Re: [secdir] [netconf] Secdir last call review of draft-ietf-netconf-restconf-notif-13

"Reshad Rahman (rrahman)" <rrahman@cisco.com> Fri, 12 April 2019 21:29 UTC

Return-Path: <rrahman@cisco.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CAE56120174; Fri, 12 Apr 2019 14:29:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=iEP9YD9Y; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=T3JlgMFR
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OiRwbpmpDaSB; Fri, 12 Apr 2019 14:29:51 -0700 (PDT)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8BE831200B4; Fri, 12 Apr 2019 14:29:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1602; q=dns/txt; s=iport; t=1555104590; x=1556314190; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=hrcwsI6QKR0c7Srm7UgO0VjXxVA6tjB/d65lxmWne2A=; b=iEP9YD9YLvqTQdC2njLW6jMXtO/aa4BpAlByJZBFNDhYhwprK9drXd0j 3FJvTwEs4jAAEsYTDm0I4jCI8sJmg8PTH/vxUmByMtWTQ/uXLsLYvOEoO vn09r6UoZJziR2eH7jYY/+ga9VKaWaSk19gTvpRz9tJrci5X/FGwWy+Se E=;
IronPort-PHdr: =?us-ascii?q?9a23=3AR/OwfxIal0zwunzaodmcpTVXNCE6p7X5OBIU4Z?= =?us-ascii?q?M7irVIN76u5InmIFeBvad2lFGcW4Ld5roEkOfQv636EU04qZea+DFnEtRXUg?= =?us-ascii?q?Mdz8AfngguGsmAXFfhJf7vZioSF8VZX1gj9Ha+YgBY?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AXAAD1ArFc/40NJK1lDg0BAQEBAwE?= =?us-ascii?q?BAQcDAQEBgVEGAQEBCwGBPVADaFQgBAsoCoQEg0cDhFKKRJlxgS6BJANUDgE?= =?us-ascii?q?BGAsKg3pGAheFXyM0CQ4BAwEBCgECAQJtHAyFSwIEAQEhEQwBASwLAQ8CAQg?= =?us-ascii?q?aAiYCAgIlCxUQAgQBDQWDIgGBaQMcAQIMoUoCihRxgS+CeQEBBYUDGIINAwa?= =?us-ascii?q?BCycBi0gXgUA/gREnH4JMPoJhAQGBYReCczGCJo0lmQQJAoIFjlCDRBqCCIY?= =?us-ascii?q?ajFCLYpQUAgQCBAUCDgEBBYFPOIFWcBU7KgGCQYIKg2+FFIUEO3KBKY4oAYE?= =?us-ascii?q?fAQE?=
X-IronPort-AV: E=Sophos;i="5.60,342,1549929600"; d="scan'208";a="546262128"
Received: from alln-core-8.cisco.com ([173.36.13.141]) by rcdn-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 12 Apr 2019 21:29:38 +0000
Received: from XCH-RCD-002.cisco.com (xch-rcd-002.cisco.com [173.37.102.12]) by alln-core-8.cisco.com (8.15.2/8.15.2) with ESMTPS id x3CLTcLu022670 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 12 Apr 2019 21:29:38 GMT
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by XCH-RCD-002.cisco.com (173.37.102.12) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 12 Apr 2019 16:29:38 -0500
Received: from xhs-rcd-001.cisco.com (173.37.227.246) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 12 Apr 2019 17:29:37 -0400
Received: from NAM01-BY2-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-001.cisco.com (173.37.227.246) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Fri, 12 Apr 2019 16:29:37 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector1-cisco-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hrcwsI6QKR0c7Srm7UgO0VjXxVA6tjB/d65lxmWne2A=; b=T3JlgMFR+2qBDDDHu6/FHDbC2j07n7Y0z57yNcdMvCJ5ceR2A/wLa1gojAd0TPoa09CddjubjYKGo3V+zSwedjBCX9LVADMJA3lhuZyNZVzFgIITmMQHYV2dfxkawF6j/5xxd4IDi5hUDW1I+OMi4RU620jxv1qerhyd+VyTyKE=
Received: from MN2PR11MB3695.namprd11.prod.outlook.com (20.178.252.156) by MN2PR11MB4015.namprd11.prod.outlook.com (10.255.181.156) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1792.17; Fri, 12 Apr 2019 21:29:35 +0000
Received: from MN2PR11MB3695.namprd11.prod.outlook.com ([fe80::8467:9ef7:d982:e972]) by MN2PR11MB3695.namprd11.prod.outlook.com ([fe80::8467:9ef7:d982:e972%3]) with mapi id 15.20.1771.021; Fri, 12 Apr 2019 21:29:35 +0000
From: "Reshad Rahman (rrahman)" <rrahman@cisco.com>
To: Aanchal Malhotra <aanchal4@bu.edu>, "secdir@ietf.org" <secdir@ietf.org>
CC: "draft-ietf-netconf-restconf-notif.all@ietf.org" <draft-ietf-netconf-restconf-notif.all@ietf.org>, "netconf@ietf.org" <netconf@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>
Thread-Topic: [netconf] Secdir last call review of draft-ietf-netconf-restconf-notif-13
Thread-Index: AQHU8LEm3/ufrU/2dEa8pjPJiNurYqY4yTOA
