Re: [stir] WG Last Call comments on stir-oob-04
Chris Wendt <chris-ietf@chriswendt.net> Tue, 23 April 2019 03:13 UTC
Return-Path: <chris-ietf@chriswendt.net>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5DA52120090 for <stir@ietfa.amsl.com>; Mon, 22 Apr 2019 20:13:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=chriswendt-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZYu3HgOy_3Dc for <stir@ietfa.amsl.com>; Mon, 22 Apr 2019 20:13:52 -0700 (PDT)
Received: from mail-qt1-x833.google.com (mail-qt1-x833.google.com [IPv6:2607:f8b0:4864:20::833]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4AC15120075 for <stir@ietf.org>; Mon, 22 Apr 2019 20:13:52 -0700 (PDT)
Received: by mail-qt1-x833.google.com with SMTP id i14so14492478qtr.10 for <stir@ietf.org>; Mon, 22 Apr 2019 20:13:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chriswendt-net.20150623.gappssmtp.com; s=20150623; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=x+DhgmFBH95gGxNnqxHreEHiOw71h9etGWxAmP5ndaQ=; b=ml3lGwFHqcG3Z2BPf0uCjumgshtVreGnijsgN+lBBYbaoIDNvDS6EbNVugVLrZuyxb j1yhjfcV+Du3bPI/eeGFJ4TWErqBnW731GqaxXs+kaxWbgSWkK7IJ7hHqmjPmHsukK3l TGf/GS5xT1zX0NiwHx3vUR1kqP5byFyxNnPWO5nMJOHoOJF4JEeroZ0ho37GBiPms7xk PlQhVNIJR2TgdWGEaDiEb/CnBV9A5k68oUBmVO72h6hiN5a2yZMmiQ0soSjsLsOGAZcI wdhiUu0gVdt8cjmb6DeKPeNjL/fwiQ+GUix2WPwUFNjh7gL1ox3VSmLG6Tmcq7Hy5z7F 8CIw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=x+DhgmFBH95gGxNnqxHreEHiOw71h9etGWxAmP5ndaQ=; b=ormRCseHNmqhT3xU3fWjCRP2K7q8oGUMAB2vzfgfwa/W2pc3Zc0nZV9kW1AAqWhsv8 UhVSwvxYK54QmnOWya0M3wl7J4KdtzdGB56wFtbaLg1+qWZatMkbV/B7BXC6LBnkn+r6 43dP4wvRu4Z8ICfiRiKtYlp+OPgIOMjM2+U4G6Wf6IbLUe8hCcrn3LPlGkCkkXbCDWr2 0jJ0z58CrO9ph9mbqTcdyir6ILz1w6PK3EDLleh7NwXaprZhBnF268fecf5/3OULeI0k QiuOkYqXYnR8zb3GVFYBOYH1j9KcfLqKnATIaXbWfgWN4XkwMd9388yfAZJXJH8K+vaK VF5w==
X-Gm-Message-State: APjAAAVgJXjnDd4QdpCGhVaOSbBIPX5a4zHFLQcMykoEEs2GJYwVgqzV QzVD/kWVfU8eqdOKGclfwf8qDw==
X-Google-Smtp-Source: APXvYqyVqoopO0fL6d34GA9VNPsGd7pqfiKI3xEV6AUuPpExsGMbNKrTc6Ib3ybPLWlioLYcI4JXjw==
X-Received: by 2002:ac8:16a5:: with SMTP id r34mr6336488qtj.159.1555989231308; Mon, 22 Apr 2019 20:13:51 -0700 (PDT)
Received: from ?IPv6:2601:41:c400:2e37:edf9:c8be:943e:41bd? ([2601:41:c400:2e37:edf9:c8be:943e:41bd]) by smtp.gmail.com with ESMTPSA id 50sm9955323qtq.7.2019.04.22.20.13.50 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 22 Apr 2019 20:13:50 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.8\))
From: Chris Wendt <chris-ietf@chriswendt.net>
In-Reply-To: <CAHBDyN7YKVSSkbUOSUDzKK-Q+h1fdbzEabbWC+qhNhhXXUA2dw@mail.gmail.com>
Date: Mon, 22 Apr 2019 23:13:49 -0400
Cc: IETF STIR Mail List <stir@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <4BBC69EB-8008-4B9E-97E8-6541743F5E07@chriswendt.net>
References: <9BB03273-2BFA-4907-9234-EC8CE33E0186@team.neustar> <C85EE94D-B228-4F23-9F2D-89D4D312F7EF@vigilsec.com> <CAHBDyN7YKVSSkbUOSUDzKK-Q+h1fdbzEabbWC+qhNhhXXUA2dw@mail.gmail.com>
To: Eric Rescorla <ekr@rtfm.com>, Jon Peterson <jon.peterson@neustar.biz>
X-Mailer: Apple Mail (2.3445.104.8)
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/evs9hbNEKsz0TI_itolUy-XZBxI>
Subject: Re: [stir] WG Last Call comments on stir-oob-04
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Apr 2019 03:13:55 -0000
My review of oob document, mostly comments/suggestions/questions. No major issues since this is a proposed framework vs. protocol specifications. Abstract - you mentioned other use cases besides non-VoIP protocol, for enterprise scenarios, Should you include brief reference to that style of use-case in abstract? Introduction - same comment as abstract, it’s very focused on PSTN endpoint bridging, where it might benefit from some other use cases Section 3 - similar comment, maybe an example of caller (or telephone network) to GW to local specialized network to GW to callee (or telephone network) Section 4 - is it necessary to describe the two data flow architectures? Section 5.5 - this seems like a really specific example, not saying its an invalid example, but just thinking that maybe there is simpler examples to include as well, like a more general thing like enterprise equipment doesn’t support identity headers, enterprise ingress SBC sends passport to CPS, and endpoint has the ability to retrieve the passport when call arrives. for example. Section 6 - first paragraph "However, as use cases 3 and 4 in Section 5 show” - use case 5 also shows this now For the rest of the document, I didn’t find any obvious logical issues, obviously this is defining rough details of a potential framework, so nits on interfaces or other details is probably not necessary. I do agree with other comments that a more explicit note in abstract and/or introduction that this is a proposed framework of architectural elements that are focused on solving the security of issues that are unique to oob stir would be appropriate. -Chris
- [stir] stir-oob-04 Peterson, Jon
- [stir] WG Last Call comments on stir-oob-04 Russ Housley
- Re: [stir] WG Last Call comments on stir-oob-04 Mary Barnes
- Re: [stir] WG Last Call comments on stir-oob-04 Chris Wendt
- Re: [stir] WG Last Call comments on stir-oob-04 Peterson, Jon
- Re: [stir] WG Last Call comments on stir-oob-04 Peterson, Jon