Re: [Hipsec] I-D Action: draft-ietf-hip-rfc6253-bis-04.txt

Miika Komu <mkomu@cs.hut.fi> Mon, 12 October 2015 09:42 UTC

Return-Path: <mkomu@cs.hut.fi>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 11A7D1A6F27 for <hipsec@ietfa.amsl.com>; Mon, 12 Oct 2015 02:42:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GcAVU7nXgbU3 for <hipsec@ietfa.amsl.com>; Mon, 12 Oct 2015 02:42:09 -0700 (PDT)
Received: from mail.cs.hut.fi (mail.cs.hut.fi [130.233.192.7]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0063B1AC39E for <hipsec@ietf.org>; Mon, 12 Oct 2015 02:42:08 -0700 (PDT)
Received: from [127.0.0.1] (mannerheim.cs.hut.fi [130.233.193.8]) by mail.cs.hut.fi (Postfix) with ESMTP id 4448923CAF for <hipsec@ietf.org>; Mon, 12 Oct 2015 12:42:03 +0300 (EEST)
To: hipsec@ietf.org
References: <20150922105852.742.47701.idtracker@ietfa.amsl.com> <560E5953.90002@ericsson.com> <561B7657.4020004@helsinki.fi>
From: Miika Komu <mkomu@cs.hut.fi>
Message-ID: <561B806B.1080109@cs.hut.fi>
Date: Mon, 12 Oct 2015 12:42:03 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0
MIME-Version: 1.0
In-Reply-To: <561B7657.4020004@helsinki.fi>
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/hipsec/Ro4kl0syx-SmeKElPsl-eESrYU8>
Subject: Re: [Hipsec] I-D Action: draft-ietf-hip-rfc6253-bis-04.txt
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/hipsec/>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Oct 2015 09:42:12 -0000

Hi,

I don't have a strong opinion, but I guess SPKI should be dropped since 
the HIP CERT work is going proceed to the standards track.

