Strong Assertions of IoT Network Access Requirements
draft-ietf-suit-mud-08
Revision differences
Document history
Date | Rev. | By | Action |
---|---|---|---|
2024-04-02
|
08 | Roman Danyliw | Will hold in "IETF Approval Announcement to be Sent::AD Follow-up" until draft-ietf-suit-manifest clears IESG Review. |
2024-04-01
|
08 | (System) | Removed all action holders (IESG state changed) |
2024-04-01
|
08 | Roman Danyliw | IESG state changed to Approved-announcement to be sent::AD Followup from IESG Evaluation::AD Followup |
2024-03-29
|
08 | Éric Vyncke | [Ballot comment] Thank you, Roman and WG, for adding an Update: meta-data to the document + the explanations on the timeline for this 'cluster' of … [Ballot comment] Thank you, Roman and WG, for adding an Update: meta-data to the document + the explanations on the timeline for this 'cluster' of MUD I-Ds. Thanks also for your patience as the revised I-D was submitted when I was in pre-IETF holidays and I am only now back to work. -éric |
2024-03-29
|
08 | Éric Vyncke | [Ballot Position Update] Position for Éric Vyncke has been changed to Yes from Discuss |
2024-03-13
|
08 | Robert Wilton | [Ballot comment] Thanks for addressing my comments. |
2024-03-13
|
08 | Robert Wilton | [Ballot Position Update] Position for Robert Wilton has been changed to No Objection from Discuss |
2024-03-04
|
08 | (System) | Changed action holders to Roman Danyliw (IESG state changed) |
2024-03-04
|
08 | (System) | Sub state has been changed to AD Followup from Revised I-D Needed |
2024-03-04
|
08 | (System) | IANA Review state changed to Version Changed - Review Needed from IANA OK - Actions Needed |
2024-03-04
|
08 | Brendan Moran | New version available: draft-ietf-suit-mud-08.txt |
2024-03-04
|
08 | Brendan Moran | New version accepted (logged-in submitter: Brendan Moran) |
2024-03-04
|
08 | Brendan Moran | Uploaded new revision |
2024-02-01
|
07 | Francesca Palombini | [Ballot Position Update] Position for Francesca Palombini has been changed to No Objection from Discuss |
2024-02-01
|
07 | (System) | Changed action holders to Brendan Moran, Hannes Tschofenig (IESG state changed) |
2024-02-01
|
07 | Cindy Morgan | IESG state changed to IESG Evaluation::Revised I-D Needed from IESG Evaluation |
2024-02-01
|
07 | Andrew Alston | [Ballot comment] Thanks for this document. I to am supporting Erik and Rob in their discusses, though I have no fundamental issues with the protocol … [Ballot comment] Thanks for this document. I to am supporting Erik and Rob in their discusses, though I have no fundamental issues with the protocol per say. |
2024-02-01
|
07 | Andrew Alston | [Ballot Position Update] New position, No Objection, has been recorded for Andrew Alston |
2024-01-31
|
07 | Murray Kucherawy | [Ballot comment] Comments from incoming ART AD, Orie Steele: > Only the developer can attest the communication requirements of the device. ^ is this sentence … [Ballot comment] Comments from incoming ART AD, Orie Steele: > Only the developer can attest the communication requirements of the device. ^ is this sentence using the word attestation in accordance with 9334 ? > or as part of other interactions that involve the conveyance of Evidence to the operational network. it might be preferable to repeat the RATS terms you are using, in terminology. > Devices can be quarantined if they do not attest a known software/firmware version. ^ perhaps include the word evidence here? > To accomplish the transport of the manifest Evidence is used, which needs to be available at the protocol of choice. reads awk. There is no normative definition of URL, but there should be probably. Noting several normative references to drafts. |
2024-01-31
|
07 | Murray Kucherawy | Ballot comment text updated for Murray Kucherawy |
2024-01-31
|
07 | Paul Wouters | [Ballot comment] I support Éric's discuss, and think we should discuss the oddness of a draft updating a draft without an Update: clause. |
2024-01-31
|
07 | Paul Wouters | [Ballot Position Update] New position, No Objection, has been recorded for Paul Wouters |
2024-01-31
|
07 | John Scudder | [Ballot comment] Thanks for this document. I have just a couple of nit-level comments: - "communication pattern are described" should be "patterns are" or "pattern … [Ballot comment] Thanks for this document. I have just a couple of nit-level comments: - "communication pattern are described" should be "patterns are" or "pattern is" depending on your intent (which I can't divine). - Is "Serverdig" a typo, or...? |
2024-01-31
|
07 | John Scudder | [Ballot Position Update] New position, No Objection, has been recorded for John Scudder |
2024-01-31
|
