Re: Secdir last call review of draft-ietf-rtgwg-net2cloud-problem-statement-36
Deb Cooley <debcooley1@gmail.com> Thu, 11 April 2024 22:45 UTC
Return-Path: <debcooley1@gmail.com>
X-Original-To: rtgwg@ietfa.amsl.com
Delivered-To: rtgwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E545FC14F6E9; Thu, 11 Apr 2024 15:45:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.844
X-Spam-Level:
X-Spam-Status: No, score=-1.844 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Gw20kmMkJ3tJ; Thu, 11 Apr 2024 15:45:43 -0700 (PDT)
Received: from mail-il1-x135.google.com (mail-il1-x135.google.com [IPv6:2607:f8b0:4864:20::135]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 26847C14F68C; Thu, 11 Apr 2024 15:45:43 -0700 (PDT)
Received: by mail-il1-x135.google.com with SMTP id e9e14a558f8ab-36b045c17d5so1554515ab.0; Thu, 11 Apr 2024 15:45:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1712875542; x=1713480342; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=9rgU0aZFQ58rTDkjQ7ZeMZIUH3BQDDDiKw6vFv+JSCc=; b=WZSvxVOdkkAziIUyGzxV2yMblrVtc3nEzE4zL6mP9Fa8ojFoTZKa+S3XpV3fUO73uL hrwOi/NElvTTnvttZJGK2StJ8gX1I2TJqLrBCLCz/mMyRctOm5Il30HMseYD+cs3MOYp 2NP+Fh/i5laHr6OXKOTYIFRbUhOOOkemrESNTAE4wI5rdcENnMlA4VrGaYyLKYKKrNP1 pmuYJ+Q1G8KFr0r8Q6bpnjkZAw34iRqPEZp/qPIlyUzsctfr3LBSdJXe7Ay3vuIK72lG XDmNDJO22uTDSUdajmOX0n4D7LuZ7GilUQZm+ZA2BBDrV9EPp5LhPf37Z3F1e61QIEZV /XDA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712875542; x=1713480342; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=9rgU0aZFQ58rTDkjQ7ZeMZIUH3BQDDDiKw6vFv+JSCc=; b=p6Y11zc2arAk2ifGXoxQTkE+fIfq0R3sA6rzQ+ka95AdtDaCfqxCKmJzb/E+LBJbzo lmhvkPKIjOG7r99CPfSKqwPsTFN+K7wy9cdglkMsKi1PS6r5rr8xDjlLq5saUSl1xgqU trRf7HP2UtcQGsqs8Ecy92xT1oAf2cV40l3zPd6YWOyRRjLWr99WAuwrFFtpPssuUGH6 S/PJ4mdERHgF77T2ncW0DiAHm7nul101ASx+bRNTLo9rnjNnDKXTKBQTKv7i3XishorH 1jojw+sXTXgJesafhixLHBncmxGXhSOnlbLGdwZobLQs1o+SwIwHi44Et4qEjoSaFitK gLvA==
X-Forwarded-Encrypted: i=1; AJvYcCUp/bvqTwN3ulp58eP4/ravqZeMeJoO6iDY0oTVusKJdvqpv0SVkmb1eR/YDwVFjmIqJ0UW3yqnLviWkTGIU9s1HvMdHrWkDYO3hy0N8a+CHpdnM5VsALl1YdRVNhyM4YyXqVh7EpFc5WYZYwlzrKtIuOWDhERYvVCb
X-Gm-Message-State: AOJu0YzMaZNfgkEWwWYaR+vNI7GksHCCfzjhJqEZCI8Wll3Rv5MRPBPk Ldl/EnwS+IVnCnFaOt4c/GStvsjFIvhR5Frv8LnKZTwrgyBQscFyPcwhSXhr2LkWXVtoejKqHG7 Mu0KyVo1kXB5XSb5Es+yaInx6RAEetMsXLA==
X-Google-Smtp-Source: AGHT+IGa6Q3hwhSJUc0Ce8eToSGO0CPVH2VBCIzH6Y3V9z5xIljTU/JN3Ne/lVhCn2ebPiIa4BTEzMTCbK6T838fLMw=
X-Received: by 2002:a05:6e02:1c04:b0:36b:6f0:1eb2 with SMTP id l4-20020a056e021c0400b0036b06f01eb2mr293774ilh.16.1712875542001; Thu, 11 Apr 2024 15:45:42 -0700 (PDT)
MIME-Version: 1.0
References: <170929516566.22050.4912794500698236384@ietfa.amsl.com> <CO1PR13MB49202C23241E301DB62DEE9085222@CO1PR13MB4920.namprd13.prod.outlook.com> <CAGgd1Of_3KuOpg4G9Pf0N4Qm-g+a0ymrVUV36Q0RY93gc-9Tfg@mail.gmail.com> <CAGgd1Oev+UPzLCpf+m+sKUt55KoDXX89gxfhdzqi057Avr51sA@mail.gmail.com> <PH0PR13MB4922280EFDD4CAAB0E2299D285062@PH0PR13MB4922.namprd13.prod.outlook.com> <CAGgd1OdDSS6VpEpikOKyxfm+w7f5r6=0Y=C_6eDj_pW7CCmz9g@mail.gmail.com> <PH0PR13MB4922BB9844C5D95E5001B14A85052@PH0PR13MB4922.namprd13.prod.outlook.com>
In-Reply-To: <PH0PR13MB4922BB9844C5D95E5001B14A85052@PH0PR13MB4922.namprd13.prod.outlook.com>
From: Deb Cooley <debcooley1@gmail.com>
Date: Thu, 11 Apr 2024 18:45:20 -0400
Message-ID: <CAGgd1OdRaM=pLa4Bho=UkaH9tvjmo5RbPQK8kYGgkQVHdroZCA@mail.gmail.com>
Subject: Re: Secdir last call review of draft-ietf-rtgwg-net2cloud-problem-statement-36
To: Linda Dunbar <linda.dunbar@futurewei.com>
Cc: "secdir@ietf.org" <secdir@ietf.org>, "draft-ietf-rtgwg-net2cloud-problem-statement.all@ietf.org" <draft-ietf-rtgwg-net2cloud-problem-statement.all@ietf.org>, "rtgwg@ietf.org" <rtgwg@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000039bfee0615d9ea09"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtgwg/cuD5Mz-VigrutIRyOrnLZIqFjGs>
X-BeenThere: rtgwg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Routing Area Working Group <rtgwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtgwg>, <mailto:rtgwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtgwg/>
List-Post: <mailto:rtgwg@ietf.org>
List-Help: <mailto:rtgwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtgwg>, <mailto:rtgwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Apr 2024 22:45:44 -0000
