IETF Logo Mail Archive

Re: [Rats] Lars Eggert's No Objection on draft-ietf-rats-architecture-21: (with COMMENT)

Michael Richardson <mcr+ietf@sandelman.ca> Tue, 27 September 2022 12:13 UTC

Return-Path: <mcr@sandelman.ca>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 334F7C14CE2A; Tue, 27 Sep 2022 05:13:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.908
X-Spam-Level:
X-Spam-Status: No, score=-1.908 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y96hfxjkF2sN; Tue, 27 Sep 2022 05:13:00 -0700 (PDT)
Received: from relay.sandelman.ca (relay.cooperix.net [IPv6:2a01:7e00:e000:2bb::1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 04129C14CE28; Tue, 27 Sep 2022 05:12:59 -0700 (PDT)
Received: from dooku.sandelman.ca (unknown [89.246.252.107]) by relay.sandelman.ca (Postfix) with ESMTPS id 130C61F455; Tue, 27 Sep 2022 12:12:57 +0000 (UTC)
Received: by dooku.sandelman.ca (Postfix, from userid 179) id 604981A0749; Tue, 27 Sep 2022 14:12:56 +0200 (CEST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: Lars Eggert <lars@eggert.org>
cc: The IESG <iesg@ietf.org>, draft-ietf-rats-architecture@ietf.org, rats-chairs@ietf.org, rats@ietf.org, Kathleen.Moriarty.ietf@gmail.com
In-reply-to: <166257377755.39571.11514215116837339356@ietfa.amsl.com>
References: <166257377755.39571.11514215116837339356@ietfa.amsl.com>
Comments: In-reply-to Lars Eggert via Datatracker <noreply@ietf.org> message dated "Wed, 07 Sep 2022 11:02:57 -0700."
X-Mailer: MH-E 8.6+git; nmh 1.7.1; GNU Emacs 27.1
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Tue, 27 Sep 2022 14:12:56 +0200
Message-ID: <254441.1664280776@dooku>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/0SDczbDLM6UDWZYzWj234fsN5vQ>
Subject: Re: [Rats] Lars Eggert's No Objection on draft-ietf-rats-architecture-21: (with COMMENT)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Sep 2022 12:13:04 -0000

Lars Eggert via Datatracker <noreply@ietf.org> wrote:
    > # GEN AD review of draft-ietf-rats-architecture-21

> CC @larseggert

Although I tried the ietf-comments script, it didn't work for me.
Also the references produced all seemed off in various ways.  Certainly the
paragraph numbers did not really line up.  Also many comments are too terse
for me to understand, and the context didn't work out.

I've uploaded your comments to:  https://github.com/ietf-rats-wg/architecture/issues/436
The fixes are at: https://github.com/ietf-rats-wg/architecture/pull/437

    > This document uses the RFC2119 keyword ['SHOULD'], but does not contain the
    > recommended RFC8174 boilerplate.

    > I don't think you need to add the boilerplate, simply rephrase the sentence
    > so it is more clear that you are in fact citing RFC4086 here?

We started with 2119 boilerplate.  I have reword to:
} When generating keys off-device in the factory or in the device the use of
} a Cryptographically Strong Sequence ({{?RFC4086, Section 6.2}}) needs consideration.

but I'm not sure I've weased out of SHOULD here.

    > ### Inclusive language

    > Found terminology that should be reviewed for inclusivity; see
    > https://www.rfc-editor.org/part2/#inclusive_language for background and more
    > guidance:

    > * Terms `native` and `natively`; alternatives might be `built-in`,
    > `fundamental`, `ingrained`, `intrinsic`, `original`

A review of "native extension" tells me that it's the correct term where used.

    > #### Section 2.6, paragraph 2
    > ```
    > uthenticator. Relying Party: Any web site, mobile application back-end, or s
    > ^^^^^^^^
    > ```
    > Nowadays, it's more common to write this as one word.

"this", being "back-end"... okay.

    > #### Section 3, paragraph 2
    > ```
    > em component, device is often used as a illustrative synonym throughout this
    > ^
    > ```
    > Use "an" instead of "a" if the following word starts with a vowel sound, e.g.
    > "an article", "an hour".

done.

    > #### Section 3, paragraph 4
    > ```
    > l messages shown in Figure 1. Section Section 4 provides a more complete def
    > ^^^^^^^^^^^^^^^
    > ```
    > Possible typo: you repeated a word.

