Re: [Id-event] Barry Leiba's No Objection on draft-ietf-secevent-http-poll-11: (with COMMENT)
Mike Jones <Michael.Jones@microsoft.com> Thu, 25 June 2020 05:59 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 08BD53A0789; Wed, 24 Jun 2020 22:59:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FwIN2OlhObJ4; Wed, 24 Jun 2020 22:59:11 -0700 (PDT)
Received: from NAM06-BL2-obe.outbound.protection.outlook.com (mail-eopbgr650138.outbound.protection.outlook.com [40.107.65.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DF2F13A07B1; Wed, 24 Jun 2020 22:59:10 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jIF2vXBf38EMQQioEA+PW4HHFTkOhUkcN4yaKFU2WswU04kUbFxIo4GRabD9jANdjFX0MzMlPuX0U8EEs8wa56anA7y7hnTIt39ZOto5o0bQvNN/LUHIaumQUR2yR0vG99OClBO81JMK9GK5fgHMTuLbDzJqm8lQeuJed8WCado28yYmuaHRGHtmWOPiI9c6d/WrasFHcVD3rrAehRvlF4ME5S4ehbjgmObAjF0lvbP7UltsJuyxris/8+twfCnYpC+0rP+x86j4bajNS7PRzEQ9g0qnK+a+ZaaJlj/Y89TanQNSzWdSIjLdOBCAU7v0rX/rmk+OqnR63oxakTHxYQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=zHMzZSsCihyAEbeMQcLPPKHvWEXuJv5HheDzgW9rMG0=; b=nlhgvzd/EHuZ0aDIvJbMLeCHnNyMH4BWMPQg/lASDpxYu4j5CfSIHs4NFXWlciV6WvlCVGELPWjYvV1YPfAxaNPN3/l/DtxVqV4D9wgf3REb4+hJRedCxrGHsHBhrXHAgS/Z0WsCItgkxyobM5xMgIwvkHEqijcLGwVEp2TZA1UA+0NcDfnYsUfJCbk9AeJWTNx9XxB7HkIDSk2p5IR0cbFqxJpl7bOaa9saKXpYF1a0yahIkzCrxYIrr4fL57G7jS3/OYWz6SYE64LoM30jqLkJREGOsaJEVV0QuSEjqquxrsnVNm/gr0zn5NVeRuY7AyDY8AGtXgkt4jCYd0XUgQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=zHMzZSsCihyAEbeMQcLPPKHvWEXuJv5HheDzgW9rMG0=; b=P2IRDMXo4gW0Vl/8GppEI/j2/nzUW1xGxz4egQG6VJC0+aeHOVGY/k4Kzvljfr8LTWeYPW6fqdSEHY/pr0mHntsNsmjn/6YlS2K2LlEJkYPpfXdwlDVHV/RJqG8AMuZ2OGFWwIzDLka/0TfBpiTgddUerBqY1vQ05kVQ89sbMHM=
Received: from CH2PR00MB0678.namprd00.prod.outlook.com (2603:10b6:610:a9::23) by CH2PR00MB0810.namprd00.prod.outlook.com (2603:10b6:610:6f::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3166.0; Thu, 25 Jun 2020 05:59:05 +0000
Received: from CH2PR00MB0678.namprd00.prod.outlook.com ([fe80::3c44:1c81:e278:edb0]) by CH2PR00MB0678.namprd00.prod.outlook.com ([fe80::3c44:1c81:e278:edb0%2]) with mapi id 15.20.3173.000; Thu, 25 Jun 2020 05:59:05 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Barry Leiba <barryleiba@computer.org>, The IESG <iesg@ietf.org>
CC: "draft-ietf-secevent-http-poll@ietf.org" <draft-ietf-secevent-http-poll@ietf.org>, "secevent-chairs@ietf.org" <secevent-chairs@ietf.org>, "id-event@ietf.org" <id-event@ietf.org>, Yaron Sheffer <yaronf.ietf@gmail.com>
Thread-Topic: Barry Leiba's No Objection on draft-ietf-secevent-http-poll-11: (with COMMENT)
Thread-Index: AdZKtboTODs/WcR5RGOteTwSfsh4Pw==
Date: Thu, 25 Jun 2020 05:59:04 +0000
Message-ID: <CH2PR00MB0678A79125B7D9F3D7ED275CF5920@CH2PR00MB0678.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=f9fab90d-5f98-499e-aa9b-f407cb3288ab; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2020-06-25T05:54:58Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: computer.org; dkim=none (message not signed) header.d=none; computer.org; dmarc=none action=none header.from=microsoft.com;
x-originating-ip: [50.47.87.252]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 92bf7807-ce2e-47d6-2296-08d818ccde07
x-ms-traffictypediagnostic: CH2PR00MB0810:
x-microsoft-antispam-prvs: <CH2PR00MB0810CA2185DADB15B72D2CD0F5920@CH2PR00MB0810.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0445A82F82
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: pvyWb3aQCnL9/2MyMrgcZ4yNvKR9Upl9tGMKbhjv/YWZTzFDYCSKjWcV2jeaWj2u+XI+HDDL0frBUFlvsvBtQFVksOKdRgeQECpSZXUxY8XBCk82Llos1PazBMQOQKw5jK5MifkHk3rI81Df+4CZgM3+iKt9/EwhSt+dYONsbEJOvGnaIubboGt5D3IqctvC6NEFtbUy2tyeAdds9+/qbn2gLUWamM/byrzuXp2UGEatqyCqYSvDklgk4TDLUrwBUEkip/hAwZQozClCqbJ7C5lykzGkoVZG8CPYbYzjPuXdhox59OGOGd/YfcmTNpMjtZuFTNBw/8zAj2BjVTLZoQY/t0cnIrkyLAyMuO5SfKjoxQuO0C43Ssi3wOdjt0DOmN81UM1eO/Dupe0XmDqxcQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH2PR00MB0678.namprd00.