Re: [secdir] [Last-Call] [tsvwg] Secdir last call review of draft-ietf-tsvwg-ecn-l4s-id-26

Bob Briscoe <ietf@bobbriscoe.net> Tue, 26 July 2022 17:33 UTC

Return-Path: <ietf@bobbriscoe.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0A99DC134858; Tue, 26 Jul 2022 10:33:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=bobbriscoe.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wrpeVzaDUFcK; Tue, 26 Jul 2022 10:32:55 -0700 (PDT)
Received: from mail-ssdrsserver2.hostinginterface.eu (mail-ssdrsserver2.hostinginterface.eu [185.185.85.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 74F04C13485D; Tue, 26 Jul 2022 10:32:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=bobbriscoe.net; s=default; h=In-Reply-To:From:References:Cc:To:Subject: MIME-Version:Date:Message-ID:Content-Type:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=Ffsn9bbIG/q9RCo7lEF3k9186zQTFaDrw9CYNfEeRLw=; b=GR67gbSl1Ulywiqqz5EWCHdqFq 3Y+twjVBfiprD00j45GzclNdwlkS02TndN/Ujjq7ZnDj3mnz5fEWySlxnRg/P7fUcpeW3fbqqUhaK +htGE+6t7xyS2peSiujokowsMY+LeWlB8eN5t2Ybhq/k9M9Msn8+oeuPZ7WLGqYewR+XqJHR4TPxt XriloEcNUsCGI87PjF2JV/0lVqgaNBJ4BnSDbXeXWGl0XZoVgGVcqFxjFbuBukeU+LL6v63zFdVKt yBf7OI8PzUXirhqSkM9peAHtg62tl/oVrJHjEwn+C+CYX5Gsw2NMoN2vmGmSoEa9gRVf/K5fjJSya ijyxKx1A==;
Received: from dhcp-8852.meeting.ietf.org ([31.133.136.82]:38566) by ssdrsserver2.hostinginterface.eu with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.95) (envelope-from <ietf@bobbriscoe.net>) id 1oGOQQ-0005y4-SV; Tue, 26 Jul 2022 18:32:51 +0100
Content-Type: multipart/alternative; boundary="------------wLelwNGEV1FWxFyHDk0Co8w6"
Message-ID: <6699faab-cca9-3c5f-c75b-10feec827058@bobbriscoe.net>
Date: Tue, 26 Jul 2022 13:32:48 -0400
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.11.0
Content-Language: en-GB
To: Valery Smyslov <valery@smyslov.net>, secdir@ietf.org
Cc: draft-ietf-tsvwg-ecn-l4s-id.all@ietf.org, last-call@ietf.org, tsvwg@ietf.org
References: <165821380763.42590.15229345400729787988@ietfa.amsl.com> <6efc828b-eb78-ce05-2a1e-b018476f8da5@bobbriscoe.net> <068201d89cff$eb916ec0$c2b44c40$@smyslov.net> <c7772a9d-e4f5-eb0e-0518-a53531150447@bobbriscoe.net> <07a501d89dcd$4f588f10$ee09ad30$@gmail.com> <4c75d637-2ca2-3e80-0584-0ff89a0e94fc@bobbriscoe.net> <092701d89fe9$dd7183b0$98548b10$@smyslov.net>
From: Bob Briscoe <ietf@bobbriscoe.net>
In-Reply-To: <092701d89fe9$dd7183b0$98548b10$@smyslov.net>
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - ssdrsserver2.hostinginterface.eu
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bobbriscoe.net
X-Get-Message-Sender-Via: ssdrsserver2.hostinginterface.eu: authenticated_id: in@bobbriscoe.net
X-Authenticated-Sender: ssdrsserver2.hostinginterface.eu: in@bobbriscoe.net
X-Source:
X-Source-Args:
X-Source-Dir:
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/5TQWSXnUXW72cfalI_JzQ1L2sLM>
Subject: Re: [secdir] [Last-Call] [tsvwg] Secdir last call review of draft-ietf-tsvwg-ecn-l4s-id-26
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 26 Jul 2022 17:33:00 -0000

Valery,

On 25/07/2022 06:46, Valery Smyslov wrote:
>
> Hi Bob,
>
> please see inline.
>
> *From:*Bob Briscoe [mailto:ietf@bobbriscoe.net]
> *Sent:* Sunday, July 24, 2022 12:36 AM
> *To:* Valery Smyslov; 'Valery Smyslov'; secdir@ietf.org
> *Cc:* draft-ietf-tsvwg-ecn-l4s-id.all@ietf.org; last-call@ietf.org; 
> tsvwg@ietf.org
> *Subject:* Re: [Last-Call] [tsvwg] Secdir last call review of 
> draft-ietf-tsvwg-ecn-l4s-id-26
>
> Valery, see [BB3]
>
>           [snipped]
>
>
> [Snipped conversation about integrity of congestion notifications, 
> given agreement reached]
>
>           I only want to be sure that you removed reference to AH and 
> replaced it with ESP or with generic term IPsec.
>
>           As I wrote, AH is almost dead in real life.
>

[BB] Thank you yes, of course. I've described it as
     "...or end-to-end IPsec integrity protection [RFC4303]".
so the intended security property is clear (from the English), and the 
intended mechanism is clear (from the citation of ESP).

How does this formally close off? Do you change the status of your 
review from "Has Issues"?


Bob

>
>
> [snipped]
>
> [BB3] Yes, fully converged. Thank you again.
>
>           Agreed (but see above). Thank you!
>
>           Regards,
>
>           Valery.
>
>
>
> Bob
>
>
> -- 
> ________________________________________________________________
> Bob Briscoehttp://bobbriscoe.net/
>
>
>
>
> -- 
> ________________________________________________________________
> Bob Briscoehttp://bobbriscoe.net/
>
>
>
> -- 
> ________________________________________________________________
> Bob Briscoehttp://bobbriscoe.net/

-- 
________________________________________________________________
Bob Briscoehttp://bobbriscoe.net/