Re: [Insipid] Secdir last call review of draft-ietf-insipid-logme-marking-11
"Dawes, Peter, Vodafone Group" <Peter.Dawes@vodafone.com> Tue, 17 July 2018 10:30 UTC
Return-Path: <Peter.Dawes@vodafone.com>
X-Original-To: insipid@ietfa.amsl.com
Delivered-To: insipid@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 427BD130EB4; Tue, 17 Jul 2018 03:30:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sys-fL4l8llr; Tue, 17 Jul 2018 03:30:45 -0700 (PDT)
Received: from mail1.bemta25.messagelabs.com (mail1.bemta25.messagelabs.com [195.245.230.2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88F07130DE9; Tue, 17 Jul 2018 03:30:44 -0700 (PDT)
Received: from [46.226.52.101] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-2.bemta.az-a.eu-west-1.aws.symcld.net id 82/1D-10350-255CD4B5; Tue, 17 Jul 2018 10:30:42 +0000
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrBKsWRWlGSWpSXmKPExsWi75nTpRt41Df aYOs/S4vWvk1MFs82zmexmH//GZPFgt6tzBYfFj5kcWD1WLLkJ5PH3k197AFMUayZeUn5FQms Gbtnr2Qv+CBU0XbTsIHxglAXIxeHkMB2RomLp/6zQDiHGSVaP/QydjFyAjlHGCWOH9KHSGxhl Jh+bzFQFQcHm4C9xIw9MSCmiICHxI8j5iAlzAJrGSWal/0G6xUW8Jb4sugXE4gtIuAjcfzLAS jbSKKhdz7YGBYBVYm5ZxVAwrwCoRKNr1ewQqx1kmg8+hbM5hRwlli19wQ7iM0oICvxpXE1M4j NLCAucevJfLCREgICEkv2nGeGsEUlXj7+xwoynllAU2L9Ln2IckWJKd0P2SFWCUqcnPmEBWKV qsS/lYuYJjCKzUIydRZC9ywk3bOQdC9gZFnFaJFUlJmeUZKbmJmja2hgoGtoaKRraGmsa2hsq ZdYpZuol1qqW55aXKJrqJdYXqxXXJmbnJOil5dasokRGJMMQLCD8dK35EOMkhxMSqK8vNW+0U J8SfkplRmJxRnxRaU5qcWHGGU4OJQkeAOPAOUEi1LTUyvSMnOAyQEmLcHBoyTCmwmS5i0uSMw tzkyHSJ1itOT4837qJGaOfd3TgOQdECnEkpeflyolzisF0iAA0pBRmgc3DpbALjHKSgnzMgId KMRTkFqUm1mCKv+KUZyDUUmYtxVkCk9mXgnc1ldABzEBHSRdDXZQSSJCSqqB0X6Hq4bLaqe9l SGfpeu/F5qxidzmb8k5vkaw3MnumlCx426Hqh2JoUvKY5L5GXxi+r6umeu1NPYj8+fVov2lRj aTLTq/eeUky6ke2X1QbOviPreFMsahSz5bb9aJT+2KvbFVc4+xFkdf5yueSTYzTp7I8P8Wf/T AMutM84WLYvYpzXi2JrxbiaU4I9FQi7moOBEAZRwvdlsDAAA=
X-Env-Sender: Peter.Dawes@vodafone.com
X-Msg-Ref: server-3.tower-265.messagelabs.com!1531823439!5203838!9
X-Originating-IP: [47.73.108.138]
X-SYMC-ESS-Client-Auth: outbound-route-from=pass
X-StarScan-Received:
X-StarScan-Version: 9.9.15; banners=-,-,-
X-VirusChecked: Checked
Received: (qmail 21239 invoked from network); 17 Jul 2018 10:30:41 -0000
Received: from vgdpm12vr.vodafone.com (HELO voxe06hw.internal.vodafone.com) (47.73.108.138) by server-3.tower-265.messagelabs.com with AES256-SHA256 encrypted SMTP; 17 Jul 2018 10:30:41 -0000
Received: from VOEXH07W.internal.vodafone.com (47.73.211.205) by edge1.vodafone.com (195.232.244.51) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Tue, 17 Jul 2018 12:30:35 +0200
Received: from VOEXC01W.internal.vodafone.com (145.230.101.21) by VOEXH07W.internal.vodafone.com (47.73.211.205) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Tue, 17 Jul 2018 12:30:34 +0200
Received: from AVOEXH03W.internal.vodafone.com (145.230.15.141) by VOEXC01W.internal.vodafone.com (145.230.101.21) with Microsoft SMTP Server (TLS) id 14.3.361.1; Tue, 17 Jul 2018 12:30:33 +0200
Received: from VOEXM31W.internal.vodafone.com ([169.254.7.229]) by AVOEXH03W.internal.vodafone.com ([145.230.15.141]) with mapi id 14.03.0361.001; Tue, 17 Jul 2018 12:30:32 +0200
From: "Dawes, Peter, Vodafone Group" <Peter.Dawes@vodafone.com>
