Re: [stir] Third WGLC: draft-ietf-stir-passport-rcd-12

Chris Wendt <chris-ietf@chriswendt.net> Mon, 02 August 2021 19:17 UTC

Return-Path: <chris-ietf@chriswendt.net>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 533503A1789 for <stir@ietfa.amsl.com>; Mon, 2 Aug 2021 12:17:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=chriswendt-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GexvXcvw9Ctk for <stir@ietfa.amsl.com>; Mon, 2 Aug 2021 12:16:57 -0700 (PDT)
Received: from mail-qv1-xf2e.google.com (mail-qv1-xf2e.google.com [IPv6:2607:f8b0:4864:20::f2e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A778D3A1784 for <stir@ietf.org>; Mon, 2 Aug 2021 12:16:57 -0700 (PDT)
Received: by mail-qv1-xf2e.google.com with SMTP id js7so6848938qvb.4 for <stir@ietf.org>; Mon, 02 Aug 2021 12:16:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chriswendt-net.20150623.gappssmtp.com; s=20150623; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=PFYyjFmpohY/nV8Bed45ThmhrcsxhWZTD2YwFOzI0y4=; b=Bq9zB8ZedA1+rVjb2CGSuBmSD9kuq1nTZyss9tq1Rff6+J3gJzPLwRMOVhjoUhA9T2 rCx65a2MSZ5WjMXF/npje2ZhuSaQRgVzjhY5JscpnQ8NrFz/jXDi+NR1ogY5W0Q0N7dk sXE48EexbJVNiTN5KvlV0WS4d6Bl2Mz1t922vyOCAnuiCVwsG+ij5dHv5Td6DSJtB6SO 2fP3ZpMl2DgUogS3+oEW0yAhFfgFJjr6OnB0pZG7z88kAQgpcazeXKifJepFs1U7nU4T dK/tyOPvvqeIhLuD8Zz0oPSab41+wYCEuvOkQAHNg5XlAqFuaHfi0U3vs1jl5PrTjE8s xYpg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=PFYyjFmpohY/nV8Bed45ThmhrcsxhWZTD2YwFOzI0y4=; b=Sy78bPvhCs9oYiY8krs7EA8p84cXhNMQl2fJHpks9Z79Pus8PpTJGGOf1aeRThgyMa HYa77tw8aKi3PgrO7DcNnEA0za1L440jBlwQucbPPQM0URusXprb4R7tfKugNTVD/f1u 2zc0KwnLwKAavRAlN1sEewh/UknFb2vVaN0eKrNSxNoIkeZ8X3Lmt5/fTGGX2rEYvnQI O3nAuZkvMPjAgj6tSC3BnQdenE+3UlsXi5QTueMh6J/K4Hoik4gnKx3pZPSKT7xyn2ml 6CljgTwFK/tZ40sECtC0i+1+Y4HFI/6Ep14ELnMG6mgmXdnHwOW3RKhsJD/2GwlCv56M T1jg==
X-Gm-Message-State: AOAM530wumXR8VpdX2TNkct+uQtAW+kOiAOmPpjn6jRwxPnCvXAmjbcd OJgENxuMtDygaOvp7BKu5uzeCE0sVGhz3fkl
X-Google-Smtp-Source: ABdhPJxAvNrsqL/TEC4Orq1joy9nqitspgBN47M/yQoTxT14UngLnu4J+8LkDRKucva3ZAcUWK5yaw==
X-Received: by 2002:ad4:4049:: with SMTP id r9mr17980285qvp.41.1627931815607; Mon, 02 Aug 2021 12:16:55 -0700 (PDT)
Received: from smtpclient.apple (c-69-242-46-71.hsd1.pa.comcast.net. [69.242.46.71]) by smtp.gmail.com with ESMTPSA id 5sm6542343qko.53.2021.08.02.12.16.55 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 02 Aug 2021 12:16:55 -0700 (PDT)
Content-Type: text/plain; charset=us-ascii
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\))
From: Chris Wendt <chris-ietf@chriswendt.net>
In-Reply-To: <1CA8DA85-260D-4356-9E65-B74DE6ED51BA@vigilsec.com>
Date: Mon, 2 Aug 2021 15:16:54 -0400
Cc: IETF STIR Mail List <stir@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <1F3EF5C2-A911-46F1-AEB2-BB3FEC8BD086@chriswendt.net>
References: <ACBAF452-EC41-4EAF-8ED1-AFF705671D19@vigilsec.com> <1CA8DA85-260D-4356-9E65-B74DE6ED51BA@vigilsec.com>
To: Russ Housley <housley@vigilsec.com>
X-Mailer: Apple Mail (2.3654.120.0.1.13)
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/8d63aj7VhasTJEchzrspvj4H8ss>
Subject: Re: [stir] Third WGLC: draft-ietf-stir-passport-rcd-12
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Aug 2021 19:17:03 -0000

Hi Russ,

Thanks for the comments! Will integrate fixes into next version, but will give a little more time for other comments to come in.

-Chris

> On Aug 2, 2021, at 11:55 AM, Russ Housley <housley@vigilsec.com> wrote:
> 
> I have a few comments.  All of them are pretty minor.
> 
> In the Abstract, it says: '... subsequently rendered to the intended called party.'  I think it is rendered to the called party, whether that party is intended or otherwise.
> 
> In Section 6.2, first paragraph, it says: '... contents of the certified "rcd" claim.'  I do not know what 'certified' means here.  To me, it usually means that it is included in a certificate, but that is not the meaning here.  Please clarify.
> 
> In Section 7, first paragraph, it refers to a 'STIR certificate eco-system'.  I think this can be simplified by just saying that the 'authorized party' is not necessarily the subject of a STIR certificate,
> 
> In Section 12.1, first paragraph, the term 'Subject Name' is used several times.  The certificate has a subject field that contains a name, but it does nt have a Subject Name field.  Please reword.
> 
> In Section 18, second paragraph, the IESG approval of [I-D.housley-stir-enhance-rfc8226] required the addition of a SHOULD NOT statement:
> 
>   Certificate issuers SHOULD NOT include an entry in mustExclude for
>   the "rcdi" claim for a certificate that will be used with the
>   PASSporT Extension for Rich Call Data defined in
>   [I-D.ietf-stir-passport-rcd].  Excluding this claim would prevent the
>   integrity protection mechanism from working properly.
> 
> It seems that a SHOULD NOT statement should appear here as well.
> 
> In Section 18.1, please reference draft-ietf-stir-enhance-rfc8226 (not draft-housley-stir-enhance-rfc8226).
> 
> Russ
> 
> 
>> On Jul 29, 2021, at 3:19 PM, Russ Housley <housley@vigilsec.com> wrote:
>> 
>> As we discussed on the IETF 111 session today, significant changes were made to address concerns that were raised during the second WGLC.
>> 
>> This note begins a third WGLC for draft-ietf-stir-passport-rcd-12 (PASSporT Extension for Rich Call Data).  See https://datatracker.ietf.org/doc/draft-ietf-stir-passport-rcd/.
>> 
>> Please send reviews to the STIR mail list by the end of day 19 August 2021.
>> 
>> Russ and Robert
>> _______________________________________________
>> stir mailing list
>> stir@ietf.org
>> https://www.ietf.org/mailman/listinfo/stir
> 
> _______________________________________________
> stir mailing list
> stir@ietf.org
> https://www.ietf.org/mailman/listinfo/stir