IETF Logo Mail Archive

Re: [Teep] Zaheduzzaman Sarker's No Objection on draft-ietf-teep-otrp-over-http-14: (with COMMENT)

Dave Thaler <dthaler@microsoft.com> Sat, 25 March 2023 03:12 UTC

Return-Path: <dthaler@microsoft.com>
X-Original-To: teep@ietfa.amsl.com
Delivered-To: teep@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 49D90C15154F; Fri, 24 Mar 2023 20:12:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jpJ3fxedJ4hD; Fri, 24 Mar 2023 20:12:11 -0700 (PDT)
Received: from BN3PR00CU001.outbound.protection.outlook.com (mail-eastus2azlp170100001.outbound.protection.outlook.com [IPv6:2a01:111:f403:c110::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3CC58C151542; Fri, 24 Mar 2023 20:12:09 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=icHDjtFuNU1kbDRVTR+S7sv3lK5ob1LzcsN06U5i8LA4MlxZP83zqSlQV/boAlnIuNQ4s00/N4duImI50NTR/o18u/hgrn+IkWREHyp3kNPMoHLtdeNSAy7FxJwWZGZyYRMAunEci6kQwrvy8Fa5ZcAFUsSnrbu6Um3qY90MJ9psRYnC6J1Z8dKvEpW/wYOI5Knl7ZZ0s/w+NNYRaxO13snA94Ak0emkojSS3Z1h0lkoUcMXbLfraH6/q9VnwoGiowus8r7j4jwDWbpT4y6FbH5atai0+qyPA8D7Doz41uGUyh0EoQIiRBzeyfKSs2dOKvAouQkgMYDIrOGZ5BrgXQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=pZF/kXU3+5/HUAKy1GefsIRY8VPVAoZPsp28XGXpzF8=; b=jlIES+3vY6xrt9/Ld6kJl78JCAvM1WHCOVTOWj6VeK5CPr9KzqzbqGEFVxdZvwS9YTLdZ3KusU+1XsVcKz0AEVCP9QHunJefTSjY+ix3yKtZKqt4KIbu1HrRMjgCJssdo115upR8jsFrkNHh1aXzyLl9A8qMBDSaxhjAO9dtf0SYIvefovttBjF/HmnEfQxXAtRxuVBbC4GguEz9KPMZa4en3lEmuAm5ZdmGjJEhq7A64qMOgL4/ZOJv216h3pit9q/WWisq2hdr0+vUW5QiIR7HotFxDxFETWL6sMBhIV9I9pYk88Bg6rl+KCGr587bxVgpBCIrDtGAxFkHIrFn3w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=pZF/kXU3+5/HUAKy1GefsIRY8VPVAoZPsp28XGXpzF8=; b=QP7fH4IBQLuxl0pBPXKdTAziAUZYjp1F2SAx5gmqdeIyP4lWbl9nR5SRIEMVHtC6qo6bvmCXbq4hJfIN5oKW8PLdB/+Zvz/uQTxm0YDz/ysTxnyg0lAETtt2lNWCDbq1+WlHpnig4ZedHSFckoy1Z64GYY7LhGcd0FZwYQpo2hQ=
Received: from PH7PR21MB3878.namprd21.prod.outlook.com (2603:10b6:510:243::22) by SJ1PR21MB3555.namprd21.prod.outlook.com (2603:10b6:a03:451::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6254.9; Sat, 25 Mar 2023 03:12:07 +0000
Received: from PH7PR21MB3878.namprd21.prod.outlook.com ([fe80::ebee:52ea:94c9:4e43]) by PH7PR21MB3878.namprd21.prod.outlook.com ([fe80::ebee:52ea:94c9:4e43%6]) with mapi id 15.20.6254.009; Sat, 25 Mar 2023 03:12:06 +0000
From: Dave Thaler <dthaler@microsoft.com>
To: Zaheduzzaman Sarker <Zaheduzzaman.Sarker@ericsson.com>
CC: "draft-ietf-teep-otrp-over-http@ietf.org" <draft-ietf-teep-otrp-over-http@ietf.org>, "teep-chairs@ietf.org" <teep-chairs@ietf.org>, "teep@ietf.org" <teep@ietf.org>, "kondtir@gmail.com" <kondtir@gmail.com>, The IESG <iesg@ietf.org>
Thread-Topic: Zaheduzzaman Sarker's No Objection on draft-ietf-teep-otrp-over-http-14: (with COMMENT)
Thread-Index: AQHZV1rSn51JHTlW1025ZjIfg0A7e68K39LQ
Date: Sat, 25 Mar 2023 03:12:06 +0000
Message-ID: <PH7PR21MB38784EDFE7F463593332BD52A3859@PH7PR21MB3878.namprd21.prod.outlook.com>
References: <167889755355.53650.11341336162328735683@ietfa.amsl.com>
In-Reply-To: <167889755355.53650.11341336162328735683@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=90507a8f-d631-4f53-8db3-eb1324264eed; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2023-03-25T03:09:51Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH7PR21MB3878:EE_|SJ1PR21MB3555:EE_
x-ms-office365-filtering-correlation-id: de1e54bd-4194-4037-2194-08db2cdeb6fc
