Towards Remote Procedure Call Encryption By Default
draft-ietf-nfsv4-rpc-tls-11
Approval announcement
Draft of message to be sent after approval:
From: The IESG <iesg-secretary@ietf.org> To: IETF-Announce <ietf-announce@ietf.org> Cc: David Noveck <davenoveck@gmail.com>, draft-ietf-nfsv4-rpc-tls@ietf.org, magnus.westerlund@ericsson.com, The IESG <iesg@ietf.org>, nfsv4@ietf.org, nfsv4-chairs@ietf.org, davenoveck@gmail.com, rfc-editor@rfc-editor.org Subject: Protocol Action: 'Towards Remote Procedure Call Encryption By Default' to Proposed Standard (draft-ietf-nfsv4-rpc-tls-10.txt) The IESG has approved the following document: - 'Towards Remote Procedure Call Encryption By Default' (draft-ietf-nfsv4-rpc-tls-10.txt) as Proposed Standard This document is the product of the Network File System Version 4 Working Group. The IESG contact persons are Martin Duke and Magnus Westerlund. A URL of this Internet Draft is: https://datatracker.ietf.org/doc/draft-ietf-nfsv4-rpc-tls/
Technical Summary This document provides for the encryption of RPC requests and replies, using opportunistic transport-layer security. In addition, it provides facilities that can be used to authenticate the client, in order to avoid situations in which unauthenticated requests issued by unauthenticated clients can be executed by RPC servers. Working Group Summary. The working group was quite supportive of this work, including many who developed prototype implementations. While this work often indicated the need for clarification or other updates to the evolving draft, there was no occasions on which contention arose. Document Quality This document is of high quality. Beyond the normal level of working group review, it has benefited the discovery of issues exposed by work on protoype implementations. In addition, because of the importance of this work and the fact that the authors were not expert in security matters, some early reviews by the Security Area Directorate were scheduled during the early development of this document during 2019. Alan DeKok and Derrel Piper provided the requested reviews. While these reviews, somewhat unsuprisingly, showed that there were issues to address, these issues have been addressed, contributing to the document's high level of quality. Personnel David Noveck is the document shepherd. Magnus Westerlund is the responsible area director