Re: [secdir] review of draft-ietf-netconf-nmda-restconf-04

Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de> Wed, 04 July 2018 12:41 UTC

Return-Path: <j.schoenwaelder@jacobs-university.de>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CFCA0130E89; Wed, 4 Jul 2018 05:41:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RWG9BykyR1na; Wed, 4 Jul 2018 05:41:31 -0700 (PDT)
Received: from anna.localdomain (firewallix.jacobs-university.de [212.201.44.247]) by ietfa.amsl.com (Postfix) with ESMTP id 1537F130E5C; Wed, 4 Jul 2018 05:41:31 -0700 (PDT)
Received: by anna.localdomain (Postfix, from userid 501) id AAD9022DC540; Wed, 4 Jul 2018 14:41:28 +0200 (CEST)
Date: Wed, 4 Jul 2018 14:41:28 +0200
From: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
To: Daniel Harkins <dharkins@lounge.org>
Cc: "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, draft-ietf-netconf-nmda-restconf.all@ietf.org
Message-ID: <20180704124128.qpr7tunjw5quiex6@anna.jacobs.jacobs-university.de>
Reply-To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
Mail-Followup-To: Daniel Harkins <dharkins@lounge.org>, "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, draft-ietf-netconf-nmda-restconf.all@ietf.org
References: <f919a44f-d93b-f399-cc5d-1353c1c5b57d@lounge.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <f919a44f-d93b-f399-cc5d-1353c1c5b57d@lounge.org>
User-Agent: NeoMutt/20180622
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/Ujp01ehQOuy6CJu0FlooRZWZF4U>
Subject: Re: [secdir] review of draft-ietf-netconf-nmda-restconf-04
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Jul 2018 12:41:37 -0000

On Tue, Jul 03, 2018 at 11:32:35AM -0700, Daniel Harkins wrote:
> 
>   Hello,
> 
>   I have reviewed this document as part of the security directorate's
> ongoing effort to review all IETF documents being processed by the
> IESG.  These comments were written primarily for the benefit of the
> security area directors.  Document editors and WG chairs should treat
> these comments just like any other last call comments.
> 
>   The summary of the review is "Ready with nits".
> 
>   This draft defines two new capability identifier URNs for use in
> the RESTCONF protocol and also some new behavioral requirements on
> servers implementing it. My nit is on that last bit. In sections
> 3.2.1 and 3.2.2 present the new query parameters and say that they
> are "optional to support" and then go on saying what behavior is
> needed if it is supported. I think those need to be changed to be
> RFC 2119 words, either SHOULD or MAY depending on the reasons that
> might exist for not implementing them (basically conform to what
> the words mean in RFC 2119).
>

I am not sure where exactly we are asked to use SHOULD and MAY and why
that would be necessary. Note that we follow the wordings in RFC 8040
(search for optional), which this document updates.

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1 | 28759 Bremen | Germany
Fax:   +49 421 200 3103         <https://www.jacobs-university.de/>