Re: [Teep] Secdir last call review of draft-ietf-teep-otrp-over-http-14
Dave Thaler <dthaler@microsoft.com> Sat, 25 March 2023 03:05 UTC
Return-Path: <dthaler@microsoft.com>
X-Original-To: teep@ietfa.amsl.com
Delivered-To: teep@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E9E77C15154F; Fri, 24 Mar 2023 20:05:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zgRxvzyLhrFS; Fri, 24 Mar 2023 20:05:55 -0700 (PDT)
Received: from DM6FTOPR00CU001.outbound.protection.outlook.com (mail-cusazlp170100000.outbound.protection.outlook.com [IPv6:2a01:111:f403:c111::]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7AF24C151542; Fri, 24 Mar 2023 20:05:54 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Exjk67PZLyWOwyoD0aUd2RirchPwGqbN9Zt/Mw5+2wMLXy/V5Iu5oMpiI6cvtT4GHK8cftqbOTadKqo4WAIfUHImyfF7EOiVmkqhKG6dAQOo9ZuWj18jKz/elGKdjld1TssMj6taavn+TAQMLVxvGgOpKCIOlpM/loLqftx9lzb78k+FHg3nXYxbHnmKkrEYMfwjZ3qYW2SaUAdtOwyXSIAlStArgf8lz2uEWOzG3Shnviv57OCCd/ZPSwJ78gUFHujXqj86uqmGdX60okqRboyO3xchoPr18XZigcDQ6IwNuqpPz3KoaLGvUq6cxtXFK3P2+XiwE7lIF7IHTj5G3g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=zRo+XJ61OrEhnGxKAYhxVOeB/VSsMuL5rx+dOwuTU8c=; b=acFCiWftV9an0CQWObLPZYWBj7UsyLp3HvA76ACWUoTA6tTbuKtSbz7jIbmaJMSQjok5gjphh+/R8ZyZlFG/6TUML6cA2N0uLNmiNTw3FJXTU3GL/Bu+g2P3CVQUgNmebyjOBoeoU9T/i65F3Mx2zvbaqhwVZrrUmuOBWV4nykiYQzkW5KBVtGcqsCZ/TbX2MwUsnvgJW05puKuoo33dnZCMYWIt3mZciwZY7EITC/YHGMyix/f6f1tqp9UyjgNnF+G4NfrNI06SWSWvSOIo1MHroodvcJg/p5tfxBPH8dEec7hKMvXdkv3dof3m74F29+sJDyUc+J0gyBRAwHB7OA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=zRo+XJ61OrEhnGxKAYhxVOeB/VSsMuL5rx+dOwuTU8c=; b=D+iK9NWrKZHi4Sjf/Ji8T+jGjcsi4G4VWRBek19Td6WBaJgl9dhKqZgynaAhRdaUfG//XsAXUcrS/SeWUHc/3puCr51CAG1kiuFmvf5g0ji/QgU5g7swRHnXUEIYu3sImtdMolv09K89iEhm/eDhfHs6VA0Q18vtd9oG8qpeC8s=
Received: from PH7PR21MB3878.namprd21.prod.outlook.com (2603:10b6:510:243::22) by SJ1PR21MB3555.namprd21.prod.outlook.com (2603:10b6:a03:451::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6254.9; Sat, 25 Mar 2023 03:05:51 +0000
Received: from PH7PR21MB3878.namprd21.prod.outlook.com ([fe80::ebee:52ea:94c9:4e43]) by PH7PR21MB3878.namprd21.prod.outlook.com ([fe80::ebee:52ea:94c9:4e43%6]) with mapi id 15.20.6254.009; Sat, 25 Mar 2023 03:05:51 +0000
From: Dave Thaler <dthaler@microsoft.com>
To: Stefan Santesson <stefan@aaa-sec.com>, "secdir@ietf.org" <secdir@ietf.org>
CC: "draft-ietf-teep-otrp-over-http.all@ietf.org" <draft-ietf-teep-otrp-over-http.all@ietf.org>, "teep@ietf.org" <teep@ietf.org>
Thread-Topic: Secdir last call review of draft-ietf-teep-otrp-over-http-14
Thread-Index: AQHY4nSjC7dLaTcSnUevv5+1JFQUWK8LyB+Q
Date: Sat, 25 Mar 2023 03:05:51 +0000
Message-ID: <PH7PR21MB387844BE78D4A497078FD6EAA3859@PH7PR21MB3878.namprd21.prod.outlook.com>
