IETF Logo Mail Archive

Re: [TLS] Francesca Palombini's No Objection on draft-ietf-tls-dtls-connection-id-11: (with COMMENT)

Achim Kraus <achimkraus@gmx.net> Tue, 20 April 2021 16:46 UTC

Return-Path: <achimkraus@gmx.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E5123A00E2; Tue, 20 Apr 2021 09:46:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.216
X-Spam-Level: *
X-Spam-Status: No, score=1.216 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SBL_CSS=3.335, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=gmx.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HQTsqRyrreDI; Tue, 20 Apr 2021 09:46:20 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.15.15]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4CFDD3A07D3; Tue, 20 Apr 2021 09:46:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=gmx.net; s=badeba3b8450; t=1618937172; bh=FrmaFAhigVotuWxx+W3HtCzXIUZXmblfJwfYWRRIeaA=; h=X-UI-Sender-Class:Subject:To:Cc:References:From:Date:In-Reply-To; b=Zb727ad3wmIDjRB7fwvfbyuMMQaXoRZJFpZpDOprQqygg2k092G9JyUq46ya7P0tI RsZU00zUauvSjT4CULt2CCQzGttdfsVRR76qmEn8h/k+5vNr7IYJRUZq1fyELN6nVd n2oPwqdtIK6ktdFfTEZZ08QAb+KjmeHlltDYEh1c=
X-UI-Sender-Class: 01bb95c1-4bf8-414a-932a-4f6e2808ef9c
Received: from [192.168.178.10] ([88.152.184.201]) by mail.gmx.net (mrgmx004 [212.227.17.190]) with ESMTPSA (Nemesis) id 1M5wPh-1lRUr906CR-007UXK; Tue, 20 Apr 2021 18:46:12 +0200
To: Francesca Palombini <francesca.palombini@ericsson.com>
Cc: The IESG <iesg@ietf.org>, tls@ietf.org, draft-ietf-tls-dtls-connection-id@ietf.org, tls-chairs@ietf.org
References: <161893574825.2034.14965092293340124157@ietfa.amsl.com>
From: Achim Kraus <achimkraus@gmx.net>
Message-ID: <fecf4c77-ad48-7f04-f057-623c1d4c30e7@gmx.net>
Date: Tue, 20 Apr 2021 18:46:10 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0
MIME-Version: 1.0
In-Reply-To: <161893574825.2034.14965092293340124157@ietfa.amsl.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: quoted-printable
X-Provags-ID: V03:K1:zWg1utMTdTWtomGjZ3/XE9vn5jdCDnzrnzC58GAxVu9anWzHW2j Ras+vEAiZTSBsIphLSfpRFeo0zMz6YVAmhQgdW+1quNrRLd5yGtJp6x3u1yd+xZXGNX6YUA mSGOIWOW2AI47o+8BPZBExIq6oIce8bMWiVDQ0HHNvJG7qaG9FF+aCl7iPbhWQo4EqgXeT9 ddOOaRTHh89nFgGz9cxJQ==
X-UI-Out-Filterresults: notjunk:1;V03:K0:0ZJGUbbBycc=:G3Ytac9gDFMg4Cz0WBHu/W ctukW6NLzsAHccVZnAAExyIBWhgf03wzMycXXSAskFqVpsVVslkkn+OEpM1jgClH/iop5VOeW oUGalYAaTR3rHuc34GoiK5zF+95Bx22NNj6CqobyyVJ58ExJnYMLYnkEEw+IG5aArTZbvhZuA 315mYs5xE2IKpZ4TMuEOv4yludYB1j6lC7+o9oVb7516ivSFgA+jTUm7OgKArEFy1jYifq9Oo yhnGKuzbxsgDOEv6I1GTuO9Wy03YeImj2k4WCrHVWKPCSniC4pza2xHQ/VU6Q8px+kZLIl6kx gyPMyYI1xTr4OluJ4Wt+DXquwF/Vnv2lc0cSZQ8rzFt51EWXogvet5Q5U8Boswfv/x5vCJLLg Q3klTdRloOpTwfJO61KVw72Gn2oMTLzqHYZIhDNy5U3VGf9Xs/mABX5fygg3nHJ1QKw093LkY pQN7RLATqb4amRnzmH3d+D8OkC12u1/hp7mBhAybCstXaGjoRsqaxsoXrP3ZLuMX1YvyFUvRv 6g2WiJHhr9KB2E6i16PL4XHhvucsGYANCj9pmwLw5aYOzVU6zjd4IqA1kUEF+y491Wn6uAcvv HSY55QG/iLMw0385WSpZ5vuwkaXKb4LbshAAwfcXwEdb5mZVnU/wKFz4RuI+4Xf6gmQeDt77S 68fLB0fwpjNZyWCuncq2finVa8AVLzDGaafl8iyuiMDcOYvLYrNlJBLQaKUjohfr9x3oKTmad w7dHgheGUx01SYKB0E/ca7++RsjIZUhaKRnlOKFfFUbNc2V8HWzpJSwHO/gEe9SomgoWqdbHM MhP8rLHf7wu5Dmj0N9jt0DCJOez9zEJRUhsdHOLlvYIMj2LKAhblD9aJYinSsYT0PauESwfeM O0slu/GZthlCsZOcqxYqSNO0w1sBJsPZc6fAA9SShiejs8AHf8OcvNL7SGjcrsA1ttqFKPSCI W5CUQn6e8ppcOGNPleWjMjfuNkfqMzOn9bnHxEfuwIMqOJq/hoE2E/lUJT1TMkWgwZYcXbcwE Mh1paS4bjDsIG1xQNWQReoGb42CdW5CUsUMccNo6zNMJg8C485R1LtbogAVxkVSLamSfAXqgg km3yNYR2ZyoTwfL69GR0BPc+50Sq+qmosRXhPVZYvuxmjrEENeYbbD98smVWlU/XuG00UQj+i ycxFLhHCWCdXDvlUdMhLitYDanvzFkVWtf6lNE0cD65rnUG5AYXXxFJmajNFnrYTj9NmqeUyq PZVkthFFcUW/dnEK+
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/yWzndYmC4l4KnjLBurGNb6g5Y6c>
Subject: Re: [TLS] Francesca Palombini's No Objection on draft-ietf-tls-dtls-connection-id-11: (with COMMENT)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Apr 2021 16:46:26 -0000

