IETF Logo Mail Archive

Re: [Last-Call] Opsdir telechat review of draft-ietf-acme-dtnnodeid-10

Linda Dunbar <linda.dunbar@futurewei.com> Fri, 21 October 2022 17:48 UTC

Return-Path: <linda.dunbar@futurewei.com>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3AE28C14CE33; Fri, 21 Oct 2022 10:48:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.109
X-Spam-Level:
X-Spam-Status: No, score=-2.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nRpA3zRPqYeW; Fri, 21 Oct 2022 10:48:35 -0700 (PDT)
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on2090.outbound.protection.outlook.com [40.107.220.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 64502C14CF04; Fri, 21 Oct 2022 10:48:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=OfSGVOS+2dmTUXf+hkaKYfvDqTB9eDxebaXTJ/WYinD3zqEaihUrUhIWQrxIvtsI6bpGPn13fy7xlguoNGYkIuoZIuChzk2ZAp+Rrd7nXs5ePyKz2wSj4dVA6+foKkOMhGFEYst8IUek9XhsMYztvLN/P7S+MLaEdbfjq4l7zTc935maYwJ1ibM/zKvELjrEzs1aD+Q3O97MsTR7/5ebUnnA/b3kWkuXrD3HAtojndi7TzCxXVBLjCadjSkJWLeB4GVoKnMN/RRUOFeGRgUkxGCsI+WaWXabMMAkr/Pq6bT1LJ6YOMHQ/Q6Q0cI899hpQ6K7GKgp/D4qzAWrSZcfsw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=I607Cmj9hnQnEhQTbPXf+ohPLomPsU0te8lTyx9L7HQ=; b=FrPuRZfUv1/oDJJSOKbjs5vf8t5onr9Ac1H5hThtVsPP+qeHT+PsBMnMSBl0MGlrbya9cjX0Y9kxTuiCe7xsCuCb95/LKPewa0WG1z1QkOkCVBCgalQUICuPckCSKY/i9bQ+flQZxPRllq43cFLCuR/iDXejT/ne9eTeDjsJnUVzLzHB9UySAlnW5WGMmf8849dtmzIqPuw4xvWsSEkcnstR+swPRbPXg3uUgjcjfoZIZSCO1p0U3wsS+HIEH5gRzR+aBMbxStaEOY7NRobckkeJHRqCs3M8Z2M2uFj4drrgEUCa+n0LKjxR622zrMFBzsxSx4Cv1IgwElM3iBtGCA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I607Cmj9hnQnEhQTbPXf+ohPLomPsU0te8lTyx9L7HQ=; b=OO+pCpQl0mWqfRvOCIt1dw9UF9c636NCcG4cJ3ylNL80ti4Oy6X/TbkEK1QqIOh5MkBoPT6oOA9qemsFRZEwHpBAwmXHKHY4lhrmmBRaZLujnsTr9UjCLcIXVj200K+cNgQO6KgJ5mC6iy/U/ihm2p2IUzlOsTJjZB/l+qlwfwA=
Received: from CO1PR13MB4920.namprd13.prod.outlook.com (2603:10b6:303:f7::17) by MN2PR13MB3942.namprd13.prod.outlook.com (2603:10b6:208:269::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5746.16; Fri, 21 Oct 2022 17:48:24 +0000
Received: from CO1PR13MB4920.namprd13.prod.outlook.com ([fe80::7cc0:ab06:11dd:7f74]) by CO1PR13MB4920.namprd13.prod.outlook.com ([fe80::7cc0:ab06:11dd:7f74%5]) with mapi id 15.20.5746.016; Fri, 21 Oct 2022 17:48:24 +0000
From: Linda Dunbar <linda.dunbar@futurewei.com>
To: Roman Danyliw <rdd@cert.org>, "ops-dir@ietf.org" <ops-dir@ietf.org>
CC: "acme@ietf.org" <acme@ietf.org>, "draft-ietf-acme-dtnnodeid.all@ietf.org" <draft-ietf-acme-dtnnodeid.all@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>
Thread-Topic: Opsdir telechat review of draft-ietf-acme-dtnnodeid-10
Thread-Index: AQHY5N8vm9a5GAFVE0uBDPW+hfxAaq4X3u4AgADcnACAAGKTAP//rvQA
Date: Fri, 21 Oct 2022 17:48:24 +0000
Message-ID: <560A8DBD-4CA4-4E49-BFA9-7452E4E1FE4F@futurewei.com>
References: <166630648814.52985.10284820365346811952@ietfa.amsl.com> <BN2P110MB11076DDD8A34680DE318379EDC2A9@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM> <855DAAAE-A1BF-4577-922D-BC0F671CD0E8@futurewei.com> <DE4B11FF-1E07-44FA-9D9E-7EAE51BC393F@futurewei.com> <BN2P110MB1107FE073820EFCEE803710ADC2D9@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM>
In-Reply-To: <BN2P110MB1107FE073820EFCEE803710ADC2D9@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.66.22101101
