[drinks] Stephen Farrell's No Objection on draft-ietf-drinks-spp-protocol-over-soap-07: (with COMMENT)

"Stephen Farrell" <stephen.farrell@cs.tcd.ie> Mon, 23 March 2015 20:29 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: drinks@ietfa.amsl.com
Delivered-To: drinks@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 51E441B29EB; Mon, 23 Mar 2015 13:29:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qp4P7ygn2iPH; Mon, 23 Mar 2015 13:29:10 -0700 (PDT)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 07B1D1B29E4; Mon, 23 Mar 2015 13:29:10 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: "Stephen Farrell" <stephen.farrell@cs.tcd.ie>
To: "The IESG" <iesg@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 5.12.3
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20150323202910.25572.11652.idtracker@ietfa.amsl.com>
Date: Mon, 23 Mar 2015 13:29:10 -0700
Archived-At: <http://mailarchive.ietf.org/arch/msg/drinks/jEVdqGfaanJ1BMfouo7tisO2pAw>
Cc: drinks@ietf.org, drinks-chairs@ietf.org
Subject: [drinks] Stephen Farrell's No Objection on draft-ietf-drinks-spp-protocol-over-soap-07: (with COMMENT)
X-BeenThere: drinks@ietf.org
X-Mailman-Version: 2.1.15
List-Id: IETF DRINKS WG <drinks.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/drinks>, <mailto:drinks-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/drinks/>
List-Post: <mailto:drinks@ietf.org>
List-Help: <mailto:drinks-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/drinks>, <mailto:drinks-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Mar 2015 20:29:11 -0000

Stephen Farrell has entered the following ballot position for
draft-ietf-drinks-spp-protocol-over-soap-07: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to http://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
http://datatracker.ietf.org/doc/draft-ietf-drinks-spp-protocol-over-soap/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------


Thanks for the response to my discuss, since the WG did  think
it through, I've cleared. 

----- OLD COMMENTS below

- General: why would one want to ever run this protocol
without TLS? Did the WG consider saying that TLS MUST be used?
Again, if you tell me you thought about it, I'll just clear.

- 7.1.2: The framework uses "Identifier" but here you use
"Identity" - it'd be better to be consistent I think and
"Identifier" is a lot better.

- section 11 is weaker than the corresponding section in the
framework draft. Two things: 1) why not point back to the
framework here? 2) shouldn't you say which of the
vulns/mitigations called out in the framework are relevant or
mitigated here?