[nfsv4] Fwd: New Version Notification for draft-dnoveck-nfsv4-security-02.txt
David Noveck <davenoveck@gmail.com> Wed, 13 October 2021 13:55 UTC
Return-Path: <davenoveck@gmail.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AF5033A09E1 for <nfsv4@ietfa.amsl.com>; Wed, 13 Oct 2021 06:55:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t4dUSucpZ7tu for <nfsv4@ietfa.amsl.com>; Wed, 13 Oct 2021 06:55:33 -0700 (PDT)
Received: from mail-ed1-x52c.google.com (mail-ed1-x52c.google.com [IPv6:2a00:1450:4864:20::52c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A0F353A09E7 for <nfsv4@ietf.org>; Wed, 13 Oct 2021 06:55:33 -0700 (PDT)
Received: by mail-ed1-x52c.google.com with SMTP id w14so10491132edv.11 for <nfsv4@ietf.org>; Wed, 13 Oct 2021 06:55:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=MXcxOsRrG+C0fxTopJu+XoPEK+QecVkrgDa6jYBydyE=; b=LoGjjMzbsXig2AwrGHEW1omJ1QZv14A4K+hK/tOpOfhjhT04WPBx2NXtXomXbNVX2h cLXDwKx5WO5mbu5h/2YDJNpGqOpbedgpEzhggKuw7sUlkE12RvFP03/ZID7H1x3O5zUz Z9Xxk0str+tYwLEoAAzL5DRB6pTbE49Va9Wp2nJITDM0qyZ6CwrZ9RxdqQi28/UK6yz3 oHEI0Pjx0AV6aqETEga5TY5z6oTOWUerEb4eXz99txtNBY2ZtctDNWz2s5lnn9Q8j8zA 7/Zrx952s/DcF7PmKcFyjX2WBw4ivwqcsNL4b2SAPs5F1ntqIPm6lanMdMSrjI+2ij4t B7aw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=MXcxOsRrG+C0fxTopJu+XoPEK+QecVkrgDa6jYBydyE=; b=UPL9oLTumfNyTPaRIGH36EkxXkeQLO2m0corUEfOBgQm2JvWVoIaT39W47bfML1e6h FKRGK9fXsAPnCNmxz7TuldK9l5htq49syeTfmDuYDvqPaxPysIhtWTYYaGRBxkNuBcxc E3KLseb+BJlOjSeYjXmIczT2tIPmU+3epTPsWktLIe007SUIY8mRxCHxXa+TP8hcvStu V/TxUtCm23L2V/e0jAFKCD5Qz9n97/L6wUmejlw2zFB+geVXANxolp4Fy2uBxwLF8Z++ ybspdN+3+4MxB+IZhCjjIxaYQ3+oM8fufvf5fCFvZ30qcWGNvvPAgCN/Sv7ojw1VnDol T/gw==
X-Gm-Message-State: AOAM533L5e8fnlM1y9WFQmYgBCGKkUoE4XHCmauHeUevh2gGtb7Glz5N TyXwV2Nk7zqsnrXGsmWOssOatcgedOk/1cRhWM84+fhd
X-Google-Smtp-Source: ABdhPJyxARy86iIu83eiWfYHGKYwW8Hr+KU77kaONxdXyG4BcSvYN+12noQzsqtycrW9dYas628c6wSc3kmcV9mFOcE=
X-Received: by 2002:a50:d98a:: with SMTP id w10mr10138622edj.120.1634133329161; Wed, 13 Oct 2021 06:55:29 -0700 (PDT)
MIME-Version: 1.0
References: <163413179762.4576.18048404104258349846@ietfa.amsl.com>
In-Reply-To: <163413179762.4576.18048404104258349846@ietfa.amsl.com>
From: David Noveck <davenoveck@gmail.com>
Date: Wed, 13 Oct 2021 09:55:18 -0400
Message-ID: <CADaq8jd=c5bE=seSnBubaWoT3xv+0K1K8XtX5xVU413O1AZMiQ@mail.gmail.com>
To: NFSv4 <nfsv4@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000099b1a505ce3c50f1"
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/5zGRal2xK_puCYVbv9Tsvhv6yAA>
Subject: [nfsv4] Fwd: New Version Notification for draft-dnoveck-nfsv4-security-02.txt
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Oct 2021 13:55:39 -0000
This is the -02 draft that I will be discussing at the interim meeting on 10/27. It does not have all I expected to have done at this point, since I had a lot of unexpected work dealing with how acls and modes are coordinated. I expect to produce a -03 about two weeks after the meeting and an -04 about two months after that. I will try to incorporate the results of working group discussion in those drafts as well as filling in some missing pieces of the threat analysis. There are a lot of issues where I need to change, more than editorially, what is stated in RFCs 7530 and 8881. As a result, as this document moves forward, we need to make sure there is a working group consensus for these changes. They are summarized in Appendix B. ---------- Forwarded message --------- From: <internet-drafts@ietf.org> Date: Wed, Oct 13, 2021 at 9:29 AM Subject: New Version Notification for draft-dnoveck-nfsv4-security-02.txt To: David Noveck <davenoveck@gmail.com> A new version of I-D, draft-dnoveck-nfsv4-security-02.txt has been successfully submitted by David Noveck and posted to the IETF repository. Name: draft-dnoveck-nfsv4-security Revision: 02 Title: Security for the NFSv4 Protocols Document date: 2021-10-13 Group: Individual Submission Pages: 118 URL: https://www.ietf.org/archive/id/draft-dnoveck-nfsv4-security-02.txt Status: https://datatracker.ietf.org/doc/draft-dnoveck-nfsv4-security/ Html: https://www.ietf.org/archive/id/draft-dnoveck-nfsv4-security-02.html Htmlized: https://datatracker.ietf.org/doc/html/draft-dnoveck-nfsv4-security Diff: https://www.ietf.org/rfcdiff?url2=draft-dnoveck-nfsv4-security-02 Abstract: This document describes the core security features of the NFSv4 family of protocols, applying to all minor versions. The discussion includes the use of security features provided by the RPC transport. This preliminary version of the document, is intended, in large part, to result in working group discussion regarding existing NFSv4 security issues and to provide a framework for addressing these issues and obtaining working group consensus regarding necessary changes. When a successor document is eventually published as an RFC, it will supersede the description of security appearing in existing minor version specification documents such as RFC 7530 and RFC 8881. The IETF Secretariat