Re: [tcpinc] AD review of tcp-eno
"Black, David" <David.Black@dell.com> Fri, 28 July 2017 20:56 UTC
Return-Path: <David.Black@dell.com>
X-Original-To: tcpinc@ietfa.amsl.com
Delivered-To: tcpinc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C7A15131B3F; Fri, 28 Jul 2017 13:56:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.501
X-Spam-Level:
X-Spam-Status: No, score=-5.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-2.8, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=dell.com header.b=hjgAEf0B; dkim=fail (1024-bit key) reason="fail (message has been altered)" header.d=emc.com header.b=nUZfuxFA
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CRJXKxceejtT; Fri, 28 Jul 2017 13:56:51 -0700 (PDT)
Received: from esa6.dell-outbound.iphmx.com (esa6.dell-outbound.iphmx.com [68.232.149.229]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7366A12EC51; Fri, 28 Jul 2017 13:56:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=dell.com; i=@dell.com; q=dns/txt; s=smtpout; t=1501275411; x=1532811411; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=bsxt0mEUp1bUIoNxfhRuFWAwhrKmzzvtonDt6a/LZaY=; b=hjgAEf0BuEF/FQBOhqMHaWLM/Gscoy6MB/yG56ZFwAazx2mnyj1eeoqz F/iUs2bCD7hmpfbfDQvXWXJUyTDUrR6oA+8LmUgxwvClAYooMzIGbjrwT BgIr8HmpzNlys4NQYbTAAlyObN/6VZI7j7x76GmII/w7g1pGsU347xqbT o=;
Received: from esa3.dell-outbound2.iphmx.com ([68.232.154.63]) by esa6.dell-outbound.iphmx.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 28 Jul 2017 15:56:50 -0500
From: "Black, David" <David.Black@dell.com>
Received: from mailuogwdur.emc.com ([128.221.224.79]) by esa3.dell-outbound2.iphmx.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 29 Jul 2017 02:46:12 +0600
Received: from maildlpprd51.lss.emc.com (maildlpprd51.lss.emc.com [10.106.48.155]) by mailuogwprd53.lss.emc.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.0) with ESMTP id v6SKumn3028343 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Fri, 28 Jul 2017 16:56:49 -0400
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd53.lss.emc.com v6SKumn3028343
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=emc.com; s=jan2013; t=1501275409; bh=u9FALmKjDsOMbh3EUGlzkO/yXo8=; h=From:To:CC:Subject:Date:Message-ID:References:In-Reply-To: Content-Type:Content-Transfer-Encoding:MIME-Version; b=nUZfuxFAsmF5ZrXi5wiAztco/YfApXQ6fiTvdWHgvjq3ZxvaL5GAsCO5ovzVuPIKw 1FS8TRGCeuabQ1bommycDO1CsgrpcOYr9RptV1apIm7i6UnYVO17qOUXBcNhp1zluW LvTkx+sg/VtmwWbB5NOjGTs1ZSHD/6vXerEMv18A=
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd53.lss.emc.com v6SKumn3028343
Received: from mailusrhubprd03.lss.emc.com (mailusrhubprd03.lss.emc.com [10.253.24.21]) by maildlpprd51.lss.emc.com (RSA Interceptor); Fri, 28 Jul 2017 16:56:22 -0400
Received: from MXHUB321.corp.emc.com (MXHUB321.corp.emc.com [10.146.3.99]) by mailusrhubprd03.lss.emc.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.0) with ESMTP id v6SKubOn007379 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=FAIL); Fri, 28 Jul 2017 16:56:38 -0400
Received: from MX307CL04.corp.emc.com ([fe80::849f:5da2:11b:4385]) by MXHUB321.corp.emc.com ([10.146.3.99]) with mapi id 14.03.0352.000; Fri, 28 Jul 2017 16:56:37 -0400
To: David Mazieres <dm-list-tcpcrypt@scs.stanford.edu>, "Mirja Kuehlewind (IETF)" <ietf@kuehlewind.net>
CC: "draft-ietf-tcpinc-tcpeno.all@ietf.org" <draft-ietf-tcpinc-tcpeno.all@ietf.org>, tcpinc <tcpinc@ietf.org>
Thread-Topic: [tcpinc] AD review of tcp-eno
Thread-Index: AQHTBjGr9NIWBVpYBEqO6/K8LwyL/qJn60YAgAB5YICAARhPgIAAeDoA///FflA=
Date: Fri, 28 Jul 2017 20:56:37 +0000
Message-ID: <CE03DB3D7B45C245BCA0D243277949362FB9D17F@MX307CL04.corp.emc.com>
References: <55B07DA5-E274-4720-A919-83483094B9A0@tik.ee.ethz.ch> <80C705CD-8A24-49A9-A1B8-6FA7B2162941@kuehlewind.net> <87fudh62um.fsf@ta.scs.stanford.edu> <36738439-CAEC-4694-87EF-00EC91426D9C@kuehlewind.net> <87shhg2twv.fsf@ta.scs.stanford.edu>
In-Reply-To: <87shhg2twv.fsf@ta.scs.stanford.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.238.44.127]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Sentrion-Hostname: mailusrhubprd03.lss.emc.com
X-RSA-Classifications: public
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpinc/nTfTbw-KV7T86vebffUvuYb0URM>
Subject: Re: [tcpinc] AD review of tcp-eno
X-BeenThere: tcpinc@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Working group mailing list for TCP Increased Security \(tcpinc\)" <tcpinc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpinc>, <mailto:tcpinc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpinc/>
List-Post: <mailto:tcpinc@ietf.org>
List-Help: <mailto:tcpinc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpinc>, <mailto:tcpinc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jul 2017 20:56:54 -0000
