Re: [nfsv4] I-D Action: draft-ietf-nfsv4-rpc-tls-11.txt
Tom Talpey <tom@talpey.com> Mon, 23 November 2020 16:55 UTC
Return-Path: <tom@talpey.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BA0543A0ABA for <nfsv4@ietfa.amsl.com>; Mon, 23 Nov 2020 08:55:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.02
X-Spam-Level:
X-Spam-Status: No, score=-0.02 tagged_above=-999 required=5 tests=[NICE_REPLY_A=-0.001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id facvxiu-IsXs for <nfsv4@ietfa.amsl.com>; Mon, 23 Nov 2020 08:55:05 -0800 (PST)
Received: from p3plsmtpa06-04.prod.phx3.secureserver.net (p3plsmtpa06-04.prod.phx3.secureserver.net [173.201.192.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 255693A0AB5 for <nfsv4@ietf.org>; Mon, 23 Nov 2020 08:55:04 -0800 (PST)
Received: from [192.168.0.116] ([71.184.94.153]) by :SMTPAUTH: with ESMTPSA id hF7HkaQsI5yf9hF7IkzXH2; Mon, 23 Nov 2020 09:55:04 -0700
X-CMAE-Analysis: v=2.4 cv=Hsqzp2fS c=1 sm=1 tr=0 ts=5fbbe968 a=vbvdVb1zh1xTTaY8rfQfKQ==:117 a=vbvdVb1zh1xTTaY8rfQfKQ==:17 a=N659UExz7-8A:10 a=48vgC7mUAAAA:8 a=P4DWV_A6RYvFclcHO-UA:9 a=pILNOxqGKmIA:10 a=FT9fgpHZQoAA:10 a=OOMWstKjOnQA:10 a=w1C3t2QeGrPiZgrLijVG:22
X-SECURESERVER-ACCT: tom@talpey.com
To: nfsv4@ietf.org
References: <160614418727.31910.14092299087405779612@ietfa.amsl.com> <HE1PR0702MB37723001B8EF834DB316892395FC0@HE1PR0702MB3772.eurprd07.prod.outlook.com>
From: Tom Talpey <tom@talpey.com>
Message-ID: <15a78435-8b39-4631-2342-71e796b4609d@talpey.com>
Date: Mon, 23 Nov 2020 11:55:03 -0500
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Thunderbird/68.12.1
MIME-Version: 1.0
In-Reply-To: <HE1PR0702MB37723001B8EF834DB316892395FC0@HE1PR0702MB3772.eurprd07.prod.outlook.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-CMAE-Envelope: MS4xfFQIrNdI2WSIbJLTKknML39MORvSjhyrJBhIDVjjlQehMcY0JuGKNKONhEXlFkTIk/KRCBtUcXm240KuwMInfWe6SJkUYjCuQsh/odx3DMEW4ThNd7U8 cTyozyLKyyc25n3jrq0zAsBwJkGjELMeHufMAIAOxjsoyxdPMcjt6M4ZyoZMURwYeikbF5x/dE6F+A==
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/sJUtdiiOzG06J7LL2OjB4ixgkUs>
Subject: Re: [nfsv4] I-D Action: draft-ietf-nfsv4-rpc-tls-11.txt
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Nov 2020 16:55:07 -0000
The changes look good to me, they improve clarity in several places. I'm not qualified to offer an opinion on the subjectAltName additions. I defer to Russ and other security reviewers. Tom. On 11/23/2020 10:29 AM, Magnus Westerlund wrote: > WG, > > This update is a minor changes due to feedback from Russ Housley about some > not aligned terminology that we got during the actual assignment. Chuck has > drafted this and Russ are happy with it. I see no issues with the changes. > It would be good if the WG participants check the changes. > > I thought it was best that the document was updated directly, rather than > introduce these changes in AUTH48. Especially as this document are now in > the MISSREF status due to the DTLS related drafts and the TLS Channel > Binding (ietf-kitten-tls-channel-bindings-for-tls13). The last is likely the > one that will take the longest time, as the other already are with the AD. > > Cheers > > Magnus > > > >> -----Original Message----- >> From: nfsv4 <nfsv4-bounces@ietf.org> On Behalf Of internet- >> drafts@ietf.org >> Sent: den 23 november 2020 16:10 >> To: i-d-announce@ietf.org >> Cc: nfsv4@ietf.org >> Subject: [nfsv4] I-D Action: draft-ietf-nfsv4-rpc-tls-11.txt >> >> >> A New Internet-Draft is available from the on-line Internet-Drafts > directories. >> This draft is a work item of the Network File System Version 4 WG of the >> IETF. >> >> Title : Towards Remote Procedure Call Encryption By > Default >> Authors : Trond Myklebust >> Charles Lever >> Filename : draft-ietf-nfsv4-rpc-tls-11.txt >> Pages : 26 >> Date : 2020-11-23 >> >> Abstract: >> This document describes a mechanism that, through the use of >> opportunistic Transport Layer Security (TLS), enables encryption of >> Remote Procedure Call (RPC) transactions while they are in-transit. >> The proposed mechanism interoperates with ONC RPC implementations >> that do not support it. This document updates RFC 5531. >> >> >> The IETF datatracker status page for this draft is: >> https://datatracker.ietf.org/doc/draft-ietf-nfsv4-rpc-tls/ >> >> There is also an HTML version available at: >> https://www.ietf.org/archive/id/draft-ietf-nfsv4-rpc-tls-11.html >> >> A diff from the previous version is available at: >> https://www.ietf.org/rfcdiff?url2=draft-ietf-nfsv4-rpc-tls-11 >> >> >> Please note that it may take a couple of minutes from the time of > submission >> until the htmlized version and diff are available at tools.ietf.org. >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> >> _______________________________________________ >> nfsv4 mailing list >> nfsv4@ietf.org >> https://www.ietf.org/mailman/listinfo/nfsv4 >> >> _______________________________________________ >> nfsv4 mailing list >> nfsv4@ietf.org >> https://www.ietf.org/mailman/listinfo/nfsv4
- [nfsv4] I-D Action: draft-ietf-nfsv4-rpc-tls-11.t… internet-drafts
- Re: [nfsv4] I-D Action: draft-ietf-nfsv4-rpc-tls-… Magnus Westerlund
- Re: [nfsv4] I-D Action: draft-ietf-nfsv4-rpc-tls-… Tom Talpey
- Re: [nfsv4] I-D Action: draft-ietf-nfsv4-rpc-tls-… Benjamin Kaduk