[Ntp] Antwort: Re: WGLC - draft-ietf-ntp-ntpv5-requirements

kristof.teichel@ptb.de Wed, 13 December 2023 20:18 UTC

Return-Path: <kristof.teichel@ptb.de>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EBCDEC14CEFF for <ntp@ietfa.amsl.com>; Wed, 13 Dec 2023 12:18:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.625
X-Spam-Level:
X-Spam-Status: No, score=-1.625 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTML_MIME_NO_HTML_TAG=0.377, MIME_HTML_ONLY=0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ptb.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yUN3khqndMia for <ntp@ietfa.amsl.com>; Wed, 13 Dec 2023 12:18:23 -0800 (PST)
Received: from mx1.bs.ptb.de (mx1.bs.ptb.de [192.53.103.120]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F3FE1C14F5FC for <ntp@ietf.org>; Wed, 13 Dec 2023 12:17:55 -0800 (PST)
Received: from s23397.bs.ptb.de ([172.21.101.132]) by mx1.bs.ptb.de with ESMTP id 3BDKHqIp029534-3BDKHqIr029534 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 13 Dec 2023 21:17:52 +0100
MIME-Version: 1.0
Sensitivity:
In-Reply-To: <F35ABEF2-2AFF-4163-A755-78807E4FE19E@gmail.com>
References: <F35ABEF2-2AFF-4163-A755-78807E4FE19E@gmail.com>, <CA+mgmiMFLDRggrBUzdJyjhgbM6q0m8nY8PUoU5oxbR2HtZh51A@mail.gmail.com> <OF33DB0AFF.1649DFBE-ONC1258A83.002F27E4-C1258A83.0049F82B@ptb.de> <0D84CEB4-640F-492C-ADAE-05C4A6E856D6@gmail.com> <OF35346BF9.4F5F88ED-ONC1258A83.0050A8D3-C1258A83.005174AD@ptb.de>
From: kristof.teichel@ptb.de
To: James <james.ietf@gmail.com>
Cc: ntp@ietf.org
Message-ID: <OFD808E298.51173696-ONC1258A84.006F33D8-C1258A84.006F7F90@ptb.de>
X-Priority: 3 (Normal)
Importance: Normal
Date: Wed, 13 Dec 2023 21:17:51 +0100
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-FEAS-Client-IP: 172.21.101.132
X-FE-Policy-ID: 5:5:5:SYSTEM
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; d=ptb.de; s=s1-ptbde; c=relaxed/relaxed; h=mime-version:references:subject:from:to:cc:message-id:date:content-type; bh=LS4NrBWGXB1rSEtUS2HZyH4HcVAvgm0Z6LKffR44E58=; b=tKH2fGTbpPNHacNMZjnL3Vqzh3aw5tql+fvIF+yJpOF3Pydgr9kbrEUoKhNu6UTr2aS8aFkANVM6 kOv2sE6aWaXTYxybs0pSgHETGodpRUYUZfEVXEniXqcQis7H7LXTpI/Jrdq/YKMY6+OMpbiPKA3q ZfeAxR1Okcfe54dktWhlBMFUCg59Ym0j1HzuiXieMF7qNar5frpepUkjTyxjXgG341XOX1e4/fp6 NcjOlAbtBrKqwZb8F5G2bdVrLJDeOK3pjW/HggqZVYeitZV4zPdPQdSgVZQH877xTtRi/EXaA0LS RPh48n4dCYyPW2/HtQNy/mCn2YhyMTZBabK6Eg==
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/EmrLRvERrUVc_z28hQP939ehosc>
Subject: [Ntp] Antwort: Re: WGLC - draft-ietf-ntp-ntpv5-requirements
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Network Time Protocol <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Dec 2023 20:18:28 -0000

Dear James, dear all,

I find this a bit difficult - after all, the intended status for the RFC is 'informational', and so I guess less stringent criteria apply.
Also, the document started out as an effort to strictly report on the WG's consensus on what would be needed for NTPv5 (as an upcoming standards track document).
The issue is: little of that seems reflected in the current requirements draft, definitely not obvious to a new reader.
The document never (?) seems to state that it intends to report WG consensus; it constantly uses requirement keywords (MUST, SHOULD etc.) like a specification would; it rarely (and never with an explicit explanation, IIRC) talks about an upcoming standards track document that it is supposed to support.
This lack of clarifying the document's overall role (supporting the creation of the actual NTPv5 spec later by reporting the WG's current consensus on what's required), in and of itself, is a blocking issue (#1) for me.

Also, in some cases, I still feel that the text as-is could leave a reader more confused rather than informed - this applies to our criticisms of Sections 2 (Use Cases...) and 3 (Threat Analysis...) and 4.4 (Timescales) and 4.5 (Leap Seconds).
That makes reworking these sections (could be as simple as taking it out, e.g. in the case of Section 3) another set of blocking issues (#2a, #2b, #2c, #2d) for me.

