Re: [http-auth] Benoit Claise's No Record on draft-ietf-httpauth-mutual-algo-06: (with COMMENT)
Yutaka OIWA <y.oiwa@aist.go.jp> Wed, 09 November 2016 07:27 UTC
Return-Path: <y.oiwa@aist.go.jp>
X-Original-To: http-auth@ietfa.amsl.com
Delivered-To: http-auth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 05B261295D0; Tue, 8 Nov 2016 23:27:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uZeBe-3LhEwz; Tue, 8 Nov 2016 23:27:41 -0800 (PST)
Received: from JPN01-TY1-obe.outbound.protection.outlook.com (mail-ty1jpn01on0070.outbound.protection.outlook.com [104.47.93.70]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 50F4F129430; Tue, 8 Nov 2016 23:27:41 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=N/rKdLLxCa0D2nrnR9wsfLNo+xoDTLzdLncTabHdmSM=; b=At8cYFQOdb4Fp12qwI6K6Fvn8rTJWYu50f/VM/MTy+eoYjAuOMH/DBKl9y3XElZdG/5FJrNBM7bz1iuWLG5biUe+39zAikYTfsflgFGUccKQALNgqmF2yioxDtxgcuUaaijTyY6MV/EIkClYrhi/+MvBw6y8Q7mm+C6pkignAW8=
Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp;
Received: from [150.29.149.113] (150.29.149.113) by OSXPR01MB0582.jpnprd01.prod.outlook.com (10.167.146.144) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.707.6; Wed, 9 Nov 2016 07:27:37 +0000
To: Benoit Claise <bclaise@cisco.com>, The IESG <iesg@ietf.org>
References: <147803743730.23848.16641230739986102968.idtracker@ietfa.amsl.com>
From: Yutaka OIWA <y.oiwa@aist.go.jp>
Message-ID: <b956a3ad-6893-a067-5c31-33c9f0beb4ef@aist.go.jp>
Date: Wed, 09 Nov 2016 16:27:35 +0900
User-Agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.4.0
MIME-Version: 1.0
In-Reply-To: <147803743730.23848.16641230739986102968.idtracker@ietfa.amsl.com>
Content-Type: text/plain; charset="iso-2022-jp"
Content-Transfer-Encoding: 7bit
X-Originating-IP: [150.29.149.113]
X-ClientProxiedBy: OS1PR01CA0015.jpnprd01.prod.outlook.com (10.161.225.153) To OSXPR01MB0582.jpnprd01.prod.outlook.com (10.167.146.144)
X-MS-Office365-Filtering-Correlation-Id: 989f60be-9b0a-4bcf-595c-08d40871e188
X-Microsoft-Exchange-Diagnostics: 1; OSXPR01MB0582; 2:T34aQOWFjR3ApjEsXzwkP5sbi+09peVaXU2mfBlx1qLT7mBrqkr34nv22uqvXx+kSTNUUjZQiPprqLFkE/se65qu86hkRZkpweq58EDP/+09XCwx7N9hy3Ksb2e3klXfi7/cxI1jvTMN3wXsT7mvGo3L6slp6lRXaUATvovtSYkrI1a6EcVnNiDqyp7j98KXkl+kHej6rU+k2iVPVekV6g==; 3:hb7uXtWbGTz+Q6RoGXE/OE5IF+stwMS/WfS/FoqYgPXT3JmKGKZ6ZMg9R1Lp4HBjxi93+dymK7WMyL6vEEdSAOwEKpf1zQZjOyzi9u0+7RwjfLvsJ2MYJojQiaDUae2861GY1bU9oifn6/0acpjHHw==; 25:dFuLbxs57qGpP2MYH1N+SK+bPZpF7MCRYKNYh8p22x8oAZNHrcLkHBkahkIcT5OgCv5cjAjb2vrszcVEbn6xtipLCIhFnWifc4CgA29XsG/x2Jwcvv3BKefZ7MR74CQok+a9E2jaO/YQLxQjv7kreNSJ4k5D+WC8P7WQYdTPimv4og1lDPNMCZCh0QeobsS6zeNZXsOL5uKsWBQHLFJEuwWIMFYxBVe0KOwwjHtLwfdBdEjCOhb9USyhf8YmQM4VzJVY47pH6Yi3RjtfoR+GzbuFEazp1nImsPTB6OlGlFOzMRmswxKAQpHdFDGgzpluGSLiBjv3SOwspUsEIcWKnuEt2ek4tgNAOFAmObcfWQvMqcL6XG1Q/ojIDiWSFbQZJdhzJQJlnRWoUz7wnWqFMC9khNEhqVZG1Y46nfMqTuM=
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:OSXPR01MB0582;
