Re: [netconf] Adoption-suitability for draft-kwatsen-netconf-sztp-csr

Guy Fedorkow <gfedorkow@juniper.net> Thu, 13 August 2020 15:01 UTC

Return-Path: <gfedorkow@juniper.net>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B5C6C3A0D0B for <netconf@ietfa.amsl.com>; Thu, 13 Aug 2020 08:01:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=eh/IXHMu; dkim=pass (1024-bit key) header.d=juniper.net header.b=gtGQUygA
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Q6AtXrZxdiVn for <netconf@ietfa.amsl.com>; Thu, 13 Aug 2020 08:01:05 -0700 (PDT)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6CACF3A0CEF for <netconf@ietf.org>; Thu, 13 Aug 2020 08:01:05 -0700 (PDT)
Received: from pps.filterd (m0108159.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 07DEwYec020079; Thu, 13 Aug 2020 08:01:05 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=PP79jv8SHmsIBkF0JAYMi9jUNAv1inVdtfNeWNG15m4=; b=eh/IXHMu/Ev4QraobkrjFzwTYZLcB+w3dk7wPZR21IiOiWSfwdW7K+wQMjeShQsGup11 eu8TYM4+tKqowizr6D0AMfmcTEbTEVVhKjUxMY/q4ktRYlVR5UsKfjHfVBPqyDxLdNUG +zMplazR4XZlncrkPjvAMmLqZIiNG6FwJZfz5J40zLJ+OvEbcwG8J/oNd6cz3Ovp4Zm7 +FusW08xJFt6V/46J9XJmWvBI9yRHhY5yTDxac5eLNX/62kR4lOyoTRfBwKITDJxS3W4 lDz3DQ6DoohSb8axQIyu5ja/hGo7j6Aeh/tG/DHZjHNYS6Z82wujauK/ftlBb70n2XTH 8w==
Received: from nam04-co1-obe.outbound.protection.outlook.com (mail-co1nam04lp2051.outbound.protection.outlook.com [104.47.45.51]) by mx0a-00273201.pphosted.com with ESMTP id 32vdgujm6s-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 13 Aug 2020 08:01:02 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=CMtlEql8Er2zGoB0ZoqlLgbgpDKuXduRv/P9mtJqreZCBRP4qqu2IHyWE/IYnC14JDd+4GwpdvpPxK9BvJZRXR9a7uHDEV1MeJcyf74fpjFt55u5LozIVLGEEB/2OYTYy6mPo09QTnQiqgQ0aAw6XLcymvuMhxsoy/9wNT899Cz6rrjjq5zBc4oRnT+9E4iLiQ3muTMliLsyRF2tBeQSG1bbFD5KL2lN7uMSVWI/Nr9uMm/UvYjQPjsj/X7TYr5Z95ZqxhQE37liMthqnDGv30tDTR9jZf3N8qQFmKh3Tq9n48iLMknPOKgP+TecyBWB+HazWRgZjuiQxE1SskeV5w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PP79jv8SHmsIBkF0JAYMi9jUNAv1inVdtfNeWNG15m4=; b=Udru4HCT7bOqgsw+Jn14mCYdejajVoKdsjwchY45MeL03UPz8rD+YdivFsZ/bIQp99POde91p50K9iDx3eBPL+6LpNa4pRIQjBwRKg17d0P5tEJUg7xuCw2/XzXILYpQ8CnE7IStpvNMGhNXxD8kwEZUA+xpdF8KwZEDKNPkpfnDkphBj2stCKq646jSXs2WY/rdS/NpJYwL+sIrpxFhACeFB/4xr1SZGT+OJOw6sYplQ8D7L+TH+ThnX95Zq5nLc3nsR4T3F9NESpKg4XnYFIoIAxuc4eNypgljk/uycYFneKFoQ3j/0JSWVj+xOaxNaElX/tNhhfPO3vk725ojrA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PP79jv8SHmsIBkF0JAYMi9jUNAv1inVdtfNeWNG15m4=; b=gtGQUygAYanGnU6FjUBkaS82dDu+pyp3lFIhH5FKKN+0ZUvHSswJNwx/qquGhYSkhvA5ws5vF4I24rtX72yM5qyGSInN6LljiyI6d8YAUCEFdEqiFgTIWr4Cdke16jAWCm9LFWhF0cgVqk5N58MSuiyeOqYjyHnCMYc4CQq/2Ds=
Received: from DM6PR05MB6889.namprd05.prod.outlook.com (2603:10b6:5:204::22) by DM6PR05MB5578.namprd05.prod.outlook.com (2603:10b6:5:5d::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3305.10; Thu, 13 Aug 2020 15:00:59 +0000
Received: from DM6PR05MB6889.namprd05.prod.outlook.com ([fe80::f5ae:e4dc:9e61:d5f5]) by DM6PR05MB6889.namprd05.prod.outlook.com ([fe80::f5ae:e4dc:9e61:d5f5%5]) with mapi id 15.20.3283.015; Thu, 13 Aug 2020 15:00:59 +0000
From: Guy Fedorkow <gfedorkow@juniper.net>
To: "netconf@ietf.org" <netconf@ietf.org>
CC: "kent+ietf@watsen.net" <kent+ietf@watsen.net>, Mark Baushke <mdb@juniper.net>, William Bellingrath <wbellingrath@juniper.net>
Thread-Topic: [netconf] Adoption-suitability for draft-kwatsen-netconf-sztp-csr
Thread-Index: AQHWb2FSNnSQJH5E4USOKHG5nn+ORqk2JIag