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: OArtWWtbTcS9fKxJDCOgzXTHvzyEy8dQU3qoXNWR3Szr4wejGgV8dvRV4FTpKbLT3TtuWpsB2wsVjSTUAqAtfyv8nX0FaR6Oabw0M0jMUcU9mLr9RYnSDS+QrTaRY8xopwVxLisq+aJllgj1WMdL4jLp6fUwGVHDCG8mYrxHTv0dl6utQvNED1kHNrUCHedUMlT423HZLB5pna2QjtQ95H+zZEH7mvTNcCqmgKHB5lI6ea++6a5RQP29rxIE2+gjeOX310+AMmcUCVk2e7ki3TYgDJoXV+xSbm268zt4aJAMI95uFEF9iSrB5UZkCG5RpyuqCXcLE+GhQoQrKuSUzSmWt53kbnHofAvZPxUMWy1ewUT7P9Hzndif01VOZXfzYLBYl1reO/2q49jvNmjPiUSKeJOfMSNrIIVqdYWMPCdpM+gVddIxng7qCc5EIEqUnKCxIQ6tdWFSiOlPC57aBpRFQo+MpLiVJTlaE6mUKod/2mR6b/rqL+9QQwbvSsK7xSUajq/CpPwbX2DQOZYVClfGBkJAlQSkx70PSTapY7Gipjh1lZJeN4bRUElETDo9S8zXZhsiiYgJFiJV8X5u2zqmwegXcSsJ3rhWhT+JpZgloHKrL829LIUezPJj4Kj/IluH7toWWOLq0EBMzaJuMg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:cs; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR21MB3878.namprd21.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(136003)(366004)(376002)(396003)(346002)(39860400002)(451199021)(82960400001)(122000001)(66476007)(8936002)(66556008)(4326008)(66446008)(64756008)(6916009)(8676002)(186003)(52536014)(316002)(66946007)(76116006)(7696005)(966005)(71200400001)(54906003)(478600001)(5660300002)(6506007)(10290500003)(55016003)(8990500004)(9686003)(38070700005)(82950400001)(33656002)(41300700001)(53546011)(38100700002)(86362001)(66574015)(83380400001)(2906002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: VV8CwGknNH7HeMPpAkwjaLgCnUkJYlgVZrR1yuTJibUnV40OpxPHrjxcUdAXwLddj5g7kx+wwe0pV9kX8b0pTrSe4za+bWcfku88Jtwc8tYjLq/5DFa3JHw0LwbOnR1dSI5ml0HuCnAcAkZdszsrvPlmmg6bcyxigwekByzR+X4ttU85K7WwgvuYXCFSLh+iUHEQsV3lpcA5+p1FxWLnowMnkgtKwHIfQ2PeA9wL+Mdc5Qhp2HR+utg/HcD/7GwVIpGWjgfCgQfGH3gxRDFw7SSpkSSd9fmEd13K4M5RnvDj5WvkTCR1txfaqaCSKpvX0uQAOAAP2zRISW+DNMIk4E8LK5lCE4le54jERCcvSIddnZzriIXv//GviGzesmplMKNFSPnfe9+U++nOL04P9q7AaAWtcP9CElFIfTFq/DaHoVoV4Nm11cqvl6tYgbyayPhXQJaRtz9HUbptDct3OKuXxmeSHfyW6PRcy/YrS1m+IU5wA0ehBv0p54aad/S7NsNW5Mf0rSTct3nh39EEDZuY0ZhVW1NmTIzZu6qwpEH4i+7HmMSwVhWUoNfU0J/sWZKswfoJKNEnPMhyzsBaHZ1++t0xYXTMvwr+XMtcBEF408wulr3ab4Pc+SjE8KQj7ZJQ3PRDV8RbGtIVoLOk7h1s2dAR319o5ANUAAG6njtIzaM6q39b113T1Z5E5F/XYNVltOYzH7B1gvAhLPEKvGpm2YrNNfzcQbVKlowY5eBqpCYFqmP6FukwZ9s1OICRz8T1BxS3O8TJOF95dKo9On7TuXAfHDZ4Parmr4IHDzO8gH+mSDPu8OleefHWC3c7ZGwgsAmPYA5TWuVllmVWQqabAKLYBJjzpNmkBBnE1kpPkJys9i3Wd++zsZnF0xBHi84scEqglcnBU8T+1QQdWTjGuQliay4QEN9zJAVX+14rMYjGMmBss2BbfcFb36B3aVNkYb14Q88t3Mvy374qGoKKGOGZUllUkpu5lQNfti7w4/yx9r6aLvG3lpx+XLFz2xtYnQczNyeWTxU4jIq03j7MjVy4ODhZz63iGVERlnonGxbKk1pksBCfKscELldoZmP2BY499u1AMvLBy0ydYHKTr8VHXUuy3leZ3dW84yxhOB/nZ3uJ0UmLFJsEiXLBX+5W+sD8yKS0ffWBl7rAC9sZd1zfGHR2a9Bi6Pxr8WDGBsWbF/7VT9FihJxD4KWrGbN5cNSS/BWSDHAuEMUeA4Prj4DV4wM4wQWyin+A9vO1v7CrYlFdduC36ndXmt6w77umKKlx7v0V4L3QgyhoH/a7WPmn7d2ptQJFMxV0j0RuWGe956PGyo59tvou7UIo1rR9PqmiXBDKAmjA/gbTJFsXhKJBX3h/cXCu+DYML7qaor0McMAUz2OEFHhs2uwjv0jGk0lMs5v/5VKLTfwhQEtjweMb7jjlmZCkyn6iJNeGwmgk3EokiBsJx9Ra8/Cq8o+Y4t8C7PoiNWToAHrw3H1KHbb1xbbYluv3YiFklf1Sd4dOh7K4/BACPEWfNMfnjAt2JwjTKyQalCuIXGZyDREOg3CDjZJGcwEjcp1WH3Fimyz4f3SprVfHWCGWdm1HZcef7JbiM0A8AKhYgTpyFNReokZnb4AFPKBciB749Os0GMviHZRRjUXJEENk9TnbRJYpuZdhUyXYS8xakndGdQ==
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR21MB3878.namprd21.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: de1e54bd-4194-4037-2194-08db2cdeb6fc
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Mar 2023 03:12:06.7309 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Zfd17/+AhF8TJp0BNF+gQuGQt1IA4o+mw24LgllxI/uTsxWsEEW0nsDzRWWl3nJBRl/VphiTb4U/yc4gecrahGzQljTS/cnYiSIIjkUITls=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ1PR21MB3555
Archived-At: <https://mailarchive.ietf.org/arch/msg/teep/ptYmk08FRQZxxswH0CVw3_CqyLs>
Subject: Re: [Teep] Zaheduzzaman Sarker's No Objection on draft-ietf-teep-otrp-over-http-14: (with COMMENT)
X-BeenThere: teep@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement <teep.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teep>, <mailto:teep-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep/>
List-Post: <mailto:teep@ietf.org>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teep>, <mailto:teep-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Mar 2023 03:12:13 -0000

