Re: [Iot-directorate] Iotdir early review of draft-ietf-anima-brski-prm-05
Marco Tiloca <marco.tiloca@ri.se> Mon, 09 January 2023 08:57 UTC
Return-Path: <marco.tiloca@ri.se>
X-Original-To: iot-directorate@ietfa.amsl.com
Delivered-To: iot-directorate@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A71AC151524; Mon, 9 Jan 2023 00:57:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.011
X-Spam-Level:
X-Spam-Status: No, score=-10.011 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, NICE_REPLY_A=-3.114, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sRnU66izcOAt; Mon, 9 Jan 2023 00:57:01 -0800 (PST)
Received: from NAM06-DM3-obe.outbound.protection.outlook.com (mail-dm3nam06on2053.outbound.protection.outlook.com [40.107.64.53]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E8627C151522; Mon, 9 Jan 2023 00:56:57 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=M4s/+3aFI6NsDx6Y/t40K82LF10K3MU6SINKQDhBdasH6jnVG47RWiqBFmQziKCRerjoLhSpLmEyvJ3z71bAptOWE9u2WEvOIuD40RnmTTwcK+2d4lfUa6vCgUI1bfEQSdR9GvTQy8YGNQ80m5JdlaGtEe4YqorEkesbPqpYooKyzGET5g/wa7qLjgAcWtPP1zuRoUQAwGvJyndZUMOz9kwOPPSI3xmoutDcOeQNb3CAPxoSDLn3Jw4qetY8hz947hY2NKGfMMudY1j67fAlnTd6/AxQS/qkWfiMomAojgDYYmOwUYXbW38ZC8/2fPa9vcRZCeAfDJd0xEkLRm/0xA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=5y3sgVK0tpW2bSVNhBU2eJkWUdkA/BGc54tMDb9EyJA=; b=F4D8+luACnabrIE51IQicLhjDL6q34LsPsGA4Bp0GJ4OSoxWqJzpLr421heRjbZ2R+KQeAsUYeCKfuF3ovXaW6jkeuLyNYlA5KqgFewnoEhGBcJXReH02OS2atNp2K7NDv1pj2jluvLcfn0Vd+m/hlQOwrh4v9qQrf+3VxwVUaaxU1g4v9UVcE3sRDFp2qC/k0yiHzyXhkzofGburBXoFyM8GiI7GPE0oePSsGievvv9Ldxj4fgKLDAhGhbNbwH9wfXjE8YgeI+8KTkZuQm93/hUA5yvOA7nC0dFQMXl34WpHm9GoqDJHvUlV8sFhzhJob7qm+qCGbGs3dnzkUmUcA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ri.se; dmarc=pass action=none header.from=ri.se; dkim=pass header.d=ri.se; arc=none
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ri.se;
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17) by GV2PPF30B4F3F64.SWEP280.PROD.OUTLOOK.COM (2603:10a6:144::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5986.18; Mon, 9 Jan 2023 08:56:54 +0000
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::c92:6f2f:7738:ed9b]) by GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::c92:6f2f:7738:ed9b%3]) with mapi id 15.20.5986.018; Mon, 9 Jan 2023 08:56:54 +0000
Message-ID: <d08078df-60fc-f130-6c77-c13ecaabb429@ri.se>
Date: Mon, 09 Jan 2023 09:56:51 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.4.2
To: "Fries, Steffen" <steffen.fries@siemens.com>, "iot-directorate@ietf.org" <iot-directorate@ietf.org>
Cc: "anima@ietf.org" <anima@ietf.org>, "draft-ietf-anima-brski-prm.all@ietf.org" <draft-ietf-anima-brski-prm.all@ietf.org>
References: <167171597363.30296.6592970240195520921@ietfa.amsl.com> <DU0PR10MB51964646B44CCB2ADBB76A53F3F79@DU0PR10MB5196.EURPRD10.PROD.OUTLOOK.COM>
Content-Language: en-US
From: Marco Tiloca <marco.tiloca@ri.se>
In-Reply-To: <DU0PR10MB51964646B44CCB2ADBB76A53F3F79@DU0PR10MB5196.EURPRD10.PROD.OUTLOOK.COM>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------p9ts9yqXRI80eue6IeOUSj5O"
X-ClientProxiedBy: FR2P281CA0115.DEUP281.PROD.OUTLOOK.COM (2603:10a6:d10:9d::17) To GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: GVYP280MB0464:EE_|GV2PPF30B4F3F64:EE_
X-MS-Office365-Filtering-Correlation-Id: 92102e21-2649-4c68-7386-08daf21f74ef
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230022)(4636009)(396003)(39850400004)(346002)(376002)(136003)(366004)(451199015)(45080400002)(54906003)(36756003)(2906002)(110136005)(66476007)(8676002)(66556008)(66946007)(4326008)(316002)(83380400001)(166002)(38100700002)(478600001)(6486002)(966005)(26005)(186003)(6512007)(2616005)(86362001)(21480400003)(31696002)(33964004)(6506007)(6666004)(53546011)(44832011)(30864003)(8936002)(5660300002)(235185007)(31686004)(41300700001)(45980500001)(43740500002); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-Network-Message-Id: 92102e21-2649-4c68-7386-08daf21f74ef
