Re: [Lake] Zaheduzzaman Sarker's No Objection on draft-ietf-lake-edhoc-20: (with COMMENT)
Zaheduzzaman Sarker <zahed.sarker.ietf@gmail.com> Thu, 24 August 2023 09:00 UTC
Return-Path: <zahed.sarker.ietf@gmail.com>
X-Original-To: lake@ietfa.amsl.com
Delivered-To: lake@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 99A1AC14CE22; Thu, 24 Aug 2023 02:00:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TcrCwRcLoiVU; Thu, 24 Aug 2023 01:59:59 -0700 (PDT)
Received: from mail-pj1-x1034.google.com (mail-pj1-x1034.google.com [IPv6:2607:f8b0:4864:20::1034]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB0A6C14CF13; Thu, 24 Aug 2023 01:59:42 -0700 (PDT)
Received: by mail-pj1-x1034.google.com with SMTP id 98e67ed59e1d1-26814e27a9eso3714348a91.0; Thu, 24 Aug 2023 01:59:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1692867582; x=1693472382; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=EAc9nikptEGFEw4rnQoaQzjfEmipPxg1l4KXDfG8ORw=; b=aLLaycDVCTQBe8vJe/8o6GGzpxacov1OS6buSRZ2tRmj+XV3gocK6qYUfUsPDIO68O Mi3F8aY0h0Hk5IJFPvjqhkfOZ1fScQbRWv67t6pVJ2bTsVAbxzqG1ZmFzO3lBuQFHZ/n FoKz6OQAGgMU8+uehgC7+UlsjD2XOF7mT/+/cfYGlRA6cAQNLR3xyI8SkveSxm4R+3hx 2ABFm0DfYrnnl5npystJRxa+dDNuXlteQ0FHeFFf2kFuTEm56FXEhVr9g0pXYlAMRzv1 PGO3ntBb6qVp28pPUMpBsJ1WgUb8BEo18FhsjZx9JcLZ9zEuPFmY1aCmp9R7yi+oMmLr 4M9g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1692867582; x=1693472382; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=EAc9nikptEGFEw4rnQoaQzjfEmipPxg1l4KXDfG8ORw=; b=Py3lV6eAK/ab1ysJ+iNYTr1A2TB/UZX8r3eslHnYnqOulXck+Ts/H4lBcZVTaLUZRw REWv/sqgjgqMpceCKN37vaZr87WIv21YjAuuE0HELvvEOB85E093l6NcTuMQPm8gWS9Y LKKdQu8KsugoAG/sKVeDGUhuKzlQGhiibFhsuHF2OrGW9b2aGpEexqzmdzz0Awk0veJk Qr2I4BWM3ygIsC30Kx/G3ys3SsPgTWMd+aQqRoA6WUTtNXVt42t7tgrpOt2ibi59eE0/ zpWurSBER1aXbRjpcumzlemCwwAtFtRL48xM8mBhIo+QmeUCWGtru0Q00/qtF+VQjRep NfLQ==
X-Gm-Message-State: AOJu0Yx6JjW5hOUzddWyrHW/XGj7yZsbrPLxSkt38l8Vfe2I0vic/QPO vqr1q+ME9taIHdey3cmZ32BvDa2wX0UGgacs/Hc=
X-Google-Smtp-Source: AGHT+IFOXZY3AtEbPIVKNKWy1Vp7nLCmjyax4YuBVKfqnXNpH1tL44GdxKfMcYuewusR8Kg4Djv5oGfEh7jvjfMiSNM=
X-Received: by 2002:a17:90b:2304:b0:268:3f2d:66e4 with SMTP id mt4-20020a17090b230400b002683f2d66e4mr11691187pjb.37.1692867582070; Thu, 24 Aug 2023 01:59:42 -0700 (PDT)
MIME-Version: 1.0
References: <169271555219.5723.8616031040868994897@ietfa.amsl.com> <PAXPR07MB884467F6BD8B342AB46730D3F41CA@PAXPR07MB8844.eurprd07.prod.outlook.com>
In-Reply-To: <PAXPR07MB884467F6BD8B342AB46730D3F41CA@PAXPR07MB8844.eurprd07.prod.outlook.com>
From: Zaheduzzaman Sarker <zahed.sarker.ietf@gmail.com>
Date: Thu, 24 Aug 2023 10:59:32 +0200
Message-ID: <CAEh=tcfaABK+d5+kKq62GbOZnKkL2vV_L6chEd9NLkkfj1FSgQ@mail.gmail.com>
To: Göran Selander <goran.selander@ericsson.com>
Cc: The IESG <iesg@ietf.org>, "draft-ietf-lake-edhoc@ietf.org" <draft-ietf-lake-edhoc@ietf.org>, "lake-chairs@ietf.org" <lake-chairs@ietf.org>, "lake@ietf.org" <lake@ietf.org>, "malisa.vucinic@inria.fr" <malisa.vucinic@inria.fr>
Content-Type: multipart/alternative; boundary="000000000000e193720603a7720e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/lake/2sNVoyDZUNBtBbIwwBfOsBhdgts>
Subject: Re: [Lake] Zaheduzzaman Sarker's No Objection on draft-ietf-lake-edhoc-20: (with COMMENT)
X-BeenThere: lake@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Lightweight Authenticated Key Exchange <lake.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lake>, <mailto:lake-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lake/>
List-Post: <mailto:lake@ietf.org>
List-Help: <mailto:lake-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lake>, <mailto:lake-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Aug 2023 09:00:03 -0000
