IETF Logo Mail Archive

Re: [netconf] WGLC on draft-ietf-netconf-over-tls13

Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de> Wed, 25 January 2023 14:32 UTC

Return-Path: <jschoenwaelder@constructor.university>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9673C14CF0C for <netconf@ietfa.amsl.com>; Wed, 25 Jan 2023 06:32:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.638
X-Spam-Level:
X-Spam-Status: No, score=-1.638 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, T_SPF_TEMPERROR=0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=jacobsuniversity.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7HhLb_gHv5Cj for <netconf@ietfa.amsl.com>; Wed, 25 Jan 2023 06:32:42 -0800 (PST)
Received: from EUR02-DB5-obe.outbound.protection.outlook.com (mail-db5eur02on2078.outbound.protection.outlook.com [40.107.249.78]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC87AC14F6EC for <netconf@ietf.org>; Wed, 25 Jan 2023 06:32:39 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Fq+BTAZ4m30EmSf4KTgBtNoa2gygzv80efb29OLaFQk+wFqR114v/ZqgU4PB6c6xqWIy6exKS5yz5KyqOaD5tJzgVEHqG476Hh32s0QI940jGVsrQsNhuo5sR/iZWBczSyL/tC8sVgA1zxLIaxN0sAKgd/tqyDxm+EaJEH6KX7EYL11BS5N5WEj3u/2SWzceVUYubGdZcxqsaPl/37Y/0f2dX4du6oTAoUeWzLhYTYwup/xHkeR1Am6Kklo+WsnQ1Cz83XyeKR10cBhG1+qzAClLjOXG5UEHPQoVPGw5Ohn+lHb427T6bKoZVmievdFgjN4vFC17soyva2svFZn2VA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=+8MJ+d8U2dPccx7lOBxB2JrF7sSABb6nHARAPcjfwfI=; b=YrkEVlPkovgAW7ByK6iGoAS6GRmgrUbFBNDIOfcSIBWqJaafPSe2j99aRBOQpLhSjECo86ru6SsSXO8tpaPGhlnKzrOezdyO5E6urZz61sSNmiujjSX4qkv9PUcZ+DAGga5AaBGa0MNjpqOxZXJCpEmvy5uxuloadL5BKRQBVNhFfpZa687rzcNc9/cZMgJGQ51IUKrt+ZvZ/ALV9qEu2ONvCM6mkQ6DWPaSjugTKbRZsCty+dVRifg2Jf53HEtgN5s9RqiJ8LZJnvyVIM19M+4KyauEcqAb5i382CgI0r/co33v3WGpm0Z7+wbCI7NwJ7aZpWkvK1931YXh+/8utg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=constructor.university; dmarc=pass action=none header.from=jacobs-university.de; dkim=pass header.d=jacobs-university.de; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jacobsuniversity.onmicrosoft.com; s=selector2-jacobsuniversity-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+8MJ+d8U2dPccx7lOBxB2JrF7sSABb6nHARAPcjfwfI=; b=YVzLcukuMIwdgnm8Y6XXLgvnfuSI2dnFbU4yGZVeCux0RqoMtvl2pY5Fmu08UoMqKu04KSO1EkB82uKoDaJmklx98Z6yT+jTx+/6V+gIJ3XOf5GxNaECwB+xf6NztrEiQ/20zDXhwGNdLLIPX7L7t+Dc4nLsTnz3F5LmVetf8Mc=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=jacobs-university.de;
Received: from GVXP190MB1991.EURP190.PROD.OUTLOOK.COM (2603:10a6:150:3::6) by AS4P190MB1997.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:518::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6002.33; Wed, 25 Jan 2023 14:32:36 +0000
Received: from GVXP190MB1991.EURP190.PROD.OUTLOOK.COM ([fe80::9c2e:527:d0b2:f570]) by GVXP190MB1991.EURP190.PROD.OUTLOOK.COM ([fe80::9c2e:527:d0b2:f570%9]) with mapi id 15.20.6002.033; Wed, 25 Jan 2023 14:32:36 +0000
Date: Wed, 25 Jan 2023 15:32:34 +0100
From: Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de>
To: Kent Watsen <kent+ietf@watsen.net>
Cc: "netconf@ietf.org" <netconf@ietf.org>
Message-ID: <20230125143234.vrygt7h34codgs2c@anna>
Reply-To: Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de>
Mail-Followup-To: Kent Watsen <kent+ietf@watsen.net>, "netconf@ietf.org" <netconf@ietf.org>
References: <01000185988718f9-8bf57d79-4101-4bfb-a8a9-063e7d56e858-000000@email.amazonses.com>
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <01000185988718f9-8bf57d79-4101-4bfb-a8a9-063e7d56e858-000000@email.amazonses.com>
X-ClientProxiedBy: AM0PR01CA0168.eurprd01.prod.exchangelabs.com (2603:10a6:208:aa::37) To GVXP190MB1991.EURP190.PROD.OUTLOOK.COM (2603:10a6:150:3::6)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: GVXP190MB1991:EE_|AS4P190MB1997:EE_
X-MS-Office365-Filtering-Correlation-Id: c61045f5-0640-480f-62ff-08dafee100be
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVXP190MB1991.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230025)(7916004)(346002)(376002)(366004)(39860400002)(396003)(136003)(451199018)(33716001)(40140700001)(85202003)(85182001)(786003)(52116002)(478600001)(316002)(966005)(66946007)(66476007)(6486002)(4326008)(5660300002)(3450700001)(2906002)(8936002)(41320700001)(66556008)(41300700001)(8676002)(83170400001)(6506007)(38100700002)(38350700002)(1076003)(26005)(6512007)(186003)(83380400001)(42882007)(9686003)(66574015); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: jacobs-university.de
X-MS-Exchange-CrossTenant-Network-Message-Id: c61045f5-0640-480f-62ff-08dafee100be
X-MS-Exchange-CrossTenant-AuthSource: GVXP190MB1991.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 25 Jan 2023 14:32:36.4450 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: f78e973e-5c0b-4ab8-bbd7-9887c95a8ebd
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: YkAH4wa72JrCfV81hn+LpN7Dx6GPpRKef7wmaLyqb14wVB1/kmZzEbjhjkQ6VfvcIWbgVRPF/NBC8yOHrxYZO6CwdpDPKGpPZj4UE+lpV1E=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS4P190MB1997
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/vUhdK6SmoJ2JRnUX7AkT-8diYc4>
Subject: Re: [netconf] WGLC on draft-ietf-netconf-over-tls13
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Jan 2023 14:32:47 -0000

