IETF Logo Mail Archive

Re: [netconf] Éric Vyncke's No Objection on draft-ietf-netconf-tls-client-server-39: (with COMMENT)

"Eric Vyncke (evyncke)" <evyncke@cisco.com> Sat, 02 March 2024 07:08 UTC

Return-Path: <evyncke@cisco.com>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 41084C14F69A; Fri, 1 Mar 2024 23:08:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -11.906
X-Spam-Level:
X-Spam-Status: No, score=-11.906 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b="SETtX41O"; dkim=pass (1024-bit key) header.d=cisco.com header.b="Y92fw4S6"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jUHpm3Z3Ou45; Fri, 1 Mar 2024 23:08:29 -0800 (PST)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8AA7BC14F6BE; Fri, 1 Mar 2024 23:08:29 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; i=@cisco.com; l=7456; q=dns/txt; s=iport; t=1709363309; x=1710572909; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=ydKqGF+Oi7+UyOLlmp1hjlUXIYhmcu//qM4PR1qjwug=; b=SETtX41O/4jsVkDqBPEJkI0RboNAqxeMmvu8pEUl6bVHRuJV5vAaubbC DD0ucKqimSN7Sc9SjfoGS/gy+pAun+AfSiTnRnmkpqaiv8q1+KcPVnkTS gRx3VP/JsejxCbDBgFKggfAfjBTDw3wlROJla3KkMlLlWjLgVFsEH/4GV o=;
X-CSE-ConnectionGUID: ZelgsWgFT7GF9yHZW4iz7g==
X-CSE-MsgGUID: tWgo7smoScKNlPQLOjpykw==
X-IPAS-Result: A0ABAAB0z+JlmJFdJa1aGgEBAQEBAQEBAQEDAQEBARIBAQEBAgIBAQEBQCWBFgUBAQEBCwGBZlJ6AoEXSIQYPINMA4ROX4ZJgiIDgSmcXhSBEQNCFA8BAQENAQE7CQQBAYUGAhaHWwImNAkOAQICAgEBAQEDAgMBAQEBAQEBAQYBAQUBAQECAQcFFAEBAQEBAQEBHhkFDhAnhWwNhk4BAQEBAgEMBhERDAEBNwEECwIBBgIYAgIjAwICAi8UAQULAgQOBRYMgl4BgjwjAwEQlQWPTwGBQAKKKHqBMoEBggoBAQYEBYFPQbBnCYEaLgGIJQFfd4NdhH4nG4FJRIEVJwsQgmg+gmEBAQOBKAESAQcCGBUCg0Q5gi+BGH+DO4l3iG2CZzeGTAlLfxwDgQUEWg0bEB43ERATDQMIbh0CMToDBQMEMgoSDAsfBRJCA0MGSQsDAhoFAwMEgS4FDRoCEBoGDCYDAxJJAhAUAzgDAwYDCjEwVUEMUANkHzIJPA8MGgIbFA0kIwIsPgMJChACFgMdFgQyEQkLJgMqBjkCEgwGBgZdIBYJBCUDCAQDVAMgdBEDBBoHCwd4ggmBPQQTRgENA4E0hTiEagyCAYE6KoFWAxkrHUADC209NRQbBiIBHQKhUgIBgXNbRCYEIhkQCCBRDmwXET0nA5JNCoMZAUmZbJR/CoQSjAmPLIYLBC+EBYFWiySGd5FNZINSgkSEbI1ZglOLHZVGMYRrAgQCBAUCDgEBBjWBLzprcHAVZQGCCAEBATEJSRkPjiAMDQkWg0KFFIpleDsCAQYBCgEBAwkBgjmGNi2BSgEB
IronPort-PHdr: A9a23:BNGVyh0B5v4EqQWDsmDPYFBlVkEcU/3cJAUZ7N8gk71RN/3l9JX5N 0uZ7vJo3xfFXoTevupNkPGe87vhVmoJ/YubvTgcfYZNWR4IhYRenwEpDMOfT0yuBPXrdCc9W s9FUQwt5Gm1ZHBcA922fFjOuju35D8WFA/4MF94OPXzEY3fp8+2zOu1vZbUZlYAiD+0e7gnN Byttk2RrpwMjIlvIbp5xhrS931PfekXjW89LlOIlBG67cC1lKM=
