IETF Logo Mail Archive

Re: [sidr] WGLC on draft-ietf-sidr-bgpsec-algs-11 (ENDS 30-Oct-2015)

Sean Turner <sean@sn3rd.com> Wed, 28 October 2015 23:51 UTC

Return-Path: <sean@sn3rd.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E852D1B5F6E for <sidr@ietfa.amsl.com>; Wed, 28 Oct 2015 16:51:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jvD4Jnrv5J6V for <sidr@ietfa.amsl.com>; Wed, 28 Oct 2015 16:51:41 -0700 (PDT)
Received: from mail-pa0-x22a.google.com (mail-pa0-x22a.google.com [IPv6:2607:f8b0:400e:c03::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6B1D71B5F6D for <sidr@ietf.org>; Wed, 28 Oct 2015 16:51:41 -0700 (PDT)
Received: by padhk11 with SMTP id hk11so20937416pad.1 for <sidr@ietf.org>; Wed, 28 Oct 2015 16:51:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; h=content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=2TEMHsh55nM9dCbOyMCqCGy6K+Zg1oW45kePRHv0DwA=; b=C6GQFo8/RNhdDFRMPsHkCfTpBnDVEQUNJYzDsnkqJ0h5gc3Rojz1sUYEnypeBqG00F WBhW0gC6E5tz/k8ZC03AFDY9ff/F06DewUsCOPoDNUEatTRvak2WftoeLBGZ8cHcVhXo 6jmJbENF87P4zCc0LmJL8gU+sIF3D6jnBp4uM=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:content-type:mime-version:subject:from :in-reply-to:date:cc:content-transfer-encoding:message-id:references :to; bh=2TEMHsh55nM9dCbOyMCqCGy6K+Zg1oW45kePRHv0DwA=; b=dSMffp/3XOVmq+2utniPJaLCdtQW/fJB6gJAWwwTYS4QRDQnT2KMo+YelRZiis4yGi RFA5rJcxoaZou3hBX/TJdEegnhwsYEN/4zdAIyhrNDNVOVkdRpmmWXao0AFbiRCeFJDn ukxjghmF7EcUxUNemTVnPDJeaYQuIFl3nyutuxRP5ml0AYggPswFOVNp6i24ANwLRAYS tNzTmmQEMgh4Y4B84j68RTjWu5+dBP1vbmIVXWwVjo8Blop+IEG64u2ngAwp+dotSyiW +BwkAPpqCy6oO1zXwk8RcotrKxuwLD1mv1FOjv3fkLy21HbWN7kUUYMHzhMvilGSl9ed aqmQ==
X-Gm-Message-State: ALoCoQnC2dp8qRjcEHZlRbrgc6nr/i4dnwzfwpF0dgXAvVGnOPNKjYTElEXZxpcXIfiuQVTSByBV
X-Received: by 10.68.139.2 with SMTP id qu2mr37476662pbb.135.1446076301022; Wed, 28 Oct 2015 16:51:41 -0700 (PDT)
Received: from [5.5.33.244] (vpn.snozzages.com. [204.42.252.17]) by smtp.gmail.com with ESMTPSA id l16sm47485424pbq.22.2015.10.28.16.51.38 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 28 Oct 2015 16:51:40 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 9.1 \(3096.5\))
From: Sean Turner <sean@sn3rd.com>
In-Reply-To: <alpine.LRH.2.03.1510261740320.25993@tislabs.com>
Date: Thu, 29 Oct 2015 08:51:37 +0900
Content-Transfer-Encoding: quoted-printable
Message-Id: <B410F584-389F-4A9A-9E0B-76484D5A0021@sn3rd.com>
References: <alpine.LRH.2.03.1510261740320.25993@tislabs.com>
To: Sam Weiller <weiler@tislabs.com>
X-Mailer: Apple Mail (2.3096.5)
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/absQmdaH06dxKi271CBL9wNgNRw>
Cc: sidr@ietf.org
Subject: Re: [sidr] WGLC on draft-ietf-sidr-bgpsec-algs-11 (ENDS 30-Oct-2015)
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Oct 2015 23:51:43 -0000

On Oct 27, 2015, at 11:57, Samuel Weiler <weiler@tislabs.com> wrote:
> 
> I have read the draft and have no objections to it going forward.
> 
> Suggestions:
> 
> Section 5 talks about some of the requirements for (future) algorithm and key size agility, but says "The recommended procedures to implement such a transition of key sizes and algorithms is not specified in this document." (sic)  I think it would be good to cite some discussion of that, e.g. section 6 of -protocol.  (I'm not saying that section 6 of -protocol is complete or great, but it may be the best set of words we have right now.)

Fair ‘nuff I’ll add “, see Section 6 in [ID.sidr-bgpsec-protocol] for more information."

> Nail down the initial codepoint in the IANA registry (this doc is creating the registry, so we can be specific).  I suggest "1”.

Do you think this is a blocking issue?

I’d prefer to have IANA make the allocation and stick it in the document when it’s approved.  YMMV on this but since the registry isn’t yet created I’d rather not set an example that others might follow of making up registry names and numbers in drafts that have not yet reached consensus.

To expand on this issue though should we also reserve the low value and the high value too?  i.e., 

OLD (please forgive the formatting):

       Digest        Signature     Algorithm Suite    Specification
      Algorithm      Algorithm       Identifier          Pointer
 +----------------------------------------------------------------+
 |   SHA-256   |   ECDSA P-256   |       TBD       |   RFC 5480   |
 +----------------------------------------------------------------+

NEW:

       Digest        Signature     Algorithm Suite    Specification
      Algorithm      Algorithm       Identifier          Pointer
 +----------------------------------------------------------------+
 |   Reserved   |   Reserved   |       0x0       |   This draft   |
 +----------------------------------------------------------------+
 |   SHA-256   |   ECDSA P-256   |       TBD       |   RFC 5480   |
 +----------------------------------------------------------------+
 |   Unassigned   |   Unassigned   |   TBD..0xF       |   This draft   |
 +----------------------------------------------------------------+
 |   Reserved   |   Reserved   |      0xF       |   This draft   |
 +----------------------------------------------------------------+

spt

PS I also got some other minor nits from David that I’ll incorporate in the next version that will pop out Sunday/Monday.

v2.23.0 | Report a Bug | By Email