Re: [Lake] Zaheduzzaman Sarker's No Objection on draft-ietf-lake-edhoc-20: (with COMMENT)
Göran Selander <goran.selander@ericsson.com> Wed, 23 August 2023 21:14 UTC
Return-Path: <goran.selander@ericsson.com>
X-Original-To: lake@ietfa.amsl.com
Delivered-To: lake@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 172E7C13AE4A; Wed, 23 Aug 2023 14:14:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id I0RjBMkMhDCN; Wed, 23 Aug 2023 14:14:21 -0700 (PDT)
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-db5eur01on2071.outbound.protection.outlook.com [40.107.15.71]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4AA2CC14CE52; Wed, 23 Aug 2023 14:14:20 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dI2uhDCNMFTuYywopnozaUSQBKEKTM9djPY7/oEIcQCb5inN4SGbpjSfBuoVhi0NOh3QFB+4XeJ8hqSvCJRBfUdy5Qmi+3aw0MooIyPG4JRA52V0ZkaZLgg1WmbqT9ja67gSo5VrMC3MwHlYq+EUbTrbTPMwLg4m7Oub0ss4R0FYrcg/1SikfSajxj+df+q91Nj+DOqj4R1F588oWVITQN4amYlpHOxC8TTmFaGr2qPYTuvig3ZCcYTDhdIyJ5R8GDtFJpqW1ueXN43mOnbgF2HZbhA/dpUGa2YE4KQjJI43wMFWRhsUX8lsssYS0KZgLIRmfK3BggLlJ8LyjQQjFQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=9TLvMBnCRo+GPodVuzZ0Xttd6Llna/7XuNxJLQBk9I0=; b=HuTBoeqVo3ZFBu4aiSKettoiUSml8fzvuoHMNWD5pADXSLVnir737jCPCBmGKhIDbegmHwnYhqH1ufH+HgyI0RfgPVqo4UnbW9E7T2uSvxMRZjWRKa0CG+8Wm9aH64GpcZKfzc8twkSc8BBdHR5EhtjSVPZPP4PBL17PBI05ZIFGFLK2etjdsbWiP5uvsjS66Mt61odWlh0Hi87K3JhxAKDULmIGTfZB/Q1KtfGFBC8ye/kqZ3hkU2fkXDncqA88G4fPZVWsa0JZ2XV++er/qu7y0bvC/x7E9dh9XV2rBeCG90k+kbNoy09YCIrzaYKJ9UHEOZtjs+8LDrOH5+esnQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=9TLvMBnCRo+GPodVuzZ0Xttd6Llna/7XuNxJLQBk9I0=; b=riPcXXC42If4ZcwZm6k3xuIqMW9Lizjejs5gd9dVB9jWr+MV81HDxzXKdHAN1BDjWrN7QsGERPZGVtEG6DCpI4f8nhhzW6fOVjCwdI7ZcV0uqYGjozwSFZSlYXII+SlLav6sd3VBDfDrD+lNEA8+qUAb5ZURwHsTK4OFTGkJzW8=
Received: from PAXPR07MB8844.eurprd07.prod.outlook.com (2603:10a6:102:24a::19) by DB9PR07MB8500.eurprd07.prod.outlook.com (2603:10a6:10:36b::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6699.24; Wed, 23 Aug 2023 21:14:17 +0000
Received: from PAXPR07MB8844.eurprd07.prod.outlook.com ([fe80::b794:71e5:df86:cced]) by PAXPR07MB8844.eurprd07.prod.outlook.com ([fe80::b794:71e5:df86:cced%4]) with mapi id 15.20.6699.026; Wed, 23 Aug 2023 21:14:17 +0000
From: Göran Selander <goran.selander@ericsson.com>
To: Zaheduzzaman Sarker <zahed.sarker.ietf@gmail.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-lake-edhoc@ietf.org" <draft-ietf-lake-edhoc@ietf.org>, "lake-chairs@ietf.org" <lake-chairs@ietf.org>, "lake@ietf.org" <lake@ietf.org>, "malisa.vucinic@inria.fr" <malisa.vucinic@inria.fr>
Thread-Topic: Zaheduzzaman Sarker's No Objection on draft-ietf-lake-edhoc-20: (with COMMENT)
Thread-Index: AQHZ1QddWftZ1niZTEaYExM1fR4Oo6/3+Gz+
Date: Wed, 23 Aug 2023 21:14:17 +0000
Message-ID: <PAXPR07MB884467F6BD8B342AB46730D3F41CA@PAXPR07MB8844.eurprd07.prod.outlook.com>
References: <169271555219.5723.8616031040868994897@ietfa.amsl.com>
In-Reply-To: <169271555219.5723.8616031040868994897@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PAXPR07MB8844:EE_|DB9PR07MB8500:EE_
x-ms-office365-filtering-correlation-id: f9e2798d-1912-470e-cd6d-08dba41de8fa
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: Qj0kbnKxqFmvJRAbLtzcAH31R8NJUM97FI352Xb8pv3UteORb6OuLxb9TIoctvNu7mtf8Sw/0qAzXeqwgMk2tOSC+7kfqvkaFDlWP+XLzbfeNJoiCo/U0QIcQCVj98m5/iCp1QS8S2CxWAAjrmE5HDy6cJ3QXB/RWQHg0a4x6xLKsx9mhZmDD3KGU6AIFpM8c0111B1kmj4WCAFk32BAwPHX73Hp6UBVXm8m9yEyHVzKk0Q8CQgQBNmURirbQQ+SNP1SngFTDoVtvUmPHAz3n+aHte4yF4cJSb5BAX5gxUgHj18/qb47Ep4JHsoxPtbXALa696NW7iEK6KOKn9qbFhm4oFDLRcj/Fuy2T338maDag5LXae+1/ww29kkJJOfB191rGO9P/Zr35joXK9MMKwV1Z2TMW9mZbw3RHp8Fo1RvvIkhdCscTPSKAnm4M4pQTPrHnzA75c0ovch+/lAUcJsiwxNHotospnH8DJZ45I8lnHc7ZkI2Iw+hfx1iNnLxcUmEe5llYiSMUUpXixqW38dSi9VFsHRdlJnmNTS7svA6Y7narOSrcOCankHbLscjFnQV60Zl5wmhXLQccEA0oHpYp8ie1fgiEv1qx/OCPviMd9Mr+PGuQKZV8QvwrxvHLmRWE3xiGH+1xOh9nZN9nJ4Dq7tTgBY3ek3XlzoESfZTafMd/CUW85QZjZvootCvPoic3c3uyUaQvM8JCWDbmtpn+aZoLww+L2xhrNtUuME=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PAXPR07MB8844.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(346002)(396003)(136003)(39860400002)(366004)(376002)(186009)(1800799009)(451199024)(2906002)(38070700005)(38100700002)(66574015)(82960400001)(83380400001)(55016003)(122000001)(53546011)(66946007)(64756008)(66446008)(76116006)(66476007)(66556008)(6506007)(54906003)(316002)(110136005)(71200400001)(7696005)(33656002)(41300700001)(478600001)(9686003)(12101799020)(86362001)(966005)(26005)(5660300002)(166002)(52536014)(8676002)(8936002)(4326008); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_PAXPR07MB884467F6BD8B342AB46730D3F41CAPAXPR07MB8844eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PAXPR07MB8844.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f9e2798d-1912-470e-cd6d-08dba41de8fa