X-MS-Exchange-CrossTenant-AuthSource: GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 09 Jan 2023 08:56:54.7666 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: JiLgh1gbsXL2v5TZlwXfpFoJsHHSIchL8Not4KqyhelOv/yQ0EnZh0Cm02g0V18ppt4Y9FzJhsukU0cbOmiRxQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GV2PPF30B4F3F64
Archived-At: <https://mailarchive.ietf.org/arch/msg/iot-directorate/uchQ9slPqhd-LVhE91ChQx_WLVU>
Subject: Re: [Iot-directorate] Iotdir early review of draft-ietf-anima-brski-prm-05
X-BeenThere: iot-directorate@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Mailing list for the IoT Directorate Members <iot-directorate.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/iot-directorate>, <mailto:iot-directorate-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/iot-directorate/>
List-Post: <mailto:iot-directorate@ietf.org>
List-Help: <mailto:iot-directorate-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/iot-directorate>, <mailto:iot-directorate-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Jan 2023 08:57:06 -0000
Hello Steffen, Your updates look good to me. Thanks for addressing my comments! Best, /Marco On 2023-01-02 14:19, Fries, Steffen wrote: > Hi Marco, > > Thank you for the early review, I made my comments to yours inline. > >> -----Original Message----- >> From: Marco Tiloca via Datatracker<noreply@ietf.org> >> Sent: Donnerstag, 22. Dezember 2022 14:33 >> To:iot-directorate@ietf.org >> Cc:anima@ietf.org;draft-ietf-anima-brski-prm.all@ietf.org >> Subject: Iotdir early review of draft-ietf-anima-brski-prm-05 >> >> Reviewer: Marco Tiloca >> Review result: Ready with Nits >> >> [Section 3.1] >> >> * "Once a pledge with such combined functionality has been bootstrapped, it >> may act as client for enrollment or re-enrollment of further certificates >> needed, e.g., using the enrollment protocol of choice." >> >> Considering the normative words used in the previous paragraph for a >> pledge >> with combined functionalities, I would have expected the use of "MAY" >> here >> about a pledge-initiated enrollment. Is the use of the non-normative "may" >> intentional? > Yes you are right. We should consequently to the preceding paragraph also use MAY here. Will adapt this. > >> [Section 3.2] >> >> * "The mechanism described in this document presume the availability of the >> pledge to communicate with the registrar-agent." >> >> The last sentence in the paragraph says that "the registrar-agent is >> similarly presumed to be unavailable for certain periods of time". >> Consistently, the first sentence quoted above can already suggest that >> point, instead of focusing on the pledge only. E.g., it can say: >> >> "The mechanism described in this document presumes the availability of >> the >> pledge and the registrar-agent to communicate with one another." > Yes, taken. > > >> [Section 4] >> >> * "A POI is also required for the certification request and therefore needs to >> be additionally bound to the existing credential of the pledge (IDevID)." >> >> The subject of "needs" is the certification request, right? > Yes, enhanced the sentence for clarity to: > " A POI is also required for the certification request and therefore the certification request needs to be additionally bound to the existing credential of the pledge (IDevID)." > >> * "This binding supports the authorization decision for the certification >> request may be provided directly with the certification request." >> >> I am not sure how to parse this sentence. It think you mean "... for the >> certification request and may be provided ...". Correct? > Yes, updated as suggested > >> * "... based on COSE [RFC9052]" >> >> I think it is appropriate to cite also RFC 9053. > Yes, certainly. Included in the text and as additional reference. > > >> [Section 