Re: [IPsec] graveyard: deprecate->historic
Benjamin Kaduk <kaduk@mit.edu> Mon, 23 December 2019 18:46 UTC
Return-Path: <kaduk@mit.edu>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A3A96120CC5 for <ipsec@ietfa.amsl.com>; Mon, 23 Dec 2019 10:46:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NIYNuBrA8A-6 for <ipsec@ietfa.amsl.com>; Mon, 23 Dec 2019 10:46:56 -0800 (PST)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D16D91200C4 for <ipsec@ietf.org>; Mon, 23 Dec 2019 10:46:55 -0800 (PST)
Received: from kduck.mit.edu ([24.16.140.251]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id xBNIkp6R017144 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 23 Dec 2019 13:46:54 -0500
Date: Mon, 23 Dec 2019 10:46:51 -0800
From: Benjamin Kaduk <kaduk@mit.edu>
To: Sean Turner <sean@sn3rd.com>
Cc: IPsec List <ipsec@ietf.org>
Message-ID: <20191223184651.GC35479@kduck.mit.edu>
References: <A8FABB55-C89E-4DDE-88CA-9A5839E023B2@sn3rd.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <A8FABB55-C89E-4DDE-88CA-9A5839E023B2@sn3rd.com>
User-Agent: Mutt/1.12.1 (2019-06-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/PrtgdBmgh7OBvGM_Mk3Uc0CWZ2I>
Subject: Re: [IPsec] graveyard: deprecate->historic
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Dec 2019 18:46:58 -0000
Since we're in pedantic process mode...
On Tue, Dec 17, 2019 at 02:31:08PM -0500, Sean Turner wrote:
> warning: process mumbo jumbo follows
>
> Technically, I think that s3 of draft-pwouters-ikev1-ipsec-graveyard is trying to do is move IKEv1 to historic. IKEv1 is already obsoleted by RFC 4036, but that’s not quite the same thing as moving what was a standards track document to “historic”. The various way to move an RFC to historic is described in this IESG statement {0]. Since there’s already a draft going, it seems like #3 is the path.
>
> The question is whether there should be two drafts: one that moves RFC 2409 to historic and the other deprecates the algorithms. I wouldn’t be hard over on splitting, but it’s probably better to use the “historic” terminology in s3. I suggest the following changes:
>
> 0: Tweak abstract
>
> OLD:
>
> This document deprecates Internet Key Exchange version 1 (IKEv1) and
> additionally deprecates a number of algorithms that are obsolete.
>
> NEW:
>
> This document moves Internet Key Exchange version 1 (IKEv1) to
> Historic status. It also deprecates a number of algorithms that
"this document" (i.e., the RFC-to-be) does not actually effecuate the move
to Historic status; the separate "status-change" document does so. Looking
at a recent example in RFC 8429, we see this phrased akin to "Accordingly,
IKEv1 has been moved to Historic status" with no claim of doing so because
of the current document.
> are obsolete and closes all IKEv1 registries.
>
> 1: Tweak intro
>
> OLD:
>
> This document specifies the deprecation of
> IKEv1, and requests IANA to close all IKEv1 registries.
>
> NEW:
>
> This document moves IKEv1 to to Historic status, and
(similar here)
> requests IANA to close all IKEv1 registries.
>
> 2: Change section title
>
> s/Deprecating IKEv1/RFC 2409 to Historic
This is probably okay to keep (I see Paul took the changes already), but
the first sentence is still "IKEv1 is deprecated", which is sending mixed
signals. Perhaps something like "IKEv1 is no longer relevant for Internet
systems" would work, though I suspect we could even get away without such
an intro sentence and just dive in straight with "Systems running IKEv1
should be upgraded and reconfigured to run IKEv2."
-Ben
> spt
>
> [0] https://ietf.org/about/groups/iesg/statements/designating-rfcs-historic-2014-07-20/
> [1]
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec
- [IPsec] graveyard: deprecate->historic Sean Turner
- Re: [IPsec] graveyard: deprecate->historic Benjamin Kaduk
- Re: [IPsec] graveyard: deprecate->historic Paul Wouters
- Re: [IPsec] graveyard: deprecate->historic Benjamin Kaduk
- Re: [IPsec] graveyard: deprecate->historic Sean Turner
- Re: [IPsec] graveyard: deprecate->historic Dan Harkins
- Re: [IPsec] graveyard: deprecate->historic Benjamin Kaduk
- Re: [IPsec] graveyard: deprecate->historic Dan Harkins
- Re: [IPsec] graveyard: deprecate->historic Paul Wouters
- Re: [IPsec] graveyard: deprecate->historic Michael Richardson