07 | Francesca Palombini | [Ballot discuss] Thank you for the work on this document. This is a DISCUSS to flag an action item for the IESG (no action required … [Ballot discuss] Thank you for the work on this document. This is a DISCUSS to flag an action item for the IESG (no action required from authors or wg): RFC 9334 is a downref in this document, but it was added after IETF Last Call, so it was not Last Called. IESG should approve it during the telechat. |
2024-01-31
|
07 | Francesca Palombini | [Ballot Position Update] New position, Discuss, has been recorded for Francesca Palombini |
2024-01-31
|
07 | Zaheduzzaman Sarker | [Ballot comment] Thanks for working on this specification. No objection from transport protocol point of view. I am supporting Eric's and Rob's discuss. I also … [Ballot comment] Thanks for working on this specification. No objection from transport protocol point of view. I am supporting Eric's and Rob's discuss. I also found it a bit odd that we are already extending a yet to be specified specification, can't this wait?. Besides, I have following comments which I believe would improve the readability of the document when addressed - # Elaborate SUIT at it's first occurrence in the document. # What is a MUD URL? yes, a reference to RFC 8520 would be necessary, otherwise, I would need to ask how do you encode the URL, and it's internationalization factors. # We would need to know about the "other MUD URL reporting mechanism" to actually understand the pros and cons. Where to we find them? |
2024-01-31
|
07 | Zaheduzzaman Sarker | Ballot comment text updated for Zaheduzzaman Sarker |
2024-01-31
|
07 | Zaheduzzaman Sarker | [Ballot comment] Thanks for working on this specification. I am supporting Eric's and Rob's discuss. I also found it a bit odd that we are … [Ballot comment] Thanks for working on this specification. I am supporting Eric's and Rob's discuss. I also found it a bit odd that we are already extending a yet to be specified specification, can't this wait?. Besides, I have following comments which I believe would improve the readability of the document when addressed - # Elaborate SUIT at it's first occurrence in the document. # What is a MUD URL? yes, a reference to RFC 8520 would be necessary, otherwise, I would need to ask how do you encode the URL, and it's internationalization factors. # We would need to know about the "other MUD URL reporting mechanism" to actually understand the pros and cons. Where to we find them? |
2024-01-31
|
07 | Zaheduzzaman Sarker | [Ballot Position Update] New position, No Objection, has been recorded for Zaheduzzaman Sarker |
2024-01-31
|
07 | Jim Guichard | [Ballot Position Update] New position, No Objection, has been recorded for Jim Guichard |
2024-01-30
|
07 | Murray Kucherawy | [Ballot Position Update] New position, No Objection, has been recorded for Murray Kucherawy |
2024-01-30
|
07 | Warren Kumari | [Ballot Position Update] Position for Warren Kumari has been changed to No Objection from No Record |
2024-01-30
|
07 | Warren Kumari | [Ballot comment] Thank you for this document. Also, thank you to Susan Hares for the OpsDir review, and for the followup discussions. I'd like to … [Ballot comment] Thank you for this document. Also, thank you to Susan Hares for the OpsDir review, and for the followup discussions. I'd like to support Robert and Eric's DISCUSS positions, especially the "This seems more like an ops thing than a security thing." |
2024-01-30
|
07 | Warren Kumari | Ballot comment text updated for Warren Kumari |
2024-01-30
|
07 | Michael Richardson | Request for Telechat review by IOTDIR Completed: Ready with Issues. Reviewer: Michael Richardson. Sent review to list. Submission of review completed at an earlier date. |
2024-01-30
|
07 | Michael Richardson | Request for Telechat review by IOTDIR Completed: Ready with Issues. Reviewer: Michael Richardson. |
2024-01-30
|
07 | Robert Wilton | [Ballot discuss] Hi, Thanks for this document. I've flagged the below issue as a discuss mostly because I think that it would be useful to … [Ballot discuss] Hi, Thanks for this document. I've flagged the below issue as a discuss mostly because I think that it would be useful to have a brief discussion with the authors on whether this is an issue and whether the document should include more text. (1) p 7, sec 6. Security Considerations This specification links MUD files to SUIT manifests for improving security protection and ease of use. By including MUD URLs in SUIT manifests an extra layer of protection has been created and synchronization risks can be minimized. If the MUD file and the software/firmware loaded onto the device gets out-of-sync a device may be firewalled and, with firewalling by networks in place, the device may stop functioning. The second sentence is included in the security considerations, but I wasn't really sure that this wasn't more of an operational consideration and hence might be better places in a separate "Operational Considerations" section of the document. Is there any workaround or mitigation for this issue? I.e., I still remember when Samsung managed to brick many of their Bluray players through a bad OTA update (which eventually required the devices to be returned to Samsung to be fixed). I.e., it feels like having the MUD file being accessed by a URL is a good idea, since that means that it can be subsequently updated if it turns out to be wrong, but this only helps if there is a mechanism to ensure that the MUD file will be retrieved again. Are such mechanisms in place and documented? Regards, Rob |