On 10/12/2015 11:59 AM, Samu Varjonen wrote:
> Hi Gonzalo & all,
>
> all but one of the nits are easily fixed. The one downref to RFC2693 is
> the only harder one as I do not think it will ever proceed to anything
> more than experimental. The work on RFC 2693 stopped in 1999. Over 114
> papers have been written about it since. Even few this year but all
> point to that experimental RFC. Moreover, it seems (in my opinion) that
> currently there is little or no interest in continuing SPKI work nor
> there is any interest in the industry to implement SPKI as it basically
> provides the functionality of X509v3 with different syntax. One option
> would be to remove the examples and mentions about SPKI in the
> RFC6253bis. What do you guys think?
>
> BR,
> Samu Varjonen
>
> On 02/10/15 13:15, Gonzalo Camarillo wrote:
>> Hi Samu,
>>
>> thanks for revising the draft. There are still a few things that need to
>> be fixed before I can request its publication. From the output of the
>> nits tool:
>>
>> https://www.ietf.org/tools/idnits?url=https://www.ietf.org/archive/id/draft-ietf-hip-rfc6253-bis-04.txt
>>
>>
>>>    -- The abstract seems to indicate that this document obsoletes
>>> RFC6253, but
>>>       the header doesn't have an 'Obsoletes:' line to match this.
>> You need to add an Obsoletes: header to the header part at the beginning
>> of the draft. Additionally, you also need to add an Updates header as
>> follows:
>>
>>    Obsoletes: 6253
>>    Updates: 7401
>>
>> Note that the original RFC updated RFC 5201 and, thus, had an Updates
>> header:
>>
>> https://tools.ietf.org/html/rfc6253
>>
>>>    == The document seems to contain a disclaimer for pre-RFC5378
>>> work, but was
>>>       first submitted on or after 10 November 2008.  The disclaimer
>>> is usually
>>>       necessary only for documents that revise or obsolete older
>>> RFCs, and that
>>>       take significant amounts of text from those RFCs.  If you can
>>> contact all
>>>       authors of the source material and they are willing to grant
>>> the BCP78
>>>       rights to the IETF Trust, you can and should remove the
>>> disclaimer.
>>>       Otherwise, the disclaimer is needed and you can ignore this
>>> comment.
>>>       (See the Legal Provisions document at
>>>       http://trustee.ietf.org/license-info for more information.)
>> You are the same authors as in the original RFC. Do you both agree to
>> remove the disclaimer?
>>
>>>   == Unused Reference: 'RFC4843' is defined on line 349, but no explicit
>>>       reference was found in the text
>> Does this reference need to be removed or used somewhere in the text?
>>
>>>    ** Downref: Normative reference to an Experimental RFC: RFC 2693
>> RFC 6232bis is intended to be a Proposed Standard. Can we reference a
>> Standards Track RFC instead of this one? Otherwise, we will need to talk
>> with our AD so make sure it is OK to normatively reference an
>> Experimental RFC.
>>
>>>    ** Obsolete normative reference: RFC 4843 (Obsoleted by RFC 7343)
>>>    ** Obsolete normative reference: RFC 5996 (Obsoleted by RFC 7296)
>> Could you please update the two references above?
>>
>>>    ** Downref: Normative reference to an Experimental RFC: RFC 6253
>> This downref is obviously OK... but what about making it an
>> Informational reference instead?
>>
>> Could you please revise the draft addressing all the comments above?
>>
>> Thanks,
>>
>> Gonzalo
>>
>>
>> On 22/09/2015 1:58 PM, internet-drafts@ietf.org wrote:
>>> A New Internet-Draft is available from the on-line Internet-Drafts
>>> directories.
>>>   This draft is a work item of the Host Identity Protocol Working
>>> Group of the IETF.
>>>
>>>          Title           : Host Identity Protocol Certificates
>>>          Authors         : Tobias Heer
>>>                            Samu Varjonen
>>>     Filename        : draft-ietf-hip-rfc6253-bis-04.txt
>>>     Pages           : 11
>>>     Date            : 2015-09-22
>>>
>>> Abstract:
>>>     The Certificate (CERT) parameter is a container for digital
>>>     certificates.  It is used for carrying these certificates in Host
>>>     Identity Protocol (HIP) control packets.  This document specifies
>>> the
>>>     certificate parameter and the error signaling in case of a failed
>>>     verification.  Additionally, this document specifies the
>>>     representations of Host Identity Tags in X.509 version 3 (v3) and
>>>     Simple Public Key Infrastructure (SPKI) certificates.
>>>
>>>     The concrete use cases of certificates, including how certificates
>>>     are obtained, requested, and which actions are taken upon successful
>>>     or failed verification, are specific to the scenario in which the
>>>     certificates are used.  Hence, the definition of these scenario-
>>>     specific aspects is left to the documents that use the CERT
>>>     parameter.
>>>
>>>     This document extends RFC7401 and obsoletes RFC6253.
>>>
>>>
>>> The IETF datatracker status page for this draft is:
>>> https://datatracker.ietf.org/doc/draft-ietf-hip-rfc6253-bis/
>>>
>>> There's also a htmlized version available at:
>>> https://tools.ietf.org/html/draft-ietf-hip-rfc6253-bis-04
>>>
>>> A diff from the previous version is available at:
>>> https://www.ietf.org/rfcdiff?url2=draft-ietf-hip-rfc6253-bis-04
>>>
>>>
>>> Please note that it may take a couple of minutes from the time of
>>> submission
>>> until the htmlized version and diff are available at tools.ietf.org.
>>>
>>> Internet-Drafts are also available by anonymous FTP at:
>>> ftp://ftp.ietf.org/internet-drafts/
>>>
>>> _______________________________________________
>>> Hipsec mailing list
>>> Hipsec@ietf.org
>>> https://www.ietf.org/mailman/listinfo/hipsec
>>>
>
> _______________________________________________
> Hipsec mailing list
> Hipsec@ietf.org
> https://www.ietf.org/mailman/listinfo/hipsec