IETF Logo Mail Archive

Re: [Netconf] Benjamin Kaduk's Discuss on draft-ietf-netconf-zerotouch-25: (with DISCUSS and COMMENT)

Kent Watsen <kwatsen@juniper.net> Mon, 10 December 2018 21:34 UTC

Return-Path: <kwatsen@juniper.net>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2315A130F41; Mon, 10 Dec 2018 13:34:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.161
X-Spam-Level:
X-Spam-Status: No, score=-4.161 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.46, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kwCYmUU5_mSx; Mon, 10 Dec 2018 13:34:38 -0800 (PST)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 212FD131224; Mon, 10 Dec 2018 13:34:38 -0800 (PST)
Received: from pps.filterd (m0108161.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.27/8.16.0.27) with SMTP id wBALXjl4016754; Mon, 10 Dec 2018 13:34:37 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=PPS1017; bh=VxTK5hAw+4tWvQjJ+Sp2fZethoC66Caws/Am/tFNmVw=; b=EZRKFeKzSxEhBTWRKlL+iGKUAQyfDUQ8KDmoY3NSDmBS0s95NaACLpeU899zwrwpKskx hh5Hf4abYzZHTcc4GPXe+VeCDG2emGqbgJyretfxxXqlMuEdb0Mrvfpim3l5Hw0I8q0t QAdY/jjcuDLPjhqmCPAf1XQ0rcc5kq2UpuJFUCgOw6KmpRo/z2hESUJZQ3h89xpqh1Hi Ual8Hh5kLcpZ8eRaJLHZYjINjfFnWL2ZQ5DV6K4edeijqHflQXSVmC9E3bqfQDJLkLsU 3fQNE4hpdlg0+O3ZtPZhvsW9Tl6O5OTsIiFLd724Om6Jf7RXYkr8SF4ca/W/Uj8BfA/q Gw==
Received: from nam01-by2-obe.outbound.protection.outlook.com (mail-by2nam01lp2053.outbound.protection.outlook.com [104.47.34.53]) by mx0b-00273201.pphosted.com with ESMTP id 2p9swtgqvr-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 10 Dec 2018 13:34:37 -0800
Received: from DM6PR05MB4665.namprd05.prod.outlook.com (20.176.109.202) by DM6PR05MB6332.namprd05.prod.outlook.com (20.178.224.85) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1425.9; Mon, 10 Dec 2018 21:34:35 +0000
Received: from DM6PR05MB4665.namprd05.prod.outlook.com ([fe80::f0f3:20f0:2104:638c]) by DM6PR05MB4665.namprd05.prod.outlook.com ([fe80::f0f3:20f0:2104:638c%2]) with mapi id 15.20.1425.016; Mon, 10 Dec 2018 21:34:35 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: Benjamin Kaduk <kaduk@mit.edu>, The IESG <iesg@ietf.org>
CC: "draft-ietf-netconf-zerotouch@ietf.org" <draft-ietf-netconf-zerotouch@ietf.org>, "netconf-chairs@ietf.org" <netconf-chairs@ietf.org>, "netconf@ietf.org" <netconf@ietf.org>
Thread-Topic: Benjamin Kaduk's Discuss on draft-ietf-netconf-zerotouch-25: (with DISCUSS and COMMENT)
Thread-Index: AQHUi5qky69pAtgeuk6GIUpsNSYi7qVz1VIAgARf7wA=
Date: Mon, 10 Dec 2018 21:34:34 +0000
Message-ID: <CFE18196-AC39-4BF7-94A9-98AA6ADCAEAB@juniper.net>
References: <154390493154.31734.13025584839857369253.idtracker@ietfa.amsl.com> <F526DA60-77EC-45D6-ADE0-B345020A89BF@juniper.net>
In-Reply-To: <F526DA60-77EC-45D6-ADE0-B345020A89BF@juniper.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.4.181110
x-originating-ip: [66.129.241.14]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM6PR05MB6332; 6:KsDdHYWsbABOkdPJxwqvNpglTmRp9xQT7jnIh0OuREO7cnEkNxkpMpuebO9rVosI5YBCF7OPR6cl5+l7GaoNSXopHpu6M4fxKdEOgYsJ/lN6DBjzpm45ze9JXuXLs3VqoxL22MC7EpquGjtrbV2sypm/SimLO1i5dfZWM3KqsWK7BEujhisbmKMt8LjhUq/2z2njLUlBJQ6lYJlB4KEBQFKyV3p4QlFZVrJdvAIvfPK3H/EsM7Pldfigu7ffItN5vbWm3To8NLZHMBqHrkZ704Iq74fdm3pN0laSQzgB4GbR1Dl8/UwQ9jffw2z7eBWEglljSgOeDMsHHrGau+ThGolWvvMLTTBbsMm7oVopREbzl+DspWygOwlmn2BMd1aQX4aX3sv4iriZfcO/67iQ32tQ+9Q4lNlZZCRTBx1a9veXmEpXhIaAgYz6iXMGs7U/jaHzxnZVvctoVChE5EV2Bg==; 5:o8m1HlWUJNQTgKbgHJwkuqCCyNv1qtPssY2+/fS3kDBsj/oWqod+NMb2YGnl75kWOQpsZlZyocG/vlWZQmseJLSzM0Dh2A+UQScnqFdkXqRpIrOVpGSny7B9aY1jCV+NAs0zMQg3px1FM2yev9ZUhl38zBIcNrKgPMmaVVRQpeY=; 7:LirehB/NhYLRbTVp5WvM7Q0VQ01e9hyyMsCn7A/EjlXa03IdbPN8YQ8yXh9oSvFxCPMKfO8vBie6a4q6HJW/NKD0WlOhd8/o60+8XqAi1hHjnY6wYuJaK/n2cTiAHnE4uHMPMISU4Du4rFXoCz0n8w==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: cf3371bd-ae84-4a0b-e896-08d65ee7479e
