IETF Logo Mail Archive

Re: [I2nsf] need more review and support to close the WGLC for draft-ietf-i2nsf-consumer-facing-interface-dm

t petch <ietfa@btconnect.com> Thu, 11 August 2022 11:31 UTC

Return-Path: <ietfa@btconnect.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CD789C15A728 for <i2nsf@ietfa.amsl.com>; Thu, 11 Aug 2022 04:31:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.909
X-Spam-Level:
X-Spam-Status: No, score=-6.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tDJZBh3TtcE5 for <i2nsf@ietfa.amsl.com>; Thu, 11 Aug 2022 04:31:36 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2127.outbound.protection.outlook.com [40.107.21.127]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C8CE7C14F74D for <i2nsf@ietf.org>; Thu, 11 Aug 2022 04:31:35 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=oTBfHM7o1hPjwznTJZiACuiT4iohB9umSlWqux9ibTEbuGoKr2KFAsO7AHeAs/feNp4+f1o+mQVabeZgBuWGZolVbom9WN5R385qUJ2FDWrhKOX8b6tGut8yqNF5/2jzeWZjK1E79TWctta48HDaKqkfhDpys3ICy72fpJghmgku9DTe0eTxk3rzKDGxbh2dqBITr67N6jbTMWzdWn7NILxyQTk07NsCN0QkUcAPGhFVLNajJVcxRPy5vq7JhcZyukboj/7m3obPvBvK2dv+M30CWu/+yEmVEzxitEFYN175DL1mT7uCgc7ymHX1ZTlUNEcJnaYJ9uAh5avLebE7Dw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=eJeMCrc/2U5KD/vkLIC920bMuiRCum+FcND1iI9RAjI=; b=DjJ3QuLP7/oQqHrzytDXXikPvsmhtXDtbXGdIuyxiGQKip58Mfx77D4litn+V+tnVn3iDOf2Qnm4fVfYtge7R+J+8HpptlbLqleMieqjxHczOz+Mr3PKQSm6fYCgoSLdtuDDzzfqVLaSdjeNy8MdrjD5LGvLZJ9b49d3SI+IAzYseb7KNPyU/Kq52BQ3TLQ19vDqGWvwbF9Ddv14n1/eAixbNGS1UdUexQj/Sj1HpGqVSWJm0qhtbfEK8V9WEcixdXvSqvNaB9SGiddm6t2vas7uVd5S5yR1+p+CsCUf9T20Xd/zReJYkqzEqJqsupaUkunE6AXxk+KG7KZauDn/Rw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eJeMCrc/2U5KD/vkLIC920bMuiRCum+FcND1iI9RAjI=; b=nhEwKHA+sOcAzsL4kuTjWXxhEZsgBITgGmZC6nBd6s7dIdm5LHIODHIWsVeZLVQUqh8Di1MjEOZJdPnKiJzobgOOTHAKoNfm+xQ/a8OA/B5Dwli0aOLrPmyUtUva9CEcrmWKUcJrjxB7DX+969ws067c7KvREuYnN4ZY/iFuVpg=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=btconnect.com;
Received: from DB7PR07MB5546.eurprd07.prod.outlook.com (2603:10a6:10:73::23) by PA4PR07MB8766.eurprd07.prod.outlook.com (2603:10a6:102:264::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5525.9; Thu, 11 Aug 2022 11:31:29 +0000
Received: from DB7PR07MB5546.eurprd07.prod.outlook.com ([fe80::b9dd:151b:ec6c:bc24]) by DB7PR07MB5546.eurprd07.prod.outlook.com ([fe80::b9dd:151b:ec6c:bc24%3]) with mapi id 15.20.5525.010; Thu, 11 Aug 2022 11:31:29 +0000
To: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
References: <CO1PR13MB49200B723C19BDC266EA98EC85869@CO1PR13MB4920.namprd13.prod.outlook.com> <BYAPR08MB487221C91BF204B34F337304B3869@BYAPR08MB4872.namprd08.prod.outlook.com> <CO1PR13MB4920C96E21FDD1536B27A0A685869@CO1PR13MB4920.namprd13.prod.outlook.com> <62EAA528.1070405@btconnect.com> <CAPK2Dezc3UVfDn1pHAeN449yJjym=M0JYh1TTG61JtXDFBYU=A@mail.gmail.com>
Cc: Roman Danyliw <rdd@cert.org>, Linda Dunbar <linda.dunbar@futurewei.com>, Susan Hares <shares@ndzh.com>, "i2nsf@ietf.org" <i2nsf@ietf.org>, skku-iotlab-members <skku-iotlab-members@googlegroups.com>
From: t petch <ietfa@btconnect.com>
Message-ID: <62F4E8AF.5000008@btconnect.com>
Date: Thu, 11 Aug 2022 12:31:59 +0100
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:38.0) Gecko/20100101 Thunderbird/38.5.0
In-Reply-To: <CAPK2Dezc3UVfDn1pHAeN449yJjym=M0JYh1TTG61JtXDFBYU=A@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-ClientProxiedBy: LO4P123CA0441.GBRP123.PROD.OUTLOOK.COM (2603:10a6:600:1a9::14) To DB7PR07MB5546.eurprd07.prod.outlook.com (2603:10a6:10:73::23)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 8d8e241d-e1b6-4e05-0bca-08da7b8d086e
X-MS-TrafficTypeDiagnostic: PA4PR07MB8766:EE_
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR07MB5546.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(366004)(39860400002)(346002)(376002)(396003)(136003)(53546011)(52116002)(87266011)(6916009)(54906003)(5660300002)(316002)(82960400001)(26005)(478600001)(966005)(6512007)(6486002)(83380400001)(6666004)(186003)(41300700001)(2616005)(36756003)(6506007)(33656002)(2906002)(8676002)(66946007)(4326008)(66556008)(66476007)(86362001)(8936002)(38350700002)(38100700002); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8d8e241d-e1b6-4e05-0bca-08da7b8d086e
X-MS-Exchange-CrossTenant-AuthSource: DB7PR07MB5546.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 11 Aug 2022 11:31:28.9943 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: snj73qS4Xv2iJ60rvPqthq/kxsj4+dKlxjj583w4NwmKp1/LvNiTFOCp0ONBw1QvM/UpmH64sd2TOZ5GjsHoUw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PA4PR07MB8766
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/BeUlCmy_GAo9obGN_kGt0uaz1YE>
Subject: Re: [I2nsf] need more review and support to close the WGLC for draft-ietf-i2nsf-consumer-facing-interface-dm
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Aug 2022 11:31:39 -0000

