IETF Logo Mail Archive

Re: [Privacy-pass] Robert Wilton's Discuss on draft-ietf-privacypass-auth-scheme-12: (with DISCUSS and COMMENT)

"Rob Wilton (rwilton)" <rwilton@cisco.com> Wed, 06 September 2023 08:06 UTC

Return-Path: <rwilton@cisco.com>
X-Original-To: privacy-pass@ietfa.amsl.com
Delivered-To: privacy-pass@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 48F71C15109A; Wed, 6 Sep 2023 01:06:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.605
X-Spam-Level:
X-Spam-Status: No, score=-14.605 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b="OIx5OGIh"; dkim=pass (1024-bit key) header.d=cisco.com header.b="NAQdTzLw"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Kupg9BZODuKB; Wed, 6 Sep 2023 01:06:28 -0700 (PDT)
Received: from alln-iport-1.cisco.com (alln-iport-1.cisco.com [173.37.142.88]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E5740C151099; Wed, 6 Sep 2023 01:06:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=20764; q=dns/txt; s=iport; t=1693987588; x=1695197188; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=ROBgJd2fuaXou+MNloR9glwELXqP/PQ862BrMMWaayc=; b=OIx5OGIhaEtMsq1eOCrFYOS7+wg0XwU1g3C9nWz1Y5ma5gmJzI4qfgpH gBjCmpU/0p34I+bg6uIU/NYetjW1jdtfjqI0ZXCxiQxpgqxOGbC5vS4Vl MRGD4FdffwgUtMww0a8S43Ph8P5KA6pUr2bJeaBXmgSJ7o8JVQ2UoPRyi c=;
X-CSE-ConnectionGUID: nLXR3RNeTea3IAdL1GGvGg==
X-CSE-MsgGUID: oLg8fc97SS+Oxh7z2jKxwQ==
X-IPAS-Result: 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
IronPort-PHdr: A9a23:O9PZ5B3X0yuUdqWnsmDPZFBlVkEcU/3cNwoR7N8gk71RN/7l9JX5N 0uZ7vJo3xfFXoTevupNkPGe87vhVmoJ/YubvTgcfYZNWR4IhYRenwEpDMOfT0yuBPXrdCc9W s9FUQwt5Gm1ZHBcA922fFjOuju35D8WFA/4MF9vOeXxBonUp8+2zOu1vZbUZlYAiD+0e7gnN Byttk2RrpwPnIJ4I6Atyx3E6ndJYLFQwmVlZBqfyh39/cy3upVk9kxt
IronPort-Data: A9a23:etfFx6tT6L2P4malXO9S7vgUoefnVNZeMUV32f8akzHdYApBsoF/q tZmKT2OOq7bNGP0KI1xaITip0wD68LWx99kT1M5qnpkEnhHgMeUXt7xwmUckM+xwmwvaGo9s q3yv/GZdJhcokf0/0rrav656yAkiclkf5KkYMbcICd9WAR4fykojBNnioYRj5Vh6TSDK1vlV eja/YuHYjdJ5xYuajhPs/Pb9ks21BjPkGpwUmIWNKgjUGD2zxH5PLpHTYmtIn3xRJVjH+LSb 44vG5ngows1Vz90Yj+Uuu6Tnn8iG9Y+DiDS4pZiYJVOtzAZzsAEPgnXA9JHAatfo23hc9mcU 7yhv7ToIesiFvWkdOjwz3C0HgkmVZCq9oMrLlC5lfyplHfgfkfhyq5PJU0SZKI35Ml4VDQmG fwwcFjhbziKg+awhbm8UOQp355lJ8jwN4RZsXZlpd3bJa95GtaYHeOTvpkBh2tYasNmRZ4yY +IDdjtrcBPGSxZOIVwQTpk5mY9Eg1GmLmMB+Q/L/fBfD277yyh+gLbmYYXuQZ+tVcUKjByah XLZxjGsav0dHIXPlWXamp62vcfXhyLlUYkDUaWx7eVCgVCPyCoUEhJ+fUOhoOewgV+mUslEb kcU8ys0toAz+VClCN7nUHWQrGSNsAJZWtdMHagi8gCTw6HF+w+CHS0NUyJBLccttMIzSBQr2 0OH2dTzClRHsbCORlqc+6ua6zSoNkAowXQqbCsAS04O5MPu5dhpyBnOVd1kVqWyi7UZBA0c3 RiMiBgE3I81gPIG3v6a1Fzj2h2DuLfGG1tdChrsYkqp6QZwZYiAboOu6ETG4fsoEGp/ZgTc1 JTjs5XAhN3iHa1hhwTWG71cRuHBC+KtdWyC3wIyQ/HN4hzwoxaekZZsDCaSzauDGu8AfTLvC KM4kVwMvMcJVJdGgFMeXm5cI80uya6lHtP/W7WNNJxFY4N6c0mM+yQGia+sM4LFzhNEfUIXY MjznSOQ4ZAyUvsPIN2eHLd17FPT7npirV4/vLiip/hd7ZKQZWSOVZAOO0aUY+Yy4cus+VuEq IcEZ5XWkUQHCoUShxU7F6ZNdTjmylBlXfjLRzB/KoZv3yI/Qjh6Uq+NqV/fU9U+wfQ9ehj0E oGVAx8ElwWXaYzvIgSRYXcrc6L0QZt6thoG0d8EYz6VN4wYSd/3ts83LsJvFZF+rbAL5aAvF ZEtJZ7fasmjvxyaoVzxm7Gn8tw7HPlq7CrTVxeYjM8XJMA5HFeRqo64JmMCNkAmV0KKiCf3m JX5vivzSpsYTAMkB8HTAM9DBXvr1ZTBsIqeh3f1H+Q=
