[TLS] Re: Éric Vyncke's No Objection on draft-ietf-tls-svcb-ech-07: (with COMMENT)
Ben Schwartz <bemasc@meta.com> Wed, 30 April 2025 20:51 UTC
Return-Path: <prvs=121548c182=bemasc@meta.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 3A50F23536BB; Wed, 30 Apr 2025 13:51:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.793
X-Spam-Level:
X-Spam-Status: No, score=-2.793 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=meta.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rOBEgeeD1rcu; Wed, 30 Apr 2025 13:51:23 -0700 (PDT)
Received: from mx0a-00082601.pphosted.com (mx0a-00082601.pphosted.com [67.231.145.42]) by mail2.ietf.org (Postfix) with ESMTP id 98F0E23536B3; Wed, 30 Apr 2025 13:51:22 -0700 (PDT)
Received: from pps.filterd (m0109333.ppops.net [127.0.0.1]) by mx0a-00082601.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 53UJ1Qda016496; Wed, 30 Apr 2025 13:51:21 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=meta.com; h=cc :content-type:date:from:in-reply-to:message-id:mime-version :references:subject:to; s=s2048-2021-q4; bh=tYYlnKhzMSnZ5V+grFhJ IY/4JQX5Qpl0F5Ym4IPKeKs=; b=gQXLQy4DHAkz33zmMAP/6ihR+iKq6KNR6w6K Pz1cZVuOE0EpO78KrIkmi2HfrsgN5SrVN3Vjo7pO9EHU6/LnQvb4fLw+nhpu3MOU 9SBlbBc9VAXPieMz9gSQe6GFq9znY0ID6U4elTo4S4+SRZRd1qIM5FJY0Qf4xo2i YlnjVfkDLZTQxiAYOs8Z0llaenxlm2LU0/qGIO/Mbv1vMlJcgd9n883T27C3eDzr a459pE24bBBcqPvniH3Eb2tMUVqxvDXHCjYXotQ8JL2mP15MPhY8gRCwPRpZCBXI YFJsZuVRDaKD4uZjO18YpeLlOT6Y0bWnGSd6xSwojTc21ASAhw==
Received: from nam12-mw2-obe.outbound.protection.outlook.com (mail-mw2nam12lp2044.outbound.protection.outlook.com [104.47.66.44]) by mx0a-00082601.pphosted.com (PPS) with ESMTPS id 46bs0hs94u-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 30 Apr 2025 13:51:20 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=ETc+/fEnrruY/Pl+gCMnpeGLoAFWs5TK2iPpme0HTz1GXk9cqMJD8QEo9EjXO9odQq79bDgQNSKm5uZ4jU+NN0OtauMmNNAo9GmrPI7u78kztaqF8aQ7W2ahexVIxp54VgFRe9yhnO+7bFTCi0dUNmYukrP8cAoXPigLuEVuPy933qUkGy82GRo5UgccOVDaHK1xqCS0ToNUieXjAIUBsmRbHsJK4hsO6XKB2XQ4QzaKNdLw6NSCan7kMQZJ/vwBfE8WU+FQDz2KsZL83KGFYT0MmKSTqtgZ8EkZEZzulzbwfIz5JQH/i2qDdT3cli8AjAOQb6O7SSTXDaeqZc/nag==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=tYYlnKhzMSnZ5V+grFhJIY/4JQX5Qpl0F5Ym4IPKeKs=; b=Z/oBlIjKlm3zmm/co2QzLdvlhIjDWIRCxrdx3v0B+bbyjZrIJqkW5tOppNwwf58nB4P0hfHe5CrmrDzNs346/URjkRtMIXk7LJd1fOYJN5GzrgrRj4dbr/viqE3XnHdIeemgdLhA9uts53BIAKv6ACY2zKFlwSAThVLuOxwmrUypCPwXgX8KksQgaQ+AAlyWGwElsrYSZrbK3hwJrheR3w4I5AKawIBX2I8/mYCpqrgIWBHCCwVUUWOKO0wXRwYNtRlqL40n8JsInD7cks6cv5dxaOdFwbthDBlbbl2fg+X1hbwMuf3DQpi8dkVI6FW+ueKTJDDJEypgcbFR6SuOEA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=meta.com; dmarc=pass action=none header.from=meta.com; dkim=pass header.d=meta.com; arc=none
Received: from SA1PR15MB4370.namprd15.prod.outlook.com (2603:10b6:806:191::8) by PH7PR15MB5475.namprd15.prod.outlook.com (2603:10b6:510:1f5::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8678.30; Wed, 30 Apr 2025 20:51:19 +0000
Received: from SA1PR15MB4370.namprd15.prod.outlook.com ([fe80::b6dd:72cc:243a:babb]) by SA1PR15MB4370.namprd15.prod.outlook.com ([fe80::b6dd:72cc:243a:babb%7]) with mapi id 15.20.8699.012; Wed, 30 Apr 2025 20:51:18 +0000
From: Ben Schwartz <bemasc@meta.com>
To: The IESG <iesg@ietf.org>, Éric Vyncke <evyncke@cisco.com>
Thread-Topic: Éric Vyncke's No Objection on draft-ietf-tls-svcb-ech-07: (with COMMENT)
Thread-Index: AQHbuNvpZGjH4Fh2+U6QRwN7jW7S07O8rtUG
Date: Wed, 30 Apr 2025 20:51:18 +0000
Message-ID: <SA1PR15MB4370C15B7314F2E41E319384B3832@SA1PR15MB4370.namprd15.prod.outlook.com>
References: <174591325304.410.3504274056417299474@dt-datatracker-9c7687889-5mqnr>
In-Reply-To: <174591325304.410.3504274056417299474@dt-datatracker-9c7687889-5mqnr>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SA1PR15MB4370:EE_|PH7PR15MB5475:EE_
x-ms-office365-filtering-correlation-id: 59d168ed-a786-41c0-774f-08dd8828c1e4
x-fb-source: Internal
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|10070799003|366016|376014|1800799024|38070700018|8096899003|13003099007;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:SA1PR15MB4370.namprd15.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(10070799003)(366016)(376014)(1800799024)(38070700018)(8096899003)(13003099007);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_SA1PR15MB4370C15B7314F2E41E319384B3832SA1PR15MB4370namp_"
