[lamps] AD review of draft-ietf-lamps-rfc7030est-clarify-05

Roman Danyliw <rdd@cert.org> Tue, 26 May 2020 19:07 UTC

Return-Path: <rdd@cert.org>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB6653A0EED for <spasm@ietfa.amsl.com>; Tue, 26 May 2020 12:07:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PfY9_moM-ksf for <spasm@ietfa.amsl.com>; Tue, 26 May 2020 12:07:24 -0700 (PDT)
Received: from veto.sei.cmu.edu (veto.sei.cmu.edu [147.72.252.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED3873A0EEA for <spasm@ietf.org>; Tue, 26 May 2020 12:07:23 -0700 (PDT)
Received: from korb.sei.cmu.edu (korb.sei.cmu.edu [10.64.21.30]) by veto.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 04QJ7MiG047732 for <spasm@ietf.org>; Tue, 26 May 2020 15:07:22 -0400
DKIM-Filter: OpenDKIM Filter v2.11.0 veto.sei.cmu.edu 04QJ7MiG047732
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=yc2bmwvrj62m; t=1590520042; bh=zC8W6fXRm3loSJTB9Q9nABTL+3yUClIJ8JDVUOh7Dag=; h=From:To:Subject:Date:From; b=GhgxpEAnIXlxwFulgbC4mnBld3uGpppCCsPUuVcjTZBN5BVqdjuEoXhmKoTcNRr1S 31+0RVSZHfnXgJK6xEh0C67nyOeUEloHlVDCY5k0CRj66VYaZKgV3VITvY2DeeM4R7 dDcF1z/bQgUKwSOZSDw4rRjCypeOZzR1AlqYK7aw=
Received: from CASSINA.ad.sei.cmu.edu (cassina.ad.sei.cmu.edu [10.64.28.249]) by korb.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 04QJ7L17018247 for <spasm@ietf.org>; Tue, 26 May 2020 15:07:21 -0400
Received: from MURIEL.ad.sei.cmu.edu (147.72.252.47) by CASSINA.ad.sei.cmu.edu (10.64.28.249) with Microsoft SMTP Server (TLS) id 14.3.487.0; Tue, 26 May 2020 15:07:21 -0400
Received: from MORRIS.ad.sei.cmu.edu (147.72.252.46) by MURIEL.ad.sei.cmu.edu (147.72.252.47) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1847.3; Tue, 26 May 2020 15:07:20 -0400
Received: from MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb]) by MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb%22]) with mapi id 15.01.1847.007; Tue, 26 May 2020 15:07:20 -0400
From: Roman Danyliw <rdd@cert.org>
To: LAMPS WG <spasm@ietf.org>
Thread-Topic: AD review of draft-ietf-lamps-rfc7030est-clarify-05
Thread-Index: AdYzkAx0m2ssZAMLTjWn2jugw7dc+A==
Date: Tue, 26 May 2020 19:07:20 +0000
Message-ID: <7cba97541fbd435b94192d23f966b363@cert.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.64.203.21]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/vlNolo_EIhFe58ApF7knZBtD0J8>
Subject: [lamps] AD review of draft-ietf-lamps-rfc7030est-clarify-05
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 26 May 2020 19:07:26 -0000

Hi!

I conducted an AD review of draft-ietf-lamps-rfc7030est-clarify-05.  Thanks for the work on this document to address issues that had arisen in RFC7030.  Below is my feedback: 

(1) From idnits:
  == The 'Updates: ' line in the draft header should list only the _numbers_
     of the RFCs which will be updated by this document (if approved); it
     should not include the word 'RFC' in the list.

This is likely an artifact of the document build chain you are using, but can you please recompile it to spit out the following s/Updates: RFC7030/Updates: 7030/

(2) From idnits:
  == Unused Reference: 'RFC8179' is defined on line 377, but no explicit
     reference was found in the text

  == Unused Reference: 'X681' is defined on line 385, but no explicit
     reference was found in the text

  == Unused Reference: 'X682' is defined on line 389, but no explicit
     reference was found in the text

(3) Section 1.  Editorial.  
   "[RFC7030] defines the Enrollment over Secure Transport, or EST protocol.
   This specification defines a number  ..."

Because of the paragraph break, I initially read "This specification defines a ..." to mean this document when you really mean RFC7030.

(4) Section 1.  Per "Changes to [RFC7030] to bring it inline with typical HTTP processing  risk changes the on-wire protocol in a way that is not backwards  compatible.  However, reports ..."

-- I had difficulty parsing this first sentence due to the use of "changes" twice.

-- Calling something "typical HTTP processing" begs for a reference describing that baseline behavior.

Maybe saying something like: 

Any updates to [RFC7030] to bring it inline with HTTP processing per [RFC7231] risks changing the on-wire protocol in a way that is not backwards compatible.