On Wed, Aug 23, 2023 at 11:14 PM Göran Selander <goran.selander@ericsson.com> wrote: > Hi Zahed, > > > > Thanks for your review. It is tracked as github issue #420 > <https://github.com/lake-wg/edhoc/issues/420>. I tried to compile all > updates related to comments on section 3.4, including yours, in one PR > #429 <https://github.com/lake-wg/edhoc/pull/429>. > > > > Please find responses to your comments inline below. > > > > Göran > > > > > > *From: *Zaheduzzaman Sarker via Datatracker <noreply@ietf.org> > *Date: *Tuesday, 22 August 2023 at 16:46 > *To: *The IESG <iesg@ietf.org> > *Cc: *draft-ietf-lake-edhoc@ietf.org <draft-ietf-lake-edhoc@ietf.org>, > lake-chairs@ietf.org <lake-chairs@ietf.org>, lake@ietf.org <lake@ietf.org>, > malisa.vucinic@inria.fr <malisa.vucinic@inria.fr>, malisa.vucinic@inria.fr > <malisa.vucinic@inria.fr> > *Subject: *Zaheduzzaman Sarker's No Objection on > draft-ietf-lake-edhoc-20: (with COMMENT) > > Zaheduzzaman Sarker has entered the following ballot position for > draft-ietf-lake-edhoc-20: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to > https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ > for more information about how to handle DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-lake-edhoc/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Thanks for working on this specification. Thanks to Michael Scharf his > valuable > TSVART review and nice to those addressed. > > I would like to have responses on the following points as I believe clarity > would help this specification - > > - It appeared to me that reliable transport is preferred while EDHOC > messages are transmitted, however, this is not clearly mentioned. I > think if > this is the case then it should be clear in this specification. > > [GS] The preferences for transport depend on the application, but the > default transport of EDHOC is CoAP in reliable mode. See clarifications in > #429 <https://github.com/lake-wg/edhoc/pull/429>. > > > - I also like section 3.4, however, it is not clear to me if the list > provided, is a "must to meet" criteria for any transport or fulfilling > any > subset of features is good enough. If the later then this specification > should describe how the missing criteria should be fulfilled or ignore > or > describe the impact. > > [GS] The security protocol does not depend on any of the transport > criteria listed in section 3.4. The consequence of the transport producing > something else than the next message according to protocol state is that > the session will be aborted. > OK. > The application decides on transport to use and which criteria in the list > to fulfil, and thereby what risks it is prepared to take for potential > termination of the protocol due to shortcomings of the transport. > This is however, still not clear in the text in 3.4. Lets say, for some reasons the application just opens up an UDP socket to send the EDHOC messages, in that case the transport protocol would not be able to provide those listed as expect in the specification - "In order to avoid unnecessary message processing or protocol termination, the transport is responsible to handle", so either the application take cares of all the transport responsibilities or does not select UDP, but there is nothing in the specification that prohibits the application to pick UDP in the socket. This is to me is not a good situation and need clarification. (As I wrote in the my previous comment, the specification seems to prefer reliable transport and may be that should be default ask). //Zahed >
- [Lake] Zaheduzzaman Sarker's No Objection on draf… Zaheduzzaman Sarker via Datatracker
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Göran Selander
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Zaheduzzaman Sarker
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Göran Selander
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Göran Selander
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Zaheduzzaman Sarker