Date: Fri, 12 Apr 2019 21:29:35 +0000
Message-ID: <FFD7F554-4E88-49E5-9D16-DF0B64BC5FF5@cisco.com>
References: <155501965074.14152.2835369201856309773@ietfa.amsl.com>
In-Reply-To: <155501965074.14152.2835369201856309773@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.6.190114
authentication-results: spf=none (sender IP is ) smtp.mailfrom=rrahman@cisco.com;
x-originating-ip: [173.38.117.84]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 13697ad4-1be5-43d3-5f4b-08d6bf8df5e9
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600139)(711020)(4605104)(2017052603328)(7193020); SRVR:MN2PR11MB4015;
x-ms-traffictypediagnostic: MN2PR11MB4015:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <MN2PR11MB4015C08F48F3863C9F696894AB280@MN2PR11MB4015.namprd11.prod.outlook.com>
x-forefront-prvs: 0005B05917
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(376002)(366004)(39860400002)(396003)(346002)(199004)(189003)(51914003)(14454004)(99286004)(83716004)(71190400001)(478600001)(4326008)(71200400001)(86362001)(53936002)(6246003)(2171002)(82746002)(6306002)(33656002)(256004)(105586002)(2501003)(106356001)(36756003)(966005)(8936002)(8676002)(66066001)(81156014)(81166006)(6512007)(54906003)(2906002)(25786009)(26005)(6436002)(305945005)(58126008)(7736002)(316002)(110136005)(76176011)(186003)(6116002)(11346002)(3846002)(102836004)(4744005)(5660300002)(6506007)(476003)(486006)(6486002)(97736004)(446003)(2616005)(68736007)(229853002); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB4015; H:MN2PR11MB3695.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: K9zo16CHGWjsbj6obb6XHx1rIvrNxQvSzcyW23T664xDAGn8/wvNIfBPVfE4bZoeucOJBZKEqWAox1BJqyAT7jjQJqI/YmtlZgv/b4z2DRV5gwibB+LqEzhor7sNKMoR/dWctw5QLp9Lwne87a20533pLKsIE7GE/901c1g37XhB0FvRXkh10HCmbNKinxxrk/w7GeeNpAnKjC8mkDCZnXAct9vgHwdIjbWvTq3D3cLFzqipz2r3HTCQ0sOu/Nz97hCAJlJdmoVC+/6VdWV61785Qo1BqjsWMusmaX5D9V8R4FZ7KjIvC7mZwoO1KzcrnhfUo5dYM4Gz29A2FnV0XKRuQJEkAeOuv5RQKHMjtjQgZrE2Tf2nrcoI36vYWnSJranDt/rVjKTidZB/A48cVIhOhhTEM6XtAl/mzBivses=
Content-Type: text/plain; charset="utf-8"
Content-ID: <2B51749631259B4796C32C5CEB11ECA9@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 13697ad4-1be5-43d3-5f4b-08d6bf8df5e9
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Apr 2019 21:29:35.5599 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4015
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.12, xch-rcd-002.cisco.com
X-Outbound-Node: alln-core-8.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/mHJXrgEUEGQ1NHiVOKFzRijJATI>
Subject: Re: [secdir] [netconf] Secdir last call review of draft-ietf-netconf-restconf-notif-13
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Apr 2019 21:29:53 -0000

Hi Aanchal,

Thanks for the review. Please see inline.

´╗┐On 2019-04-11, 5:54 PM, "netconf on behalf of Aanchal Malhotra via Datatracker" <netconf-bounces@ietf.org on behalf of noreply@ietf.org>; wrote:

    Reviewer: Aanchal Malhotra
    Review result: Ready
    
    The document is very clear and concise.  I just have one minor clarification question.
    Section 3.4 Page 9 that says the following:
    "In addition to any required ........SHOULD only be allowed......".  
    
    Is there a reason for using SHOULD instead of MUST? 

There may be reasons why an implementation decides not to enforce this restriction. Going by RFC2119 definitions, this is why we chose SHOULD instead of MUST.
3. SHOULD   This word, or the adjective "RECOMMENDED", mean that there
   may exist valid reasons in particular circumstances to ignore a
   particular item, but the full implications must be understood and
   carefully weighed before choosing a different course.

Regards,
Reshad.    
    _______________________________________________
    netconf mailing list
    netconf@ietf.org
    https://www.ietf.org/mailman/listinfo/netconf