Re: [I2nsf] Last Call: <draft-ietf-i2nsf-capability-data-model-08.txt> (I2NSF Capability YANG Data Model) to Proposed Standard
tom petch <daedulus@btconnect.com> Thu, 27 August 2020 09:29 UTC
Return-Path: <daedulus@btconnect.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B6EAB3A0853; Thu, 27 Aug 2020 02:29:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.6
X-Spam-Level:
X-Spam-Status: No, score=-0.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_ILLEGAL_IP=1.3, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7L2YEWvg51c0; Thu, 27 Aug 2020 02:29:40 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2105.outbound.protection.outlook.com [40.107.22.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 935CC3A084C; Thu, 27 Aug 2020 02:29:36 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QuI2WbG0f1OWR4Nm3MIy2dBQaiuSylKG8qGEpoGXVcPWpfptdXBZb/WPlXqwngYwDhtveCosj08hTCGIhlK0qWTIMtHHycFc9fT5tFc0iHhKroiH+puGjERsrFU94JsHTfbMsLAJZk9aBYINHD4rPC8EdrNftZhV/MstCf8A1EIwiJVr+N62rkEu3MJ70xnSBwt+8K0XHrRqEwH+pjaAUlzYB6wnbCR3aS7osXv9cXp7mO046lO7AI4ayccT8kxLHo413eKZxSgaOJ8q3iyAYIKhHFuz6XfKIfQjGQVPSNlO1IG1vgG8GGySblfHrg/WViDGGH2arrBjrwtdq1cTXg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lLPTDC6ejrf66+bc0jCMV72pOL+wkfXTujTK5rbLsmk=; b=bO8GvVpihSCBqYsAZyVPy2KyBErw4LBLnhXC4o88jGr+zkbDk0LfrVYstMvZYogtM74jhfGZxGJEjFHc/0LhqWXd1HMl9QlK7l1qfFrKM5R1OHMyi/1jmaZJcwwsTbSojYSgZFeCmAeieK7upuFVmqgaCHuFACYLm6oJUHvtEMUXHDEgut9eqwDJvA/NXiY7OK3r0zZBHMj2bTbcNVvS6V5ciIgZz+zKMpfZv1La6Fi18r/JCYVBkbTh45ak8trKzRevW+duHfd1ivQhJZ0aiq6lnEI9XyDR73ydtG3r/8BHcbqygYXKJllrIfSE/0KxLacN1SEWzbEeLLT1cFsEwg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lLPTDC6ejrf66+bc0jCMV72pOL+wkfXTujTK5rbLsmk=; b=c0GbhP4J71NcfsXVed+BSPLuQVP8FvE5PHVl0vfmUoMSj2mn1E83a55ygIieM26aj6UnVkIb+MFwtZ+3mz0rRTUriYNiATdqLy3LXiakvquV1JpqdT4Gle5cnJbFLPvlva6HSylEiA//xxturFJtICIIdPj2twdv8JBj5z3HA/k=
Authentication-Results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=btconnect.com;
Received: from VI1PR07MB6704.eurprd07.prod.outlook.com (2603:10a6:800:18b::8) by VI1PR07MB4144.eurprd07.prod.outlook.com (2603:10a6:803:34::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3348.5; Thu, 27 Aug 2020 09:29:28 +0000
Received: from VI1PR07MB6704.eurprd07.prod.outlook.com ([fe80::6165:9c1c:e5b1:15db]) by VI1PR07MB6704.eurprd07.prod.outlook.com ([fe80::6165:9c1c:e5b1:15db%4]) with mapi id 15.20.3348.005; Thu, 27 Aug 2020 09:29:28 +0000
From: tom petch <daedulus@btconnect.com>
To: Last Call <last-call@ietf.org>
Cc: rdd@cert.org, i2nsf@ietf.org, draft-ietf-i2nsf-capability-data-model@ietf.org, i2nsf-chairs@ietf.org
Message-ID: <5F477CF4.2010106@btconnect.com>
Date: Thu, 27 Aug 2020 10:29:24 +0100
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:38.0) Gecko/20100101 Thunderbird/38.5.0
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
X-ClientProxiedBy: LO2P265CA0264.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:8a::36) To VI1PR07MB6704.eurprd07.prod.outlook.com (2603:10a6:800:18b::8)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from 255.255.255.255 (255.255.255.255) by LO2P265CA0264.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:8a::36) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.20.3326.19 via Frontend Transport; Thu, 27 Aug 2020 09:29:28 +0000
X-Priority: Normal
X-Originating-IP: [86.148.49.170]
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: bb5de099-b4d9-4634-998e-08d84a6bb246
X-MS-TrafficTypeDiagnostic: VI1PR07MB4144:
X-Microsoft-Antispam-PRVS: <VI1PR07MB4144410FA56F3EA40C07A4EFC6550@VI1PR07MB4144.eurprd07.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:10000;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 76Wo5GmEUCMKDXq3RJm8L1FnWSj6bX+Rkc8WcHX5Hz0434L8TqtBmmNpqK++fncTdGDUB6Rd/12vMabhXe42gGysWn3aYUzHp+HcjZTJM5m721iCLTxdvgpHhQSdE3Q+D4s15zggvQ6SaZcirdQf2LO0R3YGBIzn4wr6d9iVWOiYXdUMRFitvVyD1B+FsdzkL4R4UI5/NuhgQehLN8/vxBoAGoJrWQlBU3wRz9y5a4/7pe0+gSLOWv/6gNhwwW+IOKu/dC6mM6JU59HCSVsJjDEeMmz7HMBplZmTO8qPhdqDJ18Llp/ANf1a8XD8NLX9ru0ofgb079PIBnLheUyOkgVUnxLyCo8i1R8Ytu3cJVxahJ4vetR6JiLSn+dVBUIioq5Csxh2PI7rJabDAV2W/g==
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:VI1PR07MB6704.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(346002)(396003)(39860400002)(376002)(136003)(86362001)(66556008)(5660300002)(66476007)(66946007)(186003)(87266011)(33656002)(316002)(2616005)(956004)(52116002)(6666004)(26005)(2906002)(6916009)(966005)(4326008)(6486002)(16576012)(8936002)(478600001)(83380400001)(36756003)(8676002); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData: 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