5.1] >> >> * "enhances existing with new supported media types, e.g., for JWS >> voucher" >> >> What is existing and enhanced? Data exchanges and messages, or instead >> endpoints again? > Yes, it was intended to enhance the endpoints. > Corrected accordingly to " enhances existing endpoints with new supported media types, e.g., for JWS voucher " > > >> [Section 5.1] >> >> * "The registrar-agent may provide additional data to the pledge in the >> context of the voucher triggering request, to make itself visible to the >> domain registrar." >> >> Could you elaborate on this, perhaps through an example? How does this >> help >> the registrar-agent to make itself visible to the domain registrar? > Okay, after rereading the sentence, it may be misleading. The intention was to allow the registrar to realize with which registrar-agent the pledge was in contact. > I will reformulate that sentence to make that clearer and also make the may normative. Updated bullet: > " The registrar-agent MAY provide additional data to the pledge in the context of the voucher triggering request, that the pledge includes into the PVR. This allows the registrar to identify, with which registrar-agent the pledge was in contact." > >> Isn't visibility a general issue between Registrar Agent and Domain >> Registrar, for which the specific Pledge does not play a role? > Yes, as stated above, the intention was to allow the registrar to know, with which registrar agent the pledge was in contact. > >> * "The registrar-agent may be implemented as an integrated functionality of >> a commissioning tool or be co-located with the registrar itself." >> >> This feels like something quite important to say already in Section 1 >> "Introduction". > Good point. I moved that sentence to the first bullet in the introduction. > >> [Section 6.2] >> >> * "Registrar-agent: possesses ... In addition, it may possess the IDevID CA >> certificate of the pledge vendor/manufacturer to verify the pledge certificate >> in the received request messages." >> >> Consistently with what is said later on about the MASA, I think that the >> sentence above should also better use the normative "MAY". > Agreed, changed to "MAY" > >> [Section 6.2.2] >> >> * "If the validation fails the registrar SHOULD respond with HTTP 404 Not >> Found status code to the registrar-agent." >> >> Why 404? The registrar has been processing the request from the >> registrar-agent, so the targeted resource indeed exists at the registrar. >> >> Wouldn't 403 be more appropriate? > Good catch! We had 404 as the registrar was expected to verify the received pledge information against authorization information available on the registrar. > As the verification of the PVR involves more than just the serial number check I will add 403 similar as for the case in section 6.3.3 > The resulting text would be: > "If the registrar is unable to validate the PVR it SHOULD respond with a HTTP 4xx/5xx error code to the registrar-agent. > > The following 4xx client error codes SHOULD be used: > * 403 Forbidden: if the registrar detected that one or more security related parameters are not valid. > * 404 Not Found status code if the pledge provided information could not be used with automated allowance, as described in section 5.3 of RFC8995. > * 406 Not Acceptable: if the Content-Type indicated by the Accept header is unknown or unsupported.. " > >> Later on, the last paragraph of Section 6.2.3 more generally considers a 4xx >> status code in case of (agent-signed-data) validation failure. > We referred here to RFC 8995 as we kept the handling. > >> Further later on in Section 6.3.3, a failed validation of the wrapping >> signature is followed by a 403. > Should be in line now with the change described above. Will change the text also to a list to make the reading alike. > "The following 4xx client error codes SHOULD be