Re: [tcpinc] Kathleen Moriarty's Yes on draft-ietf-tcpinc-tcpeno-13: (with COMMENT)

Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Mon, 13 November 2017 01:27 UTC

Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: tcpinc@ietfa.amsl.com
Delivered-To: tcpinc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DBBE7126CB6; Sun, 12 Nov 2017 17:27:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UtjDkO5_oM7m; Sun, 12 Nov 2017 17:27:55 -0800 (PST)
Received: from mail-pf0-x22f.google.com (mail-pf0-x22f.google.com [IPv6:2607:f8b0:400e:c00::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BB4C1126B72; Sun, 12 Nov 2017 17:27:55 -0800 (PST)
Received: by mail-pf0-x22f.google.com with SMTP id q4so2589815pfg.13; Sun, 12 Nov 2017 17:27:55 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=C9VsVv5LMYY+JeWrl9pgJWMA+IKGjx+bzV3gwGFSYpA=; b=S6Zutwioao4iZgODAb47F5GFzQFmgYXcGlylrBCR1zplWWCnd8wDafXZZDGE8CsicK VjAOWD2TDALcNKqlzn3RvUNChE4PTXWgig/HPn71S9oq39Yh5TrgpKsjnh6rVuTpVoQg M1kglkQv+e0WZaX17WAz4RzE0Wtbzs4+JPi4W1O47hvn4wLbdE3o4tCgliyfPYu+pRE0 b6ssoSLg1OmlMdfn/FDYPX0JAqcJZJKlVFmhi54uwWQeqZ/IM+9xuwgU7y2toDyIlrlm Y+H8jadh6DGl7JjNnCIIUOg1I6y8PnACJfF22TuZoR+A3IX4RSV/wDVkM4gi5QqatDqq 1k+w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=C9VsVv5LMYY+JeWrl9pgJWMA+IKGjx+bzV3gwGFSYpA=; b=dfG3pHDtcERayijWBk6fl5OQEtlO/O441c0BvPNQQbWaO6ffBN4+zqC5XCERnJ/stP sBCv7mMaOu7EaLeCzQ2KhtXbhVn4oFK47ja+xaIgS2spUPkAfQ38ey7qRNLudgvUu6AI HK3aBLdaqryFwYNGyk/RwGdehr6lsG/wJXz585Ygw6biKzNbOmzw84bWfDgUaat4WvEQ TogxVLJ3pnkFRh8qlroMLkAaZgEyCi8Cl7CcVei1R/AcoUkgNwgc0RtFh5kNF3rSYukN nYrJBhzmH/ULnyHKh4RSAquRUWxwpamI/Oj56SrVhhNyYRWyDgaHXuea+bSxITPXrjs0 mqWg==
X-Gm-Message-State: AJaThX5LCGqPeEVRh4L6l0H1TmrXXNSkw3U6cpbTtrTqgd8WLqfCJpdZ UL2yl08ogxAij2TaURGiCAGi82xvvNjAHEaZCiY=
X-Google-Smtp-Source: AGs4zMaeM/AECU97juYpQka+K7+CAWI+0at5NSa6rKvgV1xTt/0pXsPI84Dybp8Zd2YBw7ue5vjDZn0aGPx4iH4U4GM=
X-Received: by 10.84.132.76 with SMTP id 70mr7519195ple.135.1510536475391; Sun, 12 Nov 2017 17:27:55 -0800 (PST)
MIME-Version: 1.0
Received: by 10.100.155.9 with HTTP; Sun, 12 Nov 2017 17:27:14 -0800 (PST)
In-Reply-To: <87vaif55r4.fsf@ta.scs.stanford.edu>
References: <151040587573.16080.12341649562855789524.idtracker@ietfa.amsl.com> <874lpz6nh7.fsf@ta.scs.stanford.edu> <CAHbuEH6NZM9ojM_DjszF_kbd57VXm19v8JaVcFvBBRqZ9vxw7Q@mail.gmail.com> <87vaif55r4.fsf@ta.scs.stanford.edu>
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Date: Sun, 12 Nov 2017 20:27:14 -0500
Message-ID: <CAHbuEH5RTMC9v+UaZKH+Yw1aK-xnd47mUv7XFBp1k_J1uaf8_g@mail.gmail.com>
To: David Mazieres expires 2018-02-10 PST <mazieres-h5y4shmycn6scei6fu578322sa@temporary-address.scs.stanford.edu>
Cc: The IESG <iesg@ietf.org>, tcpinc@ietf.org, "Black, David" <david.black@dell.com>, tcpinc-chairs@ietf.org, draft-ietf-tcpinc-tcpeno@ietf.org
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpinc/_BGBuORZ2xLRVQ_0OWQCNeIEV40>
Subject: Re: [tcpinc] Kathleen Moriarty's Yes on draft-ietf-tcpinc-tcpeno-13: (with COMMENT)
X-BeenThere: tcpinc@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Working group mailing list for TCP Increased Security \(tcpinc\)" <tcpinc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpinc>, <mailto:tcpinc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpinc/>
List-Post: <mailto:tcpinc@ietf.org>
List-Help: <mailto:tcpinc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpinc>, <mailto:tcpinc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Nov 2017 01:27:57 -0000

On Sun, Nov 12, 2017 at 8:25 PM, David Mazieres expires 2018-02-10 PST
<mazieres-h5y4shmycn6scei6fu578322sa@temporary-address.scs.stanford.edu>;
wrote:
> Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>; writes:
>
>> I only suggested section 4 as that's where you first mention OS.  I
>> think it's important as one reads the draft to understand how you want
>> that read on first introduction.  The Security Considerations section
>> is really far down in the draft.  Do you want to add a pointer to the
>> security considerations from section 4 and in the security
>> considerations also point to RFC7435?
>>
>> That would also work for me if the pointer to RFC7435 isn't in section 4.
>
> If you want RFC7435 cited upfront, what about doing so in the design
> goals section (1.1)?  The first design goal could be extended to
> something like:
>
> 1. Enable endpoints to negotiate the use of a separately specified TCP
>    encryption protocol (_TEP_) suitable for either opportunistic
>    security [RFC7435] of arbitrary TCP communications or stronger
>    security of applications willing to perform endpoint authentication.

Perfect, thanks!  I think this will help the reader and I appreciate
you addressing the comment.

> David



-- 

Best regards,
Kathleen