X-Microsoft-Exchange-Diagnostics: 1; OSXPR01MB0582; 31:8XOgl+x5987VBbc1la3VTGEsunTeCfkQBEGvIKvQMQxLlu/GCDLokDE4geeiJkvFQNjznGUUSQ+GvvEEZ8b+Num5jYmikObl6JndH8tXUi3Vn/XQzm0XY8LsLM7020sVexSIf7vHN2T/1StBxzLApuyW2N84Dmyc2l9WjfAnHRE7veMjlD6hdEAH0lB23PiYbrFyRm8VAE/fLE3j/4XbvXNH0mV6fPJDtzk+l0sQCTRfnBP5jNVj//v4cvbLDTpIz8m1WceEkCusUxlBmACfX6kPu84anxwg0zFO/bMiu7s=; 20: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
X-Microsoft-Antispam-PRVS: <OSXPR01MB058264E3BB03B6981B1FE2E8A0B90@OSXPR01MB0582.jpnprd01.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(120809045254105)(192374486261705);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(6040176)(2401047)(5005006)(8121501046)(3002001)(10201501046)(6055026); SRVR:OSXPR01MB0582; BCL:0; PCL:0; RULEID:; SRVR:OSXPR01MB0582;
X-Microsoft-Exchange-Diagnostics: 1; OSXPR01MB0582; 4:CUK7yha8RLrunH8RwVIC86qna6PkHjJyalrzX7N8tbkfT2BwyrKOIr9Pg2I9D4IuhXkidMSwZAvEvy/K9I4WdAC7Pf/v/ZDaklQn0bu/FXKdGnLe6WG7uRit4oZ+ckFEUP+cg11ziD6v1z6YxEUTErb3ZT5pmN9G1YSOaPwUGsSQHixO875ZA3X6iYWZNGOQy6xCkX1mdgJJFi/dXE7G3w+hfVoYHLWm+gvn34yxP8mvVcZVr4ff+O8gzmElaFcIn36SfR4lLtx0G/DM8FVLsiabkK6UPelU2jWsJuvnnwdQGBIlkmXwhV9j1Nhg9P5Xsj1nz+4rQrEWFCUNA3tH4E3lFZulISxggUVj5B8G0MWUEndylh9JnbYLD/KfbEgnrte6kM1mO4NscrryLKEgSjxNNAU6bvnbo3ygCBdddXriUwFAmIn6BT1kfZPykGldtIRbaZA6DoZbCbuoCaRN8iMlg4Nr0qLG3iscpMP7xxY=
X-Forefront-PRVS: 0121F24F22
X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10009020)(4630300001)(6009001)(6049001)(7916002)(189002)(199003)(24454002)(586003)(230700001)(5660300001)(92566002)(105586002)(8676002)(66066001)(83506001)(97736004)(47776003)(106356001)(77096005)(4001350100001)(120846001)(5001770100001)(65956001)(101416001)(64126003)(230783001)(345774005)(31686004)(68736007)(81166006)(50986999)(76176999)(31696002)(81156014)(74482002)(6116002)(50466002)(42882006)(36756003)(7736002)(42186005)(65806001)(2906002)(4326007)(65826007)(7846002)(23736002)(305945005)(189998001)(2950100002)(86362001)(33646002)(3846002)(54356999)(7099028)(3940600001); DIR:OUT; SFP:1101; SCL:1; SRVR:OSXPR01MB0582; H:[150.29.149.113]; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
Received-SPF: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts)
X-Microsoft-Exchange-Diagnostics: 1;OSXPR01MB0582;23:jj8ZcivLqQS1Ax0ldmnnFvGIhxS1eCwH86IDGOtqfq7KWSSqt8OfhV/6P5a5kXtyRalTQFkfFeHrsKKok32Vbah00+d4v5oj1Jw6KqLf/08gJMGv/rYTrIU6kbnJ3CfMsfD2TqgRF2l9oDjumHfSVjH1i9Zn47IEBoR6rrZNPtsryqsw9BqcB6R04LEdbV9qZPAWLLO49PsCE7c4ll49i9KNGGG9EOtetpsydtj39FFTt74bVNUPj9pQuQkhfr7VkSMyZd6VcArwUfpPilD3cJ/5kNidngNBOIkuH+tHS1phyoeOVvn2q9ZEzFg7yDuDOG4x9zq3EPwn7+cedHELyIddB3EA0L5PoDu4H10P0juGisXlNwimO4lLwmglf6BZjaGU9/pm88ERPFb//JBdaXWka1IfbCFA0c6rJqgpIo7fBfOuCcJVSjYZM7q/XFPJnaCzdxvt9SR3yKa0Fd910IncumTeiicLcZH1ZJHsjr7InWA1GQs5DUEiiijBk+XfDCVqNTT5iLUcy3icbMLHkwzkZRrRcHXqfVyaApnXY+nJCNBN9juOzJRAMlV/c6vRCgVKX226+Ftef9zyHj48OzQkcYsl20kWjYjW7Ui1D92f2GWSRSq1dEqn1fZz94X4hLlZdB7II7Xh6pEt7KVvF6t/o5fHO+NSeBrtVRSL6NFmca73/GNAwMYiuGW7IXzAhPNk8GZUkr2MbtyQplKt4xkVww3/SmpQ5Blq3nIKyH4TEsC94wmNgO9A9eMbBl2eJH9PmtkgxejR/WUgV4/Uuo0jA70fym4qLeQUaEQMGqw7OTnQubvhydnBLkR1AjcA0+jcVt5Jm9Ywzf737abDfL/mIdOCS+hSOJxNltjwmznLXsHeNt2IVVZTGoi8Ikb9LF5sQTf4uKfT6Q6Z3gZ98KJkdBU0wkQ3mYAPxfMUNgHP0JyJmOjS8EmrPp2hkRSD3bkQUuLtjvfROh1nE6WCIcRtW4iD1oreeYzojf3mdCxCIdlgU0QmS1q3O9u7+2qH0yxXRv61fIQ+gAV/ONqw2hwt/G40LukpuGH2gXtWYv48eTcd+QRXZbLf6t4jMQQ9Cnrd3f6jN+zTU+EPLjgfzcPxvXEfBaOxcNRLjhDAGVuLOfHgjzVhFqKbSGt4Y3/LOkWQSWU3Q6sKrQGg9uHKFxBxMGSfqfqj7ZkC2OJBsyxMf5UUbrzvysPj58n564g49m805n9GEEvFYS0FCm8yNP0Nu6d4hdeXquKk6ZAgKJEYWGWoQ8/Uv6kXJgUJKiSB7xDa5QcjbQlu8Slpk6Hi3QzC02vBvRjDX7tF0HXfpmHxUo4zw4SFhZwa41y9sSh8zJg/NujwlAjOCt0uEymWReVVU79x247vMxxisGotOcQ=
