IETF Logo Mail Archive

[Pce] Review of draft-dhody-pce-pceps-tls13

"Stephane Litkowski (slitkows)" <slitkows@cisco.com> Tue, 19 September 2023 13:26 UTC

Return-Path: <slitkows@cisco.com>
X-Original-To: pce@ietfa.amsl.com
Delivered-To: pce@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7AA75C151982; Tue, 19 Sep 2023 06:26:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.605
X-Spam-Level:
X-Spam-Status: No, score=-14.605 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b="Xe24hNYW"; dkim=pass (1024-bit key) header.d=cisco.com header.b="DhC3lrHF"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LbAJ6iDpfqhD; Tue, 19 Sep 2023 06:26:30 -0700 (PDT)
Received: from rcdn-iport-6.cisco.com (rcdn-iport-6.cisco.com [173.37.86.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8DA23C15155F; Tue, 19 Sep 2023 06:26:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=11705; q=dns/txt; s=iport; t=1695129990; x=1696339590; h=from:to:cc:subject:date:message-id:mime-version; bh=Yy1im+B5aoE2arhq+MmJM88bhG7rUKJPwEK/1a/ja3I=; b=Xe24hNYWpjVf6sGjjduKBKY5LXvQay1JB2QzcpCocSEBkrdRlXDHg0jI ICzAqT0W1RlQWmhFN0HajAVEUW+xGn5tdJFpqo1gPRqbtEhfmRJboWV6s wOaFQ1iFQ5Ycybfmdny0mPm2+tYgBoBMQNqcaYcwitNmzjpEE7NuiXcM7 s=;
X-CSE-ConnectionGUID: WZDE7moTQGibE1evG2Qisg==
X-CSE-MsgGUID: pkNlmLFsSI6DizdIYG+/9w==
X-IPAS-Result: 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
IronPort-PHdr: A9a23:nF68hRxl2V85yxfXCzMRngc9DxPP853uNQITr50/hK0LK+Ko/o/pO wrU4vA+xFPKXICO8/tfkKKWqKHvX2Uc/IyM+G4Pap1CVhIJyI0WkgUsDdTDCBjTJ//xZCt8F 8NHBxd+53/uCUFOA47lYkHK5Hi77DocABL6YBFxJ/j2HZHJp8+2zOu1vZbUZlYAiD+0e7gnN Byttk2RrpwPnIJ4I6Atyx3E6ndJYLFQwmVlZBqfyh39/cy3upVk9kxt
IronPort-Data: A9a23:mhcgR6LaSAabxhDQFE+R9ZUlxSXFcZb7ZxGr2PjKsXjdYENS3zwFn 2dMCziOaa2MYjD2KoogOY3k8EkDvZOByNFlHFYd+CA2RRqmiyZq6fd1j6vUF3nPRiEWZBs/t 63yUvGZcYZsCCea/0/xWlTYhSEU/bmSQbbhA/LzNCl0RAt1IA8skhsLd9QR2uaEuvDnRVvX0 T/Oi5eHYgT9imclajh8B5+r8XuDgtyj4Fv0gXRmDRx7lAe2v2UYCpsZOZawIxPQKmWDNrfnL wpr5OjRElLxp3/BOPv8+lrIWhFirorpAOS7oiE+t55OLfR1jndaPq4TbJLwYKrM4tmDt4gZJ N5l7fRcReq1V0HBsLx1bvVWL81xFZJ01JKYJH+DiOOSxWCffmXDmcxvF05jaOX0+s4vaY1P3 eYTJDZIZReZiqfohrm6UeJrwM8kKaEHPqtG5Somlm6fXK1gGM2cK0nJzYcwMDMYncRPAfXZe NExYjt0ZxOGaBpKUrsSIMtnw77x1ielLlW0rnqNpowz5kz91zdQjpTsItb0S/PJApRKyxPwS mXupjSlXU5y2Mak4SKO/zenhubOhzjTWY8OGvu/7PECqEWYy0QSBQEYE1yhrpGEZlWWQdlTL Qkf/TAj6PZ0/02wRd67VBq9yJKZgvICc+ViP8Bl7Qax84XV6SvAC3YrFAdAc9Nz4afaWgcW/ lOOmtroAxlmv7uUVW+R+9+oQdWaZHR9wYgqOHJscOcV3zXwiNps0U+XH76PBIbw34KlQ2ihq 9yfhHFm3+17sCId60msEbn6b9+EvJPFSEs+4R/aGzzj5QJib4njbIutgbQ60RqiBNjFJrVil CFU8yR70AzoJcrS/MBqaLlVdIxFH97fbFXhbadHRvHNDQiF9X+5Zpx36zpjPkpvOctsUWa3M RKL51oBv84CZyDCgUpLj2SZVpVCIU/IS4yNaxwoRoYmjmVZLVXep3g+OSZ8IUi0zhV9+U3AB XtrWZ/8USlFYUiW5DG3XOwamaQ63TwzwHi7eHwI50rP7FZqX1bMEe1tGALXNogRtfrYyC2Lq Iw3H5XRlH1ivBjWP3O/HXg7dw5adBDWxPne9qRqSwJ0ClE6QT17V6OMn+1Jlk4Mt/09q9okN 0qVAydw4FH+nnbAbw6NbxhehHnHBP6TcVpT0fQQAGuV
