IETF Logo Mail Archive

Re: [regext] Secdir last call review of draft-ietf-regext-unhandled-namespaces

"Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com> Tue, 23 February 2021 08:53 UTC

Return-Path: <tirumaleswarreddy_konda@mcafee.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 41DA13A28B9 for <regext@ietfa.amsl.com>; Tue, 23 Feb 2021 00:53:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.669
X-Spam-Level:
X-Spam-Status: No, score=-2.669 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.57, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mcafee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nGxgRV1YCW4h for <regext@ietfa.amsl.com>; Tue, 23 Feb 2021 00:53:37 -0800 (PST)
Received: from us-smtp-delivery-140.mimecast.com (us-smtp-delivery-140.mimecast.com [216.205.24.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C80343A28B6 for <regext@ietf.org>; Tue, 23 Feb 2021 00:53:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mcafee.com; s=mimecast20190606; t=1614070415; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=L/SkgGisqH7PySLFPHH5rpvDET4wen1bKYIcZ+LQm1w=; b=QI8V4B5aZB6oA8cngln4Jk7o1K/fAV5FUIcbz+WqdVB+2osSFp5aaLcPdRfu684BUHBkIG 441nU8VE4+QqnCumkhVM9FAF1z76HjWBgA6Cc7om37bOKfkzL1MYNyzhEGRagyG85dMIi2 sBKYq8sV+4MtMIbgfMxY4A7Mz7qDUm4=
Received: from NAM11-DM6-obe.outbound.protection.outlook.com (mail-dm6nam11lp2174.outbound.protection.outlook.com [104.47.57.174]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-255-eNQaivbDPIKa13DU-9RBkg-1; Tue, 23 Feb 2021 03:53:33 -0500
X-MC-Unique: eNQaivbDPIKa13DU-9RBkg-1
Received: from PH0PR16MB4118.namprd16.prod.outlook.com (2603:10b6:510:59::7) by PH0PR16MB4134.namprd16.prod.outlook.com (2603:10b6:510:4f::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3868.29; Tue, 23 Feb 2021 08:53:30 +0000
Received: from PH0PR16MB4118.namprd16.prod.outlook.com ([fe80::d8f:de34:7e0:8f57]) by PH0PR16MB4118.namprd16.prod.outlook.com ([fe80::d8f:de34:7e0:8f57%7]) with mapi id 15.20.3868.033; Tue, 23 Feb 2021 08:53:30 +0000
From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
To: "Gould, James" <jgould@verisign.com>, "secdir@ietf.org" <secdir@ietf.org>, "regext@ietf.org" <regext@ietf.org>, "draft-ietf-regext-unhandled-namespaces.all@ietf.org" <draft-ietf-regext-unhandled-namespaces.all@ietf.org>
Thread-Topic: Secdir last call review of draft-ietf-regext-unhandled-namespaces
Thread-Index: AdcIRsEdMoPcgxXERhinE+RBwxlfZwA8sIaAACHgJ7A=
Date: Tue, 23 Feb 2021 08:53:30 +0000
Message-ID: <PH0PR16MB4118027581BD266B23DC3ED4EA809@PH0PR16MB4118.namprd16.prod.outlook.com>
References: <PH0PR16MB41184F173F51F983010FAD1AEA829@PH0PR16MB4118.namprd16.prod.outlook.com> <84410DC5-0D46-4EAF-88F6-BB390902A0CD@verisign.com>
In-Reply-To: <84410DC5-0D46-4EAF-88F6-BB390902A0CD@verisign.com>
Accept-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.6.0.76
dlp-reaction: no-action
x-originating-ip: [49.37.161.1]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 74577f34-1b6a-41b6-5864-08d8d7d87e38
x-ms-traffictypediagnostic: PH0PR16MB4134:
x-microsoft-antispam-prvs: <PH0PR16MB4134B62D95757D280B5B279EEA809@PH0PR16MB4134.namprd16.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH0PR16MB4118.namprd16.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(346002)(136003)(396003)(376002)(39860400002)(366004)(32952001)(33656002)(8936002)(86362001)(66616009)(7696005)(99936003)(166002)(110136005)(6506007)(53546011)(83380400001)(316002)(186003)(478600001)(9686003)(55016002)(5660300002)(52536014)(66446008)(26005)(64756008)(8676002)(2906002)(66556008)(71200400001)(66476007)(66946007)(76116006)(85282002); DIR:OUT; SFP:1101
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
MIME-Version: 1.0
X-OriginatorOrg: mcafee.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH0PR16MB4118.namprd16.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 74577f34-1b6a-41b6-5864-08d8d7d87e38
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Feb 2021 08:53:30.1961 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4943e38c-6dd4-428c-886d-24932bc2d5de
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: A5YIFlzO+9WBJYqgdusXdDIA57ujqhCMJO7uJIloGiD/L4V1Ul/X0Bs/pTltKXUPF/WT058jkWsT9SLsMuk/5JURhG/TqqRoTnZAlIgzlO5TWyY9UwBxprLiPcJoYqaa
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR16MB4134
Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CUSA40A35 smtp.mailfrom=tirumaleswarreddy_konda@mcafee.com
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: mcafee.com
Content-Language: en-US
Content-Type: multipart/related; boundary="_004_PH0PR16MB4118027581BD266B23DC3ED4EA809PH0PR16MB4118namp_"; type="multipart/alternative"
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/DW6EOpkhDt3_ukDfsJbBPrQtycc>
Subject: Re: [regext] Secdir last call review of draft-ietf-regext-unhandled-namespaces
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Feb 2021 08:53:39 -0000

