IETF Logo Mail Archive

[OPSAWG] Augmenting ACLs in mud-tls

tom petch <ietfc@btconnect.com> Mon, 17 October 2022 10:59 UTC

Return-Path: <ietfc@btconnect.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D4AA8C1524A8; Mon, 17 Oct 2022 03:59:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Level:
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Gfk9FtE7pMyb; Mon, 17 Oct 2022 03:59:30 -0700 (PDT)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-eopbgr130093.outbound.protection.outlook.com [40.107.13.93]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A5807C1524A4; Mon, 17 Oct 2022 03:59:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=g2f3cFuuiiHzQV7JtQAXGuAQrtAl4SmZDbhW4N+8LJ58szcK1L2JGZ5RTyb+oqgU5rN2FXv+8mXXtDArMHFfOB0pjJwonwZPQFHzUfXIELy534ZgeKFifqJ6kkDv0il90qECKoq5viQNF1STGaKG1rYuwwNi/ZL8pkX+lyES1hbeQwgf4nyx1lH7brgnmwwCzKYaPdhfpQfS96WMTh15fIUGlem3HC100Wjk8/2xTSFQrDXq1mKAsEOOn3NRSoq0/OgVMLONh3LHH6G7YhLLqbKF0aRMRkvXsbFpIxCqlRZiHmvakhPek3tyEXCu4UXhAkrJPoP5VV+uolr9MXfeng==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=x3Xp5hwRvcwOuctVpxruwdZgZ/nJdORh+VFxlNt+h+4=; b=nmkwXrOubcb/ms6xLsvcpYAk/n3BDGOZfe9hLfWo9OES9xZ6gGunNibyqC93PoCj8t+6Ybv9L9DlD3alfaw/QBI8xClv4VoYvxDNi73eAk+xnu1SQNHKWo02edvY2dRyZ8Z5+PxDFg85RSHAOPMB2dwEAvwzY6h7H0VtyW0p3r4PCQqvqt1prATYH/Llemw+NKUJn6BF6BTaUEREQMC5ALJPHux1xDdBUQKlewU3HZtOzLmFxYfgHTdWsyOSXxlT60bGYuw94XmJ0HLBmmRQiMitS69ol3wBMcdqc+L4av99WV7oApAau4+JzImzFe1r/2gLP/bza1oxwa45j1J9Ig==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=x3Xp5hwRvcwOuctVpxruwdZgZ/nJdORh+VFxlNt+h+4=; b=dhioComG5YHS4LQqpS/0SW/ElsBOo6MNjUOabDRllewJePLRrqK2dlnfsOuMdlFb7GZR2LBLgGo4EuAfAfoZnECZhyr2/AtdQHBK+am2ute7cA+wHD35+z3uihlfZwnjGO67l53IT3q+lqrRuw1Nx2jn96MXAWctJzpET9gqKnM=
Received: from AM7PR07MB6248.eurprd07.prod.outlook.com (2603:10a6:20b:134::11) by AS8PR07MB7381.eurprd07.prod.outlook.com (2603:10a6:20b:28a::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5723.28; Mon, 17 Oct 2022 10:59:24 +0000
Received: from AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::f3b4:258e:4f7:66fd]) by AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::f3b4:258e:4f7:66fd%7]) with mapi id 15.20.5723.032; Mon, 17 Oct 2022 10:59:24 +0000
From: tom petch <ietfc@btconnect.com>
To: Mahesh Jethanandani <mjethanandani@gmail.com>
CC: "netmod@ietf.org" <netmod@ietf.org>, "opsawg@ietf.org" <opsawg@ietf.org>
Thread-Topic: Augmenting ACLs in mud-tls
Thread-Index: AQHY4hPJQ/CDy4+cI02TCHC6TDKSaw==
Date: Mon, 17 Oct 2022 10:59:23 +0000
Message-ID: <AM7PR07MB6248CDAD561C787FF280D7C5A0299@AM7PR07MB6248.eurprd07.prod.outlook.com>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=btconnect.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AM7PR07MB6248:EE_|AS8PR07MB7381:EE_
x-ms-office365-filtering-correlation-id: 0f7d0711-3f97-46a5-3745-08dab02ea6c9
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM7PR07MB6248.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(366004)(396003)(136003)(346002)(376002)(39860400002)(451199015)(26005)(55016003)(33656002)(558084003)(86362001)(71200400001)(6916009)(9686003)(6506007)(186003)(8936002)(7696005)(52536014)(5660300002)(2906002)(54906003)(316002)(91956017)(4326008)(66446008)(82960400001)(66476007)(66946007)(64756008)(122000001)(478600001)(76116006)(66556008)(41300700001)(38070700005)(8676002)(38100700002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM7PR07MB6248.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0f7d0711-3f97-46a5-3745-08dab02ea6c9
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Oct 2022 10:59:23.9222 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 5KU1xs/2toNntELknN6kJfXDECgjB5W/bqdESMZpm1zAY+UTfyFf+ndvbniwefwQLjWHeWdKAU1aviGzTB/o7Q==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR07MB7381
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/2Pb90Dq290lnkhODxF82iMamzMM>
Subject: [OPSAWG] Augmenting ACLs in mud-tls
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Oct 2022 10:59:31 -0000

draft-ietf-opsawg-mud-tls
augments RFC8519 but while the RFC structures its matches as a series of choices, the augmentation does not.  Should it?

The I-D has passed WGLC but has been delayed by me making editorial comments.  AFAICT the I-D has not had a YANG Doctor review.

Tom Petch

v2.23.0 | Report a Bug | By Email