vJ1Hb+e401w+bWYzR8LREl/aTuKfmQnEE/dCKt3VROJBPVh?= =?us-ascii?q?pQj8IQkkRgBcOeEkT0IbbsaDByB8VNUlJpvhTZeUhYEcrzfRve93u16zNBHh?= =?us-ascii?q?z1Lkx1OviwEYnUlNmzy6a5/JiAKwlNjSC2NLV1Khj+pA7Nt84Q1I1lLKtUqF?= =?us-ascii?q?PJr3JEdv4Qy3lvIAeYng334YG7+5sw/g=3D=3D?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-AV: E=Sophos;i="5.77,476,1596499200"; d="scan'208,217";a="610611419"
Received: from alln-core-4.cisco.com ([173.36.13.137]) by alln-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 13 Nov 2020 21:47:57 +0000
Received: from XCH-RCD-005.cisco.com (xch-rcd-005.cisco.com [173.37.102.15]) by alln-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 0ADLlvj5021965 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 13 Nov 2020 21:47:57 GMT
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by XCH-RCD-005.cisco.com (173.37.102.15) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 13 Nov 2020 15:47:56 -0600
Received: from xhs-rcd-001.cisco.com (173.37.227.246) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 13 Nov 2020 16:47:55 -0500
Received: from NAM04-DM6-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-001.cisco.com (173.37.227.246) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Fri, 13 Nov 2020 15:47:55 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fNrEUgoUNKb5axNMQibu8CjkQdM9HFyGbAntXgNBNmXQPQ/lSmOK9XhYjsSXTk678OgQpaOZ8/BKZQWVzDeyv60v+z6CpnUeEPzPnu8eAq/Yhzl0CqtimP5O9G1q7gnvv21C0VfvK+l5C9GMYH30oL4hXb+IP/UH2FREoSR6SylJcaZTMkKQr1c0PuW4RcJAfR97DHniWkf2+hb9uk74yfOCS9Gv6ZBA2XMxQ0jMJYgqWmz6GKrev/LIyptkoxhWIlDfqtjnsTcqqOdB9iLm20FLs1ryPdtQxs0d4SPAje8rDrYJMtaMdITwf6GoQbVbW+p02+THqHY/kW/XXOL88w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=3EHEWGkdH42rHZ1uQaZ0OUF07oqHj9fpis8/SyTjTTM=; b=XXY6f4WMuHVl47HICh/Xd2xHY75oBX6XglBISE5hULgdvWMBUTmtpE9bOz6sBfWxIyGBUwoz7LEiPTpN+Sh6aKULMMzEj8yXbcuxJi0WaYCT/JSDGQ9GB2yR7fjs//VO43RPbEU7+3z+6jz0Nu02O5A2gg9vPEVD+yhz02PV0S+zwMBgxtvnaIDfRsMzYmRTjO/KffS9MsumSpR+zb9qinO6d1uiD6c67JHd0Urr6rjzivrpT/KdT8Ot+S1iGx2cDn7U2Q35/kRuftc3vYUNXPnLFCW8Tx9uKRb5Y6RF1j6LW/cBHUsWbq5RpbNWwRR2Th1dBi2pbyBtHn46Ds2BWw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=3EHEWGkdH42rHZ1uQaZ0OUF07oqHj9fpis8/SyTjTTM=; b=xgHOq84SMIM0QQhgc3OInDV19+6NUZ7rF9HYypwp0jxO8zLuB4NHB0ykxr8HfX8h0xAKIomhkJs+TV3mHdrwSE6f1z/eNLgQzWzc4im2i2alr0vMKZB2hb28Y3O9mBtR/hd90YXG5sVJCl1L//COK7vcjFvcjnGGyCOGqom+rqc=
Received: from PH0PR11MB4966.namprd11.prod.outlook.com (2603:10b6:510:42::21) by PH0PR11MB4792.namprd11.prod.outlook.com (2603:10b6:510:32::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3499.28; Fri, 13 Nov 2020 21:47:54 +0000
Received: from PH0PR11MB4966.namprd11.prod.outlook.com ([fe80::453b:b2f5:ec29:410d]) by PH0PR11MB4966.namprd11.prod.outlook.com ([fe80::453b:b2f5:ec29:410d%7]) with mapi id 15.20.3499.032; Fri, 13 Nov 2020 21:47:54 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Robert Moskowitz <rgm@labs.htt-consult.com>, "hipsec@ietf.org" <hipsec@ietf.org>, "draft-ietf-hip-dex@ietf.org" <draft-ietf-hip-dex@ietf.org>, Miika Komu <miika.komu@ericsson.com>
CC: Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>, Erik Kline <ek.ietf@gmail.com>, Eric Rescorla <ekr@rtfm.com>, "rene.hummen@belden.com" <rene.hummen@belden.com>, Terry Manderson <terry.manderson@icann.org>, Benjamin Kaduk <kaduk@mit.edu>, Roman Danyliw <rdd@cert.org>
Thread-Topic: Need to close all draft-ietf-hip-dex-21 pending issues... before 2021-Jan-13...
Thread-Index: AQHWucneb4KzG5lp9E+5y4wGtZdrFKnGbbaAgAA8wIA=
Date: Fri, 13 Nov 2020 21:47:54 +0000
