Re: [tram] Ben Campbell's No Objection on draft-ietf-tram-stunbis-16: (with COMMENT)
Marc Petit-Huguenin <marc@petit-huguenin.org> Sun, 22 April 2018 21:31 UTC
Return-Path: <marc@petit-huguenin.org>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0CBF8124B18; Sun, 22 Apr 2018 14:31:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.108
X-Spam-Level:
X-Spam-Status: No, score=-1.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RDNS_NONE=0.793, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bMjbPgSW_HFJ; Sun, 22 Apr 2018 14:31:50 -0700 (PDT)
Received: from implementers.org (unknown [IPv6:2001:4b98:dc0:45:216:3eff:fe7f:7abd]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AE9491200F1; Sun, 22 Apr 2018 14:31:50 -0700 (PDT)
Received: from [IPv6:2601:648:8301:730f:407e:9f96:b05f:7bbb] (unknown [IPv6:2601:648:8301:730f:407e:9f96:b05f:7bbb]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "Marc Petit-Huguenin", Issuer "implementers.org" (verified OK)) by implementers.org (Postfix) with ESMTPS id 303D0AE844; Sun, 22 Apr 2018 23:31:48 +0200 (CEST)
To: Ben Campbell <ben@nostrum.com>, The IESG <iesg@ietf.org>
Cc: draft-ietf-tram-stunbis@ietf.org, Gonzalo.Camarillo@ericsson.com, Tolga Asveren <tasveren@rbbn.com>, tram-chairs@ietf.org, tram@ietf.org
References: <152393106321.26096.12146305230255636553.idtracker@ietfa.amsl.com>
From: Marc Petit-Huguenin <marc@petit-huguenin.org>
Message-ID: <4689aba3-e1a4-b519-079c-2361c422724e@petit-huguenin.org>
Date: Sun, 22 Apr 2018 14:31:46 -0700
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.7.0
MIME-Version: 1.0
In-Reply-To: <152393106321.26096.12146305230255636553.idtracker@ietfa.amsl.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="ZZqgCpWscOqcmkgxNWBYs253DZbnbC3uR"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/v85RxTEg3jQMKYpq4zF5o461B5o>
Subject: Re: [tram] Ben Campbell's No Objection on draft-ietf-tram-stunbis-16: (with COMMENT)
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 22 Apr 2018 21:31:53 -0000
Hi Ben,
Thanks for the review, please see my responses inline.
On 04/16/2018 07:11 PM, Ben Campbell wrote:
> Ben Campbell has entered the following ballot position for
> draft-ietf-tram-stunbis-16: No Objection
>
[...]
>
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
>
> Hi, thanks for this work. For the record, I have mainly reviewed the diff.
>
> General: I think Peter's ART-ART review has some points worth addressing.
I think I addressed all of Peter's comments.
>
> §1, last paragraph: This seems out of place.
> Also, I wonder if it should be
> stated more strongly, perhaps with a SHOULD or even MUST.
Already fixed following a previous review.
>
> §3: RFC 8174 offers it's own recommended boilerplate; is there a reason not to
> use it?
Already fixed following a previous review.
>
> §6.2.1, third paragraph: " The value SHOULD be considered stale and discarded
> after
> 10 minutes without any transactions to the same server. "
> This is a bit ambiguous. I think it means the value is stale if no transactions
> have occurred in the last 10 minutes, But I think it could be read to say that
> there should be no transactions to the same server once one considers the value
> as stale.
The new text reads:
The value SHOULD be considered stale and discarded if no
transactions have occurred to the same server in the last 10 minutes.
>
> §9.1.4: Does it make sense to signal that "an attack took place" rather than
> signaling "integrity protection was violated" and let the human operators
> decide if that implies an attack?
Applied.
>
> §14.3: "A compliant implementation MUST
> be able to parse UTF-8 encoded sequence of less than 763."
>
> 763 whats?
Already fixed following a previous review.
>
> §15.3, 2nd bullet: I'm not sure I understand what is meant by "get an updated
> external mechanism"
>
>
New text:
o STUN Client and Server using the Short Term Credential Mechanism
will need to update the external mechanism that they use to signal
what message-integrity attributes are in use.
--
Marc Petit-Huguenin
Email: marc@petit-huguenin.org
Blog: https://marc.petit-huguenin.org
Profile: https://www.linkedin.com/in/petithug
- [tram] Ben Campbell's No Objection on draft-ietf-… Ben Campbell
- Re: [tram] Ben Campbell's No Objection on draft-i… Marc Petit-Huguenin