Hello Francesca,

 > 5. -----
 >
 > Section 10.2
 >
 > FP: Just checking - why is 53 "incompatible with this document"?

The 53 was is used with the MAC definition of the previous version 06 of
this draft. Though the MAC has been adapted, using a different extension
number makes it easier to migrate existing deployments to that new MAC.
At least for Eclipse/Californium I know, that is used with 53 and the
old MAC.

best regards
Achim Kraus

Am 20.04.21 um 18:22 schrieb Francesca Palombini via Datatracker:
> Francesca Palombini has entered the following ballot position for
> draft-ietf-tls-dtls-connection-id-11: No Objection
>
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
>
>
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about DISCUSS and COMMENT positions.
>
>
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-tls-dtls-connection-id/
>
>
>
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
>
> Thank you for the work on this document. I only have minor comments and nits
> below.
>
> Francesca
>
> 1. -----
>
>     sending messages to the client.  A zero-length CID value indicates
>     that the client is prepared to send with a CID but does not wish the
>     server to use one when sending.
>
> ...
>
>     to use when sending messages towards it.  A zero-length value
>     indicates that the server will send with the client's CID but does
>     not wish the client to include a CID.
>
> FP: clarification question: I am not sure the following formulation is very
> clear to me: "to send with a(/the client's) CID". Could "send with" be
> rephrased to clarify? The previous paragraph uses "using a CID value", that
> would be better IMO.
>
> 2. -----
>
>     the record format defined in {{dtls-ciphertext} with the new MAC
>
> FP: nit - missing "}" in markdown.
>
> 3. -----
>
>     The following MAC algorithm applies to block ciphers that use the
>     with Encrypt-then-MAC processing described in [RFC7366].
>
> FP: remove "with"
>
> 4. -----
>
> Section 10.1
>
> FP: I believe you should specify 1. what allowed values are for this column
> (i.e. Y or N, and what they mean) and 2. what happens to the existing entries -
> namely that they all get "N" value.
>
> 5. -----
>
> Section 10.2
>
> FP: Just checking - why is 53 "incompatible with this document"?
>
> 6. -----
>
>     Value   Extension Name  TLS 1.3  DTLS Only  Recommended  Reference
>
> FP: nit- s/DTLS Only/DTLS-Only to be consistent with 10.1
>
>
>
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls
>

v2.23.0 | Report a Bug | By Email