IronPort-Data: A9a23:vIYXMq/SHivmf+IjveJgDrUDVH6TJUtcMsCJ2f8bNWPcYEJGY0x3y 2YaUD2BOvuJZGH0edokYNuzoUIGvcDUyN9gQVE9qypEQiMRo6IpJzg2wmQcns+2BpeeJK6yx 5xGMrEsFOhtEzmE4E/ra+C9xZVF/fngbqLmD+LZMTxGSwZhSSMw4TpugOdRbrRA2bBVOCvT/ 4usyyHjEAX9gWIsaTpOs/vrRC5H5ZwehhtJ5jTSWtgT1LPuvyF9JI4SI6i3M0z5TuF8dgJtb 7+epF0R1jqxEyYFUrtJoJ6iGqE5auK60Ty1t5Zjc/PKbi6uCcAF+v1T2PI0MS+7gtgS9jx74 I0lWZeYEW/FMkBQ8QgQe0EwLs1wAUFJ0I3KJXekjsO98xLpXSr948dRUEAkYoJNr46bAUkWn RAZACoGYhbGjOWszffqDOJtnc8kasLsOevzuFk5kmqfVqlgEMuFGvmXjTNb9G9YasRmEOjPY cEaZBJkbQ/LZFtEPVJ/5JcWxbb42CmiKWwBwL6TjbYI7G+M1wl267POFt7tQ/itR91EnVnN8 woq+EyiX0lFb4bAodafyVqqi/PEmiX1cIMfCLP+8eRl6HWVy3AYDxsYEFC7qPijkWa/Vs5Rb UsO9UIGobI7+lDuT9ThUVi+rWKPuRgSHsZUCKgx7ACAzLaR+AuDGGUeZj9MdNJgs9U5LRQr2 0SGt9LkGTIpt6eaIU9x7Z+Opj+0fCMSN2JHNGkPTBAO5J/op4RbYg/zoshLIqOxgcbKFh/Mn B+k/TketYpPjNxU2PDulbzYuA6Eqp/MRw8zwwzYWGO58w90DLJJgaT1tzA3Ct4dfO6kokm9g ZQSpySJAAkz4XyljieBRqAGG6ukoqfDOzzHilkpFJ4kn9hMx5JBVd4AiN2dDB41WirhRdMPS BSL0e+2zMQDVEZGlYctP+qM5z0ClMAM7+jNWPHOdcZpaZNsbgKB9ywGTRfPhzG2yBB0wflna MbznSOQ4ZAyVPQPIN2eGrZ17FPX7n9WKZ77HMmkn0r9jdJymlbFGelt3KSyghARt/7c/16Pr L6zxuOByg5UV6XlczLL/IsIZVEMJj5TOHwFg5I/SwJ3GSI/QDtJI6aImdsJItU594wLzb2g1 i/mBSdlJK/X2CevxfOiMC4zMdsCnP9X8BoGAMDbFQ34hidyMdn1t/t3mlleVeBPydGPBMVcF pEtU86BGf9IDD/A/lwggVPV9eSOqDzDadqyAheY
IronPort-HdrOrdr: A9a23:6oEXkapUZbqpcnJD6ZOmsg4aV5tYLNV00zEX/kB9WHVpm5Oj5q OTdaUgtSMc1gxxZJh5o6HwBEDhex/hHZ4c2/hpAV87NDOW+VdAX7sSnbcKpAeQWxEWl9Qtm5 uIFpIOauEYYmIK8PoSjDPIdOrIheP3jpxA5t2ujEuFLzsaF52Ihj0RYm30YygGIDWuR6BJa6 Z0jfA33wZIDE5nFPhTcUN1JNQryee78q7OUFotPTJiwg+Iij+j9b79FDal/jp2aVly6IZn21 Lo1yji6Iuek9zT8HLhPmnogKh+qZ/E8J9uFcaMgs8aJnHHkQCzfrlsXLWEoXQcvPyvwExCqq iInz4Qe+BIr1/BdGC8phXgnyP61iw11nPkwViExVP+vM3CQi4gAcYpv/McTvKZ0TtmgDhP6t MT44urjesOMfoGplWn2zH8bWAtqqNzmwt5rQdctQ0DbWJUUs4jkWVWxjImLH5HJlO51Gjie9 MeU/01I51tAA+nhzqyhBgb/PW8Gns0BRuIWU4Ep4ic1CVXhmlwyw8CyNUYhWpozuNxd3Bo3Z WODk1TrsAFcuYGKaZmQOsRS8q+DWLABRrKLWKJOFziUKUKIWjEpZL76Kg8oLjCQu1G8LIi3J DaFF9Iv287fEzjTcWIwZ1Q6xjIBGGwRy7kxM1S74Vw/rf8WL3oOyueT01Gqbrtn9wPRsnAH/ qjMpNfBPHuaWPoBIZSxgX7H4JfLHEPOfdl8urTm2j+6/4jBreawNAzKsyjUIYFOQxULV/CPg ==
X-Talos-CUID: 9a23:L+khHmqj3WhEVVmOn1H9ekHmUfIodnLG83j+HxCXJzd4aI+qFV6Cp6wxxg==
X-Talos-MUID: 9a23:nJDm7w2IHBK3xW1ncoCuyMogtjUj/5uhDx8WlJI9sOqiMRRJHxCflCW0Xdpy
X-IronPort-Anti-Spam-Filtered: true
