Re: [netmod] YANG module security considerations template - TLS reference
Kent Watsen <kwatsen@juniper.net> Mon, 01 October 2018 18:31 UTC
Return-Path: <kwatsen@juniper.net>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D7154130E6B; Mon, 1 Oct 2018 11:31:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.156
X-Spam-Level:
X-Spam-Status: No, score=-3.156 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.456, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SmhieeWC9Kiz; Mon, 1 Oct 2018 11:31:56 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0773F127598; Mon, 1 Oct 2018 11:31:55 -0700 (PDT)
Received: from pps.filterd (m0108160.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w91IT17U015259; Mon, 1 Oct 2018 11:31:54 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=PPS1017; bh=lPz2ouSi0H01S+5gGJdlXiSdtqSdemIg/idQl5mD0as=; b=qGIs8egLcVfsLGgJ4crvPAhG+QMZobiNcuiuUWwlCfmhkQLp6GJnKsTmkQ57wGdxaukD kKX42MB1tcBZrTNq73j7fz3CIuQkV02fk42Pd0TkVQw9XmyBgZP1NmaI7Fvq13tscP2a lEZsF1IfabLkcpBzHxn3VN/0ASPdJizsuzDNzEYiKpQ3QdZ45isIbCLH/SEpQG+fXO+t BVQ6AYv/3aSoFL6mLcheFtXdYtLh8YI42Xc5w8H/FAGmI4cPTWFM2bnW0chlQvaPnOYA Q7CWXI0PMFjthoi5vx5fGN779gPL9O9hw4n4RAqIJxaCqWxr74pZGlfDXx/urJGPc9/o jg==
Received: from nam05-dm3-obe.outbound.protection.outlook.com (mail-dm3nam05lp0120.outbound.protection.outlook.com [216.32.181.120]) by mx0b-00273201.pphosted.com with ESMTP id 2mun3jghfr-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Mon, 01 Oct 2018 11:31:54 -0700
Received: from DM6PR05MB4665.namprd05.prod.outlook.com (20.176.109.202) by DM6PR05MB4761.namprd05.prod.outlook.com (20.176.110.10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1207.16; Mon, 1 Oct 2018 18:31:51 +0000
Received: from DM6PR05MB4665.namprd05.prod.outlook.com ([fe80::8574:3388:660d:e495]) by DM6PR05MB4665.namprd05.prod.outlook.com ([fe80::8574:3388:660d:e495%5]) with mapi id 15.20.1207.018; Mon, 1 Oct 2018 18:31:51 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: "Acee Lindem (acee)" <acee@cisco.com>, Martin Bjorklund <mbj@tail-f.com>, "netmod-chairs@ietf.org" <netmod-chairs@ietf.org>, "netmod-ads@ietf.org" <netmod-ads@ietf.org>, "netmod@ietf.org" <netmod@ietf.org>
Thread-Topic: [netmod] YANG module security considerations template - TLS reference
Thread-Index: AQHUWVcThVBzOGZb3U6r7WxKf3RM96UKcoAAgAAB0QA=
Date: Mon, 01 Oct 2018 18:31:51 +0000
Message-ID: <4BF93030-3371-417B-A897-61A44464834C@juniper.net>
References: <20181001.091910.1896030373672380031.mbj@tail-f.com> <43AB5D62-FCB5-4B84-841E-30F14235A147@cisco.com>
In-Reply-To: <43AB5D62-FCB5-4B84-841E-30F14235A147@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.2.180910
x-originating-ip: [66.129.241.12]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM6PR05MB4761; 6:GBw64n95CA1hDG+QVm/OaAHgwGpNPzrA1NrkfL/F8tssR4AQ0Sa6m48x5871MIayMHwE6nvdj25l6o1PQ7sMOqIXJVCkRmLp18VRk3DdRzrg3pGWP61Ujc9Qu19leEB0WT5eoEr5OhZR1C6hrjKu2w/5lHB+GGbmof2zE1bj3AXqisSOa+bLiTyNtO2R/FeJ1RBZl3DdsDTytnCUxbFxMOHPmtoVUwc1T3JRiwH6hjMQaSvJ1ZA83rKXtnHpoET7x7aCswGQreWqHySoOUF5T8LS7YyfLbXelJtr5J3oPLuA5/1MJv809XWTP0tXhffCtmjQmdKn8Be0HC1V8SUCYUtl6wBSXv2YlnQLXN2ReJpyq94bVux+35MmkJvjNI1Sk+/iE8Rp06U9cYJjmFgFivANcjuQ1lg7EE5bfFevSTEgdDUG/dNzoDqbs2nx4pDFU3tbf7Omo7lbAB82auhgsg==; 5:2I5JSsn5HvNfO0gdGQUXmEA3CPxi0oeKRKnJaBOUTt0kfWJo5gOEpy43NMoWksdQY7zRc27H33To//dVAsc26k+Jgj3OqCk81pRvfcwzbwexz79Um6ANi0SjKOLHfnqtLm2skakYar37sw9CHBov5pqTDJRltqj8l0hCh/+/BAg=; 7:oNvXkZ2OUWdFTuMX3H99O1S+t07iBGyMQv35DFZtN3GrhAAwdih6plcixG01X9mdYgkqTr87Cxa881xvQ1iwX8BtHy9AjlDtV1p2DZ/F2fJoXfiC3s6gC4h8A5ycl1+RNxV7AbcqusjXSgHb4niG3NXv6Z1vqWujWwiBqhJbrCKiE09rjYvO9iCM0ymyoMTGMnzIVgkCSRIY/ixONJCDEIMWCeON1vN0nWNVkulRlUwLy0Y5lBEp4cuzIw+jAELw
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: b367d7a0-58b1-47c5-608d-08d627cc280d
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534165)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(4618075)(2017052603328)(7153060)(7193020); SRVR:DM6PR05MB4761;
x-ms-traffictypediagnostic: DM6PR05MB4761:
x-microsoft-antispam-prvs: <DM6PR05MB4761931620E9AD4EC9377D53A5EF0@DM6PR05MB4761.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(192374486261705)(10436049006162)(95692535739014)(50582790962513)(138986009662008);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(93006095)(93001095)(3002001)(3231355)(944501410)(52105095)(10201501046)(6055026)(149066)(150057)(6041310)(20161123562045)(20161123564045)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(201708071742011)(7699051); SRVR:DM6PR05MB4761; BCL:0; PCL:0; RULEID:; SRVR:DM6PR05MB4761;
