IETF Logo Mail Archive

Re: [stir] WGLC: draft-ietf-stir-identity-header-errors-handling-02

Chris Wendt <chris-ietf@chriswendt.net> Mon, 25 July 2022 21:24 UTC

Return-Path: <chris-ietf@chriswendt.net>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 48442C13CCC2 for <stir@ietfa.amsl.com>; Mon, 25 Jul 2022 14:24:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=chriswendt-net.20210112.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0sxoR4QyTM95 for <stir@ietfa.amsl.com>; Mon, 25 Jul 2022 14:24:37 -0700 (PDT)
Received: from mail-qk1-x72a.google.com (mail-qk1-x72a.google.com [IPv6:2607:f8b0:4864:20::72a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 50062C13C219 for <stir@ietf.org>; Mon, 25 Jul 2022 14:24:37 -0700 (PDT)
Received: by mail-qk1-x72a.google.com with SMTP id m16so9689092qka.12 for <stir@ietf.org>; Mon, 25 Jul 2022 14:24:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chriswendt-net.20210112.gappssmtp.com; s=20210112; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=cFZgOhMTVsoeQxOLjGgqr5622a8gTjw75BDfiNj+VX8=; b=5DF+5pF/YOKaj2t7BGcT/W6WjSW38ar/pNocAxCr0QWOsYHmuArI28Ur8SheB3AskY 3v+zHKkhSpAL/1Xlm5hEAVqh7kJW8QmHOrqWqTzkXN2gILUUL84lzhQUWuEM8ZbPWSim XJ87NhbBO7YSpnHq+Nboz8/udBySDrIKZ5Cssc04rUq75mX7ypkZlnk3wFdfdcFSj+qX tP7EPkj2b65D15PAR/WOwdvYdXJKXwqxQPsXXWDS0b1XgZvtlWort7cLD3HUDNrdo5qM 856LZUj3yNl/xPFgApciSVkkVoOx1pgO8qodigkdzDdWSMfHjepQo+MrFZMA9uOtZY8i dIUA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=cFZgOhMTVsoeQxOLjGgqr5622a8gTjw75BDfiNj+VX8=; b=w9Ne1eFILG1O8rxbYNmEZP55kSsUvHBanMdaVckgGjl+3h8nU0M+R3XRGjqBHMrnNz vD0mq+8va1pLtwDF/EV9xKCl/zC8NwMGR0DeyX+PZf2oAS7r8uqMxhU2axt4VCl5HHBF /LjvLHqijdUOoDXNpaZIj7VXaVn9KyFPIA2ugwcpIr1KN5l2ovaQdbdj2Tn1qytOmUM7 ty3J4R6grQ/+A62inADTHRefb880bcWQ+Er9w42mkbZXk3n69jpEDqMX35I5UEXF3Pfd 0odlk9GtSjYa5ioDB0zzDnXuKP5dnlLL5Tp357m1XKjg2wvxOyOPVV8EnTw3UwF35ES7 vHkQ==
X-Gm-Message-State: AJIora+NqDEg66goZXCzvrr0FKqqV15RJs24DxpW3GNvQ8lehA+rSoBr 3G7HagKQwzw+FGm0vSlnqjui6Nj+OKyLy9kT
X-Google-Smtp-Source: AGRyM1sIYnqH6dsWcQxda9D3ODfuFteRaViFmcVKkbQ/wwb/QNVMSOKL3BAAh6oUXcbYdBwWDE92Ww==
X-Received: by 2002:a37:c02:0:b0:6b5:e281:aff6 with SMTP id 2-20020a370c02000000b006b5e281aff6mr10580787qkm.251.1658784276138; Mon, 25 Jul 2022 14:24:36 -0700 (PDT)
Received: from smtpclient.apple (dhcp-91b7.meeting.ietf.org. [31.133.145.183]) by smtp.gmail.com with ESMTPSA id bs10-20020a05620a470a00b006b5f0e8d1b9sm10306501qkb.81.2022.07.25.14.24.35 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 25 Jul 2022 14:24:35 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.100.31\))
From: Chris Wendt <chris-ietf@chriswendt.net>
In-Reply-To: <86c3441e-986a-2409-64c3-2d911c2b22cb@comcast.net>
Date: Mon, 25 Jul 2022 17:24:35 -0400
Cc: stir@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <FB4E1240-B814-46F0-8EBA-E4F1FF02DFF3@chriswendt.net>
References: <5393b70d-bfc7-c8ac-eb8d-30c8087a1e89@nostrum.com> <A47A285A-C230-4277-91D8-FE6D5F88735C@vigilsec.com> <86c3441e-986a-2409-64c3-2d911c2b22cb@comcast.net>
To: Paul Kyzivat <paul.kyzivat@comcast.net>
X-Mailer: Apple Mail (2.3696.100.31)
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/Ad8eRqBO53b6g4pFmtbIJxwjLrQ>
Subject: Re: [stir] WGLC: draft-ietf-stir-identity-header-errors-handling-02
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Jul 2022 21:24:40 -0000