(5) Section 1.  Editorial.  There is no canonical set of implementers (so the definite article shouldn't suggest that).  s/However, reports from the implementers .../However, reports from implementers/

(6) Section 1.  Typo.  s/extranous/extraneous/

(7) Section 1.  Editorial. Per "This document deals with errata numbers [errata4384], [errata5107], [errata5108], and [errata5904]", this is helpful to point out that these errata are getting addressed.  They are even cited as normative references.  However, by my read, the text only every explains how [errata5108] is being addressed.  The other three are not mentioned in the text at all.  Please make the text more explicit on which changes are addressing which errata.

(8) Section 3, 4, and 5.  I found it confusing that each section used a different patch style.  Is there a reason to do that?

** Section 3 summarizes the behavior of 4.1.3, 4.3.1, 4.3.2, 4.4.2 and 4.5.2 without providing specific references to exact text, and then provides a general updated behavior (again without providing exact text updates)

** Section 4.  Provides an outright new blob of text to drop into a section with high redundancy to the original

** Section 5.  Uses an OLD vs. NEW convention.  

Minimally, since the style of Section 4 and 5 are similar and are precise, I'd recommend making Section 3 look like one of these style (i.e., being clear on exactly what text is being updated/deprecated). 

(9) Section 3.  The updated guidance on handling the "Content-Transfer-Encoding" header isn't clear to me.  My confused is likely related to comment (8).  The following sections/text seem to contain related guidance/commentary:

(a) Section 1.  "However, reports from the implementers suggest that many implementations do not send the Content-Transfer-Encoding, and many of them ignore it.  The consequence is that simply deprecating the header would remain compatible with current implementations." - this commentary suggests that dropping the header would cause no issues if that approach is taken.

(b) Section 3.  "This document updates [RFC7030] to require the POST request and payload response of all endpoints use Base64 encoding as specified in Section 4 of [RFC4648]." - this updated guidance doesn't explicitly rule out the use of the header

(c) Section 3. "This format is to be used regardless of any Content-Transfer-Encoding header, and any value in such a header MUST be ignored." - this doesn't say anything about sending the header, only that it should be ignored on processing; this seems important for backwards compatibility.

(d) Section 4.  The text removes the reference to "Content-Transfer-Encoding" in a patch to Section 4.5.2 of [RFC7030]

(e) [RFC7030] Sections 4.1.3 (CA Certificates Response, /cacerts), 4.3.1/4.3.2 (Full CMC, /fullcmc), and 4.4.2 (Server-Side Key Generation) still contain a reference to Content-Transfer-Encoding even after  applying my read on how this document "patches" RFC7030.  For example:

** [RFC7030] Section 4.1.3. "The Simple PKI Response is sent with a Content-Transfer-Encoding of "base64" [RFC2045]."

** [RFC7030] Section 4.3.1/4.3.2. "The body of the message is the binary value of the encoding of the XXXX with a Content-Transfer-Encoding of "base64" [RFC2045]."

** An "application/pkcs8" part consists of the base64-encoded DER-encoded [X.690] PrivateKeyInfo with a Content-Transfer-Encoding of "base64" [RFC2045].

Why drop the header from one section per (d) but not from the others per (e)?  Under what circumstances should a header be sent - specifically, if (c) says the header should be dropped, why do we still send it per (e)?

(10) Section 3.1. Per "This specification clarifies that despite [RFC2616], that white space including CR, LF, spaces (ASCII 32) and, tabs (ASCII 9) should be tolerated by receivers", is there a reason that there isn't a normative SHOULD here?

(11) Section 4.
"Section 4.5.2 of [RFC7030] is to be replaced with the following text:
4.1.  CSR Attributes Response"

** Editorial. I suspect there is a tool chain rendering issue.  The section header to drop into RFC7030 needs to read "4.5.2 CSR Attributes Response" (not 4.1 which is the next section of this document).  Editorial alternative would be to drop the header entirely or following convention used in Sections 5.1 and 5.2.

** Editorial. It might also be valuable to explain what is getting changed instead of just providing an updated blob.

** Editorial. Given that the changes are confined to paragraph 2 and 3, why reproduce the rest of the content here - i.e., there is over a page worth of text that isn't changed but is reproduced here.  Other updates, described in section 5, only reproduced the updated paragraphs.

(12) Section 4. Editorial.  For consistency with RFC7090, consider s/[X609]/[X.609]/.

(13) Section 5.  The updates here drop the normative MUST to a "must" regarding the "response data must ...".  The Errata text explains that "Note that the MUST was reduced to a must because no content-type is specified" but I'm still not following why we lost the normative MUST.  What am I missing?

(14) Section 8.  Typo. s/doucment/document/

(15) Section 8.  Typo. s/doducment/document/

Regards,
Roman