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390098)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(4618075)(2017052603328)(7153060)(7193020); SRVR:DM6PR05MB6332;
x-ms-traffictypediagnostic: DM6PR05MB6332:
x-microsoft-antispam-prvs: <DM6PR05MB6332D3C00180FF8D3AE8601EA5A50@DM6PR05MB6332.namprd05.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(3230017)(999002)(6040522)(2401047)(8121501046)(5005006)(93006095)(93001095)(3231472)(944501520)(52105112)(10201501046)(3002001)(6055026)(148016)(149066)(150057)(6041310)(20161123562045)(20161123564045)(20161123560045)(20161123558120)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:DM6PR05MB6332; BCL:0; PCL:0; RULEID:; SRVR:DM6PR05MB6332;
x-forefront-prvs: 08828D20BC
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(346002)(376002)(366004)(396003)(39860400002)(136003)(199004)(189003)(6506007)(26005)(66066001)(2906002)(76176011)(83716004)(102836004)(54906003)(71190400001)(11346002)(110136005)(6246003)(82746002)(446003)(2171002)(14454004)(71200400001)(186003)(36756003)(6436002)(305945005)(99286004)(6116002)(7736002)(3846002)(68736007)(256004)(6486002)(5660300001)(8936002)(316002)(478600001)(6512007)(8676002)(86362001)(53936002)(97736004)(81156014)(476003)(486006)(81166006)(58126008)(2616005)(33656002)(105586002)(106356001)(229853002)(25786009)(4326008); DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR05MB6332; H:DM6PR05MB4665.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-microsoft-antispam-message-info: 64WgHEnXDFXg65zRgs8n6hJ6QAv3C+HLMwMApqNTOKe/aiGaq0SNezQgw6lKWPsah2cCfPOryAxCj7aFm7nXZ2a6WpbZMzOfEwurL00x141qwAUs5VRI/w4XioJAVqLI0Re1tYbaoCxTRxmjTuDMhy/u3V7HTS4ifIjj78ntRbRQJohboL6djYtzNaQXCt99ewPSCyMDW8gqP1kqF1h39iMBL9xlbQDRC65TA6YWulZyGNvpLEZv49b+pXl4h6fS+HAzUgMasJkASy5ot09xbfiXoXUQLJHDd6SHFSnNmGOBrz3MTiwOPW+gTk+ke6RA
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <66617E8461FEAC449895F4658BBE48B4@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: cf3371bd-ae84-4a0b-e896-08d65ee7479e
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Dec 2018 21:34:35.0676 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB6332
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-12-10_07:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=833 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1812100192
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/p56tMPxd_exMSVlwkh2u1FcBR_g>
Subject: Re: [Netconf] Benjamin Kaduk's Discuss on draft-ietf-netconf-zerotouch-25: (with DISCUSS and COMMENT)
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Network Configuration WG mailing list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Dec 2018 21:34:40 -0000

Hi Ben,

Regarding this DISCUSS item:

>>(3) Nonce length
>>
>>Section 7.3 describes the nonce leaf:
>>
>>         leaf nonce {
>>           type binary {
>>             length "8..32";
>>
>>There is probably some discussion to be had about the minimum nonce
>>length (not necessarily in the document itself).  Do you have a 
>>pointer handy to previous disucsions or do we need to have it now?
>>(I do see that this is just following RFC 8366, so hopefully this
>>is an easy question.)
>
>
> I sent email to my RFC 8366 co-authors, as they were behind setting
> this min nonce length.  I have yet to hear back from them, but will
> let you know when I do.

I received the following response from one of my RFC 8366 co-authors:

  ===start====
  I think we wanted something that was big enough to have some 
  reasonable entropy.  But, we didn't want to force receivers to
  store too much.

  More than 32-bytes shouldn't be a problem for most receivers, but
  we wouldn't expect them to accommodate kilobytes.  The registrar
  may need to store an index over nonce values for some situations.
  ===stop===

Does this resolve this DISCUSS item?


Kent // coauthor

v2.23.0 | Report a Bug | By Email