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=futurewei.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CO1PR13MB4920:EE_|MN2PR13MB3942:EE_
x-ms-office365-filtering-correlation-id: ce8a3f42-a02f-4f02-f104-08dab38c73dd
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR13MB4920.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(39840400004)(366004)(396003)(376002)(346002)(136003)(451199015)(38100700002)(2616005)(33656002)(38070700005)(122000001)(83380400001)(4326008)(316002)(8676002)(41300700001)(26005)(8936002)(5660300002)(6506007)(53546011)(64756008)(66446008)(66476007)(66556008)(66946007)(76116006)(6512007)(86362001)(91956017)(186003)(45080400002)(44832011)(478600001)(71200400001)(966005)(54906003)(2906002)(36756003)(110136005)(6486002)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: dgrTcjVv0BblIz1qWxHHiaIsswamDLGdV6YZGAXfJS3cdqeYgX/NexUnTu8qncr+x0UUscMCCHIZPcX04B9lq2ZJj+JszUeUBlGlobA9rDsF/O96c2vXMJLqe96YNZEuKuA0KiA7oPOM0PIpeM4nx1GmO8MA0I2PhMgKAlzq+Q79betJntZVOKDsvTQdKKPdeg3Xasu1UqzPf7FefSajPkJnRhocJmwcex0ktgTwdA/vvi3sKw08rQjg6DBVGwj3vCzs29VTtrZ2ty7OrpyXapn6xsisVKnJmXJZ2DEnAKCdhV1CuSkuIJ6UzZm2Lp14sTFBkmLgHCGnxYC6BCGpPDUA9HB0AIEoKtjWupVHKjAj31CiqeR3XpjH6wzciFc89xDaBU5RMm/o7gzP+m9dhQCJEI/kH/Gm7Pf6qg4ZwONho7daND21Wi1zTVKCpEaHHbA/CQZyYc+nqG86tjWSjmvQzX7CemRNHiyaY+Bi6x6zLrMWx0/Ex6PiupYi93Z4BohRVBV4iHwfiELc49rd85o8iDamyXB6d2/UmH6CKLjpLLFT5ABySO0S041S4VfOmaochxsFWsLp7HFQq9xZAOgcnxXBCdbKRzP45GhcnWM5SSqEVNZWkITZrTsbDbZLE6ruNs66PxPl/8Gt3yu+EtpzRTLeOfIiqHqSnEq11zg8XUSHaqJkE1K2FkAf2vEYbC+gYeY7msGkgwkkdUT5yk71GLIPoJid7uJDMV5HyTvV7eQLJwgj2JdfOLgNU4PtD5dlPyCu5be+UgKLOSc31Juufv94YJndhna3R3FS+GTdqjmkCuruBhleQy6EKl2PNSrtM4DJSo2MGQThHWS33ftLOP/dPDEaoOpMc2yayv6hV0c99/hEVxsJGVkNZNIIA6HhO7mMJDzOBbrJ+EPnxfh30ABdcKud5v9MIPcAYK/POIaCQMu3NeFbF9eRCxjdQB0y/QAsO2dkbm2n0v4TcuN9n/Ow3OvBF9vY2w4EAr2whkBm5Dq79A50qW99PcklzSd5qV2tjrSY/F2oNhq9Jw5dnCUITlOVz1s1D9MsAyEwXhwMbo6/R4pcKeaR4IztOAmrIHh3+t9jpO05q93r71eELIIhpvXwKBHE2o5K0XWZPsZAw5PDN6ul/5K58dJhZ3RbECc13k+QT+YLfWqrCglEwKsNNgehEhhNSn4unbRidChbUom6s/VQmkSFo4oYSbzmII11hMTBxA0avbx83bcFd7iteYXN7GNKoWpyqjpCWUseS3I+n/c9BxagIJrv0jzZpOiSiVquIu28E4N+dtAWgQhrpEKwIUwmUoJobJwtLca+QbixQOJ6Dy5tG+uH22+gzuSbkH0+WbZM01gaTF566lcro5JofZWUr/r813WRSOSRooDk0/08Dby40tXTOuM5SsJ2uPiXEgJky1+L5ykoFW2ZSqlcAfbKIHUsptOPonfkQmYOTxNp7XjkFfanGYRJaBhWAWGinlWkBXSpYjWrJ+bSVOe4kbQXQ9+JAr+uATxFFWqw9sEiklCNu7tYfIKaLYtI7TI2YusOuHhgaimZ0zv3dZs9a4jy9lAXY1WLt5YT3RwXKOEVpSfju4f43nIoSTPjzON3k6sT+EbA3A==
Content-Type: text/plain; charset="utf-8"
Content-ID: <CCBF1ADAE71F4D40BC5D9CEA7BA524B2@namprd13.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR13MB4920.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: ce8a3f42-a02f-4f02-f104-08dab38c73dd
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Oct 2022 17:48:24.7064 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: agsl7RRysSLIAjHjCT8KNOSMousUsR8rFC51eGLD6LjnNzO2Iv2I59jYoybn9IgUjiBOq+OzCJqQkOTlgQsleA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR13MB3942
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/kFUfoFnsSV5vKeEn4EfC4CTtv_w>
Subject: Re: [Last-Call] Opsdir telechat review of draft-ietf-acme-dtnnodeid-10
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Oct 2022 17:48:39 -0000

Roman, 

Can you give me a few names with who I can chat to find out more? 