References: <166604435575.23410.12533981427414843723@ietfa.amsl.com>
In-Reply-To: <166604435575.23410.12533981427414843723@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=15e00eed-cad4-478f-a8b0-be19f4579555; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2023-03-25T03:04:30Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH7PR21MB3878:EE_|SJ1PR21MB3555:EE_
x-ms-office365-filtering-correlation-id: 82e00da4-f806-45f5-260a-08db2cddd737
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:cs; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR21MB3878.namprd21.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(136003)(366004)(376002)(396003)(346002)(39860400002)(451199021)(82960400001)(122000001)(66476007)(8936002)(66556008)(110136005)(4326008)(66446008)(64756008)(8676002)(186003)(52536014)(316002)(66946007)(76116006)(7696005)(966005)(71200400001)(54906003)(478600001)(5660300002)(6506007)(10290500003)(55016003)(8990500004)(9686003)(38070700005)(82950400001)(33656002)(41300700001)(53546011)(38100700002)(86362001)(83380400001)(2906002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: eeFCgk63mMhpBodfbvD8wRup+2GUhYapF/+cnlEqVdGDaunYZidi9vA73TZlVy5yAyAtWZqVS2SbT/J6ab8pQh9v4g3FF+/YN2ZaxLSen+0561pndYf1b69MKeAEkDrq+tyHxpiokbpyRY9W/BDjzTxgX0I6NIywO8S2rvGcJTIgIdhRTvmf5poCRljFV7x7QpTH6d4EKVWkf1SdGkjNCYVNmYVSOVHX38yqPFJMzrmlu/+4qhdq2EmYWF4LWC/dSRvx/D27TtLeKbNSsBoNfJJMiAogc6PGevREPUkaKRGJZP1MmQH2doQcK5Sz4byAWFOFntQo3m0paoYS8cZMq+DTOuVEhLs4+fqYHPXKFCAiayX8JW148tco72F6TOZueQMP69ptR+gYmX07kytN/OKs+aKzZtDQeN7f4hCmNP3y7+V7DJCEYsr0k3K9kfm+Gt0BVfrlnTL7mgI4ccQfn16vu3SeJ5dOQ7BFQiDF+BHfU0YleGdQN4qeYbPh0bRrEnpJrpp7/dkvCbzbSOu+ZtmKpfWQwoZ+MkS3SKBFUlBsPBXlElgVX26foteGzP5MDDK7a8To4JGYnT+lKc74fnRxXlljzDo4HVySTh2cjIvF0PzMXS7E1yya+MKrMsVpcnffQ+5RVcGSHL9+djJfBJLV9wwW9jal3evZ6tXYCpyqdJngCBbjNE/MUptRyTH84OgNTFOz7wgdsFkKickZaTWI9atyG1vVmZnzzOPcfId8iaNB9q4lp+fUUa7Wg1R6EBDYRqg/jbJEXym5xRlo2s4XOFi5jAqsycaVp8NMLJ2mGnm3oZubxRDL3Dd9jv1RdKKWx31JRBEorroAjvhvO1G0mHzKyUK4HL9DKJrad5E0QRpgte/N5sdrTu6V3CeO8I/Hw5TNBLP+Xy2WueSD1Pil3y/mvnuiUWey9/AY+AeO3h2tiR6ay9Jll48Nx1bRVEFoeJHUWfM/tRD1d/dQGtYVLlr4VQq80HpX1DkC7GS2wrbdAtcsJo1H2waKAy1tM6A2jgDJogy+h26y/BOulgaD+arxkynMemVjMPjrlyJcMlRg4wG+i9kYONKRwLbs1ZAtVaHx/CqhmaouXCWZ63Zu6TVVJbMafhQ07wbojPV9czOYgdq1RsYhuqeFbrcgdKNtb9/ko0bF7Y/2u0KOphB7SqBz2FYm+Wk2odONl87XOWmBQAlEbExfR8ki0xjs3kn1jxlFgHTWXZo9DVW3t5dPQ/9pVZnEdEDIP8UTFrsDHjOAmZDbzXGD7fAio8WCbgi0iOVxYipAuD43gVhJhRfbsCz6rGEwLo8rtJDwqN4GQZ31oLRXxPJIZUi5hX2cqHSbAaaC8HAXL3IXug2C30WZH0I6xT2Tijw24XyqHBZaD0gfRRN3pwYtRCIkBQR2N1Fi//vnVhkcNjU9iJd4S7OGWEz7T0IYIm7S3l22/VFIcg1FExS6UKWMWtlxgJekM3NcEp15k0p2Mgn5E4bN/J9ghZ7g9sIerZQ0JGfzDKw8Q3ZdxkWK1X8OInNKWJ+GESqKggShrSW11+ZSyYc5Iaicszcx3vaJQ0eRKrQiF7os+Z3KIyNOxhG4WFUFCWcrB51LLi1QPcgC56pEoj0+OkNB3XW315hdy3cqsHfM9nh7jFiYsW2ig9evJm1QPn9TUnqnIYPD4zuraLcPjxWDUA==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR21MB3878.namprd21.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 82e00da4-f806-45f5-260a-08db2cddd737
