Re: [Masque] Roman Danyliw's No Objection on draft-ietf-masque-h3-datagram-10: (with COMMENT)
Roman Danyliw <rdd@cert.org> Thu, 16 June 2022 01:08 UTC
Return-Path: <rdd@cert.org>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 316ACC14CF1B; Wed, 15 Jun 2022 18:08:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=seicmu.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id c9gvP8TL_mo9; Wed, 15 Jun 2022 18:08:48 -0700 (PDT)
Received: from USG02-BN3-obe.outbound.protection.office365.us (mail-bn3usg02on0127.outbound.protection.office365.us [23.103.208.127]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D52B1C14CF16; Wed, 15 Jun 2022 18:08:47 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector5401; d=microsoft.com; cv=none; b=bKlYzppBHyWDxnJSrnPl2dRwD9Iai7s0CBOrWBNDiVGfZdQSBWFA5qhWC0c3LKt1cyE+bWDjqgYDdd/Syy6SPpQbQcvUAsR4Iu/KKrwWCxDsLSPMbwBAln+wjpnoj3sAU7CXghBB7s/0aYvUXya0vBmOA9kwREkt4BRRPzr4Nvn0p/txy8NnrCzPYzFoeBmlQKQ1CY8bJ84KU4AD+fp37XXyg6k5PPnlAJWecJ3hZ2koSm2jBtHdriRj/5yBgO7FIGrCgm69xuB4OSL93uIO13HebjYignXHL4II7g1aWDD9dbmksCE0TuZRqOZLvTHTNTt7dPRh11xeocXWqIbAKg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector5401; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=enFs2bGvVRmxWgqhGE4Ym2dYi5BfF1ry1nVKUCbHGH4=; b=m/2k64NtZkkLuSbnOdJcP7N9trAEDOKelg4vNDjH4+3u4tG3TmtVMgCAko/cZcini9yYr4wSnYKbPRMJZ89kXPSrbfvk2IaPQVQ9biwmusQQCAyyMHpmhBkrwO5kgAGZEMi9TcR8ZiC6MVzAYBvyXiI8hRlKqEiD97cnifOytdRQLQp4TSDZrGCiTuSPs522pRq+wvgZtH2G625iSxUqJGvcofOJFYvv24UhLAY9c4vaL+oZa2BD4TqrzMoWtZOpwZP9hOi6THX03CoDIMpnAy6f9qBZX3CArG1i9qyHtYlJT25xF6YUMW9YkhGGbJN8fdgk+KRKPDau6KA4H4NjfQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cert.org; dmarc=pass action=none header.from=cert.org; dkim=pass header.d=cert.org; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=seicmu.onmicrosoft.com; s=selector1-seicmu-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=enFs2bGvVRmxWgqhGE4Ym2dYi5BfF1ry1nVKUCbHGH4=; b=D9WsQILNXOsF44z6wLH+jvPsb8eDsrpVEjQ+cDlIwiJNnSL4WtKpBtNh7rtrEXF1U5rgFChFnLJYiEFN8DRgm6WJaWF2hEnjPYS4AC3SuOx6Lfe54BY62ATXQAvUWcqyez8qAMbz3g5+6P5YlIHim2VYOhnJ6X9yYESWX4uI0UQ=
Received: from PH1P110MB1116.NAMP110.PROD.OUTLOOK.COM (52.145.34.12) by PH1P110MB1233.NAMP110.PROD.OUTLOOK.COM (52.145.25.6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5293.13; Thu, 16 Jun 2022 01:08:43 +0000
Received: from PH1P110MB1116.NAMP110.PROD.OUTLOOK.COM ([fe80::9d9a:6b82:846a:63b6]) by PH1P110MB1116.NAMP110.PROD.OUTLOOK.COM ([fe80::9d9a:6b82:846a:63b6%4]) with mapi id 15.20.5332.022; Thu, 16 Jun 2022 01:08:43 +0000
From: Roman Danyliw <rdd@cert.org>
To: David Schinazi <dschinazi.ietf@gmail.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-masque-h3-datagram@ietf.org" <draft-ietf-masque-h3-datagram@ietf.org>, "masque-chairs@ietf.org" <masque-chairs@ietf.org>, MASQUE <masque@ietf.org>, Christopher Wood <caw@heapingbits.net>
Thread-Topic: Roman Danyliw's No Objection on draft-ietf-masque-h3-datagram-10: (with COMMENT)
Thread-Index: AQHYgOJckS3PQ+w30022K3LuSjmf5q1RKvaAgAANDbA=
Date: Thu, 16 Jun 2022 01:08:43 +0000
Message-ID: <PH1P110MB111699F425B6D9CE62979187DCAC9@PH1P110MB1116.NAMP110.PROD.OUTLOOK.COM>
References: <165531625821.60099.10201447923190662907@ietfa.amsl.com> <CAPDSy+74D6YQQNNXgLBQQKwxgdW=Gw3AH1qfB5r8-meWRFA9qA@mail.gmail.com>
In-Reply-To: <CAPDSy+74D6YQQNNXgLBQQKwxgdW=Gw3AH1qfB5r8-meWRFA9qA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cert.org;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5ebbd8c0-754e-485b-c273-08da4f34c199
x-ms-traffictypediagnostic: PH1P110MB1233:EE_
x-microsoft-antispam-prvs: <PH1P110MB1233A86C94E3E36E7692DA72DCAC9@PH1P110MB1233.NAMP110.PROD.OUTLOOK.COM>