X-Microsoft-Exchange-Diagnostics: 1; OSXPR01MB0582; 6:wUCoBt46NfVrQ7dM8gelgQ9I4hRm6l9ukZ5CH4P7oZgPkO51oylBrrX9ESm6eztBGB4b5aL+tibY7ujjHSjDq0eYRJ0TS6grSt7RS98VmS/59As6j5LXWUy5wcc3018PniUJEUQxu2rh7GbKtmcM4xRkizTJtSoMllvLl1rZ2y03NWrzBq7O8OE+9liC7NE8rAQeztj+FTkUQwuGy4gecivGxk29Z+55dCtg/RvWZ39EvKIk4dJaDNg3vJr7e82dIpHSt1sE7/ZFu0ra5n7gb5XqKXnj37q7xOBPAsvYqQ0HT3jdRo6yRCDJcCZwVDRVzQZQ6kT2p0PFfrcBZ7Ms9g==; 5:0dt3744L8EXHylJ0UyW6OA7ACA+SJa/54g74174Gx2CL48aigPOt+Y26i2obf5dRUm52q775gbNj3HTjYgx7tpHVTLd4KDPK9LhOC1Ja4gN6d4SLy86ZKJfHQw2iXABeoEJ9eDboSentw+GdjaY5Sw==; 24:jc6deIVYiYOxPuMZluNn32nvRNRMiZnj/HvWSyUatRPvIx6hPpq9Lf5wCsFeZ6wYbKZ2adiwSp53ma51Q4tqEmN+E4L2ltEAzBCeSIju8SU=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; OSXPR01MB0582; 7:SsqhZP+wdo+60LEiD0Yq8l4b1MmN0XSUvPPibXYihfsMqlytWuuUFRML9E1FI16BguVfepxsWgMLO6GjVU5Hpba9d+gzWaTXkiQScyPjgwGJPVXMT0quOsiwZAglVU2LNgd4OnswR0/V9e+9a0cqb1ovgv0siK+Z/zZyp/zQV4ZJs9IjAm/seFukMWkDc/oNJ9WeU/PmfpodpJZHZpq/mTwJXEUpVw5cNg7KyVom51aU/dXhq/GvDysxWaDCqnB1xrxJmkRQ8BsmAccUNKjU6pP5DwK+/XB7NEuHQ05ttx8rgLeIxd3nZ5H4ihZ35HrohNDpNBhyu7FFnyXQYzfrvt0gHKYKXMT7IEeU7RwboLI=
X-OriginatorOrg: aist.go.jp
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 09 Nov 2016 07:27:37.2827 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: OSXPR01MB0582
Archived-At: <https://mailarchive.ietf.org/arch/msg/http-auth/unvv78Y2V7xOT_RY6YMqHth31dk>
Cc: http-auth@ietf.org, httpauth-chairs@ietf.org, draft-ietf-httpauth-mutual-algo@ietf.org, bill.wu@huawei.com
Subject: Re: [http-auth] Benoit Claise's No Record on draft-ietf-httpauth-mutual-algo-06: (with COMMENT)
X-BeenThere: http-auth@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: HTTP authentication methods <http-auth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/http-auth>, <mailto:http-auth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/http-auth/>
List-Post: <mailto:http-auth@ietf.org>
List-Help: <mailto:http-auth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/http-auth>, <mailto:http-auth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Nov 2016 07:27:44 -0000
Dear Benoit, thank you for forwarding the comments from Qin Wu. We reflect these comments to the next draft. On 11/02/16 06:57, Benoit Claise wrote: > Benoit Claise has entered the following ballot position for > draft-ietf-httpauth-mutual-algo-06: No Record > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-httpauth-mutual-algo/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Some editorial comments from our OPS-DIR reviewer, Qin Wu. > > This document defines four HTTP Mutual authentication algorithms which > use with Mutual authentication protocol