IETF Logo Mail Archive

Re: [Sidrops] I-D Action: draft-ietf-sidrops-6486bis-06.txt

Ben Maddison <benm@workonline.africa> Fri, 01 October 2021 19:35 UTC

Return-Path: <benm@workonline.africa>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A710A3A07A1 for <sidrops@ietfa.amsl.com>; Fri, 1 Oct 2021 12:35:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=workonline.africa
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xP5cdrDqx2Q0 for <sidrops@ietfa.amsl.com>; Fri, 1 Oct 2021 12:35:53 -0700 (PDT)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (mail-eopbgr40076.outbound.protection.outlook.com [40.107.4.76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 022DA3A0788 for <sidrops@ietf.org>; Fri, 1 Oct 2021 12:35:51 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Hl+8qX12yTTq0KoTZcT2wI5V6l/9Blx8kAqIS9q5GQFgvcFFi4A53RuUEYaN2iO/jXYAFGNsyiN69lqpggacWbG9CtjoRLncF1ayXfzwDF320zSn2DwgwiQDj06ngimZmHHuAqpFaRzdHT2ZiiGsoS5ThSrAe1s4AEtuQOMgEoFYNY8dx5ClW0qbtRAX63vEXXyN8PSN1qeS0JYqnqVPWfw+9H9cMZl4XWS95SGs8YbfSlbDdW1oxPHitggIQ6qVJASaTr2iO+SNaecSTdzKiDAbxa+MnDbGSUtcSumfTLXceK+n+WNWilg7BwcYmfzoQ+bysDFOmGAiFV2C4ovjfw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ELmPHClZ2ACQdrLqGzTjEv3ijalQ/z4yqqSb4EhZwn0=; b=koiRo7mlv8gvDvX9mrbHJypOnbJs663MosCiZRjUZR0EJelxTBVKdfWk7tn6otoaUikYdBzsFdChC2ZmYypYorCN7wTmlluyeiPVIT9zLjTs0+YOQHrJHPpoqzTKFGyS4otEdYrYIFnvpKpq4gQ2x3Jhh3ZGS7zegmwSJiV37loc/EM41xxe3vvLQ8/ttM9AxZpajXegvgQHuKmYT5fIWBv1545TZEwIPI1TVP5wwJBSoLRYI5iP9tq75fIIlk3NPEjQUpaWQ/Zm1ZaGjr98pAofcq53VO0c/hqC0x0wBCfNOpH2TOcci15YRY59NEE4Kqga3slFu1ZRlLFvALeWfg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=workonline.africa; dmarc=pass action=none header.from=workonline.africa; dkim=pass header.d=workonline.africa; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=workonline.africa; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ELmPHClZ2ACQdrLqGzTjEv3ijalQ/z4yqqSb4EhZwn0=; b=sL3fmYldHZQ5WcPNjudLWMHut4vkZ6s0JDlyUpY3baHgE/O/ETcaTrnxgwM/rkgn0XhVOeNX2q3Yngb+mFm00MVeu7oSv02DWRUHRoqMrO+aDQFBaVK2WFM9BZjqd0G1YgB+AJtRbTSezZcqpEbmp0tstzZSFrUkl/fbR4Qutl0=
Authentication-Results: nlnetlabs.nl; dkim=none (message not signed) header.d=none;nlnetlabs.nl; dmarc=none action=none header.from=workonline.africa;
Received: from AS8P190MB1078.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:2e7::13) by AS8P190MB1685.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:3fe::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4566.15; Fri, 1 Oct 2021 19:35:33 +0000
Received: from AS8P190MB1078.EURP190.PROD.OUTLOOK.COM ([fe80::15f5:8c34:b1be:6006]) by AS8P190MB1078.EURP190.PROD.OUTLOOK.COM ([fe80::15f5:8c34:b1be:6006%6]) with mapi id 15.20.4566.019; Fri, 1 Oct 2021 19:35:33 +0000
Date: Fri, 01 Oct 2021 21:35:27 +0200
From: Ben Maddison <benm@workonline.africa>
To: Tim Bruijnzeels <tim@nlnetlabs.nl>
Cc: Russ Housley <housley@vigilsec.com>, SIDR Operations WG <sidrops@ietf.org>, Steve Kent <stephen.kent@verizon.net>
Message-ID: <20211001193527.iqzj46waeozbh2po@benm-laptop>
References: <162730591845.29690.12178353991713962835@ietfa.amsl.com> <2457bdd2-de07-241f-b8e4-87206dabcf16@verizon.net> <28F0ACCE-4D0C-4D80-B4C5-4E8B9D05760F@nlnetlabs.nl> <51acd845-d937-34a1-359b-7379b45e3fe3@verizon.net> <49e73d37-6d26-7715-da60-c2411020d595@verizon.net> <20210930171302.m7b5utqceotecooc@benm-laptop> <B2E57F08-CA61-4713-BFAE-6D36B20EA1D2@vigilsec.com> <20210930205213.kzwpn3e4ft3q33a6@benm-laptop> <F32DADF2-48C1-4CE7-AC4F-5ADB01C0C224@vigilsec.com> <F069C65C-2BD2-4DD7-9CDB-96DBAA122CD1@nlnetlabs.nl>
