Re: [Tls-reg-review] TLS ALPN registry: Request to add CoAP-over-UDP
"Salz, Rich" <rsalz@akamai.com> Wed, 28 February 2024 16:42 UTC
Return-Path: <rsalz@akamai.com>
X-Original-To: tls-reg-review@ietfa.amsl.com
Delivered-To: tls-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6A4D2C14F5FA for <tls-reg-review@ietfa.amsl.com>; Wed, 28 Feb 2024 08:42:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.805
X-Spam-Level:
X-Spam-Status: No, score=-2.805 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dohgoPIZM6F9 for <tls-reg-review@ietfa.amsl.com>; Wed, 28 Feb 2024 08:42:38 -0800 (PST)
Received: from mx0b-00190b01.pphosted.com (mx0b-00190b01.pphosted.com [IPv6:2620:100:9005:57f::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79B49C14F5F9 for <tls-reg-review@ietf.org>; Wed, 28 Feb 2024 08:42:38 -0800 (PST)
Received: from pps.filterd (m0122330.ppops.net [127.0.0.1]) by mx0b-00190b01.pphosted.com (8.17.1.24/8.17.1.24) with ESMTP id 41SGg2TM026762; Wed, 28 Feb 2024 16:42:13 GMT
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h= from:to:subject:date:message-id:references:in-reply-to :content-type:content-id:content-transfer-encoding:mime-version; s=jan2016.eng; bh=BjmSqaaTKRSGUJyxFJZEZGeeeFDej6TxvLeaBYtNhA8=; b= I3Muu8/CfPyeSsQZ7Zb6JT/BRiSSyOBDPKcCMoW3cIKHpYnGIfi7z9SB+Wjr/lLY WbQ1YnFc0qkJe4ZOxfgO9w1kCyJ70pZ1cPdglefl/jvBsRNUzfAWzrJ7X5UHEWbi y8W3ASqTPLKmq1i9ZmZCb2TcvKzan8LWBlBD6NhkF5s1jB/3Ke8ldkiW2dDWFGTw +es9sA+xF4ZQTaZTsby98aIz1gA43VWY0hKnHXjagH3UK86saKfSFcvdQcycXFyp SP4rL2Y0PdczipdaAxR68/BVFQtoaUpBicuKMlSp7OXOZv3GWoAgbuFuUk0Aqumf CLjJQLlIwoMUWlcAtPfL2Q==
Received: from prod-mail-ppoint7 (a72-247-45-33.deploy.static.akamaitechnologies.com [72.247.45.33] (may be forged)) by mx0b-00190b01.pphosted.com (PPS) with ESMTPS id 3wf903yucs-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 28 Feb 2024 16:42:13 +0000 (GMT)
Received: from pps.filterd (prod-mail-ppoint7.akamai.com [127.0.0.1]) by prod-mail-ppoint7.akamai.com (8.17.1.19/8.17.1.19) with ESMTP id 41SExcS2031986; Wed, 28 Feb 2024 11:42:12 -0500
Received: from email.msg.corp.akamai.com ([172.27.50.201]) by prod-mail-ppoint7.akamai.com (PPS) with ESMTPS id 3wfcp31f03-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 28 Feb 2024 11:42:12 -0500
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) by ustx2ex-dag4mb2.msg.corp.akamai.com (172.27.50.201) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1258.28; Wed, 28 Feb 2024 08:42:11 -0800
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) by ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) with mapi id 15.02.1258.028; Wed, 28 Feb 2024 08:42:11 -0800
From: "Salz, Rich" <rsalz@akamai.com>
To: Christian Amsüss <christian@amsuess.com>, "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>, IANA Protocol Parameter Requests via RT <iana-prot-param@iana.org>
Thread-Topic: [Tls-reg-review] TLS ALPN registry: Request to add CoAP-over-UDP
Thread-Index: AQHaamGrPmGJcHEPw0+DmkNpBU0yKrEgJ62A
Date: Wed, 28 Feb 2024 16:42:11 +0000
Message-ID: <44E82B36-129F-457C-BA1B-204030B0A45B@akamai.com>
References: <Zd9cmwFFDXJQVKys@hephaistos.amsuess.com>
In-Reply-To: <Zd9cmwFFDXJQVKys@hephaistos.amsuess.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.81.24012814
x-originating-ip: [172.27.164.43]
Content-Type: text/plain; charset="utf-8"
Content-ID: <24D91FBBB23F8144824D224AE9992FB4@akamai.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1011,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2024-02-28_08,2024-02-27_01,2023-05-22_02
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 adultscore=0 phishscore=0 suspectscore=0 mlxscore=0 spamscore=0 malwarescore=0 mlxlogscore=999 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2311290000 definitions=main-2402280130
X-Proofpoint-ORIG-GUID: Piih6TDVniWz_B8ZIrm7MwhnFa1kzhu1
X-Proofpoint-GUID: Piih6TDVniWz_B8ZIrm7MwhnFa1kzhu1
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1011,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2024-02-28_08,2024-02-27_01,2023-05-22_02