for HTTP, two for Discrete > Logarithm settings, two for elliptic curve settings. In addition, the > security of this algorithm is well analyzed. > > There is no major issue. I believe this document is ready for > publication. Here are a few editorial comments I like to ask authors to > consider: > > Minor issues: > > 1. Section 1.1 said: > > “ > > When a natural > > number output is required, the notation INT(H(s)) is used. > > > > ” > > I will see INT(H(s)) as a formula to convert H(s) into natural number > > 2. Section 2, 1st paragraph: > > What is DL-based notations? Can you expand DL? Is it Description Logic or > something else? > > You can consider to add acronym and abbreviation section. > > 3.Section 2, 2nd paragraph and the figure that describe protocol exchange > for four value > > Where you define the first two messages in this draft? Are you referred > to the first messages that contain ID, K_c1 and K_s1 respectively in the > figure? I don’t see you specify message format or give a message name? I > don’t see you related text with the message shown in the figure? > > > > In addition, where the last two message defined in > [I-D.ietf-httpauth-mutual]? Can you provide section number? > > By reading [[I-D.ietf-httpauth-mutual], I see K_c1, K_s1, VK_c,VK_s has > already been defined in [[I-D.ietf-httpauth-mutual], I feel confused and > am wondering if this draft really defines the first two messages? Or four > message shown in the figure are all defined in the > [[I-D.ietf-httpauth-mutual]. > > > > 4.Section 3.1, 3rd paragraph said: > > “ > > The functions named octet(), OCTETS(), and INT() are those defined in > > the core specification [I-D.ietf-httpauth-mutual]. > > “ > > Is the core specification [I-D.ietf-httpauth-mutual]the core document > mentioned in section 3? If yes, please make them consistent. > > > > 5.Section 3.3, symbol “G” > > g: for "the generator" associated with the group. > > How the symobol “G” is different from symbol “g”in the section 3.2? Does > G stand for the generator associated with the defined group? What do you > mean “the defined point”? Would be great to clarify the difference > between G and g. > > > > 6.Section 5.2 said: > > “ > > In the EC setting, r has to be > > prime. Defining a variation of this algorithm using a different > > domain parameter SHOULD be attentive to these conditions. > > “ > > What is EC setting? Please expand EC? Elliptic Curve? Please make this > clear or add this abbreviation into abbreviation section. > > > > Nites: > > 1.Section 1,1st paragraph > > s/ use withMutual authentication protocol/ use with Mutual authentication > protocol > > 2.Section 5.2 > > s/ mixing values from from two/ mixing values from two > > > > -Qin > > -- 大岩 寛 Yutaka OIWA (国研)産業技術総合研究所 情報技術研究部門 サイバーフィジカルウェア研究グループ長 <y.oiwa@aist.go.jp>, <yutaka@oiwa.jp> OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D 3139 8677 9BD2 4405 46B5]
- [http-auth] Benoit Claise's No Record on draft-ie… Benoit Claise
- Re: [http-auth] Benoit Claise's No Record on draf… Yutaka OIWA