Re: [Pce] Alvaro Retana's No Objection on draft-ietf-pce-stateful-sync-optimizations-09: (with COMMENT)
"Adrian Farrel" <adrian@olddog.co.uk> Mon, 13 March 2017 21:33 UTC
Return-Path: <adrian@olddog.co.uk>
X-Original-To: pce@ietfa.amsl.com
Delivered-To: pce@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E50E4129BB0; Mon, 13 Mar 2017 14:33:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BLf9fAQBf9aI; Mon, 13 Mar 2017 14:33:25 -0700 (PDT)
Received: from asmtp1.iomartmail.com (asmtp1.iomartmail.com [62.128.201.248]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BF51A129BAF; Mon, 13 Mar 2017 14:33:24 -0700 (PDT)
Received: from asmtp1.iomartmail.com (localhost.localdomain [127.0.0.1]) by asmtp1.iomartmail.com (8.13.8/8.13.8) with ESMTP id v2DLXJr3001541; Mon, 13 Mar 2017 21:33:20 GMT
Received: from 950129200 ([176.241.251.4]) (authenticated bits=0) by asmtp1.iomartmail.com (8.13.8/8.13.8) with ESMTP id v2DLXGqS001462 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 13 Mar 2017 21:33:18 GMT
From: Adrian Farrel <adrian@olddog.co.uk>
To: 'Alvaro Retana' <aretana@cisco.com>, 'The IESG' <iesg@ietf.org>
References: <148943037921.9243.15715481484070651192.idtracker@ietfa.amsl.com>
In-Reply-To: <148943037921.9243.15715481484070651192.idtracker@ietfa.amsl.com>
Date: Mon, 13 Mar 2017 21:33:18 -0000
Message-ID: <02ef01d29c41$70f69060$52e3b120$@olddog.co.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQFv2IiCCztNbLo8K4e0RY+HJjuGsaJY0KHw
Content-Language: en-gb
X-TM-AS-MML: disable
X-TM-AS-Product-Ver: IMSS-7.1.0.1679-8.1.0.1062-22940.003
X-TM-AS-Result: No--3.548-10.0-31-10
X-imss-scan-details: No--3.548-10.0-31-10
X-TMASE-MatchedRID: 5+1rHnqhWUQ4HKI/yaqRm3GBmLio+mJggbNN0R684zMfXPl3V+d6vtPP dZlHfSVUxcck74AN5jbhzlV9jQaVX44fe2Jm7VBSBEfU2vugRF27nrAU9KQxUS3QLWdUvx/Vo8W MkQWv6iV95l0nVeyiuBQF+BLVItD4C24oEZ6SpSmb4wHqRpnaDuBqRyZZAJrRmzr6akmmBa+XRH 5kekvI5KRgEO8WkmbJMTlP558VqHRag8TQQU6HT1sHJUN3YxTmS1HkWjarFZFMktihVgodleQ/b JqlQQ/copZ51QxAj3fx+wL7E8WTG+w2n3R9PgSO6gsmHm5e1+w=
Archived-At: <https://mailarchive.ietf.org/arch/msg/pce/edHfVb342IaOHMjF1nfcGxJtl3w>
Cc: pce@ietf.org, draft-ietf-pce-stateful-sync-optimizations@ietf.org, pce-chairs@ietf.org
Subject: Re: [Pce] Alvaro Retana's No Objection on draft-ietf-pce-stateful-sync-optimizations-09: (with COMMENT)
X-BeenThere: pce@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: adrian@olddog.co.uk
List-Id: Path Computation Element <pce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pce>, <mailto:pce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pce/>
List-Post: <mailto:pce@ietf.org>
List-Help: <mailto:pce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pce>, <mailto:pce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Mar 2017 21:33:26 -0000
> (2) By making TCP-AO/TLS "RECOMMENDED", this document is not in line with > RFC5440, where only TCP-MD5 is mandatory. I don't think the intent of > this document is to Update RFC5440, is it? Also, why would the > recommendations for this extension be different than those in > draft-ietf-pce-stateful-pce (which doesn't go beyond what RFC5440 > mentions)? If you do keep the current recommendation, then > draft-ietf-pce-pceps should be a Normative reference. It is (should be?) clear that moving PCEP on beyond MD5 is a Good Thing. Ideally, everyone just gets on with it and the security update is handled by draft-ietf-pce-pceps. But that I-D is chugging along in the WG for some reason. Do we want: 1. All output from the WG to be blocked waiting for draft-ietf-pce-pceps? 2. All I-Ds to continue to say "just do MD5 per RFC 5440"? 3. To write sensible text in the Security Considerations and get on with life? Adrian
- [Pce] Alvaro Retana's No Objection on draft-ietf-… Alvaro Retana
- Re: [Pce] Alvaro Retana's No Objection on draft-i… Adrian Farrel
- Re: [Pce] Alvaro Retana's No Objection on draft-i… Alvaro Retana (aretana)
- Re: [Pce] Alvaro Retana's No Objection on draft-i… Jonathan Hardwick
- Re: [Pce] Alvaro Retana's No Objection on draft-i… BRUNGARD, DEBORAH A