Remaining comment and one nit: Section 5.1, paragraph 3: The draft referenced here is expired and the security of the methods would have to be reviewed. (that is listed in Section 7) The expired draft has been replaced with another draft. The security of the methods would have to be reviewed. Please list that in Section 7. Section 7, second to last bullet: typo: There is a single quotation mark at the end of the paragraph. Deb On Thu, Apr 11, 2024 at 6:08 PM Linda Dunbar <linda.dunbar@futurewei.com> wrote: > Deb, > > > > Thank you. The -38 has been uploaded. > > > https://datatracker.ietf.org/doc/draft-ietf-rtgwg-net2cloud-problem-statement/ > > > > Linda > > > > *From:* Deb Cooley <debcooley1@gmail.com> > *Sent:* Thursday, April 11, 2024 5:53 AM > *To:* Linda Dunbar <linda.dunbar@futurewei.com> > *Cc:* secdir@ietf.org; > draft-ietf-rtgwg-net2cloud-problem-statement.all@ietf.org; rtgwg@ietf.org > *Subject:* Re: Secdir last call review of > draft-ietf-rtgwg-net2cloud-problem-statement-36 > > > > perfect, I'll take a look at -38 when it gets published. > > > > Deb > > > > On Wed, Apr 10, 2024 at 10:58 AM Linda Dunbar <linda.dunbar@futurewei.com> > wrote: > > Deb, > > > > Thank you very much for the additional comments and the suggested wording. > > They are reflected in the revision -38. > > > > Linda > > > > -----Original Message----- > From: Deb Cooley <debcooley1@gmail.com> > Sent: Monday, March 18, 2024 8:24 AM > To: Linda Dunbar <linda.dunbar@futurewei.com> > Cc: secdir@ietf.org; > draft-ietf-rtgwg-net2cloud-problem-statement.all@ietf.org; rtgwg@ietf.org > Subject: Re: Secdir last call review of > draft-ietf-rtgwg-net2cloud-problem-statement-36 > > > > Here is my review update for > > draft-ietf-rtgwg-net2cloud-problem-statement-37: > > > > I will update my review in the datatracker. > > > > original comments (in black), updates (in blue) > > > > 1. Section 5.1, paragraph 2: Certainly the principles and assumptions of > RFC 4535* would apply to any group key management situation (note the word > change from 'group encryption' to 'group key management'). The specific > protocol addressed by that RFC isn't being used here (even though they > mention ISAKMP). How about something like this: > > > > "The group key management protocol documented in [RFC4535] outlines the > relevant security risks for any group key management system in Section 3 > (Security Considerations). While this particular protocol isn't being > suggested, the drawbacks and risks of group key management are still > relevant." > > > > done. > > [Linda] Thank you for the suggestion. They are changed in -38. > > > > 2. Section 5.1, paragraph 3: The draft referenced here is expired and > the security of the methods would have to be reviewed. (that is listed in > Section 7) > > > > The expired draft has been replaced with another draft. The security of > the methods would have to be reviewed. Please list that in Section 7. > > [Linda] The referenced draft has been uploaded. > > > > 3. Section 5.2: The draft referenced in this section is (currently) an > individual draft, and again the security of the methods would have to be > reviewed. (I see that WG adoption has been requested, and the draft is > listed in Section 7). > > > > This is just a note to the WG - no action required as long as the WG > agrees. > > [Linda] the WG chair said they will start the WG adoption soon. > > > >
- Secdir last call review of draft-ietf-rtgwg-net2c… Deb Cooley via Datatracker
- RE: Secdir last call review of draft-ietf-rtgwg-n… Linda Dunbar
- Re: Secdir last call review of draft-ietf-rtgwg-n… Deb Cooley
- Re: Secdir last call review of draft-ietf-rtgwg-n… Deb Cooley
- RE: Secdir last call review of draft-ietf-rtgwg-n… Linda Dunbar
- Re: Secdir last call review of draft-ietf-rtgwg-n… Deb Cooley
- RE: Secdir last call review of draft-ietf-rtgwg-n… Linda Dunbar
- Re: Secdir last call review of draft-ietf-rtgwg-n… Deb Cooley
- RE: Secdir last call review of draft-ietf-rtgwg-n… Linda Dunbar
- Re: Secdir last call review of draft-ietf-rtgwg-n… Deb Cooley
- RE: Secdir last call review of draft-ietf-rtgwg-n… Linda Dunbar