On Mon, Jan 09, 2023 at 09:54:28PM +0000, Kent Watsen wrote:
> We are starting a 2 week WGLC on:
> 	- draft-ietf-netconf-over-tls13-01. 
> 
> The document can be found here:
> 	https://datatracker.ietf.org/doc/draft-ietf-netconf-over-tls13
> 
> Please respond on this thread indicating your support or concerns about why this document should/should not be adopted.
> 
> We are particularly interested in statement of the form:
> 	- I have reviewed the draft and found no issues. 
> 	- I have reviewed the draft and found the following issues …
> 
> This WGLC will conclude on Monday, January 23.   

I have reviewed the document and I believe that what it is technically
aims to achieve is OK and on track but the document itself is not ready.

- Does this document formally update RFC 7589? I am aware that updates
  means many different things (extending, depending-on, rewriting
  parts) so I should probably not even ask this question. ;-) But my
  gut feeling is that you really want a formal Updates: RFC 7589 here.

- As already noted by others, there is colloquial discussion around
  Section 9.1 of I-D.ietf-tls-rfc8446bis in the document that one
  would not expect in a WG last call document.

- In the Security Considerations, what does 'please review" really
  mean? Is it required or expected to do what the referenced documents
  say or are these just some reading suggestions that can be ignored?
  I would prefer to see much clearer guidelines, in particular since
  we talk about security.

- Editorial: Fix the following "describes defines" double verb.

/js

-- 
Jürgen Schönwälder              Constructor University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1 | 28759 Bremen | Germany
Fax:   +49 421 200 3103         <https://www.jacobs-university.de/>

v2.23.0 | Report a Bug | By Email