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxscore=0 malwarescore=0 clxscore=1011 bulkscore=0 priorityscore=1501 mlxlogscore=999 adultscore=0 phishscore=0 impostorscore=0 lowpriorityscore=0 spamscore=0 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2402120000 definitions=main-2402280131
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls-reg-review/meMm8LYSxvn4BGIkikScM3BblOw>
Subject: Re: [Tls-reg-review] TLS ALPN registry: Request to add CoAP-over-UDP
X-BeenThere: tls-reg-review@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: TLS REVIEW <tls-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls-reg-review/>
List-Post: <mailto:tls-reg-review@ietf.org>
List-Help: <mailto:tls-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Feb 2024 16:42:42 -0000
Nicely written request. Not sure if 7252 by itself is the best reference. Can you get a sentence added to the draft that says in section 3 that says "The identifier 'co' has been requested". And then we can ref the RFC and the draft. Are you okay if we say CoAP (over TLS) And CoAP (over DTLS) As the protocol names? On 2/28/24, 11:17 AM, "tls-reg-review on behalf of Christian Amsüss" <tls-reg-review-bounces@ietf.org <mailto:tls-reg-review-bounces@ietf.org> on behalf of christian@amsuess.com <mailto:christian@amsuess.com>> wrote: Dear TLS experts, please have the following entry added into the TLS ALPN registry: * Protocol: CoAP-over-DTLS * Identification sequence: 0x63 0x6f ("co") * Reference: RFC7252 RFC7252 did not register this because it predates ALPNs (it does describe CoAP and its use of DTLS), but there are now use cases related to dns-over-coap [1] and SVCB. This registration does not (can not, and does not intend to) change whether CoAP clients should send an ALPN, but later documents could change that (eg. [2] that concerns itself with DTLS1.3 used with CoAP). Given that the underlying protocol is used in constrained environments that are sensitive to message sizes, the short identifier should be warranted. Note that there is already an entry for "coap", but that refers to CoAP-over-TLS. If possible, please consider updating the "CoAP" (0x63 0x6f 0x61 0x70) entry to say "CoAP-over-TLS" to avoid confusion. This is following the recommendation at [5] to not attempt reusing the same ALPN for both the DTLS and the TLS version of a protocol. This is an individual request, which AIU should suffice for this registry given there is a document out already. I did check briefly with the CoRE group, and while not being a consensus question, got positive feedback from there[3][4]. Best regards Christian [1]: https://datatracker.ietf.org/doc/draft-ietf-core-dns-over-coap/ <https://datatracker.ietf.org/doc/draft-ietf-core-dns-over-coap/> [2]: https://datatracker.ietf.org/doc/draft-ietf-anima-constrained-voucher/ <https://datatracker.ietf.org/doc/draft-ietf-anima-constrained-voucher/> [3]: https://mailarchive.ietf.org/arch/browse/core/?gbt=1&index=3Ih6grC8j0JxPuOQqdaFFjSC0r4 <https://mailarchive.ietf.org/arch/browse/core/?gbt=1&index=3Ih6grC8j0JxPuOQqdaFFjSC0r4> [4]: https://datatracker.ietf.org/doc/minutes-interim-2024-core-04-202402281500/#request-for-an-alpn-for-coap-over-dtls-5min-ca <https://datatracker.ietf.org/doc/minutes-interim-2024-core-04-202402281500/#request-for-an-alpn-for-coap-over-dtls-5min-ca> -- This may seem a bit weird, but that's okay, because it is weird. -- perldata(1) about perl variables
- [Tls-reg-review] TLS ALPN registry: Request to ad… Christian Amsüss
- Re: [Tls-reg-review] TLS ALPN registry: Request t… Salz, Rich
- Re: [Tls-reg-review] TLS ALPN registry: Request t… Christian Amsüss
- Re: [Tls-reg-review] TLS ALPN registry: Request t… Christian Amsüss
- Re: [Tls-reg-review] TLS ALPN registry: Request t… Salz, Rich
- [Tls-reg-review] [IANA #1360036] Re: TLS ALPN reg… Sabrina Tanamal via RT
- [Tls-reg-review] [IANA #1360036] Re: TLS ALPN reg… Sabrina Tanamal via RT
- [Tls-reg-review] [IANA #1360036] Re: TLS ALPN reg… Sabrina Tanamal via RT
- Re: [Tls-reg-review] [IANA #1360036] Re: TLS ALPN… Yoav Nir
- [Tls-reg-review] [IANA #1360036] Re: TLS ALPN reg… David Dong via RT
- Re: [Tls-reg-review] [IANA #1360036] Re: TLS ALPN… Salz, Rich