Re: [I2nsf] YANG Doctors Working Group Last Call Review of draft-ietf-i2nsf-capability-data-model-04.txt

"Acee Lindem (acee)" <acee@cisco.com> Mon, 29 July 2019 15:29 UTC

Return-Path: <acee@cisco.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E95C9120198; Mon, 29 Jul 2019 08:29:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=P+QXmk/r; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=GVoJ25kG
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6pdnufGlpCAC; Mon, 29 Jul 2019 08:28:59 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2845312014F; Mon, 29 Jul 2019 08:28:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=19201; q=dns/txt; s=iport; t=1564414139; x=1565623739; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=DvWl9Kxs+zCRsnusQVdlrHWqBw918fHrT5kwebxz0SI=; b=P+QXmk/r0eNsCkHDBBvaruoJiXtJ/fjAQCIxJAIdeg5mph6YdK9OXaid +0LExcQcAVhFkyOFy3ZPuCSk5Cx8ROM2SCa8mM1kWIX5pPiLNflp19o+E fgGZ2P2crlfFNSh2HCcRWI71KL9fE97nzQFY2KtJKwzEeIyMBff0EpE2r I=;
IronPort-PHdr: 9a23:Z8FB5BXzu4r0TBH9mT+CYsRMekbV8LGuZFwc94YnhrRSc6+q45XlOgnF6O5wiEPSANiJ8OpK3uzRta2oGXcN55qMqjgjSNRNTFdEwd4TgxRmBceEDUPhK/u/Zic3EexJVURu+DewNk0GUMs=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AHAAAxED9d/5hdJa1MGhkBAQEBAQEBAQEBAQEHAQEBAQEBgVMEAQEBAQELAYEUL1ADbVUgBAsqhB6DRwOEUogxgluJVIkohFeBLhSBEANUCQEBAQwBARgBCgoCAQGBS4E+gTcCF4JVIzQJDgEDAQEEAQECAQZthR4MhUoBAQEBAwEBEBEKEwEBLAsBDQICAQgRAwECJAQDAgICFAsGCxQJCAIEDgUigwABgR1NAx0BAgw5oGgCgTiIYHGBMoJ6AQEFgTIBAwKDUA0LghMJBYEvAYo0gSsXgX+BOB+CHi4+ghpHAQEBAQGBKwELBwE2CQ0JglUyggQijDeCFjGEf4ZGgiiNUEAJAoIahluJQoN3G4IubYY4hA2KLpNWgS+BdY4XAgQCBAUCDgEBBYE9EzhncXAVOyoBgkEJgUBVJDeDOmqEKoU/cgELgR2KcQINFweCJQEB
X-IronPort-AV: E=Sophos;i="5.64,323,1559520000"; d="scan'208,217";a="609846395"
Received: from rcdn-core-1.cisco.com ([173.37.93.152]) by rcdn-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 29 Jul 2019 15:28:57 +0000
Received: from XCH-ALN-008.cisco.com (xch-aln-008.cisco.com [173.36.7.18]) by rcdn-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id x6TFSvWg004682 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 29 Jul 2019 15:28:57 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-ALN-008.cisco.com (173.36.7.18) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Mon, 29 Jul 2019 10:28:57 -0500
Received: from xhs-aln-003.cisco.com (173.37.135.120) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Mon, 29 Jul 2019 11:28:55 -0400
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-003.cisco.com (173.37.135.120) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Mon, 29 Jul 2019 10:28:55 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=VWUaWpJFA8FBAdqYMreGL9Swyd4k9Zgx48gmCD3cgGduubHekPtuDIUHHLqcheyG8wAvlf0MlMy1RyIvD3EqPessyB5hmUO4rYpz9Buo5qsC1vmcZcVziQtWG/aZ2yT7Q8agMOqaXX+FlzORvtkmWamdgNT32vetn6HwD3hbn4mS4gOXnszgCoOsuZkXfLeP2Xx8rGfPSLsSPf9j1BxO7x3HRlMQJc/Clt2X7+fSTYsQwDF8CnjEnK7bXCd1Bk4xqAJg0kGU24z7zuVp5HV6rxf9m7Z9wbHWeNsS+0ISp3UN39XIIoWb9fOGBWjhrrZBYO0ECkjyyaQ6Ms8wonr0XQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=DvWl9Kxs+zCRsnusQVdlrHWqBw918fHrT5kwebxz0SI=; b=JhV3oQX4eMDwDY9qbwFcS8sNb/HooybggATikKLeEYUOvMC9H4yrX4tMGSDWh964UnxxccF0NgnuFLjATNeZv1SkD7nYkENEXyZbmnB1cEeBgoRAuuWBvSOXctNOfYOwcFMerr37BuPPzrUECmlPLt9iDnYk4AooTxvQJ9K8iWOoD9BtAO1s6c0AjH0cSyUMy8FEkli+uQOyQ1uZCDsbfSCFG4Bd7q+nkWcJGEhOqvpae3GzjVrDDVXl2vv1GwCaE/ybkwWkL8SZZ0FtReCmDrnuGFRchdKR0NRVXxPp9zcyY0YV6NStJY6GyE/PpLk/Qo1+TlOonEKnYiAchzlLZQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=cisco.com;dmarc=pass action=none header.from=cisco.com;dkim=pass header.d=cisco.com;arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=DvWl9Kxs+zCRsnusQVdlrHWqBw918fHrT5kwebxz0SI=; b=GVoJ25kGdy906kX2HaTpx0+W+DsYN8ZCw74z5DaS3ctnZdYiin30bWkq3F61f+rimWjPwV4urCqxNi31qg/mUxlMCmoIYcqHzRXs9G7mGWYM7HkT+8Qix/vTZHTsOO3/q0BHz0UEPWNNXnvZUeqhHUg61ncGFXt2BdyiOT8Q/WU=