Date: Thu, 13 Aug 2020 15:00:59 +0000
Message-ID: <DM6PR05MB68894C2B02358220E843C358BA430@DM6PR05MB6889.namprd05.prod.outlook.com>
References: <01000173c0b4ee99-d5627c91-eac2-4ea9-ba1b-b86e37c5293a-000000@us-east-1.amazonses.com> <01000173da613477-58693b0e-d2d2-4642-b9ae-111bc920b801-000000@email.amazonses.com>
In-Reply-To: <01000173da613477-58693b0e-d2d2-4642-b9ae-111bc920b801-000000@email.amazonses.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=true; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2020-08-13T15:00:56Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Method=Standard; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=0633b888-ae0d-4341-a75f-06e04137d755; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=38a46858-5ed2-4e81-a5bd-b037378dfcdc; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ContentBits=2
dlp-product: dlpe-windows
dlp-version: 11.5.0.60
dlp-reaction: no-action
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [66.129.241.14]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 98be7a79-131b-45c5-54e9-08d83f99b079
x-ms-traffictypediagnostic: DM6PR05MB5578:
x-ld-processed: bea78b3c-4cdb-4130-854a-1d193232e5f4,ExtAddr,ExtFwd
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <DM6PR05MB55783ABDB580F83392067481BA430@DM6PR05MB5578.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: jcvdg02kP7sQC3GE2zPswcmKq3zOyoWDFoi3NACIhzHWE+N+4DKJRbR+3iaRoPKpcSXB3WQLL1S+3JA371hWYDIZdyn1V+/z6mDBHqeJj6fwpSLkmcwee365+qczqgpHxNQaNTDa/udRZa9MKr/xyCGXPEw3sG05iu3F9he42QFBa/NRwNvTm0LurwjDBCmr6Hpdo3szVHMpKkCa0SpxdXIOoYZiy3jXpIokmqfqYJ7MLcmXK6f7ijvuhWu8rnTbMOJI4eMSM4JHYmbv6Ot9hrIn7iQKJGAU3MjtZYvUdFnglNnEECFFAJ1uwz7YV6/1q1P8NX1EEIlAtOwqiO8TEpK7fC74lgxKZU5IW2R2oxmrCedqHZZ9DO80ZnYHkSBk0yov4RBHO9yRShc3WJSpXw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR05MB6889.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(376002)(136003)(346002)(366004)(396003)(186003)(966005)(2906002)(478600001)(166002)(6506007)(86362001)(7696005)(6916009)(83380400001)(26005)(99936003)(107886003)(71200400001)(66556008)(55016002)(66446008)(64756008)(66476007)(66616009)(76116006)(66946007)(9686003)(33656002)(54906003)(8676002)(5660300002)(52536014)(316002)(8936002)(4326008); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=SHA1; boundary="----=_NextPart_000_08CA_01D67161.057A8410"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR05MB6889.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 98be7a79-131b-45c5-54e9-08d83f99b079
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Aug 2020 15:00:59.4793 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: LjZRNIb8HbgGY75QU+6kUOPG77Fvj+t+DOyRQIAKAaOXWqlr6MPoxDaRhzj9SqJcXUm3Qwjc0tTUlFTMiWrvLw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB5578
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.687 definitions=2020-08-13_13:2020-08-13, 2020-08-13 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 mlxlogscore=999 bulkscore=0 priorityscore=1501 impostorscore=0 lowpriorityscore=0 phishscore=0 spamscore=0 clxscore=1011 malwarescore=0 suspectscore=0 adultscore=0 mlxscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2006250000 definitions=main-2008130113
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/ai-OHjsp0T-3bArnz0-AwxcZmjk>
Subject: Re: [netconf] Adoption-suitability for draft-kwatsen-netconf-sztp-csr
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Aug 2020 15:01:08 -0000

