[Cellar] draft-ietf-cellar-tags-19 ietf last call Secdir review
Mohit Sethi via Datatracker <noreply@ietf.org> Sun, 12 October 2025 18:05 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: cellar@ietf.org
Delivered-To: cellar@mail2.ietf.org
Received: from [10.244.8.144] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id 3AD4E71F7A60; Sun, 12 Oct 2025 11:05:06 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Mohit Sethi via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.50.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <176029230611.516084.8966128664674154248@dt-datatracker-84f8f646b-tg6mn>
Date: Sun, 12 Oct 2025 11:05:06 -0700
Message-ID-Hash: SJKYCS73ACSTXF4AXAF6MUQACLV4XAMI
X-Message-ID-Hash: SJKYCS73ACSTXF4AXAF6MUQACLV4XAMI
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-cellar.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: cellar@ietf.org, draft-ietf-cellar-tags.all@ietf.org, last-call@ietf.org
X-Mailman-Version: 3.3.9rc6
Reply-To: Mohit Sethi <mohit@iki.fi>
Subject: [Cellar] draft-ietf-cellar-tags-19 ietf last call Secdir review
List-Id: Codec Encoding for LossLess Archiving and Realtime transmission <cellar.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/cellar/Ehl-aEZ1oRc0QkLNT67sOjPudb4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cellar>
List-Help: <mailto:cellar-request@ietf.org?subject=help>
List-Owner: <mailto:cellar-owner@ietf.org>
List-Post: <mailto:cellar@ietf.org>
List-Subscribe: <mailto:cellar-join@ietf.org>
List-Unsubscribe: <mailto:cellar-leave@ietf.org>
Document: draft-ietf-cellar-tags Title: Matroska Media Container Tag Specifications Reviewer: Mohit Sethi Review result: Ready Reviewer: Mohit Sethi Review result: Ready I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last-call comments. This document defines multimedia container tags for Matroska files, which carry multimedia data. Standardizing these tags allows applications to process and act on them uniformly. This draft is certainly not in my area of expertise but it was interesting to read and learn about something new. The primary security concerns stem from the parsing of various tag fields, which is an inherent risk in any scenario involving the processing of external structured data. Without proper input validation and robust error handling, processing malformed data could lead to vulnerabilities. For this, the draft primarily points to the security considerations of RFC 9559 (Matroska Media Container Format Specification) and RFC 8794 (Extensible Binary Meta Language). The draft also correctly notes that nesting of tags could be exploited with very deep nesting to exhaust memory of the entity parsing the tag fields. It is not common for drafts to justify the rationale for standardizing as is done in section 3.1 of this draft. I like it. Preventing multiple items from being stored as a single list is not the most storage optimal? Perhaps document the justification for enforcing multiple SimpleTags with the different values instead of a list?
- [Cellar] draft-ietf-cellar-tags-19 ietf last call… Mohit Sethi via Datatracker
- [Cellar] Re: draft-ietf-cellar-tags-19 ietf last … Spencer Dawkins at IETF