Thanks Paul for the detailed review, i will definitely bring up these topics in tomorrow’s STIR meeting.  Your latter points i think are a side effect of the progressive nature of how the document evolved through discussions, so will be sure to bring up these points and try to address and see if we can agree on a path forward.

> On Jul 23, 2022, at 2:47 PM, Paul Kyzivat <paul.kyzivat@comcast.net> wrote:
> 
> Here are thoughts I have after reviewing this document:
> 
> * Section 3:
> 
> This document is depending on draft-sparks-sipcore-multiple-reasons for an extension to the Reason header field permitting multiple reasons for the same protocol. That is an individual draft and is currently expired. IMO *this* draft should not complete WGLC until that draft is adopted and completes its own WGLC.
> 
> Also, I think this draft should be more explicit in stating that the new STIR protocol it defines permits multiple uses, and perhaps constraints on how. (E.g., in what ways the multiple uses must differ, or how to resolve ambiguities among them. I *think* the response codes defined in RFC 8224 are mutually exclusive for a single passport, so perhaps constrain to a single cause per ppi.)
> 
> I'm inclined to think that draft-sparks-sipcore-multiple-reasons ought to revise the IANA registry to include a new column that indicates single or multiple use. If so this document would need to include that field in its IANA registration.
> 
> * Section 7:
> 
> Requiring unconditional removal of the Reason header field seems an excessive remedy for the stated problem. It should be sufficient to remove the ppi parameter. And is even that needed if the ppi value is in compact form?
> 
> * Section 8:
> 
> The Protocol Cause for the STIR Protocol Value is specified as "Status code". This is the same as is defined for the SIP protocol. The values used for STIR as a subset of the SIP Protocol Causes. It isn't clear what values are valid for use here. I guess you intend the values specified in section 6.2.2 of RFC 8224. But defining that way isn't future proof. What if a subsequent extension/update to RFC 8224 defines some additional codes?
> 
> I'm not certain what the best answer is here. I think it is worth some discussion.
> 
> 	Thanks,
> 	Paul
> 
> On 7/12/22 9:34 AM, Russ Housley wrote:
>> At the STIR Working Group Virtual Interim on 22 April 2022, we agreed to start WG Last Call for this document once an updates was posted.  It has now been posted.
>> Please send reviews to the list by Noon Eastern time on  in 26 July 2022.  This is a few hours before the STIR session at IETF 114.
>> If you plan to provide a review but need more time, please let us know as soon as possible.
>> See <https://datatracker.ietf.org/doc/draft-ietf-stir-rfc4916-update/>
>> For the STIR WG Chairs,
>>  Russ
>> _______________________________________________
>> stir mailing list
>> stir@ietf.org
>> https://www.ietf.org/mailman/listinfo/stir
> 
> _______________________________________________
> stir mailing list
> stir@ietf.org
> https://www.ietf.org/mailman/listinfo/stir

v2.23.0 | Report a Bug | By Email