Opsdir last call review of draft-ietf-stir-oob-05

Shwetha Bhandari via Datatracker <noreply@ietf.org> Tue, 17 September 2019 16:10 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: ietf@ietf.org
Delivered-To: ietf@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 61DF9120108; Tue, 17 Sep 2019 09:10:38 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Shwetha Bhandari via Datatracker <noreply@ietf.org>
To: ops-dir@ietf.org
Cc: draft-ietf-stir-oob.all@ietf.org, ietf@ietf.org, stir@ietf.org
Subject: Opsdir last call review of draft-ietf-stir-oob-05
X-Test-IDTracker: no
X-IETF-IDTracker: 6.101.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Shwetha Bhandari <shwethab@cisco.com>
Message-ID: <156873663818.17453.14837498016088573245@ietfa.amsl.com>
Date: Tue, 17 Sep 2019 09:10:38 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/H3GNMB5ILCzFg8XRyNNn-jxpEFk>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Sep 2019 16:10:38 -0000

Reviewer: Shwetha Bhandari
Review result: Ready

I have reviewed this document as part of the Operational directorate's ongoing
effort to review all IETF documents being processed by the IESG.  These
comments were written with the intent of improving the operational aspects of
the IETF drafts per guidelines in RFC5706 .
Comments that are not addressed in last call may be included
in AD reviews during the IESG review.  Document editors and WG chairs should
treat these comments just like any other last call comments.

Summary:
This is an informational draft that describes use cases and sketches a solution
to deliver PASSporT objects outside of the signaling path as part of
STIR(Secure Telephone Identity Revisited).  The PASSporT format defines a token
that can be carried by signaling protocols, including SIP, to cryptographically
attest the identify of callers. The solution defines a new Call Placement
Service(CPS) that permits the PASSporT object to be stored during call
processing and retrieved for verification purposes. The draft clarifies that
deploying this service and framework would require additional specification
outside the scope of this document.

The draft covers operational considerations per the guidelines defined in RFC
5706:
    a) Operational environments section in the draft describes environments in
    which the proposed out-of-band STIR mechanism is intended to operate. b)
    New CPS service and data flows required between existing components -
    caller, callee endpoints and gateways  etc for secure storage and
    validation of PASSportT objects c) Storing and Retrieving PASSporTs objects
    d) Service discovery: Mechanism for CPS discovery

Given that the draft expects additional specification to actually deploy the
new service I am assuming Manageability  consideration such as configuring and
managing CPS, data models for providing operational state and fault
notification for CPS data flows will be detailed in the future specifications.
Also impact of the CPS on network and call setup will have to be covered in
those additional specifications.