[stir] AD Evaluation: draft-ietf-stir-passport-rcd
"Murray S. Kucherawy" <superuser@gmail.com> Mon, 26 September 2022 05:39 UTC
Return-Path: <superuser@gmail.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 90D79C1522DD for <stir@ietfa.amsl.com>; Sun, 25 Sep 2022 22:39:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v3J37VYbPAoK for <stir@ietfa.amsl.com>; Sun, 25 Sep 2022 22:39:31 -0700 (PDT)
Received: from mail-ej1-x62e.google.com (mail-ej1-x62e.google.com [IPv6:2a00:1450:4864:20::62e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 14913C1522DC for <stir@ietf.org>; Sun, 25 Sep 2022 22:39:31 -0700 (PDT)
Received: by mail-ej1-x62e.google.com with SMTP id sb3so11646440ejb.9 for <stir@ietf.org>; Sun, 25 Sep 2022 22:39:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date; bh=iuyykXGiRFHX3rjeBnfHuAS3lEvz4DqusFrYUjjTixY=; b=qFJXQbz49wAviqigbEJEoVIAA8lbWjFAjc9IjzPwSORD3lXST0fA4s40Ktu9U9tNdA vceR5E4JOvMkv4Z5pMlMORnzsm3JyDtk4J5g3uwvG3YytnPpHyiiB5s3y7q6X3fmQjVk 1ys4HY7m07cqMAdLk4LUNImnbmrCXIuF+m5Q2YOOkSinzK3kLE9og4Lezh6TZiXfM/lw L4aC0UEfYlPU27GgDiD+/jL/Wt9MBgg5NUc42GyoY6lqja0zjteeP+fY2Fe3DRTCr9k2 ObxjGFj11JmcVxC3y5KGpPPWZ6j1oN3SDUNmCwa0dBg2V9ezdXe45KA8h49I3a64TvS5 X2EQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date; bh=iuyykXGiRFHX3rjeBnfHuAS3lEvz4DqusFrYUjjTixY=; b=eOcfJGwt8An7qMnenwjUI6+t9NHGdF4GTjUknxksCFoA5UlYqEVQ3tITpD5TwcsSUm q4h/KZtyrk5/Lx5EybVgGuu83t6z/XBQADNrDQ3NafNbSnr4TOK2O4G0YOWkNwhPQGtr dLTetC/5vNjoedtRAmlVuSj9oCqSfsHMqX83cZU9I6GOHVmyQwJyBkYCT4TivX2tGAud zxlpUcl+2td8QtezUUMXZUDKd2Pafez5INzCBeYWt581cR9hzMrByzoSzg0OsZcB+hUD NL0CDjqG/mByBlWCDq3kHILLB0ivgiOxp9w2y9D7GpS0o5x4Q5Cus4z9Rt2W8vguWWj9 jZVQ==
X-Gm-Message-State: ACrzQf2EGlob2XOVCAH3QhZNOrYeeBmQVabCsF2Y4eEkrCES6nvN5E1i XdokdvzK6WJe4WpC004hh226PCitCSJfEB2kRjuNTA3Qtkg=
X-Google-Smtp-Source: AMsMyM6ZwZYsileUOIN1CDtZm2Fl1nUqZGmg6DVuimk1Ia6zlhXLCn0T7ACS2PpYn6jO9NIYNuTUgiRt7/hwma438Xw=
X-Received: by 2002:a17:907:2c77:b0:77b:4445:a852 with SMTP id ib23-20020a1709072c7700b0077b4445a852mr16634138ejc.582.1664170769399; Sun, 25 Sep 2022 22:39:29 -0700 (PDT)
MIME-Version: 1.0
From: "Murray S. Kucherawy" <superuser@gmail.com>
Date: Sun, 25 Sep 2022 22:39:17 -0700
Message-ID: <CAL0qLwZaKc20eNus1wSj_-Zjys9prm1+55Ergtr=QDNi3G-sZg@mail.gmail.com>
To: IETF STIR Mail List <stir@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008e43e705e98df3a7"
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/K1HRzA9lxm4HjWgoI3SWB_Qi_Us>
Subject: [stir] AD Evaluation: draft-ietf-stir-passport-rcd
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Sep 2022 05:39:31 -0000
Hi all, here are my review comments for this document. Thanks for the work put into it. -MSK General: I found several places where "indexes" was used instead of "indices". How do we know that the reason placed in a "crn" claim is true? Could this be abused? If so, should this be called out in Section 13 or 18 (or somewhere else)? Section 1: The last sentence of the third paragraph, namely "However, both are ..., and therefore is ...", is a bit hard for me to parse. In the fourth paragraph, "In" has been reduced to "n". Section 3: * The last sentence of the first paragraph could use some commas, usually right before each "or". * "P-Asserted-ID" should be "P-Asserted-Identity". Section 4: * "Often there is policy and restrictions ..." -- s/is/are/ * "(Auth represents authoritative in this table)" -- I suggest quoting "Auth" and "authoritative", and adding a period after "table". Section 5.1.3: * "... the call-info header field ..." -- s/call-info/Call-Info/ Section 6: The last paragraph describes the syntax of the values in this claim. It says there is a delimiter in the value, namely a "minus" character. I know what that means but I've never heard that character identified that way; it's usually "dash" or "hyphen". In this era of Unicode, might it be better to identify it as ASCII 45? For that matter, would ABNF be useful here? Section 8.1: The "must" in here probably needs to be a "MUST". Section 13: * "Even in first party cases, this admits of some complexity: ..." -- I don't understand the part after the comma; should "of" be dropped? Section 14.1: "Identity header" should be "Identity header field" (at least two instances). Section 14.2: The "SHOULD" presents an implementer with a choice, but includes no guidance about how to make that choice. I suggest adding some, or reconsidering whether SHOULD is appropriate here. Section 17.2: There isn't a registry called "PASSporT Types". I only see "Personal Assertion Token (PASSporT) Extensions" and "PASSporT Resource Priority Header (rph) Types". Which one are we modifying here? Section 17.3: This should say that the new registry should be added to the "Personal Assertion Token (PASSporT)" group. A "Specification Required" registry will require nomination of one or more Designated Experts. Do you have anyone to nominate? Moreover, Section 4.6 of BCP 26 says you should provide guidance to the DE to be applied to new registrations once the registry is created. That seems to be missing here. You should also specify explicitly that new registrations consist only of a name and a reference document. Section 18: I can't parse the first sentence of this section.
- [stir] AD Evaluation: draft-ietf-stir-passport-rcd Murray S. Kucherawy
- Re: [stir] AD Evaluation: draft-ietf-stir-passpor… Chris Wendt
- [stir] STIR WG - PAY ATTENTION : Re: AD Evaluatio… Robert Sparks
- Re: [stir] AD Evaluation: draft-ietf-stir-passpor… Murray S. Kucherawy
- Re: [stir] STIR WG - PAY ATTENTION : Re: AD Evalu… Murray S. Kucherawy
- Re: [stir] AD Evaluation: draft-ietf-stir-passpor… Murray S. Kucherawy
- Re: [stir] AD Evaluation: draft-ietf-stir-passpor… Chris Wendt
- Re: [stir] AD Evaluation: draft-ietf-stir-passpor… pierce
- Re: [stir] AD Evaluation: draft-ietf-stir-passpor… Chris Wendt
- Re: [stir] AD Evaluation: draft-ietf-stir-passpor… pierce
- Re: [stir] AD Evaluation: draft-ietf-stir-passpor… Murray S. Kucherawy