2024-01-30
|
07 | Robert Wilton | [Ballot Position Update] New position, Discuss, has been recorded for Robert Wilton |
2024-01-26
|
07 | (System) | IANA Review state changed to IANA OK - Actions Needed from Version Changed - Review Needed |
2024-01-23
|
07 | Éric Vyncke | [Ballot discuss] # Éric Vyncke, INT AD, comments for draft-ietf-suit-mud-07 Thank you for the work put into this document. Please find below one blocking DISCUSS … [Ballot discuss] # Éric Vyncke, INT AD, comments for draft-ietf-suit-mud-07 Thank you for the work put into this document. Please find below one blocking DISCUSS points (easy to address and mostly to have a discussion at the IESG on one point), some non-blocking COMMENT points (but replies would be appreciated even if only for my own education), and one nit. Special thanks to Russ Housley for the shepherd's detailed write-up including the WG consensus _but it lacks_ the justification of the intended status and as indicated by id-nits RFC 9334 is a downward reference even if the write-up includes `There are no downward normative references.`. Not a big deal though. Please note that Michael Richardson is the IoT directorate reviewer (at my request) and you may want to consider this iot-dir review as well when it will be available (no need to wait for it though): https://datatracker.ietf.org/doc/draft-ietf-suit-mud/reviewrequest/18682/ I hope that this review helps to improve the document, Regards, -éric # DISCUSS (blocking) As noted in https://www.ietf.org/blog/handling-iesg-ballot-positions/, a DISCUSS ballot is a request to have a discussion on the following topics: ## Section 5 It is merely a discuss-discuss in order to force some discussions during the telechat (or before) on the process here. I intend to ballot YES or ABSTAIN after the discussion. The text `The SUIT_Envelope is also amended` seems to indicate that this I-D updates an *existing and published* RFC, while SUIT_Envelope appears to be specified in appendix A of draft-ietf-suit-manifest, i.e., a yet to be published document. It is weird to ballot on an I-D modifying a yet-to-be-balloted document. And at the minimum, a meta-data of "update" seems to be required. |
2024-01-23
|
07 | Éric Vyncke | [Ballot comment] # COMMENTS (non-blocking) ## Reference or inclusion From my reading and understanding of this document, the MUD & SUIT files are generated by … [Ballot comment] # COMMENTS (non-blocking) ## Reference or inclusion From my reading and understanding of this document, the MUD & SUIT files are generated by the same organisation. Is there any reason why the MUD file is not included into the SUIT manifest rather than via a reference ? Is it only to save smaller attestation ? If so, then the reader will probably welcome an explanation. ## Section 1 Should RFC 8520 already be referred to in the first paragraph ? Should there be informative references to DHCP and LLDP ? As in section 1.5 of RFC 8520. `an authentic copy of the MUD file` should there be "latest copy" ? Or is it enough to rely on MUD last-update & cache-validity ? Should 'likely' be removed from `In case of DHCP and LLDP the URL is likely unprotected` ? Even if draft-ietf-suit-manifest is a normative reference (i.e., this I-D will wait until draft-ietf-suit-manifest is approved) I would have preferred to have to review first draft-ietf-suit-manifest then this one. A matter of taste, no need to reply. # NITS (non-blocking / cosmetic) ## Abstract `The MUD description` the "D" in MUD also stands for "description". |
2024-01-23
|
07 | Éric Vyncke | [Ballot Position Update] New position, Discuss, has been recorded for Éric Vyncke |
2024-01-19
|
07 | Erik Kline | [Ballot Position Update] New position, No Objection, has been recorded for Erik Kline |
2024-01-19
|
07 | Ines Robles | Request for Telechat review by IOTDIR is assigned to Michael Richardson |
2024-01-18
|
07 | Éric Vyncke | Requested Telechat review by IOTDIR |
2024-01-18
|
07 | Roman Danyliw | Placed on agenda for telechat - 2024-02-01 |
2024-01-18
|
07 | Roman Danyliw | Ballot has been issued |
2024-01-18
|
07 | Roman Danyliw | [Ballot Position Update] New position, Yes, has been recorded for Roman Danyliw |
2024-01-18
|
07 | Roman Danyliw | Created "Approve" ballot |
2024-01-18
|