On 08/08/2022 11:42, Mr. Jaehoon Paul Jeong wrote:
> Hi Tom,
> Here is the revision of CFI with your comments:
> https://datatracker.ietf.org/doc/html/draft-ietf-i2nsf-consumer-facing-interface-dm-23
>
> Patrick and I have reflected your comments on the revision, and
> I attach the revision letter.

Yes, I have reviewed it and have no more comments

Tom Petch
>
> Thanks.
>
> Best Regards,
> Paul
>
> On Thu, Aug 4, 2022 at 1:40 AM t petch <ietfa@btconnect.com> wrote:
>
>> On 12/07/2022 18:44, Linda Dunbar wrote:
>>> Sue,
>>>
>>> Thank you very much for the offer.
>>>
>>> The unsolved comments are from Tom Petch: Re: [I2nsf] WGLC for
>> draft-ietf-i2nsf-consumer-facing-interface-dm-16<
>> https://mailarchive.ietf.org/arch/msg/i2nsf/d_Wk5fH35Jo_cdz4D0QZN5VNhFA/>
>>> There are several responses to address Tom Petch's comments. Just Tom
>> hasn't sent feedback if he is satisfied with the response.
>>
>> Weelll, probably as satisfied as I am going to get.
>>
>> I have reviewed cfi (customer facing interface-dm)-22 and compared some
>> of it with capability-32.  I have not - but hope to - compare against
>> nsf-facing; nor have I re-read all the posts to the list but will.
>>
>> I do think that cfi is now in much better shape.  I do see capability as
>> the key, the base, set of definitions against which the others should be
>> judged.  capability says whether or not the box can do it, the others
>> tell you how to do it.
>>
>> With that in mind, I am unconvinced about the response to my comments
>> about icmp.  The treatment is different.  capability deals in
>> icmpv4/icmpv6, type/code; cfi deals in echo/echo-reply which is the sort
>> of user interface I am used to and would expect a security practitioner
>> to be familiar with so some words about the mapping, referring to the
>> IANA website for all the detail, could help users.  I would put that in
>> the body of the text not the YANG module
>>
>> Likewise, cfi has primary and secondary action which makes a lot of
>> sense but what is the capability that makes that possible? capability
>> has ingress-action, egress-action, default-action which seems a
>> different axis to me.  Again, some words about how the two relate could
>> help, in the body of the document.
>>
>> Again continent is present in cfi but not in capability.  Can a user
>> tell if the capability is present?  I expect not; as ever, worth a note.
>>
>> signature-set and signature-type sound the same but seem different.
>> This is an aspect of security that I am not familiar with, at least not
>> in those terms.
>>
>> Finally, there are some minor editorial glitches.
>>
>> RFC8075 I see in the YANG module; it needs adding to the I-D References.
>>
>> page 17 text version last sentence I cannot parse; perhaps a missing
>> preposition
>>
>> the two rate-limit objects could do with units - I note that they are
>> present in the examples
>>
>> page 55 text version [STIX] looks like an XML anchor but YANG modules
>> must be plain text.
>>
>> Tom Petch
>>
>>>
>>> Linda
>>>
>>> From: Susan Hares <shares@ndzh.com>
>>> Sent: Tuesday, July 12, 2022 12:21 PM

v2.23.0 | Report a Bug | By Email