> On a related note, I think there might be an inconsistency in the draft > that I would appreciate some input in resolving. Section 7.1 says: > > TLS can currently only be added to legacy applications whose > protocols accommodate a STARTTLS command or equivalent. > TCP-ENO, because it provides out-of-band signaling, opens the > possibility of future TLS revisions being generically applicable > to any TCP application. > > Of course what, we really wanted to say was TCP-ENO was designed to > support TCP-use-TLS. However, if I recall, there's a citation issue > because we aren't supposed to cite an internet draft in an RFC unless > the two will become RFCs at the same time, and TCP-use-TLS has been > delayed. But then in 0x30, we still cite TCP-Use-TLS to assign it code > point 0x30. This is not an actual problem, as the restriction is that one is not supposed to *normatively* cite an Internet-Draft in an RFC unless that draft is expected to become an RFC soon, otherwise the RFC-to-be spends a long time at the RFC Editor waiting for the normatively referenced draft to catch up to it (I've been there, done that). Citing an Internet-Draft *informatively* is not a problem, will not cause any delays, and seems appropriate for this situation. Thanks, --David > -----Original Message----- > From: Tcpinc [mailto:tcpinc-bounces@ietf.org] On Behalf Of David Mazieres > Sent: Friday, July 28, 2017 4:23 PM > To: Mirja Kuehlewind (IETF) <ietf@kuehlewind.net> > Cc: draft-ietf-tcpinc-tcpeno.all@ietf.org; tcpinc <tcpinc@ietf.org> > Subject: Re: [tcpinc] AD review of tcp-eno > > "Mirja Kuehlewind (IETF)" <ietf@kuehlewind.net> writes: > > > This is what early allocation is for. We could have also asked for > > early allocation for tcpinc as soon as the spec was reasonably stable > > but given there was no-one who was actually about to deploy this in > > the Internet, it was probably not necessary. > > Is there something I can put in the document to clarify that early > allocation should be the norm not the exception? The think I like about > "Specification required" is that RFC7120 2a says: > > The code points must be from a space designated as "RFC > Required", "IETF Review", or "Standards Action". Additionally, > requests for early assignment of code points from a > "Specification Required" registry are allowed if the > specification will be published as an RFC. > > So I like the fact that the specification required allows early > allocation *if* an RFC is anticipated. > > Basically I want something in this document to make it clearly easier to > get ENO TEP IDs than TCP option kinds. > > > On a related note, I think there might be an inconsistency in the draft > that I would appreciate some input in resolving. Section 7.1 says: > > TLS can currently only be added to legacy applications whose > protocols accommodate a STARTTLS command or equivalent. > TCP-ENO, because it provides out-of-band signaling, opens the > possibility of future TLS revisions being generically applicable > to any TCP application. > > Of course what, we really wanted to say was TCP-ENO was designed to > support TCP-use-TLS. However, if I recall, there's a citation issue > because we aren't supposed to cite an internet draft in an RFC unless > the two will become RFCs at the same time, and TCP-use-TLS has been > delayed. But then in 0x30, we still cite TCP-Use-TLS to assign it code > point 0x30. > > Given the work invested in TCP-Use-TLS, should we indeed reserve TEP Id > 0x30 for that effort in case anyone wants to pick up it up again, and if > so how should we do that without citing an expired internet draft? Can > we just reserve TEP ID 0x30 for future use by TLS and cite TLS? Or what > should we do? > > Thanks, > David > > _______________________________________________ > Tcpinc mailing list > Tcpinc@ietf.org > https://www.ietf.org/mailman/listinfo/tcpinc
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)
- Re: [tcpinc] AD review of tcp-eno Black, David
- Re: [tcpinc] AD review of tcp-eno Joe Touch
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)
- Re: [tcpinc] AD review of tcp-eno Joe Touch
- Re: [tcpinc] AD review of tcp-eno Joe Touch
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)
- Re: [tcpinc] AD review of tcp-eno David Mazieres
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)
- Re: [tcpinc] AD review of tcp-eno Kyle Rose
- Re: [tcpinc] AD review of tcp-eno Kyle Rose
- Re: [tcpinc] AD review of tcp-eno David Mazieres
- Re: [tcpinc] AD review of tcp-eno David Mazieres
- Re: [tcpinc] AD review of tcp-eno Black, David
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)
- Re: [tcpinc] AD review of tcp-eno Mirja Kuehlewind (IETF)