07 | Roman Danyliw | IESG state changed to IESG Evaluation from Waiting for AD Go-Ahead::AD Followup |
2024-01-18
|
07 | Roman Danyliw | Ballot writeup was changed |
2023-12-20
|
07 | (System) | Changed action holders to Roman Danyliw (IESG state changed) |
2023-12-20
|
07 | (System) | Sub state has been changed to AD Followup from Revised I-D Needed |
2023-12-20
|
07 | (System) | IANA Review state changed to Version Changed - Review Needed from IANA - Not OK |
2023-12-20
|
07 | Brendan Moran | New version available: draft-ietf-suit-mud-07.txt |
2023-12-20
|
07 | Brendan Moran | New version accepted (logged-in submitter: Brendan Moran) |
2023-12-20
|
07 | Brendan Moran | Uploaded new revision |
2023-12-04
|
06 | Susan Hares | Request for Last Call review by OPSDIR Completed: Has Issues. Reviewer: Susan Hares. Sent review to list. |
2023-11-14
|
06 | Roman Danyliw | Per the GENART Review, please add a normative reference to RFC 8610 since CDDL is being used. |
2023-11-14
|
06 | (System) | Changed action holders to Brendan Moran, Hannes Tschofenig (IESG state changed) |
2023-11-14
|
06 | Roman Danyliw | IESG state changed to Waiting for AD Go-Ahead::Revised I-D Needed from Waiting for AD Go-Ahead |
2023-11-14
|
06 | (System) | IESG state changed to Waiting for AD Go-Ahead from In Last Call |
2023-11-13
|
06 | (System) | IANA Review state changed to IANA - Not OK from IANA - Review Needed |
2023-11-13
|
06 | David Dong | (Via drafts-lastcall@iana.org): IESG/Authors/WG Chairs: IANA has completed its review of draft-ietf-suit-mud-06. If any part of this review is inaccurate, please let us know. IANA … (Via drafts-lastcall@iana.org): IESG/Authors/WG Chairs: IANA has completed its review of draft-ietf-suit-mud-06. If any part of this review is inaccurate, please let us know. IANA understands that, upon approval of this document, there are two actions which we must complete. IANA understands that both of the actions requested in the IANA Considerations section of this document are dependent upon the approval of and completion of IANA Actions in another document, draft-ietf-suit-manifest, which has not yet entered Last Call. First, in the SUIT Manifest Elements Registry, to be created on the approval of and completion of IANA Actions in another document, draft-ietf-suit-manifest, a single new registration will be made as follows: Label: [ TBD-at-Registration ] [[Value allocated from the standards action address range]] Name: Manufacturer Usage Description (MUD) Reference: [ RFC-to-be ] Second, in the SUIT Envelope Elements registry, another registry to be created on the approval of and completion of IANA Actions in another document, draft-ietf-suit-manifest, a single registration will be made as follows: Label: [ TBD-at-Registration ] [[Value allocated from the standards action address range]] Name: Manufacturer Usage Description (MUD) Reference: [ RFC-to-be ] We understand that these two actions are the only ones required to be completed upon approval of this document. NOTE: The actions requested in this document will not be completed until the document has been approved for publication as an RFC. This message is meant only to confirm the list of actions that will be performed. For definitions of IANA review states, please see: https://datatracker.ietf.org/help/state/draft/iana-review Thank you, David Dong IANA Services Sr. Specialist |
2023-11-12
|
06 | Behcet Sarikaya | Request for Last Call review by GENART Completed: Ready. Reviewer: Behcet Sarikaya. Sent review to list. |
2023-11-04
|
06 | David Waltermire | Added to session: IETF-118: suit Tue-1600 |
2023-11-02
|
06 | Jean Mahoney | Request for Last Call review by GENART is assigned to Behcet Sarikaya |
2023-10-26
|
06 | Tero Kivinen | Request for Last Call review by SECDIR is assigned to Tobias Gondrom |
2023-10-25
|
06 | Gunter Van de Velde | Request for Last Call review by OPSDIR is assigned to Susan Hares |
2023-10-24
|
06 | Cindy Morgan | IANA Review state changed to IANA - Review Needed |
2023-10-24
|
06 | Cindy Morgan | The following Last Call announcement was sent out (ends 2023-11-14): From: The IESG To: IETF-Announce CC: draft-ietf-suit-mud@ietf.org, housley@vigilsec.com, rdd@cert.org, suit-chairs@ietf.org, suit@ietf.org … The following Last Call announcement was sent out (ends 2023-11-14): From: The IESG To: IETF-Announce CC: draft-ietf-suit-mud@ietf.org, housley@vigilsec.com, rdd@cert.org, suit-chairs@ietf.org, suit@ietf.org Reply-To: last-call@ietf.org Sender: Subject: Last Call: (Strong Assertions of IoT Network Access Requirements) to Proposed Standard The IESG has received a request from the Software Updates for Internet of Things WG (suit) to consider the following document: - 'Strong Assertions of IoT Network Access Requirements' as Proposed Standard The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the last-call@ietf.org mailing lists by 2023-11-14. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract The Manufacturer Usage Description (MUD) specification describes the access and network functionality required for a device to properly function. The MUD description has to reflect the software running on the device and its configuration. Because of this, the most appropriate entity for describing device network access requirements is the same as the entity developing the software and its configuration. A network presented with a MUD file by a device allows detection of misbehavior by the device software and configuration of access control. This document defines a way to link a SUIT manifest to a MUD file offering a stronger binding between the two. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-suit-mud/ No IPR declarations have been submitted directly on this I-D. |
2023-10-24
|
06 | Cindy Morgan | IESG state changed to In Last Call from Last Call Requested |
2023-10-24
|
06 | Cindy Morgan | Last call announcement was changed |
2023-10-24
|
06 | Roman Danyliw | Last call was requested |
2023-10-24
|
06 | Roman Danyliw | Last call announcement was generated |
2023-10-24
|
06 | Roman Danyliw | Ballot approval text was generated |
2023-10-24
|
06 | Roman Danyliw | Ballot writeup was generated |
2023-10-24
|
06 | Roman Danyliw | IESG state changed to Last Call Requested from AD Evaluation::AD Followup |
2023-10-23
|
06 | (System) | Changed action holders to Roman Danyliw (IESG state changed) |
2023-10-23
|
06 | (System) | Sub state has been changed to AD Followup from Revised I-D Needed |
2023-10-23
|
06 | Brendan Moran | New version available: draft-ietf-suit-mud-06.txt |
2023-10-23
|
06 | Brendan Moran | New version accepted (logged-in submitter: Brendan Moran) |
2023-10-23
|
06 | Brendan Moran | Uploaded new revision |
2023-10-11
|
05 | Roman Danyliw | Remaining AD Review feedback resolution: https://mailarchive.ietf.org/arch/msg/suit/Hgg9WiYkPKtS2R7d-iA8yNHdV-w/ |
2023-10-11
|
05 | (System) | Changed action holders to Brendan Moran, Hannes Tschofenig (IESG state changed) |
2023-10-11
|
05 | Roman Danyliw | IESG state changed to AD Evaluation::Revised I-D Needed from AD Evaluation::AD Followup |
2023-09-11
|
05 | (System) | Changed action holders to Roman Danyliw (IESG state changed) |
2023-09-11
|
05 | (System) | Sub state has been changed to AD Followup from Revised I-D Needed |
2023-09-11
|
05 | Brendan Moran | New version available: draft-ietf-suit-mud-05.txt |
2023-09-11
|
05 | Brendan Moran | New version accepted (logged-in submitter: Brendan Moran) |
2023-09-11
|
05 | Brendan Moran | Uploaded new revision |
2023-09-09
|
04 | Roman Danyliw | AD Review: https://mailarchive.ietf.org/arch/msg/suit/Sgy-YZpTypldk0nTb_S-6urFQ_M/ |
2023-09-09
|
04 | (System) | Changed action holders to Roman Danyliw, Brendan Moran, Hannes Tschofenig (IESG state changed) |
2023-09-09
|
04 | Roman Danyliw | IESG state changed to AD Evaluation::Revised I-D Needed from Publication Requested |
2023-09-05
|
04 | Russ Housley | Shepherd Write-up for draft-ietf-suit-mud-04 (1) What type of RFC is being requested (BCP, Proposed Standard, Internet Standard, Informational, Experimental, or Historic)? Why is this the … Shepherd Write-up for draft-ietf-suit-mud-04 (1) What type of RFC is being requested (BCP, Proposed Standard, Internet Standard, Informational, Experimental, or Historic)? Why is this the proper type of RFC? Is this type of RFC indicated in the title page header? Proposed Standard. Yes, the header calls for a Standards Track RFC. (2) The IESG approval announcement includes a Document Announcement Write-Up. Please provide such a Document Announcement Write-Up. Recent examples can be found in the "Action" announcements for approved documents. The approval announcement contains the following sections: Technical Summary: The Manufacturer Usage Description (MUD) specification describes the access and network functionality required a device to properly function. The MUD description has to reflect the software running on the device and its configuration. Thus, an appropriate entity for describing device network access requirements the the software developer. A network presented with a MUD file by a device allows detection of misbehavior by the device software and configuration of access control. This document defines a way to link a SUIT manifest to a MUD file offering a stronger binding between the two. Working Group Summary: There is consensus for this document in the SUIT WG. Personnel: Russ Housley is the document shepherd. Roman Danyliw is the responsible area director. (3) Briefly describe the review of this document that was performed by the Document Shepherd. If this version of the document is not ready for publication, please explain why the document is being forwarded to the IESG. The document