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="gewml7ehbrs2d5ev"
Content-Disposition: inline
In-Reply-To: <F069C65C-2BD2-4DD7-9CDB-96DBAA122CD1@nlnetlabs.nl>
X-ClientProxiedBy: CTXP275CA0042.ZAFP275.PROD.OUTLOOK.COM (2603:1086:100:1::30) To AS8P190MB1078.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:2e7::13)
MIME-Version: 1.0
Received: from localhost (160.119.236.41) by CTXP275CA0042.ZAFP275.PROD.OUTLOOK.COM (2603:1086:100:1::30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4566.14 via Frontend Transport; Fri, 1 Oct 2021 19:35:32 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: e096ce1c-ce78-4e1b-c0ea-08d98512a26b
X-MS-TrafficTypeDiagnostic: AS8P190MB1685:
X-Microsoft-Antispam-PRVS: <AS8P190MB16851B37B322F7EEB575D833C0AB9@AS8P190MB1685.EURP190.PROD.OUTLOOK.COM>
X-MS-Oob-TLC-OOBClassifiers: OLM:8882;
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AS8P190MB1078.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(7916004)(396003)(136003)(366004)(346002)(39840400004)(376002)(6916009)(4326008)(53546011)(66946007)(66556008)(6486002)(44144004)(52116002)(8936002)(38100700002)(38350700002)(54906003)(66476007)(956004)(316002)(9686003)(508600001)(6666004)(2906002)(33716001)(8676002)(21480400003)(83380400001)(6496006)(5660300002)(26005)(1076003)(86362001)(186003)(46492013)(2700100001); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: workonline.africa
X-MS-Exchange-CrossTenant-Network-Message-Id: e096ce1c-ce78-4e1b-c0ea-08d98512a26b
X-MS-Exchange-CrossTenant-AuthSource: AS8P190MB1078.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 01 Oct 2021 19:35:33.2991 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: b4e811d5-95e8-453a-b640-0fba8d3b9ef7
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 6kf6vo5k8zwhcMDuUMVHvcOPyKCnZTlr2wKZ85iwX4ZPAjg+3ipVp4UCuA+HWck6BM8b3kDrfNT8BHHGUbcbkA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8P190MB1685
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/D3t25qSqkTF9DwnhtBaOQh38iBU>
Subject: Re: [Sidrops] I-D Action: draft-ietf-sidrops-6486bis-06.txt
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Oct 2021 19:36:00 -0000

Hi Tim,

On 10/01, Tim Bruijnzeels wrote:
> Hi,
> 
> I saw this:
> 
> > On 30 Sep 2021, at 23:11, Russ Housley <housley@vigilsec.com> wrote:
> > 
> >      version        [0] INTEGER DEFAULT 0,
> 
> This is how it was done, and also what the e.g. the ROA profile uses.
> 
> However, reading the ASPA profile I came across another way, like:
> 
>      version        [0] VERSION DEFAULT v0,
> 
>      VERSION ::= INTEGER { v0(0) }
> 
> 
> This does not change the profile really afaik, but I believe this
> explicitly limits the available options of 'version' to just 'v0',
> i.e. an INTEGER with value 0. So, this may be a bit better in that
> regard.
> 
The DER encoding would be unchanged using either definition.

The primary difference is that any future change that required a version
bump, but otherwise left the object structure unchanged, would have to
publish an updated module.

Similarly, an implementation strictly adhering to your version would be
unable to process an object with a updated version number.

It's hard to think of a change to the manifest spec that wouldn't end up
touching the ASN.1 definition somehow, so in this context the above is
probably moot.

Cheers,

Ben

v2.23.0 | Report a Bug | By Email