IronPort-HdrOrdr: A9a23:ljHI/q5DSO1HBvtKEwPXwYeCI+orL9Y04lQ7vn2ZFiYlEfBwxv rPoB1E737JYW4qKQAdcLC7VJVpQRvnhOdICPoqTMeftWjdySSVxeRZnOnfKlLbalDDH4JmpM Bdmu1FeaPN5DtB/IjHCWuDYqodKbC8mcjC65a6vhNQpENRGt5dBmxCe36m+zhNNXN77O0CZe GhD6R81lydUEVSRP6WQlMCWO/OrcDKkpXJXT4qbiRM1CC+yRmTxPrfCRa34jcyOgkj/V4lyw f4uj28wp/mn+Cwyxfa2WOWxY9RgsHdxtxKA9HJotQJKx334zzYJLhJavmnhnQYseuv4FElnJ 3nuBE7Jfl+7HvXYyWcvQbt4Q/9yzwjgkWSimNwwEGT4/ARdghKT/aptrgpNScxLHBQ+u2U5Z g7ml5xcaAnVC8o0h6Nv+QgHCsa5XZc6UBS49L7yUYvELf3rNRq3NYiFIQ/KuZaIAvqrI8gC+ VgF8fa+bJfdk6bdWnQui11zMWrRWlbJGbNfqEugL3c79FtpgEz82IIgMgE2nsQ/pM0TJdJo+ zCL6RzjblLCssbd7h0CusNSda+TjWle2OBDEuCZVD8UK0XMXPErJD6pL0z+eGxYZQNiJ8/go 7IXl9UvXM7P0juFcqN1ptW9Q2lehTxYR39jsVFo5RpsLz1Q7TmdSWFVVA1isOl5+4SB8XKMs zDca6+w8WTW1cGNbw5qDEWAaMiXEX2ePdlzuoGZw==
X-Talos-CUID: 9a23:U7AJSmzFp708REg9ud9yBgUSPvAfKUf7wUvdKhSZIGpNEZK6V3CfrfY=
X-Talos-MUID: 9a23:mSrmJAzz47q4lU8swImawipRrSuaqKOKBxADmsRZgPLHEjxwZCXHjhenXbZyfw==
X-IronPort-Anti-Spam-Filtered: true
Received: from alln-core-12.cisco.com ([173.36.13.134]) by alln-iport-1.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 06 Sep 2023 08:06:26 +0000
Received: from alln-opgw-2.cisco.com (alln-opgw-2.cisco.com [173.37.147.250]) by alln-core-12.cisco.com (8.15.2/8.15.2) with ESMTPS id 38686QoB004052 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 6 Sep 2023 08:06:26 GMT
X-CSE-ConnectionGUID: X/4o8Jk+S/iFGAED56ZLuQ==
X-CSE-MsgGUID: k35Rq5SVR+SCKM/BKBlaqA==
Authentication-Results: alln-opgw-2.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=rwilton@cisco.com; dmarc=pass (p=quarantine dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="6.02,231,1688428800"; d="scan'208,217";a="557845"
Received: from mail-mw2nam10lp2103.outbound.protection.outlook.com (HELO NAM10-MW2-obe.outbound.protection.outlook.com) ([104.47.55.103]) by alln-opgw-2.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 06 Sep 2023 08:06:25 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EmDbmnJusUfF2Jh+N3AWghSKPOtl/mhit1CYiihu8KI6ojvh2xi4Z/RmRYIoZTDI3CO/EefaxIFB+EgsXMyR06Tysgg7kHdNjKgQ/drbNMhhPzqhA3gdReffIFbNk4fbPe/Tly8JFjmg7LlukC/mayXjw6ODaADjif3JdhFCS2PHuTO2uVrROez5JHduZ6D30y1FgxqC6j4M3y/ONNLxIej3nvTC6eJZSxnhypmRCND5+ygZwpWIhyDakAkfM02VJMwcW332N5KkNn6mD8Wt/+Oq6JoVnziMoVoJKUOsTtozu7DgaB59aHnpclY1eHuVcBpFgDeGHfYNcPUR4+DZkA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ROBgJd2fuaXou+MNloR9glwELXqP/PQ862BrMMWaayc=; b=Gv+dBeFATYXqSHAYzUHztdvfGHzE/NwPm0K4k6z4k7PMOwEghPbco4jwTPcgo7quYXGMnRkt/Z/BMa7txMpRHA92JefytC6UNY/T4qsxqBlMn0wPiNy6f2NwZK8JgCG3YgtbpzYFWmt50iP6gkmnKFF6enGmybRLIfLHAhTkJGKGa4z+fzTt/WZllUBF/Q1Jj+aP0+Q2G4DFcNPDhKKIrnyx8t5bHhNEoal9emCGjWAFGogNLtHW4JqxVT0577SmpUj1H52GJHpHnA9jR0GGEvr90MUY5Yg+1/pwa4LEpYbgQg3wXnEdMRvhqLkYSPlZasOrH387itOijrNRv5EZ+g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ROBgJd2fuaXou+MNloR9glwELXqP/PQ862BrMMWaayc=; b=NAQdTzLwNO3IjYSizcXUSEZvbcydJ05pXih7VJRsVNMgaAQJ/jlv5LSmCcIdq6Z7Hokv8pI6WdYZbuT/7JaBXwkzV3WGVnwaXMxGs8rvU4CNlN2Vav1EXoaD6rRJhMSqmf3lhOjq3hboivU5IA0onexQ31KDvBhTauaTTjzQUhk=
Received: from BY5PR11MB4196.namprd11.prod.outlook.com (2603:10b6:a03:1ce::13) by MN2PR11MB4758.namprd11.prod.outlook.com (2603:10b6:208:260::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6745.34; Wed, 6 Sep 2023 08:06:23 +0000