shepherd did a thorough review of the document during WG Last Call. All issues that were raised during WG Last Call have been resolved. However, there were few comments on the document even though there was strong consensus in the WG that inclusion of the MUD file in the SUIT Manifest was a good idea. (4) Does the document Shepherd have any concerns about the depth or breadth of the reviews that have been performed? No concerns. (5) Do portions of the document need review from a particular or from broader perspective, e.g., security, operational complexity, AAA, DNS, DHCP, XML, or internationalization? If so, describe the review that took place. No concerns. (6) Describe any specific concerns or issues that the Document Shepherd has with this document that the Responsible Area Director and/or the IESG should be aware of? For example, perhaps he or she is uncomfortable with certain parts of the document, or has concerns whether there really is a need for it. In any event, if the WG has discussed those issues and has indicated that it still wishes to advance the document, detail those concerns here. No concerns. (7) Has each author confirmed that any and all appropriate IPR disclosures required for full conformance with the provisions of BCP 78 and BCP 79 have already been filed. If not, explain why? The authors have explicitly stated that all known IPR has been disclosed. (8) Has an IPR disclosure been filed that references this document? If so, summarize any WG discussion and conclusion regarding the IPR disclosures. There are no IPR disclosures against this document. (9) How solid is the WG consensus behind this document? Does it represent the strong concurrence of a few individuals, with others being silent, or does the WG as a whole understand and agree with it? There is strong consensus for the inclusion of a MUD file in the SUIT Manifest. However, the number of people that spoke during the WG Last Call was pretty slim. (10) Has anyone threatened an appeal or otherwise indicated extreme discontent? If so, please summarise the areas of conflict in separate email messages to the Responsible Area Director. (It should be in a separate email because this questionnaire is publicly available.) No one has threatened an appeal. (11) Identify any ID nits the Document Shepherd has found in this document. (See http://www.ietf.org/tools/idnits/ and the Internet-Drafts Checklist). Boilerplate checks are not enough; this check needs to be thorough. There is a non-ASCII character in the text file, which is in the author's name of a referenced document. (12) Describe how the document meets any required formal review criteria, such as the MIB Doctor, media type, and URI type reviews. No special reviews are needed. CBOR experts have looked at the very simple syntax in Section 5. (13) Have all references within this document been identified as either normative or informative? All of the references are normative. (14) Are there normative references to documents that are not ready for advancement or are otherwise in an unclear state? If such normative references exist, what is the plan for their completion? No. (15) Are there downward normative references references (see RFC 3967)? If so, list these downward references to support the Area Director in the Last Call procedure. There are no downward normative references. (16) Will publication of this document change the status of any existing RFCs? Are those RFCs listed on the title page header, listed in the abstract, and discussed in the introduction? If the RFCs are not listed in the Abstract and Introduction, explain why, and point to the part of the document where the relationship of this document to the other RFCs is discussed. If this information is not in the document, explain why the WG considers it unnecessary. No. (17) Describe the Document Shepherd's review of the IANA considerations section, especially with regard to its consistency with the body of the document. Confirm that all protocol extensions that the document makes are associated with the appropriate reservations in IANA registries. Confirm that any referenced IANA registries have been clearly identified. Confirm that newly created IANA registries include a detailed specification of the initial contents for the registry, that allocations procedures for future registrations are defined, and a reasonable name for the new registry has been suggested (see RFC 5226). Section 7 describes assignments in one existing IANA registry. (18) List any new IANA registries that require Expert Review for future allocations. Provide any public guidance that the IESG would find useful in selecting the IANA Experts for these new registries. No new IANA regestries are requested. (19) Describe reviews and automated checks performed by the Document Shepherd to validate sections of the document written in a formal language, such as XML code, BNF rules, MIB definitions, etc. None are needed. |