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(376002)(136003)(396003)(346002)(366004)(39860400002)(7696005)(82950400001)(55016002)(66556008)(8936002)(66476007)(186003)(110136005)(66446008)(9686003)(64756008)(8990500004)(478600001)(316002)(966005)(76116006)(66946007)(71200400001)(26005)(53546011)(2906002)(8676002)(10290500003)(54906003)(82960400001)(86362001)(6506007)(4326008)(83380400001)(5660300002)(52536014)(33656002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: SuFwVkf4nfmz6ZaKfN4Ea/XCpet6TdeAJ6xNYtxu3OprKOZPXfVyPMSgEwXmi9y/CAaybS7OWs+u0Vc9qPC9WP3bChYGw/J8p7xM9uHaYRtU933XsMdQOjMzbrGvDEWYPROo9AdxPRthrHlbxIaErVK6tt6WWfapnwsjjcmsqM7SNC8Ur/2urTNvBJQ+PVeZYvuB15e9CU3JF/8lNCloRbLlZAkQJttLcEhPkTjRjnIYi4atXhhelv9RDDix7lUhGDq0euZtpq9j4JrSlgLGoyFhyReK9sDQIkol4J/kEVFQnzj3BciwvEjMaAIq0DqHbmbE6Gb8vBXAol5CoPTKGFoYmNBz+gUzaFQn2jRD6XYHzGgcQGHVi4zMP2AM/j3qUtZa1uc6vgSmtqQxAksHnPuae2nHCtTlnpQ65EbBe/YFeyIbpaIrwHggIanZPxRn1XXBAw056aeuXx7UI7191ZvM9GSX7ZSsMU3ivQ44Tt0=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH2PR00MB0678.namprd00.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 92bf7807-ce2e-47d6-2296-08d818ccde07
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jun 2020 05:59:04.9602 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: LpQ2Pae/rjbdjIx2aUQ6fZuMkq4q7a/+CeSOBLT7evmgcr92R71C1YsorYrEMlreTIB6Hz9KvxJxRDGuLS0VsQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR00MB0810
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/71BoS8ifEFFgtH77eUsq3_eEQW8>
Subject: Re: [Id-event] Barry Leiba's No Objection on draft-ietf-secevent-http-poll-11: (with COMMENT)
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jun 2020 05:59:13 -0000
Thanks for your review, Barry. https://tools.ietf.org/html/draft-ietf-secevent-http-poll-12 is intended to address your comments. Detailed replies are inline, prefixed by "Mike>". -----Original Message----- From: Barry Leiba via Datatracker <noreply@ietf.org> Sent: Wednesday, June 24, 2020 1:42 PM To: The IESG <iesg@ietf.org> Cc: draft-ietf-secevent-http-poll@ietf.org; secevent-chairs@ietf.org; id-event@ietf.org; Yaron Sheffer <yaronf.ietf@gmail.com>; yaronf.ietf@gmail.com Subject: Barry Leiba's No Objection on draft-ietf-secevent-http-poll-11: (with COMMENT) Barry Leiba has entered the following ballot position for draft-ietf-secevent-http-poll-11: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-secevent-http-poll/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- — Section 1 — Section 1 of the push draft explains that push is meant to be used under specific circumstances. Is it the intent that push be used for those cases, and pull be used for everything else? It might be good to say that explicitly here, perhaps as, “This is an alternative SET delivery method to the one defined in [I-D.ietf-secevent-http-push], and is used for cases where push-based delivery does not apply.” Mike> The Poll draft now has a parallel applicability statement to that in the Push draft. — Section 2 — The SET Recipient MUST acknowledge receipt to the SET Transmitter, and SHOULD do in a timely fashion Nit: “SHOULD do so” Mike> Done — Section 2.1 — Before acknowledgement, SET Recipients SHOULD ensure that received SETs have been validated Same comment as in -push: validation is a SHALL, and this says SHOULD. But see my comment below for Section 2.4. Mike> Reworded to eliminate the gratuitous SHALLs and SHOULDs — Section 2.2 — maxEvents An OPTIONAL JSON integer value indicating the maximum number of unacknowledged SETs that SHOULD be returned. The antecedent to SHOULD is unclear. Are you really saying that the SETs SHOULD be returned? Or do you mean that the SHOULD applies to the maximum number? Assuming the latter, it’s better said this way: NEW maxEvents An OPTIONAL JSON integer value indicating the maximum number of unacknowledged SETs to be returned. The SET Transmitter SHOULD NOT send more SETs than the specified maximum. END Mike> Thanks - done Recipients that would like to perform an acknowledge only request. Nit: hyphenate “acknowledge-only” Mike> Done here and in other parallel locations — Section 2.4 — If the SET Recipient has received SETs from the SET Transmitter, the SET Recipient SHOULD parse and validate received SETs Is it intended that validation is a SHALL in push and a SHOULD in pull? If so, why? Is it worth explaining that in the documents? Mike> Reworded as above — Section 3 — The TLS server certificate MUST be validated, per [RFC6125]. Same comment as in -push: what about DANE? (Also for Section 4.3) Mike> Dane is now explicitly allowed Thanks again, -- Mike
- [Id-event] Barry Leiba's No Objection on draft-ie… Barry Leiba via Datatracker
- Re: [Id-event] Barry Leiba's No Objection on draf… Mike Jones