IronPort-HdrOrdr: A9a23:Wgk+S66VgizLUNVkNQPXwZuCI+orL9Y04lQ7vn2ZFiYlEfBwxv rPoB1E737JYW4qKQ4dcLC7VJVpQRvnhOdICPoqTMmftWjdySaVxeRZnOnfKlLbalDDH4JmpM BdmstFeZHN5DpB/LrHCWCDer5KrqjjgcSVbIzlvg9QpHRRGttdBnBCe32m+yNNNW97LKt8Pq CxouBAoD2tc2kWaMOUOlkpNtKom/T70LjdTVojHRAI1Cmi5AnE1Ff9KXel9yZbdwkK7aYp8G DDnQC8zL6kqeuHxhjV0HKWx4hKmfP6o+EzSvCku4wwEHHBmwyobINuV/mppzYuutyi714sjZ 3lvwogBcJu8HncF1vF4CcFmjOQkArG2UWSi2NwskGT5PARgwhKT/apsLgpMScxLXBQ++2Unp g7mV5x/KAnfC8o1B6Nl+QgESsa2XZdZREZ4LYuZ7s1a/pGVJZB6YMY509bC5EGAWbz750mCv BnCIXG6O9Rak7yVQGQgoBD+q3bYp0IJGbOfmES/siOlzRGlnFwyEUVgMQZg3cb7Zo4D51J/f 7NPKhknKxHCpZ+V9M2OM4RBc+sTmDdSxPFN2yfZVzhCaEcInrI75r6+q886u2mcIEBiJEyhJ PCWlVFsnNaQTOkNeSemJlQthzdSmS0WjrgjslY+phio7X5AKHmNCWSIWpe5PdIY89vdvEzd8 zDTa6+WcWTXlcGMbw5rTHDZw==
X-Talos-CUID: 9a23:wkFWWGBK4o+85An6ExZV2GNLH8cZS1LcxlqJLlGXU19oU7LAHA==
X-Talos-MUID: 9a23:dZq1IwjQO/IZ8SCE5RC7W8MpLMRO56GKJls2sMsqutuIFB1feHDMk2Hi
X-IronPort-Anti-Spam-Filtered: true
Received: from rcdn-core-6.cisco.com ([173.37.93.157]) by rcdn-iport-6.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 19 Sep 2023 13:26:29 +0000
Received: from rcdn-opgw-1.cisco.com (rcdn-opgw-1.cisco.com [72.163.7.162]) by rcdn-core-6.cisco.com (8.15.2/8.15.2) with ESMTPS id 38JDQT5P022321 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Tue, 19 Sep 2023 13:26:29 GMT
X-CSE-ConnectionGUID: 8FMbLU1qT0yraS6DvzZ6IQ==
X-CSE-MsgGUID: 0DSj6GjpR3ewpTzO9oezVA==
Authentication-Results: rcdn-opgw-1.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=slitkows@cisco.com; dmarc=pass (p=quarantine dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="6.02,159,1688428800"; d="scan'208,217";a="2640006"
Received: from mail-bn7nam10lp2101.outbound.protection.outlook.com (HELO NAM10-BN7-obe.outbound.protection.outlook.com) ([104.47.70.101]) by rcdn-opgw-1.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 19 Sep 2023 13:26:29 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=RAYGqRUady3LSMnVwaEXEJsc1RoYRaLuEgVBhLuDgoT3P0tO1pS7Yb+2QfxIgLBi9dEfkf22vmVcEyZOQSvAnmLYFHqkLEIRQsUEC3yOtuF/FfIXXnp2wEoJvivqkTnA/XLqwMSFQO46L9gx+1l8dW2Iolc3sztYpvGb4+XMj31AYjgAu1NeJ4oHyH9q884jIY6H3WqyMrUZSwLuCeADiLlI3GB4RuWiCIbfgFcEEHNK0Nps7mRBt5eRGQKI7ObX9HJdSHvDKRr7PXYt5wd0m4qaZsigfxIR9cHwRLWFlAjDm6Q/fj6Xwl1CFSC0HTlOkWQv/xHkrthAPwuRpPAiIQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=PrNfnmgg1wpiOtA4LBGMgtonKurVdmnW2BUzOukSBdg=; b=Q+mH2HhUg1GF0nFldbYRwLfJWzdPwnguYAhx3HPeAjHuRtis8jWCWQ155qT8IFoVJUf7TWkUDCd65+2rfXYpkP29AVpueCOJIgGlFPiT3LKJStAr5ILGoBibRBMNZ7AW23wurvSpOBJa8DKihTKxvIF/0Hx5vOjEA05CaubIhbCcEWd5IFEBF6fqHvJ0mCHI3I+mKSpTBSuU2LpVsUa0dHLrocQgOKd6kXooeh+bGpIl3cqaKzM0hucSPj0QpwG4F95A0vfS9FKBpJl2ONRDcYfvBczonGuLinLEC+eEKeJzZI788hDB3JhKz1ZVkQQGR0UHpyQwikAocKXQ78MPYg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PrNfnmgg1wpiOtA4LBGMgtonKurVdmnW2BUzOukSBdg=; b=DhC3lrHF+NbLMwv1BwGlJkpLqPqzFXdV/ZBvujyIdQDZtExIeRbuwoqmx6VozBoK/W8sgbeENB4N+fhLNghuTXjORJ9pnAJU4RzXZu+bUDq+/bDx14Chhuffa7PioLoWFuiAnB1krjlAEhQkdbM2tVOUVEJaOeGoFIbzBfGEmKU=
