[sfc] Alissa Cooper's Abstain on draft-ietf-sfc-serviceid-header-12: (with COMMENT)
Alissa Cooper via Datatracker <noreply@ietf.org> Thu, 05 November 2020 01:47 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: sfc@ietf.org
Delivered-To: sfc@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B7203A1256; Wed, 4 Nov 2020 17:47:58 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Alissa Cooper via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-sfc-serviceid-header@ietf.org, sfc-chairs@ietf.org, sfc@ietf.org, Greg Mirsky <gregimirsky@gmail.com>, gregimirsky@gmail.com
X-Test-IDTracker: no
X-IETF-IDTracker: 7.21.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Alissa Cooper <alissa@cooperw.in>
Message-ID: <160454087758.25747.10885671637453991519@ietfa.amsl.com>
Date: Wed, 04 Nov 2020 17:47:58 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/sfc/AQcnwb3eyhDdwJnUni-Aarhr2_8>
Subject: [sfc] Alissa Cooper's Abstain on draft-ietf-sfc-serviceid-header-12: (with COMMENT)
X-BeenThere: sfc@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Network Service Chaining <sfc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sfc>, <mailto:sfc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sfc/>
List-Post: <mailto:sfc@ietf.org>
List-Help: <mailto:sfc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sfc>, <mailto:sfc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Nov 2020 01:47:58 -0000
Alissa Cooper has entered the following ballot position for draft-ietf-sfc-serviceid-header-12: Abstain When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-sfc-serviceid-header/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- I support Benjamin's DISCUSS. The privacy properties of the mechanism specified in this document do not comport with the recommendations in RFC 8165 or RFC 6973. The document makes no normative recommendations to minimize the identifiability or linkability of the information in the context header. It specifies no normative transport or object encryption, which RFC 8300 conditionally requires (as does RFC 8371 for similar identifiers). (Furthermore, although this documents says the context header should only be used within an administrative domain, RFC 8300 allows for NSH to be used across administrative boundaries if I understand correctly.) The document does not suggest best practices for minimizing the persistence or uniqueness of the identifiers conveyed when circumstances allow it. As Ben noted, many functions performed by SFs don't need to be aware of actual subscriber identifiers that have some other purpose in the network (IP address, mobile network identifiers, etc.). For other protocols that convey unique subscriber identifiers, even protocols that are not end-to-end like DHCP, the IETF has specified detailed guidance to minimize the privacy impact of exposing these identifiers. See, e.g., RFC 7844 and RFC 8064/7721. That level of analysis and guidance is what I would expect for this specification. I suspect that is an unpopular view, though, so I'm abstaining.
- [sfc] Alissa Cooper's Abstain on draft-ietf-sfc-s… Alissa Cooper via Datatracker
- Re: [sfc] Alissa Cooper's Abstain on draft-ietf-s… mohamed.boucadair
- Re: [sfc] Alissa Cooper's Abstain on draft-ietf-s… BRUNGARD, DEBORAH A
- Re: [sfc] Alissa Cooper's Abstain on draft-ietf-s… mohamed.boucadair