Thank you

Linda

On 10/21/22, 12:38 PM, "Roman Danyliw" <rdd@cert.org> wrote:

    Hi Linda!

    As I understand the scenario below, it would align to the work in this document only to the degree that the SD-WAN network would be an underlay to the DTN Bundle Protocol (via some as of yet undefined convergence layer) and the Virtual Network IDs would have an easy mapping to the DTN-specific addressing mechanism (Endpoint IDs per Section 4.2.5 of RFC9171).  I'll let the DTN experts correct me or provide more insight on the alignment.

    As an aside, there is a critical IANA issue with this document and it is being pulled from the planned telechat docket.

    Roman

    > -----Original Message-----
    > From: Linda Dunbar <linda.dunbar@futurewei.com>
    > Sent: Friday, October 21, 2022 12:46 PM
    > To: Roman Danyliw <rdd@cert.org>; ops-dir@ietf.org
    > Cc: acme@ietf.org; draft-ietf-acme-dtnnodeid.all@ietf.org; last-call@ietf.org
    > Subject: Re: Opsdir telechat review of draft-ietf-acme-dtnnodeid-10
    > 
    > Roman,
    > 
    > Can the mechanism specified in the draft be used to validate the Virtual
    > Network IDs of SD-WAN edge devices?
    > For example, an SDWAN edge deployed in a remote site, say a shopping mall,
    > might advertise the routes and client VPN IDs to the BGP Route-Reflector (RR).
    > The RR needs to validate the Client's IDs are legitimate. Can the mechanism
    > specified in the draft do the job?
    > 
    > Thanks, Linda
    > 
    > 
    > On 10/20/22, 10:36 PM, "Linda Dunbar" <linda.dunbar@futurewei.com>
    > wrote:
    > 
    >     Roman,
    > 
    >     With you bringing back the explanation, all makes sense to me now. Wish
    > your explanation is incorporated into the document.
    >     Thanks, Linda
    > 
    >     On 10/20/22, 6:53 PM, "Roman Danyliw" <rdd@cert.org> wrote:
    > 
    >         Thanks for the re-review Linda.
    > 
    >         ACME WG: here is the thread from the IETF LC where proposed changes
    > were discussed:
    > https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmailarc
    > hive.ietf.org%2Farch%2Fmsg%2Flast-
    > call%2FnujBgHd6ZKHY6fG58ZWBKzFGVWs%2F&amp;data=05%7C01%7Clinda.
    > dunbar%40futurewei.com%7C3d47157879904a302e3008dab2f65009%7C0fee
    > 8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C638019068235813966%7CUn
    > known%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik
    > 1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&amp;sdata=t83ICajIF%2FEIKz
    > ibHtGs0T9FFSQpSFmBxKdxxgGHkPY%3D&amp;reserved=0
    > 
    >         > -----Original Message-----
    >         > From: Linda Dunbar via Datatracker <noreply@ietf.org>
    >         > Sent: Thursday, October 20, 2022 6:55 PM
    >         > To: ops-dir@ietf.org
    >         > Cc: acme@ietf.org; draft-ietf-acme-dtnnodeid.all@ietf.org; last-
    > call@ietf.org
    >         > Subject: Opsdir telechat review of draft-ietf-acme-dtnnodeid-10
    >         >
    >         > Reviewer: Linda Dunbar
    >         > Review result: Has Issues
    >         >
    >         > I have reviewed this document as part of the Ops area directorate's
    > ongoing
    >         > effort to review all IETF documents being processed by the IESG.  These
    >         > comments were written primarily for the benefit of the Ops area
    > directors.
    >         > Document editors and WG chairs should treat these comments just like
    > any
    >         > other last call comments.
    >         >
    >         > This document specifies an extension to ACME protocol which allows an
    > ACME
    >         > server to validate the Delay-Tolerant Networking Node ID for an ACME
    > client.
    >         >
    >         > I had the following comments for the -07 version. I don't think the latest
    >         > version (-10) resolved my comments.
    >         >
    >         > Issues:
    >         >
    >         > The document didn't describe how the Node ID described in this
    > document is
    >         > related to the Delay Tolerant Network. I see the mechanism can be
    > equally
    >         > used in any network. What are the specifics related to the "Delay
    > Tolerant
    >         > Network"?
    >         > It would be helpful if the document adds a paragraph explaining the
    > specific
    >         > characteristics of the Delay-Tolerant Network that require the additional
    >         > parameters/types used for validating the Node-ID for an ACME client.
    >         >
    >         > Thank you,
    >         >
    >         > Linda Dunbar
    >         >
    > 
    >

v2.23.0 | Report a Bug | By Email