IETF Logo Mail Archive

Re: [Last-Call] Genart last call review of draft-ietf-dnsop-rfc5933-bis-10

Макаренко Борис <bmakarenko@tcinet.ru> Mon, 17 October 2022 11:44 UTC

Return-Path: <bmakarenko@tcinet.ru>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A68DFC1524D8; Mon, 17 Oct 2022 04:44:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=tcinet.ru
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id asJhYqG0onj2; Mon, 17 Oct 2022 04:44:22 -0700 (PDT)
Received: from tcinet.ru (enki.tcinet.ru [212.193.119.36]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BFC9CC1524D7; Mon, 17 Oct 2022 04:44:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=simple/simple; d=tcinet.ru; s=mail; bh=XFGP+Vs0z/EhBLqvJDB8XWMPSJy02vT4hbYVaC0dd38=; h=In-Reply-To:From:References:Cc:To:Content-Language:Subject:MIME-Version: Date:Message-ID:Content-Type; b=F/+NmeoQOpGyRXti7dpyRQgNnxIXicbj3AYRkRoG8RYWh 9vpbU1IZF0RYdSNhSv+mBDe1+4J7IIxCOW1BaqNrYx/UmPSGjVFNPcASa8daTmfJKg9eMRW+FGj85 VB7m7s8BSG/GzcOlNdHL9ki4KvFo5OFmU08JDQATMwIatc5X19faym9aIr1VpCAK0v5+HtY7wLmvw V09qrGGlPoU3vtBCvPsxFch2yILacAlA6yfbC9tpgFp0fCArErFDsJhRw/BdpRM5hhi2as5ywTfE2 B1FbxVbmoKkkDqRvZM888aQzKhTRfCxoZ2+mFlQLwhcVMEQza66WYkbjPZaNeIDHLA==
Received: from [212.193.118.235] (account bmakarenko@tcinet.ru HELO [10.118.10.28]) by tcinet.ru (CommuniGate Pro SMTP 6.3.14e) with ESMTPSA id 5073967; Mon, 17 Oct 2022 14:44:09 +0300
Content-Type: multipart/alternative; boundary="------------E0Bc86p6rJSay9qxV0gGrlNH"
Message-ID: <147c2505-8b8e-e956-badf-ec633b030547@tcinet.ru>
Date: Mon, 17 Oct 2022 14:44:09 +0300
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.13.1
Content-Language: en-US
To: Roni Even <ron.even.tlv@gmail.com>, gen-art@ietf.org
Cc: dnsop@ietf.org, draft-ietf-dnsop-rfc5933-bis.all@ietf.org, last-call@ietf.org
References: <166566129313.28471.9552612703046827117@ietfa.amsl.com>
From: Макаренко Борис <bmakarenko@tcinet.ru>
In-Reply-To: <166566129313.28471.9552612703046827117@ietfa.amsl.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/8ch5UP4i829gSq756f3PnH5zuUE>
Subject: Re: [Last-Call] Genart last call review of draft-ietf-dnsop-rfc5933-bis-10
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Oct 2022 11:44:26 -0000

Hello, Roni!

The old algorithms GOST R 34.11-94, GOST R 34.10-2001 and GOST R 
34.11-2001 are considered obsolete. They are now replaced with GOST R 
34.10-2012 (digital signature) and GOST R 34.11-2012 (hash function). 
Basically, the use of GOST algorithms in DNSSEC remains the same as 
described in RFC 5933, but it is necessary to replace them with the new 
ones. Old algorithms should not be used anymore. That's why we need to 
obsolete RFC 5933.

The section "IANA Considerations" proposes to assign numbers for GOST R 
34.10-2012 and GOST R 34.11-2012 in the IANA registries "DNS Security 
Algorithm Numbers" 
(https://www.iana.org/assignments/dns-sec-alg-numbers/dns-sec-alg-numbers.xhtml) 
and "Delegation Signer (DS) Resource Record (RR) Type Digest Algorithms" 
(https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml).

Updates for RFC 8624 are described in the corresponding Section.

--
Boris


13.10.2022 14:41, Roni Even via Datatracker writes:
> Reviewer: Roni Even Review result: Almost Ready  > > I am the assigned Gen-ART reviewer for this draft. The General 
Area > Review Team (Gen-ART) reviews all IETF documents being processed 
by > the IESG for the IETF Chair. Please treat these comments just like 
 > any other last call comments. > > For more information, please see 
the FAQ at > > <https://trac.ietf.org/trac/gen/wiki/GenArtfaq>. > > 
Document: draft-ietf-dnsop-rfc5933-bis-?? Reviewer: Roni Even Review > 
Date: 2022-10-13 IETF LC End Date: 2022-10-19 IESG Telechat date: Not > 
scheduled for a telechat > > Summary: the document is almost ready for 
publication as some type of > an RFC > > Major issues: The document is 
meant to be an informational RFC > obsoleting RFC5933 a standard track 
RFC. why is this change. > > Minor issues: > > the directive in the IANA 
consideration "The entry for Value 3, > GOST R 34.11-94 should be 
updated to have its Status changed to '-'" > is not clear. there is no 
status field in the table as I see in > RFC8624 section 3.3 > > 
Nits/editorial comments: > > > >

v2.23.0 | Report a Bug | By Email