Re: [Last-Call] Artart last call review of draft-ietf-ipsecme-ikev2-auth-announce-06
Valery Smyslov <svan@elvis.ru> Mon, 25 March 2024 08:33 UTC
Return-Path: <svan@elvis.ru>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC71DC14F69E; Mon, 25 Mar 2024 01:33:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=elvis.ru
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nO-ghom_yJmz; Mon, 25 Mar 2024 01:33:51 -0700 (PDT)
Received: from dpmail.elvis.ru (dpmail.elvis.ru [93.188.44.211]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3F538C14F699; Mon, 25 Mar 2024 01:33:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=elvis.ru; s=mail; h=Content-Transfer-Encoding:Content-Type:MIME-Version:Message-ID: Date:Subject:In-Reply-To:References:CC:To:From:Sender:Reply-To:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=nktm9GIDU34esRcjXNhDM3s3dPGL2EzeVFUiQliqWR4=; b=JAxiWs16Mzc/P8By24MDS3Dufy iuQh/OJNTWqPLfA/5/bGFqDuYqOqiHnAQsbTyR9nwBtT+D44Sdz8F8TaeL32HHt6FttBf480dtWtR cTzM49c5ywYoJxBvzKAsa5rXhJ8Z4yV76L2HGJYx3eWhU70enCixLnlhZPgKKGEnuCY4=;
Received: from kmail2.elvis.ru ([93.188.44.210]) by dpmail.elvis.ru with esmtp (Exim 4.89) (envelope-from <svan@elvis.ru>) id 1rof7q-00043r-5J; Mon, 25 Mar 2024 10:52:10 +0300
Received: from mail16.office.elvis.ru ([10.111.1.29] helo=mail.office.elvis.ru) by kmail2.elvis.ru with esmtp (Exim 4.94.2) (envelope-from <svan@elvis.ru>) id 1rof7p-007XI3-UW; Mon, 25 Mar 2024 10:52:09 +0300
Received: from MAIL16.office.elvis.ru (10.111.1.29) by MAIL16.office.elvis.ru (10.111.1.29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1779.2; Mon, 25 Mar 2024 10:52:09 +0300
Received: from BuildPC (10.111.10.33) by MAIL16.office.elvis.ru (10.111.1.29) with Microsoft SMTP Server id 15.1.1779.2 via Frontend Transport; Mon, 25 Mar 2024 10:52:09 +0300
From: Valery Smyslov <svan@elvis.ru>
To: 'Marc Blanchet' <marc.blanchet@viagenie.ca>, art@ietf.org
CC: draft-ietf-ipsecme-ikev2-auth-announce.all@ietf.org, ipsec@ietf.org, last-call@ietf.org
References: <171116281000.19763.4229256017849623476@ietfa.amsl.com>
In-Reply-To: <171116281000.19763.4229256017849623476@ietfa.amsl.com>
Date: Mon, 25 Mar 2024 10:52:09 +0300
Message-ID: <057b01da7e89$572b3640$0581a2c0$@elvis.ru>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQJGH45bqLjlwA9clBNMEsRv84aPmbBw0bNA
Content-Language: ru
X-CrossPremisesHeadersFilteredBySendConnector: MAIL16.office.elvis.ru
X-OrganizationHeadersPreserved: MAIL16.office.elvis.ru
X-Spam-Scanner: Rspamd work in kmail2.elvis.ru, WHITELIST
X-KLMS-Rule-ID: 1
X-KLMS-Message-Action: clean
X-KLMS-AntiSpam-Status: not scanned, disabled by settings
X-KLMS-AntiPhishing: Clean, bases: 2023/02/21 22:47:00
X-KLMS-AntiVirus: Kaspersky Security for Linux Mail Server, version 8.0.3.30, bases: 2023/02/21 21:02:00 #20887462
X-KLMS-AntiVirus-Status: Clean, skipped
X-Spam-Scanner: Rspamd work in dpmail.elvis.ru, WHITELIST
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/7T1WTyP4ipfbjQKF5ZJTs4i4nwc>
Subject: Re: [Last-Call] Artart last call review of draft-ietf-ipsecme-ikev2-auth-announce-06
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Mar 2024 08:33:56 -0000
Hi Marc, thank you for your review. > Reviewer: Marc Blanchet > Review result: Ready with Nits > > I'm the assigned ART reviewer for this document. While I'm aware of IPSEC-IKE > and its use, I have no competency in this technology, therefore I have not verified > the substantive protocol specification itself. > > Comment 1) > The draft does not specify any fallback procedure or how to handle the situation > when no proper authentication method can be chosen by one of the peers. Maybe > it is specified elsewhere? Or maybe it is so obvious there is no point in saying? Or > it may be useful to specify some? The draft doesn't change the auth method selection mechanism from IKEv2. In particular - each party used whatever authentication method it thinks is appropriate to authenticate itself to the peer. The draft just helps each party not to select the method that is unsupported by the peer. > Nits: > 3.2.2 "If no Certificate Request payload were receives" s/receives/received/ ? Thank you, fixed in my local copy. Regards, Valery.
- [Last-Call] Artart last call review of draft-ietf… Marc Blanchet via Datatracker
- Re: [Last-Call] Artart last call review of draft-… Paul Wouters
- Re: [Last-Call] Artart last call review of draft-… Valery Smyslov