Re: [secdir] Secdir last call review of draft-ietf-jmap-core-12

Tero Kivinen <kivinen@iki.fi> Thu, 24 January 2019 21:31 UTC

Return-Path: <kivinen@iki.fi>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0BAE3127B4C; Thu, 24 Jan 2019 13:31:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.42
X-Spam-Level:
X-Spam-Status: No, score=-3.42 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_NEUTRAL=0.779, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DxIr6MfshuKM; Thu, 24 Jan 2019 13:30:57 -0800 (PST)
Received: from mail.kivinen.iki.fi (fireball.acr.fi [83.145.195.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 163ED131182; Thu, 24 Jan 2019 13:30:55 -0800 (PST)
Received: from fireball.acr.fi (localhost [127.0.0.1]) by mail.kivinen.iki.fi (8.15.2/8.15.2) with ESMTPS id x0OLUi83023861 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Thu, 24 Jan 2019 23:30:44 +0200 (EET)
Received: (from kivinen@localhost) by fireball.acr.fi (8.15.2/8.14.8/Submit) id x0OLUhXv006091; Thu, 24 Jan 2019 23:30:43 +0200 (EET)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <23626.11907.681078.321687@fireball.acr.fi>
Date: Thu, 24 Jan 2019 23:30:43 +0200
From: Tero Kivinen <kivinen@iki.fi>
To: "Neil Jenkins" <neilj@fastmailteam.com>
Cc: secdir@ietf.org, "Bron Gondwana" <brong@fastmailteam.com>, "IETF JMAP Mailing List" <jmap@ietf.org>, draft-ietf-jmap-core.all@ietf.org, ietf@ietf.org
In-Reply-To: <fd31e898-0bf7-450e-8c73-3b067688212e@beta.fastmail.com>
References: <154651703823.29557.748556981627156046@ietfa.amsl.com> <cac325d4-e3fd-4dc1-8173-c52192a9ed5e@www.fastmail.com> <7beebd38-7999-4a49-b892-c3c75b36eab4@beta.fastmail.com> <23603.20862.976183.378013@fireball.acr.fi> <ff2e51f3-67f7-48a5-955f-5af656872161@beta.fastmail.com> <23604.45941.279266.464196@fireball.acr.fi> <fd31e898-0bf7-450e-8c73-3b067688212e@beta.fastmail.com>
X-Mailer: VM 8.2.0b under 25.1.1 (x86_64--netbsd)
X-Edit-Time: 4 min
X-Total-Time: 4 min
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/m6SMg_Is2FmJ_VaSYQLtDdCu5rw>
Subject: Re: [secdir] Secdir last call review of draft-ietf-jmap-core-12
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Jan 2019 21:31:00 -0000

Neil Jenkins writes:
> On Wed, 9 Jan 2019, at 1:28 AM, Tero Kivinen wrote:
> 
>     When you are subscribing the push notifications your devices should be
>     running and not offline.
> 
> Agreed. It's still possible for the initial message not to arrive, but in the
> vast majority of cases it will; if it doesn't, the client can destroy and
> recreate the subscription to try again. Weighing this up, I agree that adding
> a verification step is the best way forward here.
> 
>        When something changes on the server, the server pushes a
>        *StateChange* object to the client.
>    
>     Actually that says "to the client" not to the "push service". Which
>     one should it be?
> 
> Well, it's to the client, possibly via a push service, but possibly not
> because there are two "push" mechanisms defined here; the other is where the
> client can maintain a permanent TCP connection directly to the JMAP server in
> which case it can use an EventSource connection to receive push events
> directly without going via a 3rd party.
> 
>     Hmm... and 7.2 then also uses term "push endpoint" which is not
>     defined anywhere? Is that the same as push service at given url
> 
> Reading through it again, there was some confusion in the use of terminology.
> I have rewritten a few sections to attempt to clarify this and the other
> confusing points you pointed out. You can see the changes for this here. The
> addition of a verification step is added in this change here.
> 
> Are you happy that this is sufficient to address your concerns?

Yes, I think this addresses my concerns about the denial of service
issues. The text also seems to make little bit more clear about the
terminology, and perhaps the Terminology section should refer to the
terms defined in the RFC8030, so it would be clear which terms comes
from there.

Sorry that it took so long to reply, but last week I was in the IEEE
meeting, thus I was not able to check these during that time.
-- 
kivinen@iki.fi