Received: from SJ0PR11MB5136.namprd11.prod.outlook.com (2603:10b6:a03:2d1::18) by BL1PR11MB6049.namprd11.prod.outlook.com (2603:10b6:208:391::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6792.23; Tue, 19 Sep 2023 13:26:27 +0000
Received: from SJ0PR11MB5136.namprd11.prod.outlook.com ([fe80::da50:3c55:c436:f504]) by SJ0PR11MB5136.namprd11.prod.outlook.com ([fe80::da50:3c55:c436:f504%4]) with mapi id 15.20.6792.026; Tue, 19 Sep 2023 13:26:26 +0000
From: "Stephane Litkowski (slitkows)" <slitkows@cisco.com>
To: "pce@ietf.org" <pce@ietf.org>
CC: "pce-chairs@ietf.org" <pce-chairs@ietf.org>
Thread-Topic: Review of draft-dhody-pce-pceps-tls13
Thread-Index: Adnq+oV7fWv46KniQJuPnFu3lsyUvA==
Date: Tue, 19 Sep 2023 13:26:26 +0000
Message-ID: <SJ0PR11MB5136766C98C5B5D25D73A813C2FAA@SJ0PR11MB5136.namprd11.prod.outlook.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SJ0PR11MB5136:EE_|BL1PR11MB6049:EE_
x-ms-office365-filtering-correlation-id: 58a3ba28-7dcf-4747-831a-08dbb91406e9
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR11MB5136.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(39860400002)(376002)(396003)(346002)(366004)(136003)(451199024)(186009)(1800799009)(55016003)(5660300002)(7696005)(6506007)(86362001)(166002)(316002)(9686003)(66946007)(66476007)(38100700002)(41300700001)(38070700005)(66556008)(76116006)(66446008)(71200400001)(478600001)(6916009)(64756008)(8936002)(8676002)(450100002)(52536014)(26005)(33656002)(2906002)(4326008)(122000001)(83380400001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_SJ0PR11MB5136766C98C5B5D25D73A813C2FAASJ0PR11MB5136namp_"
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR11MB5136.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 58a3ba28-7dcf-4747-831a-08dbb91406e9
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Sep 2023 13:26:26.9276 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: o4zJQbSKb68Grz2H5gD94doSak+rKr9wJptJCTkFUb9QbinoreJNvB4MTywuzJfOCYaY8oOkqVL4qRso4wwehQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL1PR11MB6049
X-Outbound-SMTP-Client: 72.163.7.162, rcdn-opgw-1.cisco.com
X-Outbound-Node: rcdn-core-6.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/pce/SCyLmChul8v27cf-C7EdwNqxfoQ>
Subject: [Pce] Review of draft-dhody-pce-pceps-tls13
X-BeenThere: pce@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Path Computation Element <pce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pce>, <mailto:pce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pce/>
List-Post: <mailto:pce@ietf.org>
List-Help: <mailto:pce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pce>, <mailto:pce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Sep 2023 13:26:34 -0000

