Re: [regext] [Gen-art] Genart last call review of draft-ietf-regext-login-security-05
Alissa Cooper <alissa@cooperw.in> Tue, 21 January 2020 18:38 UTC
Return-Path: <alissa@cooperw.in>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 764A712006B; Tue, 21 Jan 2020 10:38:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cooperw.in header.b=3S2hyZ8M; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=hrGJq9uv
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KqeSGFnz5VqJ; Tue, 21 Jan 2020 10:38:39 -0800 (PST)
Received: from out3-smtp.messagingengine.com (out3-smtp.messagingengine.com [66.111.4.27]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2926B12003F; Tue, 21 Jan 2020 10:38:36 -0800 (PST)
Received: from compute7.internal (compute7.nyi.internal [10.202.2.47]) by mailout.nyi.internal (Postfix) with ESMTP id 1E26C21DC4; Tue, 21 Jan 2020 13:38:35 -0500 (EST)
Received: from mailfrontend2 ([10.202.2.163]) by compute7.internal (MEProxy); Tue, 21 Jan 2020 13:38:35 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cooperw.in; h= content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; s=fm2; bh=v 0a2LktaEh0RuT2tC6XqqPO3g+166UiY5GjwW72xOSo=; b=3S2hyZ8MEF5dIrGZ/ p0jb+HygNHYNozLjh5t5UeXnR17KCjtcjlUpqbLea+5N3+ur3JoryrdzQPGn+mUy HGLC4z2eGQdrcmcBGlOA29o1hVj498GwKylOykbXQUj0yTt2X8mJqh0zceqMwJKH 2C8AvCwDkNoliX2JGNFQiJ2Y0E/gnyKwJuhS+luMMUKuVyvxlhe4yYivEhKQBfQR jCa7kMqyAasNsaVYHhosMp053QMTPuXDhbi7xWviIoTQFKnFrO0Amo1LZjdtAWsn NrIul/akqdhoLeDGviA+bVsVQhV2/cIxybYL+qM063ijy0eC/wc5eCvUzLzz2L12 cEM9w==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; bh=v0a2LktaEh0RuT2tC6XqqPO3g+166UiY5GjwW72xO So=; b=hrGJq9uvIOHsYbPRR0xEu5ru3nF8WXZy3duL/z/ecfnY6/Qtms42sAvZu h5erBAzYpTCI8vGebXtsq+tQU3wPEjd8NJKM554j8/ui3qO4Ij69EdHLX1Q3iN/z FvKA2G+APmiASWsR2HebgajW97jq1Vtm635OINiHdNKmZ6oKnLYhLm1Uv/Qk6ZHD 5eCOvEEKRxxrFPzly6e+23txGhyqGYLM1QKXApFm/ysHstZBpHj5+t6j8OlHuv5O 86RomLVNZ6t3yHITH7ONMUHHJ8suTyxd0VovcabAwRfdEO0lLPegnVtbGFhUrrbR uAh9RXmgNYP6ELu1oin1EKdOI4IMA==
X-ME-Sender: <xms:KkUnXuWZocM3-BeA55lZ_7OBqbsAxw12eVh_ZRL8kG5xIDPCXvFJbw>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedugedrudekgdduudegucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurheptggguffhjgffgffkfhfvofesthhqmhdthhdtjeenucfhrhhomheptehlihhs shgrucevohhophgvrhcuoegrlhhishhsrgestghoohhpvghrfidrihhnqeenucffohhmrg hinhepvhgvrhhishhighhnihhntgdrtghomhdpihgvthhfrdhorhhgnecukfhppedujeef rdefkedruddujedrjeeknecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrg hilhhfrhhomheprghlihhsshgrsegtohhophgvrhifrdhinh
X-ME-Proxy: <xmx:KkUnXqvV6TOOEiTknTwtLMx4dVpdvrz9WoNgtXSIxnysPI35_5frZQ> <xmx:KkUnXp2wYPvAOFEmVJNG-VARmo02J8VJGx1Eb6Ysn3_ynop4xOn88w> <xmx:KkUnXr7gWoogtoxPcQPqFRmwXSRgABEYuz-NAFeVssg-B7QOkiOB6Q> <xmx:K0UnXkJPtvE8cIfNx-xsJ_tLWffG28lUOLnmmueHApZnNztZt6uxRA>
Received: from rtp-alcoop-nitro2.cisco.com (unknown [173.38.117.78]) by mail.messagingengine.com (Postfix) with ESMTPA id 922A13060840; Tue, 21 Jan 2020 13:38:34 -0500 (EST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
From: Alissa Cooper <alissa@cooperw.in>
In-Reply-To: <85a11cc6-4f11-dfd0-6f1d-134e352a7f45@gmail.com>
Date: Tue, 21 Jan 2020 13:38:30 -0500
Cc: "gen-art@ietf.org" <gen-art@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>, "draft-ietf-regext-login-security.all@ietf.org" <draft-ietf-regext-login-security.all@ietf.org>, "regext@ietf.org" <regext@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <513850C3-8B9B-4777-A525-AD635C8C3401@cooperw.in>
References: <157275296078.5986.16873647589469042217@ietfa.amsl.com> <BFA88E7F-61E0-4100-8008-2FD4F5673C2F@verisign.com> <85a11cc6-4f11-dfd0-6f1d-134e352a7f45@gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, "Gould, James" <jgould@verisign.com>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/XB5DOHBB4MeHDc_k0nsmZhAemc8>
Subject: Re: [regext] [Gen-art] Genart last call review of draft-ietf-regext-login-security-05
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jan 2020 18:38:45 -0000
Brian, thanks for your review. I can see where you’re coming from with the points you raise about migrating versions, but given the nature of this extension, it seems like an urgent security-related version update is quite unlikely. Therefore leaving the time scale up to server policy seems ok. James, thanks for your response. I entered a DISCUSS ballot to chat about the extensibility with custom events. Thanks, Alissa > On Nov 5, 2019, at 2:37 PM, Brian E Carpenter <brian.e.carpenter@gmail.com> wrote: > > James, > > Comments in line: > On 06-Nov-19 07:58, Gould, James wrote: >> Brian, >> >> Thank you for your review and feedback. My responses are embedded below. I will include updates based on your feedback in draft-ietf-regext-login-security-06 at the conclusion of the last call. >> >> -- >> >> JG >> >> James Gould >> Distinguished Engineer >> jgould@Verisign.com <applewebdata://13890C55-AAE8-4BF3-A6CE-B4BA42740803/jgould@Verisign.com> > >> 703-948-3271 >> 12061 Bluemont Way >> Reston, VA 20190 >> Verisign.com <http://verisigninc.com/> >> >> On 11/2/19, 11:49 PM, "Brian Carpenter via Datatracker" <noreply@ietf.org> wrote: >> >> Reviewer: Brian Carpenter >> Review result: Ready with Issues >> >> Gen-ART Last Call review of draft-ietf-regext-login-security-05 >> >> I am the assigned Gen-ART reviewer for this draft. The General Area >> Review Team (Gen-ART) reviews all IETF documents being processed >> by the IESG for the IETF Chair. Please treat these comments just >> like any other last call comments. >> >> For more information, please see the FAQ at >> <http://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>. >> >> Document: draft-ietf-regext-login-security-05.txt >> Reviewer: Brian Carpenter >> Review Date: 2019-11-03 >> IETF LC End Date: 2019-11-12 >> IESG Telechat date: >> >> Summary: Ready with minor issues >> -------- >> >> Minor issues: >> ------------- >> >> I found section 2 "Migrating to Newer Versions of This Extension" >> a little hard to follow. Firstly, am I correct in assuming that >> "a new version" means a version number higher than 1.0, e.g. >> "loginSec-1.1"? That is probably the intended meaning, but I think >> it needs to be explicit. Maybe state that this document defines >> "loginSec-1.0" and future documents can define other minor and major >> versions such as "loginSec-1.1" or "loginSec-2.0". >> >> JG - The "Migration to Newer Versions of This Extension" section was originally meant to address point version updates (e.g., loginSec-0.2, loginSec-0.3) prior to version loginSec-1.0, but Barry Leiba's review feedback recommended leaving it in the draft. This section is applicable to any version change, including migrating from a pre-loginSec-1.0 version to loginSec-1.0 or a future update of loginSec-1.0 to loginSec-1.1. I believe the language needs to remain generic to apply to both cases. > > Yes, that makes sense. I think that because this section occurs *before* the technical details it isn't quite clear what "version" means - I certainly had to come back to this section after reading the whole text. But you probably don't want to mention loginSec-0.x, hence the examples I suggested. > >> Then "(for a temporary migration period)" is a bit vague. I think >> it would be useful to suggest the order of magnitude of the overlap >> period: days?, months?; hopefully not years. >> >> JG - The migration period is up to server policy. It could be made more explicit by changing it to read "(for a temporary migration period *up to server policy*)". Do you agree with this change? > > Making it clear that it's a policy choice is an improvement, yes. But I still think that it would be useful to indicate a timescale. I've seen migration overlaps ranging anywhere from seconds to years in different protocols and I really have no idea where this one lies on that spectrum. > >> I also think a short discussion of adding & removing versions is version >> needed in the Security Considerations, since the reason for a new >> version might be the discovery of a vulnerability in the current >> version. That's when a short migration period is desirable. >> >> JG – I don’t see the linkage of adding & removing versions to the Security Considerations, since a version change may be due to multiple reasons (functional issue, functional enhancement, and security). The length of time for the migration is up to server policy based on many factors outside of the protocol. > > Of course. But the specific case of a security-driven update is special and may be much more urgent than normal policy. That's why I'd be inclined to mention it. Not a big deal, however. > > Regards > Brian Carpenter > >> FYI, there are some other extension design considerations in >> https://tools.ietf.org/html/rfc6709#section-4 . >> >> JG – Thank you, I’ll be sure to review https://tools.ietf.org/html/rfc6709#section-4. >> >> Nits: >> ----- >> >> "1. Introduction >> >> This document describes an Extensible Provisioning Protocol (EPP) >> extension for enhancing the security of the EPP login command in EPP >> RFC 5730. The enhancements include supporting longer passwords (or >> passphrases) than the 16-character maximum and providing a list of >> security events in the login response. The password (current and >> new) in EPP RFC 5730 can be overridden..." >> >> "RFC 5730" should either be in parenthesis as "(RFC 5730)" or >> a reference "[RFC5730]" (twice). >> >> JG – I will change the RFC 5730 references in the Introduction to use links (xrefs). > > _______________________________________________ > Gen-art mailing list > Gen-art@ietf.org > https://www.ietf.org/mailman/listinfo/gen-art
- [regext] Genart last call review of draft-ietf-re… Brian Carpenter via Datatracker
- Re: [regext] Genart last call review of draft-iet… Gould, James
- Re: [regext] Genart last call review of draft-iet… Brian E Carpenter
- Re: [regext] [Gen-art] Genart last call review of… Alissa Cooper