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Mar 2023 03:05:51.2556 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: abJmK74VKMsF4u9Zs0Jiv+0cotFQQhsfsQCbHv7PVuAXSpCFMRqG4kl1ayw9jnFzzkQtFIvP9h56Na1bzuGzthghYtNXT/eU8kA/WCqtpuo=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ1PR21MB3555
Archived-At: <https://mailarchive.ietf.org/arch/msg/teep/OHSbdImQWj9gONZHLAgOt3jqIMw>
Subject: Re: [Teep] Secdir last call review of draft-ietf-teep-otrp-over-http-14
X-BeenThere: teep@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement <teep.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teep>, <mailto:teep-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep/>
List-Post: <mailto:teep@ietf.org>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teep>, <mailto:teep-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Mar 2023 03:05:57 -0000
> -----Original Message----- > From: Stefan Santesson via Datatracker <noreply@ietf.org> > Sent: Tuesday, October 18, 2022 7:06 AM > To: secdir@ietf.org > Cc: draft-ietf-teep-otrp-over-http.all@ietf.org; last-call@ietf.org; > teep@ietf.org > Subject: Secdir last call review of draft-ietf-teep-otrp-over-http-14 > > Reviewer: Stefan Santesson > Review result: Ready > > I have dropped this review as it has been overdue for quite some time. But > since it still appears on my review-list, I took a look at it now in case this is of > any interest. > > I have little knowledge about TEEP and the rationale behind its design > decisions. I trust that the author has that part figured out. My interest was > primarily in the requirements for HTTPS versus HTTP and how that was > motivated. > > A rather interesting observation in this regard was the attempt to "spice" the > requirement language of the specification. See section 4: > > "It is strongly RECOMMENDED that implementations use HTTPS." > > This brings my thought to other interesting alternatives to spice > requirements as defined in RFC 6919 like "OUGHT TO" ? ;) > > But jokes aside, I'm not sure "strongly" is appropriate next to > "RECOMMENDED". > > But other than that I find no issues with the document. Thanks Stefan. Removed "strongly" in the github copy at https://github.com/ietf-teep/teep-over-http I expect to post -15 after the TEEP meeting on Monday. Dave
- [Teep] Secdir last call review of draft-ietf-teep… Stefan Santesson via Datatracker
- Re: [Teep] Secdir last call review of draft-ietf-… Dave Thaler