Message-ID: <ADE665B0-0F02-4BD6-8BCE-E91FDD1CF8E9@cisco.com>
References: <6A729A0C-70B0-458F-BA0E-62EB2108D412@cisco.com> <6bd706b3-7195-5dc5-21b4-bd12f14c5271@labs.htt-consult.com>
In-Reply-To: <6bd706b3-7195-5dc5-21b4-bd12f14c5271@labs.htt-consult.com>
Accept-Language: fr-BE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.43.20110804
authentication-results: labs.htt-consult.com; dkim=none (message not signed) header.d=none;labs.htt-consult.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2001:420:c0c1:36:b8ca:ff35:fbdc:e900]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0469078e-a9ac-4736-419f-08d8881dc6da
x-ms-traffictypediagnostic: PH0PR11MB4792:
x-microsoft-antispam-prvs: <PH0PR11MB47923AC9F07B9A2EDA99309EA9E60@PH0PR11MB4792.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: HiLZc9XNCeqjQ5d/lM9eyRwgx6DUbaQBfe9Rj5QzAE19o/JrlJf+jX973Jfy3IGv0tToDEzuXErsd/svFzpAv7ybrusPQxFN8CJK+RDzQw06MPASwf9uYM/epvinosKf5pnFOEJ717d8KVYN9X6wXiKZemu/RnpYLfuMrmbcjDiJYGqkixTMF8EM4Orw85DNXac8VrZtfNl4w4JQgNYk4pI8DUT4uEXTGAlzhn0whnOL/E3GlAHcE7bzklI44kxgBow1wOuQb7DWBU10KhTl3l3UiH/re6zVA/aGNaeOW7gbp1sw7uyJwx39qKWzGMgGM1lpdvL50o7MIHObjs59TlC63LijsA9di8jZ3guxzmPbZP6ZFSZSi9R90/UdOts/keqFATsfApX3SBpXIwPmvQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH0PR11MB4966.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(396003)(376002)(346002)(39860400002)(366004)(136003)(8936002)(83380400001)(5660300002)(2616005)(8676002)(66946007)(91956017)(36756003)(76116006)(186003)(53546011)(66556008)(66446008)(166002)(66476007)(64756008)(6506007)(4326008)(86362001)(6486002)(71200400001)(6512007)(7416002)(16799955002)(110136005)(478600001)(2906002)(966005)(54906003)(316002)(33656002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: oSpPA6qEI1NWYFQ2tVG5fEolLRt2C+n44jyz7vPEbo74KnduJ6eOK+G/JdbtjuIwwvEPD/79NA7wrdXNKvV8SCGzlAiqACz5CX/f8tKEA3HeA+DS1hDiBAVPesojgBxSgUUwW8MTE0uEweRt3x5bQa2FKVd00kC+Rf3pBoGnmbxp6kFlvLBVwK0a6O4O4xBqtPgk7EV5Qx8jrMgF4omvrYC6Zy+dfqNdk8LZzvljeEyUARdHAeh9PwdJzr37A5E2CEpJ2OMZAfVP7UfNPCm5bMnlnZc9LGdBdszwrleAxkdHZw80cOvRO7hyQekkUGsLyllRuSxqrxpQPFs2O6cbICzK2Rz1yI8qmNFPsBYB/uHkMfw3+eDVezaRa0JfdBu+UvdAZgigsMC+YAlx3nhkjv0QglAOFh8RCuxf4WZzPLTk5Paq03H9/qm6WbgNnZQ6Z1gLqJZzVcZ4HEJTRdDwoUqb/SjAE6WC+0301Zz6M7DMEp3KNFXkdTb3AdioKW9nPrLKvXeTr6R3gRd8ta3lr01T3SyzWZtX/XYwu2eVd8SheDEfkl/Q630vwFNeIiUbM/elhwhHBSiHz+oX2gDAE73Kigj0yu8/5ASCcVS936E8X74JDHpPd5wgBeGdq9R/y+2+5fEz1GIx2D/kshWEdCb+txW2XyFzQv0pqlL6va+RDhOapqpLqe7skxAwP8L5z2wKm4agKkPnWjBMvbe7Jw==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_ADE665B00F024BD68BCEE91FDD1CF8E9ciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH0PR11MB4966.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0469078e-a9ac-4736-419f-08d8881dc6da
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Nov 2020 21:47:54.3521 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: jMec3sLbw+VS3eaYcXYz+ArP5ConqH4ONrdNjJWnR+Z4q9p5x+D+OMBnIhiMRxW6jsDycvnXjI56iUoE7fOB5A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR11MB4792
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.15, xch-rcd-005.cisco.com
X-Outbound-Node: alln-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/hipsec/HcXfiPFu3XmBENG637EgnYN_--8>
X-Mailman-Approved-At: Sun, 15 Nov 2020 00:48:23 -0800
Subject: Re: [Hipsec] Need to close all draft-ietf-hip-dex-21 pending issues... before 2021-Jan-13...
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/hipsec/>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Nov 2020 21:48:16 -0000

