IETF Logo Mail Archive

[lamps] Barry Leiba's No Objection on draft-ietf-lamps-rfc6844bis-06: (with COMMENT)

Barry Leiba via Datatracker <noreply@ietf.org> Tue, 28 May 2019 09:26 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: spasm@ietf.org
Delivered-To: spasm@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 9C18612003E; Tue, 28 May 2019 02:26:29 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Barry Leiba via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-lamps-rfc6844bis@ietf.org, Russ Housley <housley@vigilsec.com>, lamps-chairs@ietf.org, spasm@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.97.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Barry Leiba <barryleiba@computer.org>
Message-ID: <155903558962.25769.15348770094720924209.idtracker@ietfa.amsl.com>
Date: Tue, 28 May 2019 02:26:29 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/iNhrNESB0jpWoPlyUadWWSxnDbA>
Subject: [lamps] Barry Leiba's No Objection on draft-ietf-lamps-rfc6844bis-06: (with COMMENT)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 May 2019 09:26:30 -0000

Barry Leiba has entered the following ballot position for
draft-ietf-lamps-rfc6844bis-06: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-lamps-rfc6844bis/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

— Section 4.1 —

   Tag Length: A single octet containing an unsigned integer specifying
   the tag length in octets.  The tag length MUST be at least 1 and
   SHOULD be no more than 15.

What happens if it’s more than 15?  What’s the interoperability issue, and how
would an implementor decide what to do with this requirement?

   Tags MAY contain US-ASCII characters 'a' through 'z', 'A' through
   'Z', and the numbers 0 through 9.  Tags SHOULD NOT contain any other
   characters.  Matching of tags is case insensitive.

Why “SHOULD NOT”, rather than “MUST NOT”?  Why might my implementation need to
use other characters, and what are the interoperability consequences of doing
so?

— Section 4.1.1 —

   Tag: Is a non-zero sequence of US-ASCII letters and numbers in lower
   case.

Make it “non-zero-length”.

-- Section 4.4 —

   The iodef Property Tag takes a URL as its Property Value.  The URL
   scheme type determines the method used for reporting:

I presume that *only* the specified schemes (mailto, http, https) are allowed;
it would help to be explicit about that, lest someone get ideas to use sip or
some such.

— Section 5.6 —

   In practice, such an attack would be of minimal effect since any
   competent competitor that found itself unable to issue certificates
   due to lack of support for a Property marked critical SHOULD
   investigate the cause and report the reason to the customer.  The
   customer will thus discover that they had been deceived.

This doesn’t strike me as a BCP 14 “SHOULD”, but a normal English “should”.

v2.23.0 | Report a Bug | By Email