Received: from BY5PR11MB4196.namprd11.prod.outlook.com ([fe80::3d8c:2037:d8ac:ac5e]) by BY5PR11MB4196.namprd11.prod.outlook.com ([fe80::3d8c:2037:d8ac:ac5e%5]) with mapi id 15.20.6745.034; Wed, 6 Sep 2023 08:06:23 +0000
From: "Rob Wilton (rwilton)" <rwilton@cisco.com>
To: Tommy Pauly <tpauly=40apple.com@dmarc.ietf.org>, The IESG <iesg@ietf.org>
CC: "draft-ietf-privacypass-auth-scheme@ietf.org" <draft-ietf-privacypass-auth-scheme@ietf.org>, "privacypass-chairs@ietf.org" <privacypass-chairs@ietf.org>, "privacy-pass@ietf.org" <privacy-pass@ietf.org>, Benjamin Schwartz <ietf@bemasc.net>
Thread-Topic: Robert Wilton's Discuss on draft-ietf-privacypass-auth-scheme-12: (with DISCUSS and COMMENT)
Thread-Index: AQHZ30WJbdqKDjXmVkyD9j9SwpU/DLAMvFsAgACzvOA=
Date: Wed, 06 Sep 2023 08:06:22 +0000
Message-ID: <BY5PR11MB4196E4F8EDE92D5D67C6D0ACB5EFA@BY5PR11MB4196.namprd11.prod.outlook.com>
References: <169384176423.31092.12850530785029334353@ietfa.amsl.com> <8E0EB5C1-399A-433F-AD39-5A3A83268626@apple.com>
In-Reply-To: <8E0EB5C1-399A-433F-AD39-5A3A83268626@apple.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BY5PR11MB4196:EE_|MN2PR11MB4758:EE_
x-ms-office365-filtering-correlation-id: 4e1d2d04-c799-4165-18fe-08dbaeb02910
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4196.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(346002)(39860400002)(376002)(366004)(136003)(396003)(1800799009)(186009)(451199024)(122000001)(66899024)(38100700002)(38070700005)(7696005)(6506007)(53546011)(9686003)(66574015)(55016003)(83380400001)(166002)(478600001)(4326008)(8676002)(966005)(8936002)(66946007)(66556008)(76116006)(110136005)(5660300002)(66476007)(66446008)(33656002)(64756008)(52536014)(54906003)(86362001)(316002)(71200400001)(9326002)(2906002)(41300700001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_BY5PR11MB4196E4F8EDE92D5D67C6D0ACB5EFABY5PR11MB4196namp_"
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4196.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4e1d2d04-c799-4165-18fe-08dbaeb02910
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Sep 2023 08:06:22.9170 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: e7oX/SvsWrwX5xfrERxutnzAFhs4ER49vmOoZiTWoi3siNOZR5nrQrnVoHaBFO/7xF9t71gNnDeo0ybLCNhotA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4758
X-Outbound-SMTP-Client: 173.37.147.250, alln-opgw-2.cisco.com
X-Outbound-Node: alln-core-12.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/privacy-pass/iYcy2mWIcwPp5_e4Vo58CGjS-jQ>
Subject: Re: [Privacy-pass] Robert Wilton's Discuss on draft-ietf-privacypass-auth-scheme-12: (with DISCUSS and COMMENT)
X-BeenThere: privacy-pass@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Pass Protocol <privacy-pass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/privacy-pass>, <mailto:privacy-pass-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/privacy-pass/>
List-Post: <mailto:privacy-pass@ietf.org>
List-Help: <mailto:privacy-pass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/privacy-pass>, <mailto:privacy-pass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Sep 2023 08:06:32 -0000

