Re: [secdir] Secdir last call review of draft-ietf-quic-bit-grease-03

Russ Housley <housley@vigilsec.com> Fri, 20 May 2022 11:27 UTC

Return-Path: <housley@vigilsec.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 796D5C14F73F; Fri, 20 May 2022 04:27:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4xoAhiW4gDuJ; Fri, 20 May 2022 04:27:36 -0700 (PDT)
Received: from mail3.g24.pair.com (mail3.g24.pair.com [66.39.134.11]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 87DB3C14F722; Fri, 20 May 2022 04:27:36 -0700 (PDT)
Received: from mail3.g24.pair.com (localhost [127.0.0.1]) by mail3.g24.pair.com (Postfix) with ESMTP id 704091879AA; Fri, 20 May 2022 07:27:35 -0400 (EDT)
Received: from [10.0.1.2] (pfs.iad.rg.net [198.180.150.6]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail3.g24.pair.com (Postfix) with ESMTPSA id 542931879A9; Fri, 20 May 2022 07:27:35 -0400 (EDT)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.21\))
From: Russ Housley <housley@vigilsec.com>
In-Reply-To: <45ec7a5f-2f08-4c21-ac54-b7b5c591e46c@beta.fastmail.com>
Date: Fri, 20 May 2022 07:27:33 -0400
Cc: IETF SecDir <secdir@ietf.org>, draft-ietf-quic-bit-grease.all@ietf.org, last-call@ietf.org, quic@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <60150B62-6D93-4025-AC3C-6074FC417241@vigilsec.com>
References: <165299276141.44947.12840727268667154039@ietfa.amsl.com> <45ec7a5f-2f08-4c21-ac54-b7b5c591e46c@beta.fastmail.com>
To: Martin Thomson <mt@lowentropy.net>
X-Mailer: Apple Mail (2.3445.104.21)
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/ZLIw449J4WDWHKQV0kH_XCD-f20>
Subject: Re: [secdir] Secdir last call review of draft-ietf-quic-bit-grease-03
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 May 2022 11:27:37 -0000


> On May 20, 2022, at 1:15 AM, Martin Thomson <mt@lowentropy.net> wrote:
> 
> On Fri, May 20, 2022, at 06:39, Russ Housley via Datatracker wrote:
>> This does not align with the definition of MAY in RFC 2119.
>> I suggest:
>> 
>>   Advertising the grease_quic_bit transport parameter indicates that
>>   packets sent to this endpoint will be accepted with a value of 0 for
>>   the QUIC Bit.
> 
> I've made a larger change so that things aren't quite so backward:
> 
> +An endpoint that advertises the grease_quic_bit transport parameter MUST accept
> +packets with the QUIC Bit set to a value of 0.
> 
> I've made the other changes in https://github.com/quicwg/quic-bit-grease/pull/25

Even better than the text that I proposed.  Thanks.