Received: from MN2PR11MB4221.namprd11.prod.outlook.com (52.135.38.14) by MN2PR11MB4367.namprd11.prod.outlook.com (52.135.37.142) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2115.10; Mon, 29 Jul 2019 15:28:54 +0000
Received: from MN2PR11MB4221.namprd11.prod.outlook.com ([fe80::859c:f271:3be2:74e0]) by MN2PR11MB4221.namprd11.prod.outlook.com ([fe80::859c:f271:3be2:74e0%3]) with mapi id 15.20.2115.005; Mon, 29 Jul 2019 15:28:54 +0000
From: "Acee Lindem (acee)" <acee@cisco.com>
To: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
CC: "draft-ietf-i2nsf-capability-data-model@ietf.org" <draft-ietf-i2nsf-capability-data-model@ietf.org>, "i2nsf@ietf.org" <i2nsf@ietf.org>, yang-doctors <yang-doctors-bounces@ietf.org>, "i2nsf-ads@ietf.org" <i2nsf-ads@ietf.org>, "skku_secu-brain_all@googlegroups.com" <skku_secu-brain_all@googlegroups.com>
Thread-Topic: [I2nsf] YANG Doctors Working Group Last Call Review of draft-ietf-i2nsf-capability-data-model-04.txt
Thread-Index: AQHVJglEIwKHl04GPEqnj5R0hNyApKbbl6aAgAYd4gA=
Date: Mon, 29 Jul 2019 15:28:54 +0000
Message-ID: <C19F54F8-FE18-41BB-8D28-292FCEA795D1@cisco.com>
References: <AB210DB8-0137-41D6-9495-0B3FBE07343F@cisco.com> <CAPK2DezgBGPQW5jfLXcWTE8+S_4Hn+DDpWHzyRyw3tO2ygnEGQ@mail.gmail.com>
In-Reply-To: <CAPK2DezgBGPQW5jfLXcWTE8+S_4Hn+DDpWHzyRyw3tO2ygnEGQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=acee@cisco.com;
x-originating-ip: [2001:420:c0c4:1003::98]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: fa47b262-c435-43e0-378e-08d714397764
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:MN2PR11MB4367;
x-ms-traffictypediagnostic: MN2PR11MB4367:
x-ms-exchange-purlcount: 7
x-microsoft-antispam-prvs: <MN2PR11MB436757DC1DF7B10F578C4FB4C2DD0@MN2PR11MB4367.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 01136D2D90
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(376002)(346002)(366004)(136003)(396003)(39860400002)(199004)(189003)(5660300002)(790700001)(6116002)(316002)(25786009)(6246003)(4326008)(81166006)(81156014)(107886003)(9326002)(68736007)(66574012)(229853002)(966005)(7736002)(8676002)(54906003)(2906002)(16799955002)(186003)(325944009)(236005)(86362001)(36756003)(15188155005)(478600001)(6916009)(6486002)(5024004)(6436002)(606006)(2616005)(71190400001)(53936002)(46003)(11346002)(486006)(54896002)(6512007)(71200400001)(6306002)(8936002)(14444005)(76176011)(99286004)(14454004)(76116006)(6506007)(102836004)(66446008)(66556008)(66476007)(66946007)(64756008)(33656002)(446003)(476003)(53546011)(256004); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB4367; H:MN2PR11MB4221.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: wBMtUS+72SZBQUkcNTC8a2YRq+j/QOrOj4NFees8nUci15sA3SImXIl88OQ7YL2K7ATMnsdGmiiEtG2uJE1zu66Weq/WjbDUDBj96vli0UItuNfSCZAINpKYLovOUbveoLcEuZBh2+ar3rP5RPWIgHvB2NgZWIsTtvHmjFrzTav/RmHhhp2W26AaDg/FOcZB0lZ1kC7IT0Suugxaj3YZ+hYntwBTEErTeEfvj0mDWVLYCOrR5KdpUMi8mm6egR/ga60k/MWgbzQUyxwCs7l7yVVkoyUnKoFO8Yxm1mv+RnS8qwp3VXUkPOpsx0sYYO3kiImFXQLQcQD7uS78x+FQXSLiGjXlyIYJY2mtHt2n11CR5/rtPgxfDaZnZJ2i74ISAC7zYQ0I/oF+yoC/XMRUpAkmQLHloMe35ubRhsGFXb0=
Content-Type: multipart/alternative; boundary="_000_C19F54F8FE1841BB8D28292FCEA795D1ciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: fa47b262-c435-43e0-378e-08d714397764
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Jul 2019 15:28:54.3543 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: acee@cisco.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4367
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.18, xch-aln-008.cisco.com
X-Outbound-Node: rcdn-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/xhjKlUJC3Jpm40F5YfDD0XwPrbc>
Subject: Re: [I2nsf] YANG Doctors Working Group Last Call Review of draft-ietf-i2nsf-capability-data-model-04.txt
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Jul 2019 15:29:03 -0000