x-forefront-prvs: 0812095267
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(346002)(366004)(39860400002)(396003)(376002)(136003)(189003)(199004)(13464003)(86362001)(2906002)(14444005)(6506007)(53936002)(575784001)(256004)(53546011)(6246003)(2201001)(6306002)(5660300001)(8676002)(6512007)(81156014)(81166006)(2501003)(7736002)(106356001)(11346002)(58126008)(76176011)(8936002)(33656002)(110136005)(2900100001)(316002)(99286004)(5250100002)(25786009)(83716004)(486006)(6486002)(102836004)(966005)(36756003)(71200400001)(6436002)(71190400001)(478600001)(186003)(97736004)(14454004)(15650500001)(2616005)(82746002)(305945005)(3846002)(446003)(68736007)(476003)(26005)(66066001)(229853002)(105586002)(6116002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR05MB4761; H:DM6PR05MB4665.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-microsoft-antispam-message-info: rEbDrkxHDfZCB3Qik0zVpkURoJai9Ozi4dTm7xll/2DnGAsrR4JDYgS+Kp9fQToOjT0MWAw3p/1sdIh1/UvlsSZafdeXau1vPN/6vAQ+6KFHzLbxnft7ybWMFgU1E4wvDud1TSe4v0kHToKHX3qqJGM0ZKHiHnD/9WhgMZ8WG/Mwe6bCu72EAXv36+ULgV+czMbBFduCubghyeOA7axFqo9uxzAo2QtBM41qEptH41m/b/VDiS03UKyHCNqoGvlK4MLgtwBs9uDyoImhz4lVEonrpsP3sIkSiPHAI0SN/YXDyDT1kXZ3zRZkdA1C18B7d0zzrMyPRoK6Qm9SUFELuzy8n88KDjcmeX083uRP5WE=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <395241A673FAF348BB0558CE9A27FC4F@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: b367d7a0-58b1-47c5-608d-08d627cc280d
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Oct 2018 18:31:51.7830 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB4761
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-10-01_10:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1807170000 definitions=main-1810010177
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/Bkq3mBB__-u6IuaUScs1h60pL8c>
Subject: Re: [netmod] YANG module security considerations template - TLS reference
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Oct 2018 18:31:59 -0000
Benoit is the progenitor of the template. I took it to be an "AD thing" has since passed to Ignas. Kent -----Original Message----- From: "Acee Lindem (acee)" <acee@cisco.com> Date: Monday, October 1, 2018 at 10:25 AM To: Martin Bjorklund <mbj@tail-f.com>, "netmod-chairs@ietf.org" <netmod-chairs@ietf.org>, "netmod-ads@ietf.org" <netmod-ads@ietf.org>, "netmod@ietf.org" <netmod@ietf.org> Subject: Re: [netmod] YANG module security considerations template - TLS reference Resent-From: <alias-bounces@ietf.org> Resent-To: <joelja@bogus.com>, <wangzitao@huawei.com>, <lberger@labn.net>, <kwatsen@juniper.net> Resent-Date: Monday, October 1, 2018 at 10:25 AM Agreed - although I'm not sure who has control over the template either. For drafts that are in-progress, IDNITs will flag this obsolete reference and, for at least one of the drafts I'm an editor, I've already made the update. Thanks, Acee On 10/1/18, 3:19 AM, "netmod on behalf of Martin Bjorklund" <netmod-bounces@ietf.org on behalf of mbj@tail-f.com> wrote: Hi, In their review of draft-ietf-netconf-nmda-restconf, the IESG suggested we update the reference to TLS from RFC 5246 to RFC 8446 (which obsoletes 5246). This update needs to be done to the template available at https://urldefense.proofpoint.com/v2/url?u=https-3A__trac.ietf.org_trac_ops_wiki_yang-2Dsecurity-2Dguidelines&d=DwIGaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=54lt0_rCJTvXEIWmFXsdUNDbzJIkrJ86K-IveL1QoG4&s=9uZWNJN6weNKKk7ABnZ-yFVkwdZxZzQOSm9bSXwT1SQ&e= (it is not quite clear who is repsonsible for this template; maybe that should be clarified on the page) /martin _______________________________________________ netmod mailing list netmod@ietf.org https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_netmod&d=DwIGaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=54lt0_rCJTvXEIWmFXsdUNDbzJIkrJ86K-IveL1QoG4&s=QhZGZPVsGhr3-uPQZRPyHFcBYz59K2QZxenbb7Ly7L8&e=
- [netmod] YANG module security considerations temp… Martin Bjorklund
- Re: [netmod] YANG module security considerations … Acee Lindem (acee)
- Re: [netmod] YANG module security considerations … Kent Watsen
- Re: [netmod] YANG module security considerations … Lou Berger
- Re: [netmod] YANG module security considerations … Acee Lindem (acee)