2023-09-05
|
04 | Russ Housley | Responsible AD changed to Roman Danyliw |
2023-09-05
|
04 | Russ Housley | IETF WG state changed to Submitted to IESG for Publication from In WG Last Call |
2023-09-05
|
04 | Russ Housley | IESG state changed to Publication Requested from I-D Exists |
2023-09-05
|
04 | Russ Housley | Document is now in IESG state Publication Requested |
2023-09-05
|
04 | Russ Housley | Shepherd Write-up for draft-ietf-suit-mud-04 (1) What type of RFC is being requested (BCP, Proposed Standard, Internet Standard, Informational, Experimental, or Historic)? Why is this the … Shepherd Write-up for draft-ietf-suit-mud-04 (1) What type of RFC is being requested (BCP, Proposed Standard, Internet Standard, Informational, Experimental, or Historic)? Why is this the proper type of RFC? Is this type of RFC indicated in the title page header? Proposed Standard. Yes, the header calls for a Standards Track RFC. (2) The IESG approval announcement includes a Document Announcement Write-Up. Please provide such a Document Announcement Write-Up. Recent examples can be found in the "Action" announcements for approved documents. The approval announcement contains the following sections: Technical Summary: The Manufacturer Usage Description (MUD) specification describes the access and network functionality required a device to properly function. The MUD description has to reflect the software running on the device and its configuration. Thus, an appropriate entity for describing device network access requirements the the software developer. A network presented with a MUD file by a device allows detection of misbehavior by the device software and configuration of access control. This document defines a way to link a SUIT manifest to a MUD file offering a stronger binding between the two. Working Group Summary: There is consensus for this document in the SUIT WG. Personnel: Russ Housley is the document shepherd. Roman Danyliw is the responsible area director. (3) Briefly describe the review of this document that was performed by the Document Shepherd. If this version of the document is not ready for publication, please explain why the document is being forwarded to the IESG. The document shepherd did a thorough review of the document during WG Last Call. All issues that were raised during WG Last Call have been resolved. However, there were few comments on the document even though there was strong consensus in the WG that inclusion of the MUD file in the SUIT Manifest was a good idea. (4) Does the document Shepherd have any concerns about the depth or breadth of the reviews that have been performed? No concerns. (5) Do portions of the document need review from a particular or from broader perspective, e.g., security, operational complexity, AAA, DNS, DHCP, XML, or internationalization? If so, describe the review that took place. No concerns. (6) Describe any specific concerns or issues that the Document Shepherd has with this document that the Responsible Area Director and/or the IESG should be aware of? For example, perhaps he or she is uncomfortable with certain parts of the document, or has concerns whether there really is a need for it. In any event, if the WG has discussed those issues and has indicated that it still wishes to advance the document, detail those concerns here. No concerns. (7) Has each author confirmed that any and all appropriate IPR disclosures required for full conformance with the provisions of BCP 78 and BCP 79 have already been filed. If not, explain why? The authors have explicitly stated that all known IPR has been disclosed. (8) Has an IPR disclosure been filed that references this document? If so, summarize any WG discussion and conclusion regarding the IPR disclosures. There are no IPR disclosures against this document. (9) How solid is the WG consensus behind this document? Does it represent the strong concurrence of a few individuals, with others being silent, or does the WG as a whole understand and agree with it? There is strong consensus for the inclusion of a MUD file in the SUIT Manifest. However, the number of people that spoke during the WG Last Call was pretty slim. (10) Has anyone threatened an appeal or otherwise indicated extreme discontent? If so, please summarise the areas of conflict in separate email messages to the Responsible Area Director. (It should be in a separate email because this questionnaire is publicly available.) No one has threatened an appeal. (11) Identify any ID nits the Document Shepherd has found in this document. (See http://www.ietf.org/tools/idnits/ and the Internet-Drafts Checklist). Boilerplate checks are not enough; this check needs to be thorough. There is a non-ASCII character in the text file, which