  I think this work is of value.  We've had Local Device ID's defined in
802.1AR for some time, and some organizations interested in using them, but
we have not had any way to create an LDevID key, other than ad-hoc
manufacturer-defined techniques.

  This work would give network operators a vendor-independent automated,
zero-touch mechanism to create local device identity, and I think the draft
outlines a workable approach.

  I think it should go forward.

/guy fedorkow

 

 

 

From: Kent Watsen <kent+ietf@watsen.net <mailto:kent+ietf@watsen.net> >

Subject: [netconf] Adoption-suitability for draft-kwatsen-netconf-sztp-csr

Date: August 5, 2020 at 6:19:09 PM EDT

To: "netconf@ietf.org <mailto:netconf@ietf.org> " <netconf@ietf.org
<mailto:netconf@ietf.org> >

 

 

NETCONF WG,

Per the previous email sent moments ago, the chairs would like to solicit
input on the following draft: 

 

   Title: Conveying a CSR in an SZTP Bootstrapping Request 

   Link: https://tools.ietf.org/html/
<https://urldefense.com/v3/__https:/tools.ietf.org/html/__;!!NEt6yMaO-gk!XLb
LrNphNGxMj7dyV0cduDtrRfsFpnzdHJ2AK5X3aPB3oacu79Ua8sJYQghsc1P3aEw$>
draft-kwatsen-netconf-sztp-csr
   Abstract:

      This draft extends the "get-bootstrapping-data" RPC defined in

      RFC 8572 to include an optional certificate signing request (CSR), 

      enabling a bootstrapping device to additionally obtain an identity

      certificate (e.g., an LDevID, from IEEE 802.1AR) as part of the

      "onboarding information" response provided in the RPC-reply.

 


In particular, please discuss adoption-suitability as it regards to the
following questions:

 

    1) is the problem important for the NETCONF WG to solve?
    2) is the draft a suitable basis for the work?



PS: this message is itself not an adoption poll, but rather an attempt to
gauge interest/support for a potential future adoption poll.

NETCONF Chairs

_______________________________________________
netconf mailing list
netconf@ietf.org <mailto:netconf@ietf.org> 
https://www.ietf.org/mailman/listinfo/netconf

 

 

Juniper Business Use Only