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: e9GoR8h8wO6+f/VZDU7WFfRRsdK4AqcWHcu0GXH56EA9PeMcynZw1IbYkJbyUtNSfiuCpmGti4Yi2QNhiG+2VPEePs1AttjT+RgHxlQWhpyp0S3x/yKu+y2mMjFl6yyywrgkGJ/VSCTQ/1ZRRW+pbXTaYERC9VoFon+Vs3epcCYQ7DEmyiUjwYgKOqRw/4gkvw7xmg1NrypNTZdUGylVSzLLpKeVGgmTx4rTnsbQRX+jwFWXg65psFdkJZtoI5kq5aJNNRV/OwRBIQgj8lxz4fZuf1va4x+7c3Z0vbzuTzIRFhDVIgA6uJDicBoOfigfCrh/KyFCAUWk7kA/NcTZVU4f/FZFH44rORvRDAe+Tt8J5nM+Na9nCZRMTChL9whqTDo2VMUK0AJM7cmJ2PHp2KU2lyVSjQ4yV9jSscSt3UPzHipjrwNouywhJzN+X74EjUwk+eX8GY5D0O+iMNJU0g456OlEOzxTlsNcwAOkraqReD7r8SgOpUvjUpg4Jl21qjoDA0e2VHvdut2k+zQDiwo5nFlPfrhSyuUDnq77q7tLZitQyE2wqIagFa+39rovKqUGGYdW2VPKLIgB5jUnjTywoPCSYdAC6xQqXgB7MhlSQH0JwEXMq/m8ylvNMZ1JjQpXnoPtX4Mgyc+W7KYGASIgdK01YP3czCklUq7s/C4HEGvTeAxTHS2ZutS2kgzkUOcgz0pqsDKiXxGhF1q2fBXePVins6JBhz1UtrdCq/X21Xma0Qr60/96emZiXcNYSeqysyOwbYOvfUFcEKKWnA==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH1P110MB1116.NAMP110.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230016)(366004)(83380400001)(38100700002)(6916009)(122000001)(82960400001)(38070700005)(55016003)(186003)(54906003)(166002)(53546011)(966005)(508600001)(71200400001)(6506007)(26005)(9686003)(8676002)(316002)(2906002)(7696005)(52536014)(86362001)(8936002)(33656002)(66556008)(66476007)(66446008)(76116006)(66946007)(64756008)(4326008)(5660300002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_PH1P110MB111699F425B6D9CE62979187DCAC9PH1P110MB1116NAMP_"
MIME-Version: 1.0
X-OriginatorOrg: cert.org
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH1P110MB1116.NAMP110.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 5ebbd8c0-754e-485b-c273-08da4f34c199
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Jun 2022 01:08:43.1006 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 95a9dce2-04f2-4043-995d-1ec3861911c6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH1P110MB1233
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/CzYyrmUkv7wejk90r8xnQ_CrIb4>
Subject: Re: [Masque] Roman Danyliw's No Objection on draft-ietf-masque-h3-datagram-10: (with COMMENT)
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Jun 2022 01:08:51 -0000
Hi David! No problem. Your alternative text captures the spirit of what I was intending. I was focused on reinforcing the idea that an end-to-end re-analysis will be needed when the Capsule protocol/HTTP Datagrams are integrated into another protocol. Thanks, Roman From: David Schinazi <dschinazi.ietf@gmail.com> Sent: Wednesday, June 15, 2022 8:17 PM To: Roman Danyliw <rdd@cert.org> Cc: The IESG <iesg@ietf.org>; draft-ietf-masque-h3-datagram@ietf.org; masque-chairs@ietf.org; MASQUE <masque@ietf.org>; Christopher Wood <caw@heapingbits.net> Subject: Re: Roman Danyliw's No Objection on draft-ietf-masque-h3-datagram-10: (with COMMENT) Hi Roman, thank you for your review! Without launching into a philosophical conversation about "what is a protocol?", I do prefer to avoid saying that "the capsule protocol is not a protocol". I was thinking of tweaking your text slightly to get to the same result: Definitions of new HTTP Upgrade Tokens that use the Capsule Protocol need to perform an appropriate security analysis that considers the impact of HTTP Datagrams and Capsules in the context of their protocol. I wrote that up as the following PR: https://github.com/ietf-wg-masque/draft-ietf-masque-h3-datagram/pull/206 Thanks, David On Wed, Jun 15, 2022 at 11:04 AM Roman Danyliw via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>> wrote: Roman Danyliw has entered the following ballot position for draft-ietf-masque-h3-datagram-10: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-masque-h3-datagram/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Thank you to David Mandelberg for the SECDIR review. ** Section 4. Consider adding the following clarification: NEW HTTP Datagrams and the Capsule Protocol are building blocks for HTTP extensions to define new behaviors or features and do not constitute an independent protocol. Any extension adopting them will need to perform an appropriate security analysis which considers the impact of these features in the context of a complete protocol.
- [Masque] Roman Danyliw's No Objection on draft-ie… Roman Danyliw via Datatracker
- Re: [Masque] Roman Danyliw's No Objection on draf… David Schinazi
- Re: [Masque] Roman Danyliw's No Objection on draf… Roman Danyliw