Re: [IPsec] NUDGE: WG Last Call for draft-ietf-ipsecme-dh-checks

"Scott Fluhrer (sfluhrer)" <sfluhrer@cisco.com> Tue, 09 April 2013 19:12 UTC

Return-Path: <sfluhrer@cisco.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 86C9F21F95EB for <ipsec@ietfa.amsl.com>; Tue, 9 Apr 2013 12:12:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x5Y9mAy-9MBk for <ipsec@ietfa.amsl.com>; Tue, 9 Apr 2013 12:12:45 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) by ietfa.amsl.com (Postfix) with ESMTP id C49E521F9130 for <ipsec@ietf.org>; Tue, 9 Apr 2013 12:12:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1156; q=dns/txt; s=iport; t=1365534765; x=1366744365; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=YsqoD0jLAMb4IDK/OhPqHmPO2LCxbD9k9IGbCBniiis=; b=JcDeTxKUAe20qjYTH84E8aSJqbGUnYBhABK7RTpTDxwPRcFpcxmv8WlE zlVU5m9dmazerFMfayohcvsJY7E0UmLw6Z1UlPr2g12cv4oLVKoGrmKoM GnEc/hSbb0YtTEIyvnatJZFz9eVxTt7ds7blvFcdNUPmMPvCCSml0cFSO Y=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Ag4FAE1nZFGtJXG9/2dsb2JhbABRgwbBbIEXFnSCHwEBAQQdHT8MBAIBCA4DBAEBCxQJBzIUCQgCBAENBQiIDK5ikDaOYzEHBoJaYQOoCIMLgig
X-IronPort-AV: E=Sophos;i="4.87,441,1363132800"; d="scan'208";a="196781209"
Received: from rcdn-core2-2.cisco.com ([173.37.113.189]) by rcdn-iport-2.cisco.com with ESMTP; 09 Apr 2013 19:12:39 +0000
Received: from xhc-rcd-x02.cisco.com (xhc-rcd-x02.cisco.com [173.37.183.76]) by rcdn-core2-2.cisco.com (8.14.5/8.14.5) with ESMTP id r39JCbew000958 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 9 Apr 2013 19:12:37 GMT
Received: from xmb-rcd-x04.cisco.com ([169.254.8.60]) by xhc-rcd-x02.cisco.com ([173.37.183.76]) with mapi id 14.02.0318.004; Tue, 9 Apr 2013 14:12:37 -0500
From: "Scott Fluhrer (sfluhrer)" <sfluhrer@cisco.com>
To: Dan Brown <dbrown@certicom.com>, "'Michael Richardson'" <mcr+ietf@sandelman.ca>
Thread-Topic: [IPsec] NUDGE: WG Last Call for draft-ietf-ipsecme-dh-checks
Thread-Index: AQHONKKDikpZdmEiWUOFvhKCnr1P7JjNh4EA//+sFACAAQK2AIAACjwAgAAIcwCAACt5AP//zWpg
Date: Tue, 9 Apr 2013 19:12:37 +0000
Message-ID: <A113ACFD9DF8B04F96395BDEACB3404209060DC2@xmb-rcd-x04.cisco.com>
References: <9F821C79-A855-4060-A356-ED8E5C50048B@vpnc.org> <5697.1365476466@sandelman.ca> <A113ACFD9DF8B04F96395BDEACB3404209060652@xmb-rcd-x04.cisco.com> <17925.1365514002@sandelman.ca> <810C31990B57ED40B2062BA10D43FBF513E325@XMB111CNC.rim.net> <29765.1365518014@sandelman.ca> <810C31990B57ED40B2062BA10D43FBF513E46D@XMB111CNC.rim.net>
In-Reply-To: <810C31990B57ED40B2062BA10D43FBF513E46D@XMB111CNC.rim.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.32.244.83]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: IPsecme WG <ipsec@ietf.org>
Subject: Re: [IPsec] NUDGE: WG Last Call for draft-ietf-ipsecme-dh-checks
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Apr 2013 19:12:45 -0000

> -----Original Message-----
> From: Dan Brown [mailto:dbrown@certicom.com]
> Sent: Tuesday, April 09, 2013 1:09 PM
> To: 'Michael Richardson'
> Cc: IPsecme WG; Scott Fluhrer (sfluhrer)
> Subject: RE: [IPsec] NUDGE: WG Last Call for draft-ietf-ipsecme-dh-checks
> 
> > -----Original Message-----
> > From: ipsec-bounces@ietf.org [mailto:ipsec-bounces@ietf.org] On Behalf
> > Of Michael Richardson
> > Sent: Tuesday, April 09, 2013 10:34 AM
> >
> >
> > Is the the point here is that this is safe if we do these tests.
> >
> [DB]  Yes, that is the point.
> 
> I gather the document's motivation was unclear to you.  Were the
> document's specified actions also unclear to you?
> 
> Could you suggest a specific clarification to the document that would correct
> what made it unclear to you?

It would be of great help  if you (Michael) could explain what was unclear.

The entire point of this draft is to explain how to do some cryptographical checks to someone who is not familiar with cryptography. Hence, any complaint of "I didn't understand that" is valid; it shows that we weren't as clear as we hoped.