Hi Paul,
Thank you for incorporating my comments and adding examples. Note that the module prologue still doesn’t match the suggested template in RFC 8407 - https://tools.ietf.org/html/rfc8407#appendix-B

One question – I see this work is being done as part of a funding project. Does this include implementation of an I2NSF Security Controller? This would go further to validate the models than any reviews.

Thanks,
Acee

From: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
Date: Thursday, July 25, 2019 at 10:06 AM
To: Acee Lindem <acee@cisco.com>
Cc: "draft-ietf-i2nsf-capability-data-model@ietf.org" <draft-ietf-i2nsf-capability-data-model@ietf.org>, "i2nsf@ietf.org" <i2nsf@ietf.org>, yang-doctors <yang-doctors-bounces@ietf.org>, "i2nsf-ads@ietf.org" <i2nsf-ads@ietf.org>, "skku_secu-brain_all@googlegroups.com" <skku_secu-brain_all@googlegroups.com>
Subject: Re: [I2nsf] YANG Doctors Working Group Last Call Review of draft-ietf-i2nsf-capability-data-model-04.txt

Hi Acee,
Here is the revision letter for the revised draft, reflecting your comments along with the revised draft:
https://tools.ietf.org/html/draft-ietf-i2nsf-capability-data-model-05

If you have further comments and questions, please let me know.

Thanks.

Best Regards,
Paul

On Tue, Jun 18, 2019 at 3:09 PM Acee Lindem (acee) <acee@cisco.com<mailto:acee@cisco.com>> wrote:
Document: draft-ietf-i2nsf-capability-data-model-04.txt
Reviewer: Acee Lindem
Review Date: June 18, 2019
Review Type: Working Group Last Call
Intended Status: Standards Track
Summary: Not ready for publication

Modules: "ietf-i2nsf-capability@2019-03-28.yang"

Tech Summary: The model is logically structured and seems to fulfill its
intended purpose. The "Overview" section defines the usage, context, and
usage of the model, i.e., it is limited to the NSF capability registration
interface. However, the draft/model is very rough and not ready for working
group last call. It seems that it has not gotten adequate review by the chairs
and other members of the I2NSF Working Group.

Major Comments:

 1. The "Security Considerations" in section 8 do not conform to the
    recommended template in https://trac.ietf.org/trac/ops/wiki/yang-security-
    guidelines>

 2. The document is missing XML or JSON examples.


Minor Comments:

 1. Section 3.1 should reference RFC8340 rather than attempting to
    include tree diagram formatting semantics.

 2. Much of the text is very hard to read and awkwardly worded. There
    are some instances of sentence fragments. I starting trying to
    remedy this but found I was rewriting the entire draft and, in
    many cases, I wasn't sure my edits matched the original intent. I'll
    send the attached diff with suggested edits to the authors - it was too
    big to send to IETF lists.

 3. "iicapa" is a poor choice for default model prefix - I suggest
    "nsfcap". It is just as concise but actually expands to something
     meaningful.

 4. Similar to the text in the narrative sections of the draft, the text in the
     YANG model description statements is very awkwardly worded.

 5. What are the references for the ipv4-sameip and ipv4-geoip conditions?

 6. Add reference for egress-action-capa.

 7. RFC 2460 is obsoleted by RFC 8200.

 8. Suggest hyphenation of identifiers ipv4-same-ip, ipv4-geo-ip, and
    ipv6-ip-opts.

 9. Suggest hyphenation of anti-virus and anti-ddos both in identifiers
    and in the text.

10. Suggest providing a definitions for absolute and periodic time.

11. The References do not include all the RFCs referenced by YANG
       model reference statements.

Thanks,
Acee


_______________________________________________
I2nsf mailing list
I2nsf@ietf.org<mailto:I2nsf@ietf.org>
https://www.ietf.org/mailman/listinfo/i2nsf


--
===========================
Mr. Jaehoon (Paul) Jeong, Ph.D.
Associate Professor
Department of Software
Sungkyunkwan University
Office: +82-31-299-4957
Email: jaehoon.paul@gmail.com<mailto:jaehoon.paul@gmail.com>, pauljeong@skku.edu<mailto:pauljeong@skku.edu>
Personal Homepage: http://iotlab.skku.edu/people-jaehoon-jeong.php<http://cpslab.skku.edu/people-jaehoon-jeong.php>