IETF Logo Mail Archive

Re: [OPSAWG] CALL FOR ADOPTION: Transport Layer Security Verion 1.3 (TLS 1.3) Transport Model for the Simple Network Management Protocol Version 3 (SNMPv3)

Qin Wu <bill.wu@huawei.com> Mon, 13 December 2021 04:04 UTC

Return-Path: <bill.wu@huawei.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CDB83A0D75 for <opsawg@ietfa.amsl.com>; Sun, 12 Dec 2021 20:04:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iK1ZpmhTDtGl for <opsawg@ietfa.amsl.com>; Sun, 12 Dec 2021 20:04:29 -0800 (PST)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3B2033A0D72 for <opsawg@ietf.org>; Sun, 12 Dec 2021 20:04:29 -0800 (PST)
Received: from fraeml743-chm.china.huawei.com (unknown [172.18.147.200]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4JC77n4qCTz67l3f for <opsawg@ietf.org>; Mon, 13 Dec 2021 12:00:05 +0800 (CST)
Received: from canpemm500005.china.huawei.com (7.192.104.229) by fraeml743-chm.china.huawei.com (10.206.15.224) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.20; Mon, 13 Dec 2021 05:04:25 +0100
Received: from canpemm500005.china.huawei.com (7.192.104.229) by canpemm500005.china.huawei.com (7.192.104.229) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.20; Mon, 13 Dec 2021 12:04:24 +0800
Received: from canpemm500005.china.huawei.com ([7.192.104.229]) by canpemm500005.china.huawei.com ([7.192.104.229]) with mapi id 15.01.2308.020; Mon, 13 Dec 2021 12:04:24 +0800
From: Qin Wu <bill.wu@huawei.com>
To: tom petch <ietfc@btconnect.com>, Andy Donati <andy.donati@comcast.net>, "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>
CC: "opsawg@ietf.org" <opsawg@ietf.org>
Thread-Topic: [OPSAWG] CALL FOR ADOPTION: Transport Layer Security Verion 1.3 (TLS 1.3) Transport Model for the Simple Network Management Protocol Version 3 (SNMPv3)
Thread-Index: Adfv1E4KbsjLKi88QL2gDRHj9gyCLQ==
Date: Mon, 13 Dec 2021 04:04:23 +0000
Message-ID: <774edc4103fe491dbfced01cf8680bef@huawei.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.136.100.16]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/BlHDXrEx6HsJnV1L190yGnFKNTQ>
Subject: Re: [OPSAWG] CALL FOR ADOPTION: Transport Layer Security Verion 1.3 (TLS 1.3) Transport Model for the Simple Network Management Protocol Version 3 (SNMPv3)
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Dec 2021 04:04:34 -0000

-----邮件原件-----
发件人: OPSAWG [mailto:opsawg-bounces@ietf.org] 代表 tom petch
发送时间: 2021年12月7日 0:45
收件人: Andy Donati <andy.donati@comcast.net>; mohamed.boucadair@orange.com
抄送: opsawg@ietf.org
主题: Re: [OPSAWG] CALL FOR ADOPTION: Transport Layer Security Verion 1.3 (TLS 1.3) Transport Model for the Simple Network Management Protocol Version 3 (SNMPv3)

From: OPSAWG <opsawg-bounces@ietf.org> on behalf of Andy Donati <andy.donati@comcast.net>
Sent: 01 December 2021 23:16

I support the adoption of this work.

Back when RFC 6353 was created in the ISMS working group the TLS working group lent a helping hand.  Hopefully they (TLS) can provide useful comments and information for the OPSAWG as well.

<tp>
My recollection is slightly different, that at that time, WG had a security advisor assigned to them and that it was that individual that was helpful.   These days I sense more of a silo mentality, that WG are less inclined to engage with the work of other WG, and that a more fruitful way forward could be to ask for an early Secdir review (once the work is under way).

[Qin Wu] Fully agree, I assume the consultation with MIB doctors have already taken place, since Jurgen has got involved. We did have writable MIB IESG statement (https://www.ietf.org/about/groups/iesg/statements/writable-mib-module/)  ,i.e.,
"
SNMP MIB modules creating and modifying configuration state should only be produced by working groups in cases of clear utility and consensus to use SNMP write operations for configuration, and in consultation with the MIB doctors.
"
Tom Petch.



Regards,
Andy D.

> On Nov 30, 2021, at 8:39 AM, mohamed.boucadair@orange.com wrote:
>
> Hi all,
>
> I support adopting this work.
>
> I think that the document has more chances to make progress in opsawg than tls. I trust the chairs will liaise with the tls wg so that the document is reviewed there as well.
>
> Cheers,
> Med
>
>> -----Message d'origine-----
>> De : OPSAWG <opsawg-bounces@ietf.org> De la part de Michael 
>> Richardson Envoyé : samedi 20 novembre 2021 16:25 À : opsawg@ietf.org 
>> Objet : Re: [OPSAWG] CALL FOR ADOPTION: Transport Layer Security 
>> Verion
>> 1.3 (TLS 1.3) Transport Model for the Simple Network Management 
>> Protocol Version 3 (SNMPv3)
>>
>>
>> Joe Clarke \(jclarke\) <jclarke=40cisco.com@dmarc.ietf.org> wrote:
>>> Hello, WG.  Kenneth presented
>>> https://datatracker.ietf.org/doc/draft-vaughn-tlstm-update/ at
>> IETF112
>>> to us, and this was previously presented at SecDispatch at IETF111.
>> The
>>> feeling there was that this work had merit, but Sec didn't have
>> enough
>>> SNMP experience to be the owner.  At the AD level, the feeling was
>> that
>>> perhaps opsawg did have the expertise and could pick this up.
>>
>> I guess I missed this from IETF111.
>> I scanned the document briefly, and I don't see that much that 
>> requires *SNMP*-fu, so much as it requires TLS-fu.
>>
>> I think that the document will get lost in OPSAWG.
>>
>> Traditionally, WGs do their own MIB modules... so I don't understand 
>> why it is not in TLS.
>>
>> --
>> Michael Richardson <mcr+IETF@sandelman.ca>   . o O ( IPv6 IøT consulting )
>>           Sandelman Software Works Inc, Ottawa and Worldwide
>
> ______________________________________________________________________
> ___________________________________________________
>
> Ce message et ses pieces jointes peuvent contenir des informations 
> confidentielles ou privilegiees et ne doivent donc pas etre diffuses, 
> exploites ou copies sans autorisation. Si vous avez recu ce message 
> par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.
>
> This message and its attachments may contain confidential or 
> privileged information that may be protected by law; they should not be distributed, used or copied without authorisation.
> If you have received this email in error, please notify the sender and delete this message and its attachments.
> As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
> Thank you.
>
> _______________________________________________
> OPSAWG mailing list
> OPSAWG@ietf.org
> https://www.ietf.org/mailman/listinfo/opsawg

_______________________________________________
OPSAWG mailing list
OPSAWG@ietf.org
https://www.ietf.org/mailman/listinfo/opsawg
_______________________________________________
OPSAWG mailing list
OPSAWG@ietf.org
https://www.ietf.org/mailman/listinfo/opsawg

v2.23.0 | Report a Bug | By Email