IETF Logo Mail Archive

Re: [stir] [Last-Call] Secdir last call review of draft-ietf-stir-messaging-06

tom petch <daedulus@btconnect.com> Wed, 04 January 2023 09:31 UTC

Return-Path: <daedulus@btconnect.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C43E4C14CE27; Wed, 4 Jan 2023 01:31:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hpmuxHZtRmXT; Wed, 4 Jan 2023 01:31:31 -0800 (PST)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2138.outbound.protection.outlook.com [40.107.21.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AD9F3C0E04FA; Wed, 4 Jan 2023 01:30:52 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=It6oF5TPhOJcMq9Ou90rYceAXJwecdoRZZAsToH0JNAcmtkwtt/F1PPZuhAVffTnWcYxv5RU6UledJITe3KXMuaW4B2Xh1F5ebKH/PfFlBAuPZtSaiq9A8c+btk+c169kS7s6rzljyV7AemcpEPGFs4VUJSYTygXw9/zqNHFCnIwLulvvdveHG/SwkYAZ9SLwZVB8puTuo4Ta9YP0u3iKVitcG8yNTKNBCi5Gl6yCpmQlx6zpARU32P2XiNAe4zp2Z/Q/M2fwc+PgGUadphbpTT63n8uZs+Wf7xX+McJwKjWZCI57vdsOkh1g5WgEwbtH//pwfkCO3+9EFtUMBoV7A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=l7e8heprv0FeRigOwNdBQD6lrrB4GoxAf2twH4tew1E=; b=UI0FHv+KN7t2BfH1xvnBItMx+LgaVPEPG1IS9o5cna64kZfsq0AUAboinqqkt2u/R+FzecQSzRTkuUbxu1wTUUly2ndVaKUupJXqNGDURLTNyQd0llZ+hJkiinI6avkg34gUptKXSseV8/Vr4SjzcmxXtM3eeZjBQHoLsn5Oz/yH7aILJAdZp37F5RWOYQIBVbHk5cQECZMnHDkKIgsY3rvthbmUJNbf2p5Ees34anfbUd1JXfnl0YGaZBD0W1ZOZ165whne+H3SlxBMJKk8/M8cGzdRPLkGoRt76tPsSpQrGS5Uj10ueDbKepgWhiyVUyF18eLVcQQTU4sDwVcJCg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=l7e8heprv0FeRigOwNdBQD6lrrB4GoxAf2twH4tew1E=; b=P7uEYdr5BFYx0JJa9Xmra5YJ+PF8fmVr9xe2dJ6hMwB4x4RwoUjiBDZoS0XSkLms+CENJa1CUVGc4xnMR8Jw2u/UnQo5WCSFFAss8xIyi/zJDF39xPMXBgEfo3hb9gYX1Hx+52n/ortC7MYSD2Y0ZtkSYuF1JJb7yqeLm1ssrKo=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=btconnect.com;
Received: from VI1PR07MB6704.eurprd07.prod.outlook.com (2603:10a6:800:18b::8) by AS8PR07MB8040.eurprd07.prod.outlook.com (2603:10a6:20b:35b::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5944.19; Wed, 4 Jan 2023 09:30:48 +0000
Received: from VI1PR07MB6704.eurprd07.prod.outlook.com ([fe80::d9b0:fe23:363f:58b3]) by VI1PR07MB6704.eurprd07.prod.outlook.com ([fe80::d9b0:fe23:363f:58b3%9]) with mapi id 15.20.5944.019; Wed, 4 Jan 2023 09:30:48 +0000
To: Nancy Cam-Winget <ncamwing@cisco.com>, secdir@ietf.org
References: <167279013344.64136.12100689403691464747@ietfa.amsl.com>
Cc: draft-ietf-stir-messaging.all@ietf.org, last-call@ietf.org, stir@ietf.org
From: tom petch <daedulus@btconnect.com>
Message-ID: <63B54711.4020608@btconnect.com>
Date: Wed, 04 Jan 2023 09:29:53 +0000
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:38.0) Gecko/20100101 Thunderbird/38.5.0
In-Reply-To: <167279013344.64136.12100689403691464747@ietfa.amsl.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-ClientProxiedBy: LO4P123CA0423.GBRP123.PROD.OUTLOOK.COM (2603:10a6:600:18b::14) To VI1PR07MB6704.eurprd07.prod.outlook.com (2603:10a6:800:18b::8)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: VI1PR07MB6704:EE_|AS8PR07MB8040:EE_
X-MS-Office365-Filtering-Correlation-Id: dc347837-b73d-4fc0-ccd7-08daee365d0a
