Aaron: Thank you for your note, and for addressing my concerns.
If the SEC-DIR indicates you have resolved their concerns, I am okay with the resolution. On the nits, thank you for adjusting the text. Sue From: Aaron Gable <aa...@letsencrypt.org> Sent: Tuesday, December 10, 2024 8:01 PM To: Susan Hares <sha...@ndzh.com> Cc: gen-art@ietf.org; a...@ietf.org; draft-ietf-acme-ari....@ietf.org; last-c...@ietf.org Subject: Re: Genart last call review of draft-ietf-acme-ari-07 Hi Susan, Thank you for the feedback. I've addressed these changes in the github working copy in https://github.com/aarongable/draft-acme-ari/pull/89, which will be included in the next version of the Caution: External (aa...@letsencrypt.org<mailto:aa...@letsencrypt.org>) First-Time Sender Details<https://protection.inkyphishfence.com/details?id=bmV0b3JnMTA1ODY5MTIvc2hhcmVzQG5kemguY29tLzQ1YWQ4MDQyYzk5MWQzNWQzMGI2ZTZmY2Q2MjEzZTdkLzE3MzM4Nzg4NzYuNDk5Mzc5#key=e7d2d517a3488a52f00f043e29fda90a> Report This Email<https://protection.inkyphishfence.com/report?id=bmV0b3JnMTA1ODY5MTIvc2hhcmVzQG5kemguY29tLzQ1YWQ4MDQyYzk5MWQzNWQzMGI2ZTZmY2Q2MjEzZTdkLzE3MzM4Nzg4NzYuNDk5Mzc5#key=e7d2d517a3488a52f00f043e29fda90a> FAQ<https://www.godaddy.com/help/report-email-with-advanced-email-security-40813> GoDaddy Advanced Email Security, Powered by INKY<https://www.inky.com/protection-by-inky> Hi Susan, Thank you for the feedback. I've addressed these changes in the github working copy in https://github.com/aarongable/draft-acme-ari/pull/89<https://shared.outlook.inky.com/link?domain=github.com&t=h.eJxtj00SgyAUg6_SYV1FRPlx5VWQ9xSniA7gou307i2uu00mX5I3OaMnw424nI80ULqs2Z1TbfeNGhP3sJjJI4Vo5lwZu2Fl4kqP03uqNLnfyKOEA-Y9LqzpldCspcmZiGkM8HIXqOsNqKZrrdYMeA-8mQSK2YJoGUcJlEnOlVRKirrTmsuLjIV8bRg95oTBxueR619RcaG4f_Rc3rDPF_fiQoE.MEUCIEgYJLgf_PK5FISoG5dCzR9EjFjqhKBpv5_2XBx6CM1dAiEAuDNoiKSCnHPlr6rTv2ECDQSzX9fN7VYdwH-yNI08nJM>, which will be included in the next version of the document. Individual comments inline below. Thanks again, Aaron On Sun, Dec 8, 2024 at 1:06 PM Susan Hares via Datatracker <nore...@ietf.org<mailto:nore...@ietf.org>> wrote: Minor Issues: 1) What happens in the case of a large clock skew between the ACME Client and servers, and This topic was included in the Security Considerations section as a result of the DNSDIR review<https://shared.outlook.inky.com/link?domain=datatracker.ietf.org&t=h.eJxtj8tOwzAQRX-l8pqJYzvxo6v-ivFMSdTUrsZTECD-Hbxne450dO-3evKhzie1iTz6WWvMkoVzuRFPO8l1avymsRXN9L7TBwwGudwJMu8we8DacWc4CmzPLq2Cne0CxoB1Wr2c1G3UK8lfx8xr9MlY3bfM1C8Vv7aptLte1oxxXmxJyaBb0c2vnvy1oLfGUUBtgnMxxBj8tKTkQhplGuWcudXLQdKpFv58yBg8LA77D5dx1_z8AqozTKo.MEUCIQCvOznCTGdAvZpYAk34meLi3geqfd3ZL2ucmn5aeyzobAIgPMf7JfjQzfsKYuS77J4-Odn1AEU1oX5_3RST-viaWr4>. I believe I have largely addressed their feedback. 2) Use of unauthenticated GET Requests. This topic was included in the Security Considerations section as a result of the SECDIR review of draft -06<https://shared.outlook.inky.com/link?domain=datatracker.ietf.org&t=h.eJxtj0luwzAQBL9i8JwRN4mLT_7KmDOOBGsxhkwCx8jfE95zrQIK3S_1Ias6n9Tc2qOetSZs2ATLnWVYuN2GQ941HUULfy78BZ0Blo0BZQEToHKhRWAtwBvLE5xxI1gLLmj1dlL3Ht-5_WWsmVLI1uk6o3C97PQ9D-XY9DghJTO6krMlP5E318DhVig46zmSttH7FFOKYRhz9jH3Mvcyohz7ZeVWeS_yfLS-t1vq9h_e-lv78ws0ikwk.MEQCIDlbwm0-Xcz6nMMfmnGVXMlzP5Cm1KwOELq4j1IZHQynAiBRau5pM0xUfjRJP1aGAQPFZbi9Jh1An-dHpIkPlYyPTA>. That reviewer has indicated that draft -07 satisfies their concerns<https://shared.outlook.inky.com/link?domain=mailarchive.ietf.org&t=h.eJxtj8sKwjAURH9FstbepmnzcKWgG6Ei6g_E5NZW-5AkFR_475q9u2GGOcy8yehaMp-QOoSbnwN0umm1M3Vzx6TBUCWDO0M0oPM_YTqEoA8bZXfnsUzbxxHZFvez5UWtV4cSyHRCrpHXY_g1aVpIrmgGvtYO_aK3rzoxQwd5oa1M88woRS0rLEtPHHllLM8oQ2GBCsakkFLwJFeKCRXJGMlau6FftBg89sY9byFOjKmN6R8_xIP08wVajkhc.MEUCIDwaUOJ4V47_LeYcUQ2Vw0KmVyON7PZk_BViNwE_sYaAAiEAjBVXcGrHDE2cJYI_jK57JRVNaOYeeftxk4DDwcIDqVk>. Nits/editorial comments: 1. Introduction, Paragraph 1, Use of ";", problem: Unclear sentence. reason: Grammar Old text:/ They may be configured to renew at a specific interval (e.g., via cron); they may parse the issued certificate to determine its expiration date and renew a specific amount of time before then; or they may parse the issued certificate and renew when some percentage of its validity period has passed./ What's wrong: The grammar usage for semi-color is that the phrases separated by the ";" are equal restatements of the same information. A different form of the list would be a clearer statement. I've switched this sentence to use commas instead of semicolons. I believe the semicolons were holdovers from a prior version of this sentence that had more complex (comma-containing) structures within each list item. 2. Section 6, paragraph 2, 2nd sentence, Unclear sentence Text:/ For example, a server might place the suggested renewal window wholly in the past to encourage a client to renew immediately; but a client with a sufficiently slow clock might see the suggested window as still being in the future./ Option1: New text:/ For example, a server might place the suggested renewal window wholly in the past to encourage a client to renew immediately. However, a client with a sufficiently slow clock might see the suggested window as being in the future./ I've taken a slightly different approach to simplifying this sentence: "For example, if a server places the suggested renewal window wholly in the past to encourage a client to renew immediately, a client with a sufficiently slow clock might nonetheless see the window as being in the future."
_______________________________________________ Gen-art mailing list -- gen-art@ietf.org To unsubscribe send an email to gen-art-le...@ietf.org