Hi Tommy,

Top posting because of my “non-optimal” email client inline quoting behaviour …

For the first two issues, your resolution sounds fine.

For the last issue, we can discuss on Thursday.  Obviously, I cannot speak for the collective IESG, but a downref from a protocol or spec to an informational architecture document is quite common, and not normally an issue.  But please also be aware, if not already, that a normative reference would mean that the architecture document needs to be published as an RFC before, or the same time, as this document.

Regards,
Rob


From: iesg <iesg-bounces@ietf.org> On Behalf Of Tommy Pauly
Sent: 05 September 2023 22:11
To: Rob Wilton (rwilton) <rwilton@cisco.com>; The IESG <iesg@ietf.org>
Cc: draft-ietf-privacypass-auth-scheme@ietf.org; privacypass-chairs@ietf.org; privacy-pass@ietf.org; Benjamin Schwartz <ietf@bemasc.net>
Subject: Re: Robert Wilton's Discuss on draft-ietf-privacypass-auth-scheme-12: (with DISCUSS and COMMENT)

Hi Rob,

Thanks for the review! Responses inline.


On Sep 4, 2023, at 8:36 AM, Robert Wilton via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>> wrote:

Robert Wilton has entered the following ballot position for
draft-ietf-privacypass-auth-scheme-12: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-privacypass-auth-scheme/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

Hi,

Thanks for this document.  I found the document to be well written and
reasonable clear, and I think that this is useful technology (but worry about
the centralization aspects that the protocol is likely the encourage). However,
I feel that this document is somewhat hard to fully understand without reading
the architecture document first (which is only an informative rather than
normative reference).  Hence, I have a flagged a few issues which I think rise
to the category of discuss but hopefully should not be hard to resolve.

(1) p 15, sec 5.2.  Token Type Registry

  *  Private Metadata: A Y/N value indicating if the output tokens can
     contain private metadata.

This is the first time that some of these fields (e.g., Publicly Verifiable,
Public/Private Metadata) have been introduced.  Does the document need any
additional prose to describe what they and how they are used?  The current text
feels somewhat terse as a description in a standard track document.

(2) p 17, sec 5.2.  Token Type Registry

  *  Nid: N/A

Shoudln't Nk and Nid default to 0 rather than 'N/A'?  This comment also applies
to the text above the greased values, or otherwise (at a stretch) it could
arguably be interpreted as putting is randomly sized Nk and Nid fields
containing random data.

I filed this issue to cover these: https://github.com/ietf-wg-privacypass/base-drafts/issues/472

We’ll add better explanation, much of which will likely refer back to the architecture draft.


(3) p 18, sec 6.2.  Informative References

  [ARCHITECTURE]
             Davidson, A., Iyengar, J., and C. A. Wood, "The Privacy
             Pass Architecture", Work in Progress, Internet-Draft,
             draft-ietf-privacypass-architecture-13, 15 June 2023,
             <https://datatracker.ietf.org/doc/html/draft-ietf-
             privacypass-architecture-13<https://datatracker.ietf.org/doc/html/draft-ietf-%0b             privacypass-architecture-13>>.

It seems strange to me that the architecture reference isn't normative.  I.e.,
I would think that reading aspects of the architecture is a prerequisite to
fully understanding the protocol aspects defined here.

I filed this issue:

https://github.com/ietf-wg-privacypass/base-drafts/issues/473

Happy to make this change, but can we get confirmation first from the IESG that this normative downref to an informational document will be approved?

Thanks,
Tommy



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Thanks to Yingzhen for the OPSDIR review.

Regards,
Rob

v2.23.0 | Report a Bug | By Email