[IPsec] draft-ietf-lwig-minimal-esp shepherd writeup
Mohit Sethi M <mohit.m.sethi@ericsson.com> Sat, 20 March 2021 09:32 UTC
Return-Path: <mohit.m.sethi@ericsson.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE2CB3A1E76; Sat, 20 Mar 2021 02:32:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.349
X-Spam-Level:
X-Spam-Status: No, score=-2.349 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.248, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ipTl3C2Li5vK; Sat, 20 Mar 2021 02:32:10 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2047.outbound.protection.outlook.com [40.107.21.47]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 917743A1E77; Sat, 20 Mar 2021 02:32:09 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=lfdTbLgkl1h2asExnemt75nlfbcVt7bPKVAYfncsJ4y8q5NnFqv3DEkQ1AnDvPGmKzoWNWnhlqN8i5VCTB49JqZSI3xPIR+gh8uo2ItaRzxJs8vELiPx/hakvJUEqmRXYpJrBp16NdAc+GZWaMnnMVUdWsiDiITPq6uvHpFKjiEp7tuS9492jato4cQ+14popHAklf384hi+sOUHKQ/XgkkN/Yx/bYxHsdIEBsoAn6z4K0yW4YmueNBx7vXsFShr/Yn3/JLGG+x2h/9zVYuLs/GEUAKOAXijIX2ehtbcncmo3CUDgB7qpdWvJ+VlmSkBQBuSEgwhuQu12T7zXXBILg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=m3p7ct4eWUxBPSu/hynv/bnKKQ1tOWsMAntcM29BftM=; b=dElOaTFYiiA1SGP8fJnzgBmZZZExBQN4UKooEJGYRAqQR5VqNIchuzjbvEPnomWoNJHSi9PN7VbRRKy/ym9995VRDHGYgb+K5UmwXCmxUYP8BYOc1IwL4dj2Q2uHWLqgaPB1aK1dc9lSP/sSpBgYanl+6A/lCi8unxSyox1z7lfQvjJjfTpiu/b81IcFyrCraI8jeHtXULVbJmo0pF8c2L07vePKmuydRS7MktlmA9MM4AitbwclhQmzHya9t7mf4eSOAb3+qs2OC8UvNDvfIhWxo6832yAaGAW/XD16M34kXi9dYKEiJ5F8OMmbXo3IQcsNBTVmfvKIZAH/Zpck5A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=m3p7ct4eWUxBPSu/hynv/bnKKQ1tOWsMAntcM29BftM=; b=FuJ2CuA99GfrnH3uJO3iv9yYwCjGLiY7GA5L8uBSCXn+kksdfM3SBRp3T3lPz2VFKG2ktFli2OkCfhNEWVRL/pJdwWx1MjNfFB/ydBkfEcABBrinFMahOEOlEH5eeFBNx/ViHI5F8G2cOiJlKL3gWayyoPU+cABPv+GVPb4J3o0=
Received: from HE1PR07MB3436.eurprd07.prod.outlook.com (2603:10a6:7:37::31) by HE1PR07MB3084.eurprd07.prod.outlook.com (2603:10a6:7:2d::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3955.13; Sat, 20 Mar 2021 09:31:51 +0000
Received: from HE1PR07MB3436.eurprd07.prod.outlook.com ([fe80::9028:916a:402e:aa6a]) by HE1PR07MB3436.eurprd07.prod.outlook.com ([fe80::9028:916a:402e:aa6a%6]) with mapi id 15.20.3955.024; Sat, 20 Mar 2021 09:31:51 +0000
From: Mohit Sethi M <mohit.m.sethi@ericsson.com>
To: "lwip@ietf.org" <lwip@ietf.org>, "ipsec@ietf.org" <ipsec@ietf.org>
Thread-Topic: draft-ietf-lwig-minimal-esp shepherd writeup
Thread-Index: AQHXHWvbfz18Nkhm0Ua/2a/3SeSJQQ==
Date: Sat, 20 Mar 2021 09:31:51 +0000
Message-ID: <2027681f-db9a-3ee1-fe17-cc66fbb24d07@ericsson.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [85.76.67.190]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 8a917e37-df36-4e08-a7b0-08d8eb82fe59
x-ms-traffictypediagnostic: HE1PR07MB3084:
x-microsoft-antispam-prvs: <HE1PR07MB30841161798EABCE0A74C390D0679@HE1PR07MB3084.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: TbZDX5HIWzQVzkumQhvF88IPBtnkezI/4oLpU7ypKVyYuq8QTcx/Fdwlp3fcKpsG2kwUBcciRNF1MDg/UhhaqFtV34yH88OmOckuodYRFCwFHwAfd88zSPoNaQDEjUmuW34us8LAm/mvdqSQQzZoIr8EJlrtWg5LJfraXPe3CL+kdh91jib0mPBaTUSyYO3l70xqMQUj4i4ORCKyPjQOy/c1eEyWCU+p9h9SNHLM5djF/0E+Feo2VhUAVFnCN9F2LgyflVM8imzBeZEDs4NimDFquprfjE5+DxzHkZEYpYai1uOYDOF1YsCTueW/vMEk4vNn41QdiqNXFMeWOhpfPKRV/0CLPXIJIUjDpSXFafEpWJCtCHBwq3q1C+bErbgdAvrbXYxe1aXIXhFQJnWG383PtXMehe91knrzZwJ6t1zOuCGuaczQA23G66HJjd/tos2C4cJAkWsfW4w9xhz3kPsU2AMutQrFJTFVC9wBDrVuhtw7VDaRQYGYkQ0wP5M+R1+GKTvb1xhe5ZjwdaWvG2F7mza0bZONHF11+VeKHPCFHBw/OEMfqfIC2LHvoL4qh0D72Ei5wCJY/WeAYB6riibormGlW7TYOM7sIILRQKTI9wWkIo3glKE5XeEL+012vgYFKKnQ6D2IZVixbJhZIKS1IgUo0qDw6K3ZoFIATe3sKhxxxxJGInaQDi88Zi87aPiGetTF4DTe/JAvCRJmtPtkk1vqjwm+0P6D2KBtIgt1HbUU0loYeRV+ce0o1V4sHaNwe16iFj0cOL1sqiQTkRHGzpYk/MAhRAvbW7nVTeo=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB3436.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(376002)(396003)(136003)(366004)(346002)(450100002)(31686004)(966005)(6512007)(6506007)(110136005)(83380400001)(2906002)(26005)(38100700001)(316002)(76116006)(36756003)(66476007)(31696002)(71200400001)(86362001)(186003)(5660300002)(6486002)(8676002)(478600001)(66946007)(66446008)(64756008)(8936002)(2616005)(66556008)(45980500001)(43740500002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <0ADC814250FBDB4F84B837657D0DAC12@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB3436.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8a917e37-df36-4e08-a7b0-08d8eb82fe59
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Mar 2021 09:31:51.7180 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: cU3aWe3Zc08W4b4f4DHAaF4LDSS4T+QVUCP/CxXGv5XyFywNzSadSUwdFQUTDwqnTqnNN+AEl0nncBxAjGFZby/cdWYqOWk8yAdws+r+RDU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3084
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/7D1a1pIzvXH_22ggr2YFCq4KpnY>
Subject: [IPsec] draft-ietf-lwig-minimal-esp shepherd writeup
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 20 Mar 2021 09:32:12 -0000
The current version of the shepherd writeup is now in datatracker: https://datatracker.ietf.org/doc/draft-ietf-lwig-minimal-esp/shepherdwriteup/. I have copied the text here for your convenience: Mohit Sethi is the document Shepherd. Erik Kline is the responsible Area Director. The document defines techniques for a minimal implementation of the Encapsulation Security Payload (ESP) defined in RFC 4303. It does not update or modify RFC 4303 in any way. In case of any conflicts RFC 4303 is treated as authoritative description. The following people reviewed and provided comments: Tero Kivinen, Valery Smyslov, and others. Paul Wouters had expressed strong reservations (https://mailarchive.ietf.org/arch/msg/lwip/xDcICiuALZ2ExF3qwRCnhCQC3A0/) during the call for adoption. He had reservations against relaxing the randomness requirements for SPI. He also noted that the argument for not having a sequence number counters are weak as AES-GCM and CHACHA20POLY1305 require a counter anyways. Paul was amenable to adopting the document as long as it was defining an ESP profile for resource-constrained devices and not modifying the protocol itself. No issues were raised during the working group last call. The document shepherd has solicited reviews from the security and IoT directorate as well as the gen-art team. The Shepherd has verified that all of the authors have already disclosed any IPR related to this document, as is required by BCPs 78 and 79. There are no DOWNREFs. There are no IANA considerations. --Mohit
- [IPsec] draft-ietf-lwig-minimal-esp shepherd writ… Mohit Sethi M