Lastly, there are a few instances where I feel the documents's original role of merely reporting on WG consensus creates situations where there are just logical inconsistencies - demands that run counter to one another but are just listed as important, back-to-back.
Basically, if the WG once decided that eating cake is desirable, and on another occasion decided that having cake is desirable, the result would be that we report that the WG has decided that it wants to eat its cake and then still wants to have it, too.
This mostly applies to Section 4, namely:
- 4.1 Resource Management as described seems to run counter to 4.2 Data Minimization
- 4.1 Resource Management as described also seems to run counter to 4.8 Security
- In 4.8 Security, requiring upgradeability seems to run counter to ruling out downgrade attacks
The least that I think needs to be done (in order for this document to be informative) is to explicitly point out that these items might run counter to one another; ideally, we should of course settle on an overall consensus that we are sure is without internal inconsistencies.
Treating these in some way is another set of blocking issues (#3a, #3b, #3c) for me.

I also really, really would like 4.8 (Security) to state that the specification must settle on one security option and require all implementations to support it, lest there might still be unsecured traffic.
But I guess the section doesn't rule this out, either, so we could still just do this in the actual NTPv5 spec - so it's not strictly speaking a blocking issue for me, I would just strongly prefer this addition.


I hope I reflected Martin's opinions here as well, but I wasn't able to closely coordinate this with him in time other than having access to his own reply email draft.
Perhaps some fruitful discussion can be had tomorrow at the interim meeting :) 



Besten Gruß / Kind regards,
Kristof Teichel

__________________________________________

Dr.-Ing. Kurt Kristof Teichel
Physikalisch-Technische Bundesanstalt (PTB)
Arbeitsgruppe 4.42 "Zeitübertragung"
Bundesallee 100
38116 Braunschweig (Germany)
Tel.: +49 531 592-4471
E-Mail: kristof.teichel@ptb.de
__________________________________________


-----"ntp" <ntp-bounces@ietf.org> schrieb: -----
An: kristof.teichel@ptb.de
Von: "James" <james.ietf@gmail.com>
Gesendet von: "ntp" <ntp-bounces@ietf.org>
Datum: 12.12.2023 15:59
Kopie: ntp@ietf.org
Betreff: Re: [Ntp] WGLC - draft-ietf-ntp-ntpv5-requirements

Thank you for clarifying.

Can you please specify exactly which points must be addressed in order for yourselves to support advancement to the IESG.

- J

> On 12 Dec 2023, at 15:49, kristof.teichel@ptb.de wrote:
>
> Hello James,
>
> I'm sorry, I think I really was being unclear:
> At least most points would have to be adressed first for us to support advancement to IESG.
> I was just trying to express that we fundamentally agree with the effort and want a document based on this version to go forward.
>
>
> Besten Gruß / Kind regards,
> Kristof Teichel
>
> __________________________________________
>
> Dr.-Ing. Kurt Kristof Teichel
> Physikalisch-Technische Bundesanstalt (PTB)
> Arbeitsgruppe 4.42 "Zeitübertragung"
> Bundesallee 100
> 38116 Braunschweig (Germany)
> Tel.:        +49 (531) 592-4471
> E-Mail:   kristof.teichel@ptb.de
> __________________________________________
>
>
>
> Von:        "James" <james.ietf@gmail.com>
> An:        kristof.teichel@ptb.de
> Kopie:        ntp@ietf.org, "Karen ODonoghue" <kodonog@pobox.com>, dieter.sibold@ptb.de
> Datum:        12.12.2023 15:08
> Betreff:        Re: [Ntp] WGLC - draft-ietf-ntp-ntpv5-requirements
> Gesendet von:        "ntp" <ntp-bounces@ietf.org>
>
>
>
> Kristof and Martin,
>
> Thanks for your review. I'll provide responses to the points you've raised in a separate mail, however there's one point of clarification I think needs to be addressed first:
>
> > On 12 Dec 2023, at 14:27, kristof.teichel@ptb.de wrote:
> >
> > To be clear: we want an adapted document to advance and to be submitted to the IESG (not to hold up the process or anything).
>
> I'm sorry but this statement is unclear to me given the current state of the process.
>
> Do you believe version -03 as it stands is ready to be submitted to the IESG, or do you think any or all of the points you've raised must be addressed in order for submission to the IESG?
>
> - J
> _______________________________________________
> ntp mailing list
> ntp@ietf.org
> https://www.ietf.org/mailman/listinfo/ntp" rel="nofollow">https://www.ietf.org/mailman/listinfo/ntp
>
>

_______________________________________________
ntp mailing list
ntp@ietf.org
https://www.ietf.org/mailman/listinfo/ntp" rel="nofollow">https://www.ietf.org/mailman/listinfo/ntp