Received: from rcdn-core-9.cisco.com ([173.37.93.145]) by rcdn-iport-5.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 02 Mar 2024 07:08:28 +0000
Received: from rcdn-opgw-1.cisco.com (rcdn-opgw-1.cisco.com [72.163.7.162]) by rcdn-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id 42278ShO006242 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Sat, 2 Mar 2024 07:08:28 GMT
X-CSE-ConnectionGUID: aJOAc7uMRt+dhsHUVjK1Zg==
X-CSE-MsgGUID: Vt3n7/abRT6n4YjVaEX77g==
Authentication-Results: rcdn-opgw-1.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=evyncke@cisco.com; dmarc=pass (p=reject dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="6.06,199,1705363200"; d="scan'208";a="5822918"
Received: from mail-bn8nam12lp2168.outbound.protection.outlook.com (HELO NAM12-BN8-obe.outbound.protection.outlook.com) ([104.47.55.168]) by rcdn-opgw-1.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 02 Mar 2024 07:08:27 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=UjWU8L+eV7KkNjIFwgi67C0DixA7qiqYnK01KIq7Bw6FGgecyMy3zCEZzJDPErq/+YJHp6a/x3h3qg4u1pQwvlrPQJa/86rX5oE7k4/660LpJA6xOy9jFGmmcyGSFp9SEf1ms39v1387AXle0kqU9ne7u4vMtGzuNx1XzQFSQmNVWp8KqLGBMreboUXvVtD6VJ+Mi1XjbuWq/d/lVgXllINfSp0Tgbcj14xHei8qzdJoJJB9Jv3dwXzUS7RAUEE8W8IGErDE6wmwRBn0wGKpfQykM0ocP98TMQJaeUxKL/Mp/BaQOjB9ZctyPrvlvL7NZFo4SgfqZ68c4s7chYJIJA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ydKqGF+Oi7+UyOLlmp1hjlUXIYhmcu//qM4PR1qjwug=; b=NjSb9htkNSRdfyr9Or/xUVhppm9w7Dco7P9KN+zYeEC8Tf1Jf/gion2uDTDC7eNH5QdBaAbM+vv7czg4xuHqcPmZMltlpAcZvuZscBmeBtMizyg3PrkzxkqYF84Ac6Xh5DEOJCCBw7oRaSZ2+PwuATadohAhTvUbKLV/LjMJGuVGpf+RxJ6kXywmLg8ZQgovPt5x+0Q37KLPbKOA01lZD0+AOOZNNInqmqyjvEpru2eWFdtULpK3ziLprO0Pp28Ayo6qChFGNEAemTRJ+TqSYI3Im2oULBWD8BS8oTzXvXwC5wb6RKO/vWY8qEPNKJDJsSjpaXltZYxAT2Ha5SrBbw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ydKqGF+Oi7+UyOLlmp1hjlUXIYhmcu//qM4PR1qjwug=; b=Y92fw4S6bUIIIh015Fo4rzMfIFNoamki6gzgJv9RIKCGA84QVhOQ6BQ0zMpZQrZMRNC9Xe1ubbsYBv8PemsNYkIoRE+3LmZ3HLW4Nwv2CEKmCQLOJuyH7135AAbL7svUDSbXGcRgcHM8XDePvuPhHEe/57dgVo3wOso3kOGAeOk=
Received: from PH0PR11MB4966.namprd11.prod.outlook.com (2603:10b6:510:42::21) by SJ0PR11MB4976.namprd11.prod.outlook.com (2603:10b6:a03:2d7::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7362.18; Sat, 2 Mar 2024 07:08:24 +0000