is in the author's name of a referenced document. (12) Describe how the document meets any required formal review criteria, such as the MIB Doctor, media type, and URI type reviews. No special reviews are needed. CBOR experts have looked at the very simple syntax in Section 5. (13) Have all references within this document been identified as either normative or informative? All of the references are normative. (14) Are there normative references to documents that are not ready for advancement or are otherwise in an unclear state? If such normative references exist, what is the plan for their completion? No. (15) Are there downward normative references references (see RFC 3967)? If so, list these downward references to support the Area Director in the Last Call procedure. There are no downward normative references. (16) Will publication of this document change the status of any existing RFCs? Are those RFCs listed on the title page header, listed in the abstract, and discussed in the introduction? If the RFCs are not listed in the Abstract and Introduction, explain why, and point to the part of the document where the relationship of this document to the other RFCs is discussed. If this information is not in the document, explain why the WG considers it unnecessary. No. (17) Describe the Document Shepherd's review of the IANA considerations section, especially with regard to its consistency with the body of the document. Confirm that all protocol extensions that the document makes are associated with the appropriate reservations in IANA registries. Confirm that any referenced IANA registries have been clearly identified. Confirm that newly created IANA registries include a detailed specification of the initial contents for the registry, that allocations procedures for future registrations are defined, and a reasonable name for the new registry has been suggested (see RFC 5226). Section 7 describes assignments in one existing IANA registry. (18) List any new IANA registries that require Expert Review for future allocations. Provide any public guidance that the IESG would find useful in selecting the IANA Experts for these new registries. No new IANA regestries are requested. (19) Describe reviews and automated checks performed by the Document Shepherd to validate sections of the document written in a formal language, such as XML code, BNF rules, MIB definitions, etc. None are needed. |
2023-07-24
|
04 | Dave Thaler | Added to session: IETF-117: suit Mon-2230 |
2023-07-04
|
04 | Brendan Moran | New version available: draft-ietf-suit-mud-04.txt |
2023-07-04
|
04 | Brendan Moran | New version accepted (logged-in submitter: Brendan Moran) |
2023-07-04
|
04 | Brendan Moran | Uploaded new revision |
2023-04-21
|
03 | Russ Housley | Changed consensus to Yes from Unknown |
2023-04-21
|
03 | Russ Housley | Intended Status changed to Proposed Standard from None |
2023-04-21
|
03 | Russ Housley | Notification list changed to housley@vigilsec.com because the document shepherd was set |
2023-04-21
|
03 | Russ Housley | Document shepherd changed to Russ Housley |
2023-04-21
|
03 | Russ Housley | IETF WG state changed to In WG Last Call from WG Document |
2023-03-29
|
03 | David Waltermire | Changed document external resources from: None to: github_repo https://github.com/bremoran/suit-mud |
2023-03-14
|
03 | Russ Housley | Added to session: IETF-116: suit Thu-0400 |
2023-03-13
|
03 | Brendan Moran | New version available: draft-ietf-suit-mud-03.txt |
2023-03-13
|
03 | Brendan Moran | New version accepted (logged-in submitter: Brendan Moran) |
2023-03-13
|
03 | Brendan Moran | Uploaded new revision |
2022-10-31
|
02 | Dave Thaler | Added to session: IETF-115: suit Wed-1300 |
2022-10-24
|
02 | Brendan Moran | New version available: draft-ietf-suit-mud-02.txt |
2022-10-24
|
02 | Brendan Moran | New version accepted (logged-in submitter: Brendan Moran) |
2022-10-24
|
02 | Brendan Moran | Uploaded new revision |
2022-10-24
|
01 | Brendan Moran | New version available: draft-ietf-suit-mud-01.txt |
2022-10-24
|
01 | Brendan Moran | New version accepted (logged-in submitter: Brendan Moran) |
2022-10-24
|
01 | Brendan Moran | Uploaded new revision |
2022-09-24
|
00 | (System) | Document has expired |
2022-07-13
|
00 | Russ Housley | Added to session: IETF-114: suit Thu-1600 |
2022-03-24
|
00 | Russ Housley | Added to session: IETF-113: suit Thu-1300 |
2022-03-23
|
00 | Russ Housley | This document now replaces draft-moran-suit-mud instead of None |
2022-03-23
|
00 | Brendan Moran | New version available: draft-ietf-suit-mud-00.txt |
2022-03-23
|
00 | (System) | WG -00 approved |
2022-03-23
|
00 | Brendan Moran | Set submitter to "Brendan Moran ", replaces to draft-moran-suit-mud and sent approval email to group chairs: suit-chairs@ietf.org |
2022-03-23
|
00 | Brendan Moran | Uploaded new revision |