[appsdir] Scan of draft-ietf-kitten-pkinit-alg-agility-00

"Orit Levin (LCA)" <oritl@microsoft.com> Mon, 04 May 2015 02:31 UTC

Return-Path: <oritl@microsoft.com>
X-Original-To: appsdir@ietfa.amsl.com
Delivered-To: appsdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id AB8F21A90AD for <appsdir@ietfa.amsl.com>; Sun, 3 May 2015 19:31:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.555
X-Spam-Status: No, score=-0.555 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_BL_SPAMCOP_NET=1.347, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id weR2F9i2KY7P for <appsdir@ietfa.amsl.com>; Sun, 3 May 2015 19:31:22 -0700 (PDT)
Received: from na01-bl2-obe.outbound.protection.outlook.com (mail-bl2on0121.outbound.protection.outlook.com []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ECE8E1A90AC for <appsdir@ietf.org>; Sun, 3 May 2015 19:31:18 -0700 (PDT)
Received: from BL2PR03MB290.namprd03.prod.outlook.com ( by BL2PR03MB291.namprd03.prod.outlook.com ( with Microsoft SMTP Server (TLS) id; Mon, 4 May 2015 02:31:16 +0000
Received: from BL2PR03MB290.namprd03.prod.outlook.com ([]) by BL2PR03MB290.namprd03.prod.outlook.com ([]) with mapi id 15.01.0154.018; Mon, 4 May 2015 02:31:16 +0000
From: "Orit Levin (LCA)" <oritl@microsoft.com>
To: Eliot Lear <lear@cisco.com>, "appsdir@ietf.org" <appsdir@ietf.org>
Thread-Topic: Scan of draft-ietf-kitten-pkinit-alg-agility-00
Thread-Index: AdCGDwg88f+51yGdQ8eZIkOsMGKAFg==
Date: Mon, 4 May 2015 02:31:16 +0000
Message-ID: <BL2PR03MB2901C2B27AD50BE4B3A6C24ADD20@BL2PR03MB290.namprd03.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
authentication-results: cisco.com; dkim=none (message not signed) header.d=none;
x-originating-ip: []
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BL2PR03MB291;
x-microsoft-antispam-prvs: <BL2PR03MB291D8854ADF24F6BEE447EAADD20@BL2PR03MB291.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(601004)(2401001)(5005006)(3002001); SRVR:BL2PR03MB291; BCL:0; PCL:0; RULEID:; SRVR:BL2PR03MB291;
x-forefront-prvs: 05669A7924
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(377454003)(24454002)(479174004)(164054003)(53754006)(19580395003)(86362001)(230783001)(2656002)(87936001)(102836002)(40100003)(99286002)(54356999)(92566002)(77096005)(46102003)(2900100001)(77156002)(74316001)(122556002)(33656002)(50986999)(19580405001)(66066001)(229853001)(15975445007)(2501003)(5001960100002)(76576001)(62966003); DIR:OUT; SFP:1102; SCL:1; SRVR:BL2PR03MB291; H:BL2PR03MB290.namprd03.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.onmicrosoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 May 2015 02:31:16.5997 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2PR03MB291
Archived-At: <http://mailarchive.ietf.org/arch/msg/appsdir/yUiolkQ6snBL0oAZG_XZXGkiwSs>
Cc: "Mankin, Allison" <amankin@verisign.com>
Subject: [appsdir] Scan of draft-ietf-kitten-pkinit-alg-agility-00
X-BeenThere: appsdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Apps Area Review List <appsdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/appsdir>, <mailto:appsdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/appsdir/>
List-Post: <mailto:appsdir@ietf.org>
List-Help: <mailto:appsdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/appsdir>, <mailto:appsdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 May 2015 02:31:23 -0000

Here are my comments after a quick scan of draft-ietf-kitten-pkinit-alg-agility-00:

This draft is a major update to RFC 4556. It touches almost all aspects defined in RFC 4556 and as such will require a thorough review by all stakeholders who participated in RFC 4556 and its implementers. In addition to reviewing the proposed choices of different security algorithms, special attention  will be required for reviewing the backwards interoperability aspects including mixed versions environments (if relevant).

In general, the draft is well written, although I found the Security Considerations section somewhat underdeveloped. (For example, it contains the following statement: “If negotiation is done unauthenticated, care MUST be taken to accept only acceptable values.” )


From: Eliot Lear [mailto:lear@cisco.com] 
Sent: Tuesday, April 14, 2015 5:20 AM
To: Orit Levin (LCA); Salvatore Loreto
Cc: Mankin, Allison; appsdir@ietf.org
Subject: Re: [appsdir] Initial App Area reviews needed

Hi Orit,

If you have comments please go ahead and send them along as well.  In addition, could I hit you up for taking a look at draft-ietf-kitten-pkinit-alg-agility-00?  Again, this is just the initial scan to figure out the sorts of expertise are involved (although i wouldn't be surprised if it was yours in this case).



On 4/11/15 2:26 AM, Orit Levin (LCA) wrote:
Oops, I actually scanned the draft out last night, but got to writing the email just now.
A disclaimer: I didn’t participate in the STRAW work and I read the draft for the first time… ;-)
From: appsdir [mailto:appsdir-bounces@ietf.org] On Behalf Of Salvatore Loreto
Sent: Friday, April 10, 2015 6:53 AM
To: Eliot Lear
Cc: Mankin, Allison; appsdir@ietf.org
Subject: Re: [appsdir] Initial App Area reviews needed
not sure if someone already volunteered for it  
if not I will take
On 07 Apr 2015, at 16:20, Eliot Lear <lear@cisco.com> wrote:
Hi everyone,

For those of you who weren't at the AppsArea lunch, one topic was apps reviews.  We would like to try an experiment, which is to both identify the skills needed for a proper review and a reviewer early in the life cycle of a working group draft.  What follows is a list of recently published -00 working group drafts.  I wonder if people could volunteer to just quickly scan one of the following drafts, and email back to the group only the following information:
• The draft filename (draft-ietf-wg...-00.txt) 
• A gut feel as to how much attention it will need (and why)
• The sorts of apps area skills required to properly do the review.  To get a feel for what people have listed, just go to our favorite little wiki and look in the expertise column. 
Just pick one draft off the list below and send it round when you've done.  If it takes you more than 10 minutes, something's probably gone wrong.
Here's the list:
I'm going to pull the first one of the top as an example:
Name: draft-ietf-aqm-docsis-pie-00.txt
How much time attention it needs: not a lot.  It's a short draft that mostly builds on the earlier PIE work.
What type of skills needed: "transporty" interactions with applications.

And I'll take it from there to find a reviewer.  What happens next is that I'll assign a reviewer.  The idea is to find problems earlier rather later.
Thanks very much in advance!
appsdir mailing list