Received: from PH0PR11MB4966.namprd11.prod.outlook.com ([fe80::626d:78db:4371:447a]) by PH0PR11MB4966.namprd11.prod.outlook.com ([fe80::626d:78db:4371:447a%4]) with mapi id 15.20.7362.015; Sat, 2 Mar 2024 07:08:24 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Kent Watsen <kent+ietf@watsen.net>
CC: The IESG <iesg@ietf.org>, "draft-ietf-netconf-tls-client-server@ietf.org" <draft-ietf-netconf-tls-client-server@ietf.org>, "netconf-chairs@ietf.org" <netconf-chairs@ietf.org>, "netconf@ietf.org" <netconf@ietf.org>, "jeff.hartley@commscope.com" <jeff.hartley@commscope.com>, Mahesh Jethanandani <mjethanandani@gmail.com>
Thread-Topic: Éric Vyncke's No Objection on draft-ietf-netconf-tls-client-server-39: (with COMMENT)
Thread-Index: AQHabEmR3if0pZlxYkqiAvbX8ByjerEkGQSA
Date: Sat, 02 Mar 2024 07:08:24 +0000
Message-ID: <588F4B5C-5679-4CCB-919C-52042A6FEF09@cisco.com>
References: <170920107523.22739.4457196523564713741@ietfa.amsl.com> <0100018dfcff428f-1d867567-e265-46e9-9591-05c0d1e354b4-000000@email.amazonses.com>
In-Reply-To: <0100018dfcff428f-1d867567-e265-46e9-9591-05c0d1e354b4-000000@email.amazonses.com>
Accept-Language: fr-BE, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.82.24021813
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH0PR11MB4966:EE_|SJ0PR11MB4976:EE_
x-ms-office365-filtering-correlation-id: 4b90c012-8bd8-455d-ad2c-08dc3a878d30
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH0PR11MB4966.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(376005)(38070700009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <6A59FD53F47E804794724C59963589A7@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH0PR11MB4966.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4b90c012-8bd8-455d-ad2c-08dc3a878d30
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Mar 2024 07:08:24.3368 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: DwbAOfg+ahI6TQWlC4fYa18iHV44PgFmFAz+9Q/iZvNCLOPwicjW83q9QMbgKdF1sGfNjbEQnm1nJRaTPpnwUQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR11MB4976
X-Outbound-SMTP-Client: 72.163.7.162, rcdn-opgw-1.cisco.com
X-Outbound-Node: rcdn-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/3w5Zr1qCgpIciO9A8tS7LO2fLLw>
Subject: Re: [netconf] Éric Vyncke's No Objection on draft-ietf-netconf-tls-client-server-39: (with COMMENT)
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 02 Mar 2024 07:08:34 -0000

