Re: [Last-Call] [Ext] [DNSOP] Genart last call review of draft-ietf-dnsop-rfc5933-bis-10
Boris Makarenko <bmakarenko@tcinet.ru> Sun, 23 October 2022 16:46 UTC
Return-Path: <bmakarenko@tcinet.ru>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC23AC14F74D; Sun, 23 Oct 2022 09:46:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=tcinet.ru
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VQyeSk3c8s72; Sun, 23 Oct 2022 09:46:49 -0700 (PDT)
Received: from tcinet.ru (enki.tcinet.ru [212.193.119.36]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CDDBAC14F72B; Sun, 23 Oct 2022 09:46:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=simple/simple; d=tcinet.ru; s=mail; bh=MZDk2tUok7yEYqJjvkYC2GekIRge1MAEnlBReJLs6Ig=; h=In-Reply-To:From:References:Cc:To:Content-Language:Subject:MIME-Version: Date:Message-ID:Content-Type; b=ZTkmEaFRQDV9MZ69Gz4bmBxHS/eQ1rLr2lrNj7ySgeiYd gkDzcJtzBXM2/gSO12KBuC/188eamOjyW4RLXSfmNvkSL9IlvYQtNJXZzaBkXaPr5GrRYPele4TCI JZfHUE2zbsXfNfwoPe0MuD8TBK/LBXJbZkzeEH6at/lcrrdNl0Ms2U4gKrnUtxDu6QtpPU9a5K/LH /9VYdFObjyf1b9kSBs5doIzU86s8TBaw1eVKTofaNJefTGqCo1osoIRR4FwZ5gQOwgCpfhkQYP0ya yJUwzgYCS71R9JlEu0nvd8qKD0Mb4HMWTc4bjYK5F/klrY3JHRnswY0PzI4l1CA2bw==
Received: from [95.31.191.47] (account bmakarenko@tcinet.ru HELO [192.168.1.225]) by tcinet.ru (CommuniGate Pro SMTP 6.3.14e) with ESMTPSA id 5141618; Sun, 23 Oct 2022 19:46:38 +0300
Content-Type: multipart/alternative; boundary="------------txLZH8IdKN3l0v3Q1Ew9t8jE"
Message-ID: <a7091bed-c379-4be5-7b14-491bb695c2c4@tcinet.ru>
Date: Sun, 23 Oct 2022 19:46:38 +0300
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.2.2
Content-Language: en-US
To: Warren Kumari <warren@kumari.net>, Paul Hoffman <paul.hoffman@icann.org>
Cc: Ron Even <ron.even.tlv@gmail.com>, gen-art@ietf.org, dnsop <dnsop@ietf.org>, draft-ietf-dnsop-rfc5933-bis.all@ietf.org, last-call@ietf.org
References: <166566129313.28471.9552612703046827117@ietfa.amsl.com> <147c2505-8b8e-e956-badf-ec633b030547@tcinet.ru> <CAHy0fzBcN9Vd9GRFB157W_23akhpy22yZa=9bV2_91hVdicYPA@mail.gmail.com> <BD832679-C3E6-4EB8-82B6-84D83A47B53D@icann.org> <CAHw9_iKmk3FBNnCV6P22fe8A6F2sYgn5bNniBtczfVu3qY-iZw@mail.gmail.com> <CAHw9_iJKAhf_hs9--P9=1LW0iXFa0NK-qCREh-eukQBMLM5Jpg@mail.gmail.com> <CAHw9_iKBhKuwVmBsWkZOK=KHTWssHwqxhPin06kXh=qShAcphw@mail.gmail.com>
From: Boris Makarenko <bmakarenko@tcinet.ru>
In-Reply-To: <CAHw9_iKBhKuwVmBsWkZOK=KHTWssHwqxhPin06kXh=qShAcphw@mail.gmail.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/YPlViwbv8hFz5psEQHwrtUMQkWo>
Subject: Re: [Last-Call] [Ext] [DNSOP] Genart last call review of draft-ietf-dnsop-rfc5933-bis-10
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 23 Oct 2022 16:46:54 -0000
Hello, Warren Just uploaded the 12th version. The only change is status of GOST R 34.11-94 -- DEPRECATED. -- Boris 23.10.2022 18:20, Warren Kumari пишет: > > > > > On Fri, Oct 21, 2022 at 2:54 PM, Warren Kumari <warren@kumari.net> wrote: > > On Wed, Oct 19, 2022 at 12:41 PM, Warren Kumari <warren@kumari.net > <mailto:warren@kumari.net>> wrote: > > On Wed, Oct 19, 2022 at 7:22 AM, Paul Hoffman > <paul.hoffman@icann.org <mailto:paul.hoffman@icann.org>> wrote: > > On Oct 18, 2022, at 7:58 AM, Ron Even > <ron.even.tlv@gmail.com <mailto:ron.even.tlv@gmail.com>> > wrote: > > 1. whis is this an informational RFC and not a > standard track RFC. > > That's a reasonable question with a simple answer: because > the WG changed its mind on what the status of this > protocol should be. RFC 5933 describes a national standard > that is thinly deployed. At the time, it was necessary to > have the protocol on standards track; now it no longer is > required. > > 2. What is requested from IANA. ths text you wrote and > I copied is not a directive to IANA that is clear > > You are correct that the IANA Considerations section is > quite unclear, and needs to be clarified before the IESG > considers it. > > > > That is a good point. > > The document says: > --- > This document updates the RFC IANA registry "Delegation Signer > (DS) Resource Record (RR) Type Digest Algorithms" by adding an > entry for the GOST R 34.11-2012 algorithm: > > Value Algorithm > TBA2 GOST R 34.11-2012 > > The entry for Value 3, GOST R 34.11-94 should be updated to > have its Status changed to '-'. > ---- > > The IANA registry being referenced "DNSSEC Delegation Signer > (DS) Resource Record (RR) Type Digest Algorithms" is here: > https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml > <https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml> > > Setting this to '-' does seem incorrect, and from the text I > think that it should be either "MUST NOT" or, better yet (for > clarity) "DEPRECATED" . > > In addition, the IANA has a question: > ------ > "Third, in the DNSSEC Delegation Signer (DS) Resource Record > (RR) Type Digest Algorithms registry located at: > > https://www.iana.org/assignments/ds-rr-types/ > <https://www.iana.org/assignments/ds-rr-types/> > > a new registration will be made as follows: > > Value: [ TBD-at-Registration ] > Description: GOST R 34.11-2012 > Status: > Reference: [ RFC-to-be ] > > IANA Question --> What should the entry for "Status" be for > this new registration?" > -------- > > > > > I believe that it is clear (e.g: "6. Implementation > Considerations > The support of this cryptographic suite in DNSSEC-aware > systems is > OPTIONAL.") that it can only be OPTIONAL, but we need to > clearly state that. > > So, I think a new version should be submitted saying: > ---- > This document updates the RFC IANA registry "Delegation Signer > (DS) > Resource Record (RR) Type Digest Algorithms" by adding an > entry for > the GOST R 34.11-2012 algorithm: > > Value: TBA2 > Description: GOST R 34.11-2012 > Status: OPTIONAL > Reference: [ RFC-to-be ] > > The entry for Value 3, GOST R 34.11-94 should be updated to > have its > Status changed to 'DEPRECATED'. > > > A new version was submitted (-11), but still says: > " The entry for Value 3, GOST R 34.11-94 should be updated to > have its > Status changed to '-'." > > The registry is here: > https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml > <https://www.iana.org/assignments/ds-rr-types/ds-rr-types.xhtml> > > '-' to me implies that the codepoint hasn't been used, but I > don't actually know if that's true. I think "DEPRECATED" is > better, but perhaps I'm wrong (anyone seeing '-' will presumably > do read the referenced RFC, so…_) > > I will ask the IANA which they think is best / clearest… > > > Closing the loop: > > I reached out to the IANA, and this was their reply: > "Hi Warren, > > It makes sense to us to list "DEPRECATED" in the status column. When > we're asked to deprecate a codepoint, the label "deprecated" is > usually added to the registration in some way. > > "-" is a bit of a cipher, and doesn't indicate that there's been a change. > > thanks, > Amanda > " > > If the authors post a new version before the draft cut-off (Monday) > with this addressed I should be able to move it along. > > Thank you all, > W > > > > > W > > > > W > > > --Paul Hoffman > >
- [Last-Call] Genart last call review of draft-ietf… Roni Even via Datatracker
- Re: [Last-Call] Genart last call review of draft-… Макаренко Борис
- Re: [Last-Call] Genart last call review of draft-… Ron Even
- Re: [Last-Call] Genart last call review of draft-… Boris Makarenko
- Re: [Last-Call] [Ext] [DNSOP] Genart last call re… Paul Hoffman
- Re: [Last-Call] [Ext] [DNSOP] Genart last call re… Warren Kumari
- Re: [Last-Call] [Ext] [DNSOP] Genart last call re… Tim Wicinski
- Re: [Last-Call] [Ext] [DNSOP] Genart last call re… Ron Even
- Re: [Last-Call] [Ext] [DNSOP] Genart last call re… Warren Kumari
- Re: [Last-Call] [Ext] [DNSOP] Genart last call re… Warren Kumari
- Re: [Last-Call] [Ext] [DNSOP] Genart last call re… Warren Kumari
- Re: [Last-Call] [Ext] [DNSOP] Genart last call re… Boris Makarenko