To: Leif Johansson <leifj@sunet.se>, "secdir@ietf.org" <secdir@ietf.org>
CC: "draft-ietf-insipid-logme-marking.all@ietf.org" <draft-ietf-insipid-logme-marking.all@ietf.org>, "insipid@ietf.org" <insipid@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>
Thread-Topic: Secdir last call review of draft-ietf-insipid-logme-marking-11
Thread-Index: AQHUF5e6fr7JOcukTkaupAzeB2v15qSTQUZA
Date: Tue, 17 Jul 2018 10:30:32 +0000
Message-ID: <4A4F136CBD0E0D44AE1EDE36C4CD9D99E323C15C@VOEXM31W.internal.vodafone.com>
References: <153114934615.5366.9894430842150985630@ietfa.amsl.com>
In-Reply-To: <153114934615.5366.9894430842150985630@ietfa.amsl.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/insipid/d2huT5qW3eE9wv4mqjrHWc0L-us>
Subject: Re: [Insipid] Secdir last call review of draft-ietf-insipid-logme-marking-11
X-BeenThere: insipid@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: SIP Session-ID discussion list <insipid.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/insipid>, <mailto:insipid-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/insipid/>
List-Post: <mailto:insipid@ietf.org>
List-Help: <mailto:insipid-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/insipid>, <mailto:insipid-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Jul 2018 10:30:48 -0000
Hello Leif, Thanks a lot for reviewing the draft. We have submitted revision -12 (https://datatracker.ietf.org/doc/draft-ietf-insipid-logme-marking/) which makes the "must" normative in the first paragraph of 8.4.6 User Control of Logging, as per the review comment. 8.4.6. User Control of Logging Consent to turn on "log me" marking for a given session MUST be provided by the end user or by the network administrator. Best regards, Peter and Arun > -----Original Message----- > From: Leif Johansson <leifj@sunet.se> > Sent: 09 July 2018 16:16 > To: secdir@ietf.org > Cc: draft-ietf-insipid-logme-marking.all@ietf.org; insipid@ietf.org; > ietf@ietf.org > Subject: Secdir last call review of draft-ietf-insipid-logme-marking-11 > > Reviewer: Leif Johansson > Review result: Ready > > I have reviewed this document as part of the security directorate's ongoing > effort to review all IETF documents being processed by the IESG. These > comments were written primarily for the benefit of the security area > directors. Document editors and WG chairs should treat these comments > just like any other last call comments. > > >From the abstract: This document describes an indicator for the SIP > protocol which can be used to mark signaling as being of interest to logging. > > The document is clearly written and feels ready for publication from a quality > standpoint. > > My only issue is in 7.4.6 - User Control of Logging: Why is the "must" > in the first paragraph non-normative? Is it because there is no way to prove > the existence or absence of user consent? I realize this may be a hard > problem to solve but if this issue was considered and rejected it might be > worth including a discussion about this in the document. >
- [Insipid] Secdir last call review of draft-ietf-i… Leif Johansson
- Re: [Insipid] Secdir last call review of draft-ie… Dawes, Peter, Vodafone Group