Thank you, Ken, for all the detailed information (especially about the 1 vs. 3 authors).

I agree with your points and I had nothing specific in mind about my comment for the Python script and deprecated algorithms.

-éric

On 02/03/2024, 03:30, "iesg on behalf of Kent Watsen" <iesg-bounces@ietf.org <mailto:iesg-bounces@ietf.org> on behalf of kent+ietf@watsen.net <mailto:kent+ietf@watsen.net>> wrote:


Hi Éric,


Thank you for your valuable comments.
Please find responses below.


Kent // author






> On Feb 29, 2024, at 5:04 AM, Éric Vyncke via Datatracker <noreply@ietf.org <mailto:noreply@ietf.org>> wrote:
> 
> Éric Vyncke has entered the following ballot position for
> draft-ietf-netconf-tls-client-server-39: No Objection
> 
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
> 
> 
> Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ <https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/> 
> for more information about how to handle DISCUSS and COMMENT positions.
> 
> 
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-netconf-tls-client-server/ <https://datatracker.ietf.org/doc/draft-ietf-netconf-tls-client-server/>
> 
> 
> 
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> 
> # Éric Vyncke, INT AD, comments for draft-ietf-netconf-tls-client-server-39
> 
> Thank you for the work put into this document, with its companion I-Ds, this
> represents a huge work.


You bet it does! Almost seven years in the making…




> Please find below some non-blocking COMMENT points (but replies would be
> appreciated even if only for my own education), and some nits.
> 
> Special thanks to Jeff Hartley for the shepherd's write-up including the WG
> consensus and the (light) justification of the intended status.
> 
> I hope that this review helps to improve the document,
> 
> Regards,
> 
> -éric
> 
> # COMMENTS (non-blocking)
> 
> ## Warning about Yangcatalog.org
> 
> The Python code in the annex generates several errors when the RFC is validated
> by yangcatalog.org. While expected, it would be nice to have some text about
> this issue in the shepherd write-up.


This is a known issue. Russ Housely suggested a fix which I applied for my next upload. The trick is the make DataTracker not think that the Python code's YANG is a real YANG module - grrr




> ## Section 1
> 
> Suggestion: be consistent with the use of double-quotes
> 
> s/This document only defines that the IANA module exists/This document
> *assumes* that the IANA module exists/ ?


Fixed, per suggestion.


Fixed in the ssh-client-server draft also.




> ## Section 2
> 
> `Note that TLS1.2 only uses TLS Cipher Suites` seems to contradict the previous
> sentence "should". Rewording would make this paragraph easier to read.


Removed offending sentence.




> ## Section 2.2
> 
> To be honest, I was about to ballot DISCUSS on this point, but I have already
> balloted too many discuss point on this nice set of I-Ds.
> 
> The example has `tls11`, which is no more a version defined in this document.


“tls11" has now been removed, per other IESG review comments.




> ## Section 2.3
> 
> I see three authors for the YANG module but only one of them is the I-D author.
> Any reason why ?


The author discrepancy is because they stepped in to update a YANG module, but didn’t submit any document-body level text. I think that it is fair.




> ## Section 3.1.1
> 
> A short description of the 7 features would help the reader even if their names
> are somehow self-descriptive. In my own case, it took me 3 minutes to
> understand the use of server-auth-x509-cert by reading the actual YANG module
> description of the features.


I added the sentence:


"Please refer to the YANG module for a description of each feature."


…to all three modules, in both the ssh-client-server and the tls-client-server drafts.


This should help future readers to jump faster.




> ## Section A.1
> 
> I wonder why the module contains algorithms that were deprecated together with
> TLS 1.1


The Python code in Appendix A works off the underlying IANA registry.


There is a column called “Recommended” and, if set to ’N’, then the Python code sets “status deprecated;” Any interpretation past that is outside the scope of the current Python script. 


I understand that you want more algorithms to be deprecated, but shouldn’t that happen in the underlying IANA registry first, and then the Python script can read it out?


What did you have in mind?






> # NITS (non-blocking / cosmetic)
> 
> ## Abstract
> 
> Please be consistent with the use of double quotes around IETF & IANA.


Removed double quotes around both IETF & IANA.


Same update applied to the ssh-client-server draft.




> Also, unsure whether stating the module names in the abstract is more useful or
> cumbersome ;-)


se-lä-vē ;)




Thanks again!
Kent

v2.23.0 | Report a Bug | By Email