Kramdown did it!

    > #### Section 3.2, paragraph 4
    > ```
    > -entity can be called an Attester. Among all the Attesters, there may be onl
    > ^^^^^
    > ```
    > Do not mix variants of the same word ("among" and "amongst") within a single
    > text. (Also elsewhere.)

I don't get this comment.

    > #### Section 3.2, paragraph 5
    > ```
    > final Evidence to the Verifier. Therefore the router is a composite device,
    > ^^^^^^^^^
    > ```
    > A comma may be missing after the conjunctive/linking adverb "Therefore".

fixed.

    > #### Section 3.2, paragraph 6
    > ```
    > t that connects to the Verifier. Typically one router in the group is design
    > ^^^^^^^^^
    > ```
    > A comma may be missing after the conjunctive/linking adverb "Typically".

fixed.

    > #### Section 4.1, paragraph 9
    > ```
    > ation (e.g., birth certificate) is the the Evidence, the passport is an Attes
    > ^^^^^^^
    > ```
    > Possible typo: you repeated a word.

I can't see a repeated word.

    > #### Section 5.2, paragraph 7
    > ```
    > e Verifier is an expected one by out of band establishment of key material, c
    > ^^^^^^^^^^^
    > ```
    > Did you mean "out-of-band"?

okay.

    > #### Section 7.4, paragraph 1
    > ```
    > e 1 illustrates the flow of a conceptual messages between various roles. This
    > ^^^^^^^^^^^^^^^^^^^^^
    > ```
    > The plural noun "messages" cannot be used with the article "a". Did you mean "a
    > conceptual message" or "conceptual messages"?

fixed.

    > #### Section 7.5, paragraph 1
    > ```
    > n Attester, which can include privacy sensitive information as discussed in s
    > ^^^^^^^^^^^^^^^^^
    > ```
    > This word is normally spelled with a hyphen.

Which word?

    > #### Section 7.5, paragraph 2
    > ```
    > ve information as discussed in section Section 11. Unlike Evidence, which is
    > ^^^^^^^^^^^^^^^
    > ```
    > Possible typo: you repeated a word.

fixed.

    > #### Section 9, paragraph 10
    > ```
    > new epoch, such as by using a counter signed by the Epoch ID Distributor as
    > ^^^^^^^^^^^^^^
    > ```
    > This word is normally spelled as one word.

no idea which word.

    > #### Section 9, paragraph 10
    > ```
    > essages that might be associated with a epoch ID that the receiver has not ye
    > ^
    > ```
    > Use "an" instead of "a" if the following word starts with a vowel sound, e.g.
    > "an article", "an hour".

fixed.

    > #### Section 9, paragraph 11
    > ```
    > ID approach minimizes the state kept to be independent of the number of Att
    > ^^^^^^^^^^
    > ```
    > The verb "kept" is used with the gerund form.

I think it reads fine.

    > #### Section 11, paragraph 7
    > ```
    > avoid attacks where an attacker is able get a key they control endorsed. To s
    > ^^^^^^^^
    > ```
    > The preposition "to" is required before the verb "get".

fixed.

    > #### Section 11, paragraph 8
    > ```
    > authentication, * auditing, * fine grained access controls, and * logging. S
    > ^^^^^^^^^^^^
    > ```
    > This word is normally spelled with a hyphen.

not sure which word.

    > #### Section 12.1.1, paragraph 1
    > ```
    > pants in a certain epoch of choice for ever, effectively freezing time. This
    > ^^^^^^^^
    > ```
    > The adverb "forever" is spelled as one word.

fixed.

    > ```
    > station Result contains an expiry time time(RX_v) then it could explicitly ch
    > ^^^^^^^^^
    > ```
    > Possible typo: you repeated a word.

nope.

    > #### Section 16.2, paragraph 20
    > ```
    > it to its own clock or timestamps. Thus we use a suffix ("a" for Attester, "
    > ^^^^
    > ```
    > A comma may be missing after the conjunctive/linking adverb "Thus".

fixed.

    > #### "Appendix A.", paragraph 3
    > ```
    > me(EG_a)-time(VG_a) < Threshold. Similarly if, based on an Attestation Resul
    > ^^^^^^^^^
    > ```
    > A comma may be missing after the conjunctive/linking adverb
    > "Similarly".

I think it's fine this way.

--
Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works
 -= IPv6 IoT consulting =-

v2.23.0 | Report a Bug | By Email