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Aug 2023 21:14:17.2254 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: +0ldlAK5tocLZcpTHIQ2jMGEaEBScwE9S9ZpKhBQoad58VeBOmbzaygqNOZJF1eguun5G30ArT8bipvWD8y1WUV2uLL8Du8hAWEoLUmpEGs=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR07MB8500
Archived-At: <https://mailarchive.ietf.org/arch/msg/lake/Rtfq4JC2gaZ_mx-Lgxv_KHxxDpg>
Subject: Re: [Lake] Zaheduzzaman Sarker's No Objection on draft-ietf-lake-edhoc-20: (with COMMENT)
X-BeenThere: lake@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Lightweight Authenticated Key Exchange <lake.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lake>, <mailto:lake-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lake/>
List-Post: <mailto:lake@ietf.org>
List-Help: <mailto:lake-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lake>, <mailto:lake-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Aug 2023 21:14:25 -0000
Hi Zahed, Thanks for your review. It is tracked as github issue #420<https://github.com/lake-wg/edhoc/issues/420>. I tried to compile all updates related to comments on section 3.4, including yours, in one PR #429<https://github.com/lake-wg/edhoc/pull/429>. Please find responses to your comments inline below. Göran From: Zaheduzzaman Sarker via Datatracker <noreply@ietf.org> Date: Tuesday, 22 August 2023 at 16:46 To: The IESG <iesg@ietf.org> Cc: draft-ietf-lake-edhoc@ietf.org <draft-ietf-lake-edhoc@ietf.org>, lake-chairs@ietf.org <lake-chairs@ietf.org>, lake@ietf.org <lake@ietf.org>, malisa.vucinic@inria.fr <malisa.vucinic@inria.fr>, malisa.vucinic@inria.fr <malisa.vucinic@inria.fr> Subject: Zaheduzzaman Sarker's No Objection on draft-ietf-lake-edhoc-20: (with COMMENT) Zaheduzzaman Sarker has entered the following ballot position for draft-ietf-lake-edhoc-20: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-lake-edhoc/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Thanks for working on this specification. Thanks to Michael Scharf his valuable TSVART review and nice to those addressed. I would like to have responses on the following points as I believe clarity would help this specification - - It appeared to me that reliable transport is preferred while EDHOC messages are transmitted, however, this is not clearly mentioned. I think if this is the case then it should be clear in this specification. [GS] The preferences for transport depend on the application, but the default transport of EDHOC is CoAP in reliable mode. See clarifications in #429<https://github.com/lake-wg/edhoc/pull/429>. - I also like section 3.4, however, it is not clear to me if the list provided, is a "must to meet" criteria for any transport or fulfilling any subset of features is good enough. If the later then this specification should describe how the missing criteria should be fulfilled or ignore or describe the impact. [GS] The security protocol does not depend on any of the transport criteria listed in section 3.4. The consequence of the transport producing something else than the next message according to protocol state is that the session will be aborted. The application decides on transport to use and which criteria in the list to fulfil, and thereby what risks it is prepared to take for potential termination of the protocol due to shortcomings of the transport. Attempted clarifications to 3.4 has been added in #429<https://github.com/lake-wg/edhoc/pull/429>. For the similar reason, I am also supporting Lars's discuss on clarification required for DoS protection by the transport. [GS] Please check PR #425<https://github.com/lake-wg/edhoc/pull/425> and the response to Lars: https://mailarchive.ietf.org/arch/msg/lake/ZNDy-K2lz-YY4utze6vwJMdPucg/
- [Lake] Zaheduzzaman Sarker's No Objection on draf… Zaheduzzaman Sarker via Datatracker
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Göran Selander
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Zaheduzzaman Sarker
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Göran Selander
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Göran Selander
- Re: [Lake] Zaheduzzaman Sarker's No Objection on … Zaheduzzaman Sarker