Re: [OPSEC] Alvaro Retana's No Objection on draft-ietf-opsec-v6-25: (with COMMENT)
Enno Rey <erey@ernw.de> Sat, 10 April 2021 18:36 UTC
Return-Path: <erey@ernw.de>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F8C63A0DF6; Sat, 10 Apr 2021 11:36:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x8vJfC-xjGya; Sat, 10 Apr 2021 11:36:28 -0700 (PDT)
Received: from mx1.ernw.net (mx1.ernw.net [62.159.96.78]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2A2AE3A0DF3; Sat, 10 Apr 2021 11:36:28 -0700 (PDT)
Received: from mail1.ernw.net (unknown [172.31.1.30]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature RSA-PSS (2048 bits) client-signature RSA-PSS (2048 bits)) (Client CN "mail1.ernw.net", Issuer "ernw ca1" (verified OK)) by mx1.ernw.net (Postfix) with ESMTPS id 4123B27309; Sat, 10 Apr 2021 20:36:26 +0200 (CEST)
Received: from ws26.ernw.net (ws26.ernw.net [172.31.1.70]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "ws26.ernw.net", Issuer "ernw ca1" (verified OK)) by mail1.ernw.net (Postfix) with ESMTPS id 2E204452D68; Sat, 10 Apr 2021 20:36:26 +0200 (CEST)
Received: by ws26.ernw.net (Postfix, from userid 1002) id 27894E5B4; Sat, 10 Apr 2021 20:36:26 +0200 (CEST)
Date: Sat, 10 Apr 2021 20:36:26 +0200
From: Enno Rey <erey@ernw.de>
To: Alvaro Retana <aretana.ietf@gmail.com>
Cc: The IESG <iesg@ietf.org>, draft-ietf-opsec-v6@ietf.org, opsec-chairs@ietf.org, opsec@ietf.org, Gyan Mishra <hayabusagsm@gmail.com>
Message-ID: <20210410183626.GC91991@ernw.de>
References: <161765687327.663.16409961435864058863@ietfa.amsl.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <161765687327.663.16409961435864058863@ietfa.amsl.com>
User-Agent: Mutt/1.11.3 (2019-02-01)
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/QyZmU1O2iLMsGQvQpuX8Q700dd8>
Subject: Re: [OPSEC] Alvaro Retana's No Objection on draft-ietf-opsec-v6-25: (with COMMENT)
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 10 Apr 2021 18:36:33 -0000
Hi Alvaro, thanks for the detailed evaluation and for the valuable feedback. I went thru your COMMENTS and performed some related adaptions of the draft. A new version has been uploaded. thank you again & have a great weekend Enno On Mon, Apr 05, 2021 at 02:07:53PM -0700, Alvaro Retana via Datatracker wrote: > Alvaro Retana has entered the following ballot position for > draft-ietf-opsec-v6-25: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-opsec-v6/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > > (1) The applicability statement in ??1.1 is confusing to me. > > a. The Abstract says that "this document are not applicable to residential > user cases", but that seems not to be true because this section says that the > contents do apply to "some knowledgeable-home-user-managed residential > network[s]", and ??5 is specific to residential users. > > b. "This applicability statement especially applies to Section 2.3 and Section > 2.5.4." Those two sections represent a small part of the document; what about > the rest? It makes sense to me for the applicability statement to cover most > of the document. > > c. "For example, an exception to the generic recommendations of this document > is when a residential or enterprise network is multi-homed." I'm not sure if > this sentence is an example of the previous one (above) or if "for example" is > out of place. > > (2) ??5 mentions "early 2020" -- I assume that the statement is still true now. > > (3) It caught my attention that there's only one Normative Reference (besides > rfc8200, of course). Why? What is special about the IPFIX registry? > > It seems that an argument could be made to the fact that to secure OSPFv3, for > example, an understanding of the protocol is necessary. This argument could be > extended to other protocols or mechanisms, including IPv6-specific technology: > ND, the addressing architecture, etc. Consider the classification of the > references in light of [1]. > > [1] > https://www.ietf.org/about/groups/iesg/statements/normative-informative-references/ > > > -- Enno Rey Cell: +49 173 6745902 Twitter: @Enno_Insinuator
- [OPSEC] Alvaro Retana's No Objection on draft-iet… Alvaro Retana via Datatracker
- Re: [OPSEC] Alvaro Retana's No Objection on draft… Enno Rey
- Re: [OPSEC] Alvaro Retana's No Objection on draft… Alvaro Retana
- Re: [OPSEC] Alvaro Retana's No Objection on draft… KK Chittimaneni