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-Network-Message-Id: bb5de099-b4d9-4634-998e-08d84a6bb246
X-MS-Exchange-CrossTenant-AuthSource: VI1PR07MB6704.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 27 Aug 2020 09:29:28.7594 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 3/GHYkgyw4t5LwUTHqPMg7OFkhtUzzSB0jllqClOwpQXmu90PIJh4hexZOPjBSxvk8SyoTYd7ko/ykq0o9unaQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR07MB4144
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/RnkdYHdxxMO_7rchkCUW0Nn7fFM>
Subject: Re: [I2nsf] Last Call: <draft-ietf-i2nsf-capability-data-model-08.txt> (I2NSF Capability YANG Data Model) to Proposed Standard
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Aug 2020 09:29:42 -0000
Looking at the YANG:
RFC4443 is referenced and so must be in the I-D References
RFC790 is referenced but this is now online under IANA - you can see the
IANA reference in
draft-ietf-i2nsf-sdn-ipsec-flow-protection-08
but that I-D needs to add it to the I-D references as this one will need
to; I note that this announcement flags it as a downref but think that
that is misguided - it needs replacing.
IPsec is the correct spelling - there are some IPSec in YANG
description clauses
Figure 8
2. The location of the NSF is 221.159.112.140.
This address does not appear in the XML, nor is it an address reserved
for use in documentation AFAICT; in fact, I cannot see any ipaddress
anywhere in this I-D
s.2 correctly cites RFC8174 but does not use the text prescribed there.
' identity system-event-capability'
references system-alarm - system event would seem more apt. More
generally, these references for identity could be more specific, e.g
identity access-violation
could reference 'access-violation ' rather than the more generic 'system
event'
Tom Petch
----- Original Message -----
From: "The IESG" <iesg-secretary@ietf.org>
To: "IETF-Announce" <ietf-announce@ietf.org>
Cc: <rdd@cert.org>; <i2nsf@ietf.org>;
<draft-ietf-i2nsf-capability-data-model@ietf.org>;
<i2nsf-chairs@ietf.org>; "Linda Dunbar" <dunbar.ll@gmail.com>
Sent: Tuesday, August 25, 2020 6:59 PM
> The IESG has received a request from the Interface to Network Security
> Functions WG (i2nsf) to consider the following document: - 'I2NSF
Capability
> YANG Data Model'
> <draft-ietf-i2nsf-capability-data-model-08.txt> as Proposed Standard
>
> The IESG plans to make a decision in the next few weeks, and solicits
final
> comments on this action. Please send substantive comments to the
> last-call@ietf.org mailing lists by 2020-09-08. Exceptionally,
comments may
> be sent to iesg@ietf.org instead. In either case, please retain the
beginning
> of the Subject line to allow automated sorting.
>
> Abstract
>
>
> This document defines a YANG data model for the capabilities of
> various Network Security Functions (NSFs) in the Interface to
Network
> Security Functions (I2NSF) framework to centrally manage the
> capabilities of the various NSFs.
>
> The file can be obtained via
>
https://datatracker.ietf.org/doc/draft-ietf-i2nsf-capability-data-model/
>
>
> The following IPR Declarations may be related to this I-D:
>
> https://datatracker.ietf.org/ipr/3556/
> https://datatracker.ietf.org/ipr/3606/
>
> The document contains these normative downward references.
> See RFC 3967 for additional information:
> rfc8329: Framework for Interface to Network Security Functions
(Informational - IETF stream)
> rfc8192: Interface to Network Security Functions (I2NSF): Problem
Statement and Use Cases (Informational - IETF stream)
> rfc790: Assigned numbers (Historic - Legacy stream)
> rfc3444: On the Difference between Information Models and Data
Models (Informational - IETF stream)
> draft-ietf-i2nsf-nsf-monitoring-data-model: I2NSF NSF Monitoring
YANG Data Model (None - IETF stream)
>
> _______________________________________________
> IETF-Announce mailing list
> IETF-Announce@ietf.org
> https://www.ietf.org/mailman/listinfo/ietf-announce
- [I2nsf] Last Call: <draft-ietf-i2nsf-capability-d… The IESG
- Re: [I2nsf] Last Call: <draft-ietf-i2nsf-capabili… tom petch
- Re: [I2nsf] Last Call: <draft-ietf-i2nsf-capabili… Mr. Jaehoon Paul Jeong
- Re: [I2nsf] Last Call: <draft-ietf-i2nsf-capabili… tom petch
- Re: [I2nsf] Last Call: <draft-ietf-i2nsf-capabili… Mr. Jaehoon Paul Jeong
- Re: [I2nsf] Last Call: <draft-ietf-i2nsf-capabili… Mr. Jaehoon Paul Jeong
- Re: [I2nsf] Last Call: <draft-ietf-i2nsf-capabili… tom petch