Thanks James for the clarification and update to the draft.

Cheers,
-Tiru

From: Gould, James <jgould@verisign.com>
Sent: Monday, February 22, 2021 10:11 PM
To: Konda, Tirumaleswar Reddy <TirumaleswarReddy_Konda@McAfee.com>; secdir@ietf.org; regext@ietf.org; draft-ietf-regext-unhandled-namespaces.all@ietf.org
Subject: Re: Secdir last call review of draft-ietf-regext-unhandled-namespaces


CAUTION: External email. Do not click links or open attachments unless you recognize the sender and know the content is safe.

________________________________
Tiru,


In re-looking at it, it was intended to reference the set of normative EPP RFC’s used in the draft, which originally included RFC 5730, 5731, 3915, 5910, and 8590.  We moved all of the EPP RFCs 3915, 5910, and 8590 from normative references to informational references because they’re only used in the examples, which leaves the RFC 5730 and 5731 normative references.  I believe that the RFC 5731 normative reference can also be made an informational reference, since it’s only used in the examples.  If that was to be done, it would only leave RFC 5730, which is the target of the statement in the Security Considerations section.  This is a long way of proposing moving RFC 5731 to be informational and remove the second sentence “The security considerations described in these other specifications apply to this specification as well. “ from the Security Considerations section, since the first sentence covers RFC 5730 and no other EPP RFCs apply.



Thanks,

--

JG

[cid:image001.png@01D709EF.70813A70]

James Gould
Fellow Engineer
jgould@Verisign.com<applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com>

703-948-3271
12061 Bluemont Way
Reston, VA 20190

Verisign.com<http://verisigninc.com/>

From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com<mailto:TirumaleswarReddy_Konda@McAfee.com>>
Date: Sunday, February 21, 2021 at 6:48 AM
To: "secdir@ietf.org<mailto:secdir@ietf.org>" <secdir@ietf.org<mailto:secdir@ietf.org>>, "regext@ietf.org<mailto:regext@ietf.org>" <regext@ietf.org<mailto:regext@ietf.org>>, "draft-ietf-regext-unhandled-namespaces.all@ietf.org<mailto:draft-ietf-regext-unhandled-namespaces.all@ietf.org>" <draft-ietf-regext-unhandled-namespaces.all@ietf.org<mailto:draft-ietf-regext-unhandled-namespaces.all@ietf.org>>
Subject: [EXTERNAL] Secdir last call review of draft-ietf-regext-unhandled-namespaces
Resent-From: <alias-bounces@ietf.org<mailto:alias-bounces@ietf.org>>
Resent-To: James Gould <jgould@verisign.com<mailto:jgould@verisign.com>>, <martin.casanova@switch.ch<mailto:martin.casanova@switch.ch>>, <ietf@antoin.nl<mailto:ietf@antoin.nl>>, <galvin@elistx.com<mailto:galvin@elistx.com>>, <superuser@gmail.com<mailto:superuser@gmail.com>>, <barryleiba@gmail.com<mailto:barryleiba@gmail.com>>, <francesca.palombini@ericsson.com<mailto:francesca.palombini@ericsson.com>>, <barryleiba@computer.org<mailto:barryleiba@computer.org>>, David Smith <dsmith@verisign.com<mailto:dsmith@verisign.com>>, David Smith <dsmith@verisign.com<mailto:dsmith@verisign.com>>
Resent-Date: Sunday, February 21, 2021 at 6:48 AM

Reviewer: Tirumaleswar Reddy
Review result: Has nits

This document does not define any new EPP protocol elements, it specifies an operational practice using the existing EPP protocol. It does not discuss any security aspects other than relying on the security considerations in EPP protocol [RFC5730].

The security considerations described in these other specifications apply to this specification as well.

Comment> What other specifications are you referring to ?

-Tiru

v2.23.0 | Report a Bug | By Email