MIME-Version: 1.0
X-OriginatorOrg: meta.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SA1PR15MB4370.namprd15.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 59d168ed-a786-41c0-774f-08dd8828c1e4
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Apr 2025 20:51:18.9000 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 8ae927fe-1255-47a7-a2af-5f3a069daaa2
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 9BMDob3sH1gGZ6zstvrrfTJak3vs2AKJIx5sUegaksJMIOMt3/4lJszmBCQN4G0k
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH7PR15MB5475
X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUwNDMwMDE1MyBTYWx0ZWRfX8pHGZ8KQGQ+k dq3+r2Wh2OLV1pmcSQ/m2v8zjMNO7UfnifVSUWhUbG+++ujA6C1j15wDKt3E0+fiUm2ccEuROT7 vIvvtJtG/R9IKI/OaDzkuF1fwVnPylGFFuESnNaRvXlRk3sKi2aqGnRiOlNlZMZJZpfUsKplVI+ 60UXfMDXTzi0SXp9oPZ0kMCzX0iAhkw7L9wsoXfKqxGINx5f2ch3nh0mQISLNVUu0KdypVPaXRN IpP1Vp6qLPGhZkWeXdN8RGzkj+3ZjKsUk7Z5RkN88U/YzGRJ2Qv0DS3DrMpsbvdLkc/hR9LCzwo 4RRIOvmm1Fh2JyHNFn3DgQaEpogFXhJwpEhVDHh2uicL3euq9tV7wLn86Pl6dHt4G1h23hznBLp FAqZC/Pv8D7rY8y/CrWWnOyUnsdCVwn6jESRQeMdxU5wDviDOA0316EeL29S64P40C3irzMH
X-Authority-Analysis: v=2.4 cv=Jae8rVKV c=1 sm=1 tr=0 ts=68128d48 cx=c_pps a=+tN8zt48bv3aY6W8EltW8A==:117 a=lCpzRmAYbLLaTzLvsPZ7Mbvzbb8=:19 a=wKuvFiaSGQ0qltdbU6+NXLB8nM8=:19 a=Ol13hO9ccFRV9qXi2t6ftBPywas=:19 a=xqWC_Br6kY4A:10 a=XR8D0OoHHMoA:10 a=Mrz3sjv-sVQA:10 a=NEAV23lmAAAA:8 a=48vgC7mUAAAA:8 a=enOcL8YfRRFGLsXMzUMA:9 a=wPNLvfGTeEIA:10 a=VBi9t_YoggYbjmuYMjwA:9 a=fcubDLuqZnZDD7Rv:21 a=frz4AuCg-hUA:10 a=_W_S_7VecoQA:10
X-Proofpoint-GUID: -fgjQqyxZBxY4dlx1TU605j4Svj49uds
X-Proofpoint-ORIG-GUID: -fgjQqyxZBxY4dlx1TU605j4Svj49uds
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1099,Hydra:6.0.736,FMLib:17.12.80.40 definitions=2025-04-30_06,2025-04-24_02,2025-02-21_01
Message-ID-Hash: P4N2SJEX6N2S2KMTQRUGFLPZHLOYRKLX
X-Message-ID-Hash: P4N2SJEX6N2S2KMTQRUGFLPZHLOYRKLX
X-MailFrom: prvs=121548c182=bemasc@meta.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "draft-ietf-tls-svcb-ech@ietf.org" <draft-ietf-tls-svcb-ech@ietf.org>, "tls-chairs@ietf.org" <tls-chairs@ietf.org>, "tls@ietf.org" <tls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: Éric Vyncke's No Objection on draft-ietf-tls-svcb-ech-07: (with COMMENT)
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/ma7-pvSgLO1-lOmXiNT8sZLNY_I>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>
________________________________ From: Éric Vyncke via Datatracker <noreply@ietf.org> ... > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- ... > Titles of sections 4 and 5 should include "TLS" to remove any ambiguity with > "DNS" server/client as the topic is about DNS. This draft is about a protocol element that bridges TLS and DNS, so these sections actually contain requirements that involve both protocols. For example, Section 4 notes the requirement that DNS zone contents and TLS server configurations have to be coordinated (in a new way) to avoid failures. In https://github.com/tlswg/draft-ietf-tls-svcb-ech/pull/24, based on Med's review, I've proposed changing the section headings to "Requirements for server deployments" and "Requirements for client implementations". Would that change address this concern? > Where is "SVCB-reliant" defined in `SVCB-reliant connection establishment` ? These terms are defined in Section 3 of RFC 9460, which is referenced in the preceding sentence. > While the examples of section 7 are welcome, I find the use of figure legends > for explanations quite unreadable (notably because they are sometimes too > concise and they do not clearly delineate the different examples). These seem to render reasonably well in HTML, but the TXT output is less appealing. If you have formatting suggestions I'm happy to incorporate them. --Ben
- [TLS] Éric Vyncke's No Objection on draft-ietf-tl… Éric Vyncke via Datatracker
- [TLS] Re: Éric Vyncke's No Objection on draft-iet… Ben Schwartz