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:VI1PR07MB6704.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(366004)(136003)(346002)(376002)(39860400002)(396003)(451199015)(2906002)(5660300002)(8936002)(4326008)(8676002)(41300700001)(66476007)(66946007)(316002)(6486002)(52116002)(478600001)(66556008)(53546011)(87266011)(33656002)(6512007)(186003)(26005)(6506007)(6666004)(83380400001)(2616005)(38350700002)(82960400001)(38100700002)(86362001)(36756003); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 5+hBq7tIATBgZ0MhUusw1sYfCc6eT260MF4JR/ZZQ26h6/K934ekJd3jhByuLJiz6K/1qGwUq4CXeJ2tQIBMqKThVqyC1r6N1jtXRwCSnIWMShSGc8SZ3zSdaSVHCdotBYFskYwE7Y6Le1SsgmpMpjYjaOYoQRxxckPi1nex8c6V3yMU1pDttO9MkRPnGTmg+ISVaA9ZAuNDko3MPDKLtNlohWKAlemzdj/e7G+AIoPzDzJSVJARaOSillxV2kiMfJKqHXtb3vKxpMjGIgYXy2m9QCrJwL44KVJi0qa3VLNHuxRW5uPZY90G8K0qrx2fu3zwwMV9IVX2eo4QUsrnhicI9VlZuwaqWb49mjAwjP0mZ7r9pKutn+F9qfXp7QWsR75GadhFmVQqgLXbAR3aLGH3xaV2xvXnC7oyqa0+94Tci8TPov2cYbYIN2hEYaLMW1U3/EZ6NL2+vqW4gbyiMo8yYjfod3sj7scTA0xpK8TS+Z6C9F86RtU6zvLweLYgHHtz96kEUEgNRQUjEOtw3+EmljDJfz7IEgyhRpawxmJQnQpyRzpBtP10hhSFsDlnPPe5iqY3iPpYRH6KvIZrAuZ6FOojVlczht4/wIUdJhBf9/T56w4zPEJXA0tyaV2a8nX7zepDXNwB2DM3srmCQ8UxMIrl5EOUSv30HpU7ux7LNCNOt2pzoGwFlbRlFa1woD72yPpAv86xhJDsZb3eYDrCrq0LCK4XNMG4TJA/LeZElBHTmtMY5JZeRIpuenjO5W+zIdgfFx2VCa1ydDocbVrFDIEH8UerqGjj4zLxHk76cJe0S50HAJhJ0Hd/zK0Q2umT2mro61z0kUojmY/NE8jDMCU0ttln+h4ONEGig5JJb8dxKP+9NHqD5wXq4bcb7GleHxIcC9RNsCh/KQKszpgDfnR2hB7J9OcNj8NP2yaT8SKTjx1YjOKbHxUQQN/m+Gl/auYo1oUbfu/yRI1zdzWae9jhD69uCVS/yPZhB4AmxV6rYCivN+H3cy8w/HKjo86cgmeYg6lHwCJe8CSbCdRSrbnji8LsorLyZPFkuYGTB/X1OJJ3yrkmxX/ChHDBZf4SuD7kpZHoBRNKXTZw6dAWIIjYzlezcgC9gXiu11hUYyNbiypOYg6rOVRdb9ae3GLq3G9Z9mxdSdczbpnsHoJj7ShzbSCoDpLb7+HXtIlRLbiNLoYpJO8Xja4mTx8z4dya76tHyEHwv0sjUV7V7O/eDzfJZYEgY4RiULsCXlogZeISzy1eXkoho1HPV/aWBO8yBJz8Ap2mRrvnMgM/jVLfwpxG+iaB79tkn8BsGtdSHJlMQu6wKqlaA7D1s+JqPBAppITi41yOP34Ls+GJZxwnLLgxWVr2VL9zQ2W7yzZwHtKZtsQ9ODmuBuzwefA6Yxdq4l1N0j87a0tqQcO91U6mL9EuBE/QxOQ7Fx/7rv17qBxaVeV0ygNDwK7zZtiGD7P25+qVq7oLhwLrSxFvVQUx/4O+QimiaawsWaWdHLvho2qaMLUA2OF8K7OepLEq3U+XSaBi1elc2vGD66fU2CBzmPQlT+sPEYxWEiFuPh6tcsU0Bj28rKR7TjNKkpPbu9zrz9y3R7hRt2fOdztaeA==
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-Network-Message-Id: dc347837-b73d-4fc0-ccd7-08daee365d0a
X-MS-Exchange-CrossTenant-AuthSource: VI1PR07MB6704.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 04 Jan 2023 09:30:48.4834 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 8uAzqSGoxkyyLeBGggG/BSkBo9qo9Z1JVXH+FseXZ0AKHPona0KHoF+1oAFU3L1kV0nYhm68kidEwL0rUC8T6g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR07MB8040
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/4iYGumG1r5YF94NFo3oIlcb3DJ8>
Subject: Re: [stir] [Last-Call] Secdir last call review of draft-ietf-stir-messaging-06
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Jan 2023 09:31:32 -0000

On 03/01/2023 23:55, Nancy Cam-Winget via Datatracker wrote:
> Reviewer: Nancy Cam-Winget
> Review result: Not Ready


If this document is straightforward and has no issues, why is it 'Not 
Ready'?

Tom Petch



>
> I have reviewed this document as part of the security directorate's
> ongoing effort to review all IETF documents being processed by the
> IESG.  These comments were written primarily for the benefit of the
> security area directors.  Document editors and WG chairs should treat
> these comments just like any other last call comments.
>
>
> This document specifies how the PASSport framework (RFC 8225)can be used to
> provide message integrity protection of text and multimedia messages
> by defining a new PASSPort type, e.g. JWT claim "msgi".
>
> The draft seems straightforward, though personally I find naming the JWT
> and PASSport types "msgi" and "msg" respectively to be a little
> confusing/misleading as the claim is for "msg-integrity" perhaps
> that is the suffix 'I'.  But that is a personal bias so assuming the working
> group has accepted the nomenclature, you can leave the labels as such.
>
> I found no issues with the draft except for one typo:
> Section 3.2 last paragraph "mesages" should be "messages"
>
>

v2.23.0 | Report a Bug | By Email