used by the pledge: > * 403 Forbidden: if the validation of the wrapping signature or another security check fails. > * 415 Unsupported Media Type: if the Content-Type of the request is in an unknown or unsupported format. > * 400 Bad Request: if the pledge detects errors in the encoding of the payload." > > >> [Section 6.3.5] >> >> * "Once the registrar-agent has collected the information, it can connect to >> the registrar-agent to provide the status responses to the registrar." >> >> I guess you mean: "Once it has collected the information, the >> registrar-agent can connect to the registrar to provide it with the status >> responses." > Yes, corrected as suggested. > > >> [Section 6.4.2] >> >> * "The pledge-status responses are cumulative in the sense that connect- >> success implies enroll-success implies voucher-success." >> >> I guess you mean: "The pledge-status responses are cumulative in the >> sense >> that connect-success implies enroll-success, which in turn implies >> voucher-success." > Yes, corrected as suggested. > > >> [Section 10.1] >> >> * "... (the pledge may produce a voucher, and refuse to produce another >> one)." >> >> What is produced is actually a "voucher request", right? > Yes, corrected to "voucher-request" > > >> [Nits] > All addressed, thank you. > >> * Abstract >> - s/situations, in which/situations in which >> >> * Section 1: >> - s/In this scenarios it/In this scenario, it >> - s/i this document/in this document >> - s/on application layer/addressed on the application layer >> - s/IDevID do not/IDevIDs do not >> >> * Section 2: >> - s/be a temporary/be temporary >> - s/PER send to the CA/PER sent to the CA >> >> * Section 3.1: >> - s/pledges, which can/pledges which can >> - s/as describe in/as described in >> >> * Section 3.2: >> - s/document presume the/document presumes the >> >> * Section 4: >> - s/are than provided/are then provided >> - s/certificate a that/a certificate that >> - s/a signature using/a signature computed using >> >> * Section 5: >> - s/constraint environments it may provided/constrained environments it >> may be provided >> >> * Section 5.1: >> - s/endpoints were additional/endpoints where additional >> - s/or cases where/or in cases where >> >> * Section 6.1: >> - s/beacons The registrar-agent/beacons. The registrar-agent >> >> * Section 6.1.2: >> - s/or it's not/or if the request is not >> - s/synchronized the time/synchronized time >> >> * Section 6.2: >> - s/possesses it's own/possesses its own >> - s/it's own registrar EE/its own registrar EE >> - s/possesses it's own vendor/possesses its own vendor >> >> * Section 6.2.3: >> - s/of pledge The/of pledge. The >> >> * Section 6.2.5: >> - s/point 8. The/point 8). The >> - s/contain registrar EE/contain the registrar EE >> >> * Section 6.3: >> - The first paragraph has an in-line bullet list that was probably intended to >> stand out on its own following a line break after "the pledge:". >> >> * Section 6.3.1: >> - s/example if given/example is given >> >> * Section 7.1.1: >> - s/the registrar-proximity-certificate, and/registrar-proximity-certificate, >> and >> >> * Section 7.1.2: >> - s/form the pledge/from the pledge >> >> * Section 9 >> - s/a "oppressive/an "oppressive >> - s/could be easily be/could easily be >> - s/insert on-path/insert an on-path >> >> * Section 10.3 >> - s/an registrar-agent/a registrar-agent >> >> * Section 10.4 >> - s/this if his/this if its >> -- Marco Tiloca Ph.D., Senior Researcher Phone: +46 (0)70 60 46 501 RISE Research Institutes of Sweden AB Box 1263 164 29 Kista (Sweden) Division: Digital Systems Department: Computer Science Unit: Cybersecurity https://www.ri.se
- [Iot-directorate] Iotdir early review of draft-ie… Marco Tiloca via Datatracker
- Re: [Iot-directorate] Iotdir early review of draf… Fries, Steffen
- Re: [Iot-directorate] Iotdir early review of draf… Marco Tiloca