> -----Original Message-----
> From: Zaheduzzaman Sarker via Datatracker <noreply@ietf.org>
> Sent: Thursday, March 16, 2023 1:26 AM
> To: The IESG <iesg@ietf.org>
> Cc: draft-ietf-teep-otrp-over-http@ietf.org; teep-chairs@ietf.org;
> teep@ietf.org; kondtir@gmail.com; kondtir@gmail.com
> Subject: Zaheduzzaman Sarker's No Objection on draft-ietf-teep-otrp-over-
> http-14: (with COMMENT)
> 
> Zaheduzzaman Sarker has entered the following ballot position for
> draft-ietf-teep-otrp-over-http-14: No Objection
[...]
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> Thanks for working on this specification. I haven't find any TSV related issues
> in this specification in my review.
> 
> I have comments/questions that I believe would improve the document if
> addressed -
> 
> # it says -
> 
>    and a "Trusted Application Manager (TAM)" on the server side) SHOULD
>    themselves run inside a TEE
> 
>   why is it necessary to use normative language here? is this something this
>   spec describing first for the TEEP architecture? It is however not the
>   intention of this specification to define TAM placement, or?

Changed to "might or might not":

   To be secure against malware, a TEEP implementation (referred to as a
   TEEP "Agent" on the client side SHOULD run inside a TEE, and a
   "Trusted Application Manager (TAM)" on the server side) might or
   might not run inside a TEE.
 
> # it says -
> 
>      Since POST responses without explicit freshness information are
>      uncacheable (see Section 9.3.3 of [RFC9110]), no Cache-Control header is
>      needed.
> 
>   Should this not say -
> 
>      Since POST responses without explicit freshness information are
>      uncacheable (see Section 9.3.3 of [RFC9110]), hence Cache-Control
> header
>      MUST NOT be used.
> 
>   I.e. use normative language to avoid the use of that particular header? also
>   explains if a Cache-Control header would generate error.

Updated.

Github copy at https://github.com/ietf-teep/teep-over-http
has been updated, and I expect to post -15 after the TEEP meeting on Monday.

Dave

v2.23.0 | Report a Bug | By Email