Bob,

It is really up to the authors (representing the will of the HIP WG) to get a revised I-D addressing the SEC Ads’ concerns. If they are satisfied with open questions put in an appendix (e.g., “for future work”) and they clear their blocking DISCUSS points, then I will more than happy to give the final go to HIP DEX.

Having email/voice exchanges with DISCUSS owners (and Ekr) can probably help as well.

Did you consider changing the intended status to ‘experimental’ ?

Obviously, the earlier, the better

Regards

-éric

From: Robert Moskowitz <rgm@labs.htt-consult.com>
Date: Friday, 13 November 2020 at 20:10
To: Eric Vyncke <evyncke@cisco.com>om>, "hipsec@ietf.org" <hipsec@ietf.org>rg>, "draft-ietf-hip-dex@ietf.org" <draft-ietf-hip-dex@ietf.org>rg>, Miika Komu <miika.komu@ericsson.com>
Cc: Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>om>, Erik Kline <ek.ietf@gmail.com>om>, Eric Rescorla <ekr@rtfm.com>om>, "rene.hummen@belden.com" <rene.hummen@belden.com>om>, Terry Manderson <terry.manderson@icann.org>rg>, Benjamin Kaduk <kaduk@mit.edu>du>, Roman Danyliw <rdd@cert.org>
Subject: Re: Need to close all draft-ietf-hip-dex-21 pending issues... before 2021-Jan-13...

I have reached the point on going through all the old notes where any attempts at changes only seem cosmetic.  I spend a couple hours a week on it, trying something else.  I need to take a different approach, perhaps.

I just completed another round of going through the various emails.

What I am thinking about is put together a single note on what I perceive as outstanding issues, and put them in an Appendix.  I would push this out, still this month and see how things go from there.

I have really tried to come to some accommodation on the issues raised.

Events are somewhat catching up.  NIST LWC selection process may well result in renewing looks at technologies like HIP-DEX for 8-bit processors (see the latest LWC presentations including the build rate for 8-bit processors).

I welcome your response.

Bob
On 11/13/20 9:32 AM, Eric Vyncke (evyncke) wrote:
Dear HIP, dear authors,

This document was requested for publication [1] in February 2018 (2.5 years ago), then its IESG evaluation has been deferred, then I took over this document from Terry Manderson in March 2019, then it went again through IESG evaluation in July 2020 and there are still DISCUSS points to be addressed even after a couple of revised I-D...

Difficult not to observe that this document does not progress very fast.

Moreover, this document is a normative reference for rfc4423-bis waiting in the RFC editor queue since March 2019... So, also blocking the HIP-NAT document [2].

After discussion with the HIP chair, Gonzalo in cc, we have taken the following decision: if a revised I-D addressing remaining DISCUSS points + Ekr’s ones is not uploaded within 2 months (13th of January 2021), then I will request the HIP WG to accept the complete removal of section A.3.3 of the rfc4423-bis document (1 page about HIP-DEX in the appendix) + the reference to the HIP-DEX document [3]. This will allow the immediate publication of the rfc4423-bis and HIP-NAT documents.

The HIP DEX authors may also select to change the intended status of the document to ‘experimental’ (if the HIP WG agrees) as this may reduce the security requirements by the SEC AD and Ekr.

Gonzalo and I are still hoping to get a revised HIP-DEX shortly,

Regards

-éric

[1] https://datatracker.ietf.org/doc/draft-ietf-hip-dex/history/
[2] https://www.rfc-editor.org/cluster_info.php?cid=C386
[3] and possibly I will set the state of HIP-DEX as ‘dead’ on the datatracker


--
Robert Moskowitz
Owner
HTT Consulting
C:      248-219-2059
F:      248-968-2824
E:      rgm@labs.htt-consult.com<mailto:rgm@labs.htt-consult.com>

There's no limit to what can be accomplished if it doesn't matter who gets the credit
-->