Hi WG,

Chairs requested me to review draft-dhody-pce-pceps-tls13.
Here are couple of comments regarding the draft, I'm not an expert in this area, so my comments may sometimes be inaccurate:

Intro:

  *   As RFC8253 is already making TLS 1.2 as required (Section 3.4 of RFC8253), why does this draft cares about "address support requirements for TLS 1.2" ? What is missing in RFC8253 ?



Section 4:

  *   The two first paragraph related to TLS1.2 are already covered by RFC8253 section 3.4, what is changing ?



  *   Regarding: "Implementations that support TLS 1.3 [I-D.ietf-tls-rfc8446bis<https://datatracker.ietf.org/doc/html/draft-ietf-tls-rfc8446bis-05>] are REQUIRED to support the mandatory-to-implement cipher suites listed in Section 9.1<https://datatracker.ietf.org/doc/html/draft-ietf-tls-rfc8446bis-05#section-9.1> of [I-D.ietf-tls-rfc8446bis<https://datatracker.ietf.org/doc/html/draft-ietf-tls-rfc8446bis-05>].ΒΆ<https://datatracker.ietf.org/doc/html/draft-dhody-pce-pceps-tls13#section-4-4>
     *   This is already mandated as per TLS1.3 draft (Section 9.1), so is the purpose of defining specific requirement for PCEP app ?

Security considerations:

  *   I don't see Security considerations of RFC8253 referred in the section ? shouldn't the draft build on top of it ? Is  there any new consideration compared to RFC8253 brought by TLS1.3?


Brgds,

Stephane

v2.23.0 | Report a Bug | By Email