[Gen-art] PARTIAL Gen-Art review of draft-ietf-stir-rfc4474bis-15
"Vijay K.Gurbani" <vijay.gurbani@nokia-bell-labs.com> Thu, 03 November 2016 14:57 UTC
Return-Path: <vijay.gurbani@nokia-bell-labs.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D7FD9129A8A; Thu, 3 Nov 2016 07:57:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.921
X-Spam-Level:
X-Spam-Status: No, score=-6.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jmx1atORQB97; Thu, 3 Nov 2016 07:57:02 -0700 (PDT)
Received: from smtp-us.alcatel-lucent.com (us-hpswa-esg-01.alcatel-lucent.com [135.245.18.29]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B6CF2129A7A; Thu, 3 Nov 2016 07:56:58 -0700 (PDT)
Received: from us70uumx3.dmz.alcatel-lucent.com (unknown [135.245.18.15]) by Websense Email Security Gateway with ESMTPS id 615CEE409240D; Thu, 3 Nov 2016 14:56:55 +0000 (GMT)
Received: from us70uusmtp3.zam.alcatel-lucent.com (us70uusmtp3.zam.alcatel-lucent.com [135.5.2.65]) by us70uumx3.dmz.alcatel-lucent.com (GMO) with ESMTP id uA3Euvg2007906 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Thu, 3 Nov 2016 14:56:57 GMT
Received: from umail.lucent.com (umail.ndc.lucent.com [135.3.40.61]) by us70uusmtp3.zam.alcatel-lucent.com (GMO) with ESMTP id uA3EuuFq022187 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 3 Nov 2016 14:56:57 GMT
Received: from [135.185.238.154] (shoonya.ih.lucent.com [135.185.238.154]) by umail.lucent.com (8.13.8/TPES) with ESMTP id uA3EutKI008042; Thu, 3 Nov 2016 09:56:56 -0500 (CDT)
From: "Vijay K.Gurbani" <vijay.gurbani@nokia-bell-labs.com>
To: draft-ietf-stir-rfc4474bis.all@ietf.org
Message-ID: <a2dee52b-3756-077b-b24c-5b05f4a59c08@nokia-bell-labs.com>
Date: Thu, 03 Nov 2016 09:56:55 -0500
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.3.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/26cRmvwCssVGeO5QJx1XueI-Ecw>
Cc: General Area Review Team <gen-art@ietf.org>, The IESG <iesg@ietf.org>
Subject: [Gen-art] PARTIAL Gen-Art review of draft-ietf-stir-rfc4474bis-15
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Nov 2016 14:57:05 -0000
All: This is a partial review of draft-ietf-stir-rfc4474bis-15 that I am sending out in time for Gen-ART representation during the teleconference. No showstoppers so far, and I don't expect any. I will send out the complete review today with the required template. Apologies for the straddled review. Thanks. Minor: - S3: "baseline SIP" ==> What do you mean by this? (I know what you mean, of course, but others reading the document may not.) Perhaps the following substitution is better? s/purposes of baseline SIP,/use of SIP as defined in [RFC 3261],/ Nits: - S1: "However, the recipient of a SIP request has no way to verify that the From header field has been populated appropriately, in the absence of some sort of cryptographic authentication mechanism." Changing the order of the dependent clauses may lead to better readability. That is, "However, in the absence of some sort of cryptographic authentication mechanism, the recipient of a SIP request has no way to verify that the From header field has been populated appropriately." - S1: You may want to define what "swatting" is for those not well- versed in ART terminology. - S1: "less spoofable" ... Merriam-Webster does not define "spoofable" as a word (online version). Perhaps better to say "less amenable to spoofing" instead. Something as the following suggested text: "Ideally, a cryptographic approach to identity can provide a much stronger assurance of identity than the Caller ID service used by the public-switched telephone network today. Such an approach would also be less amenable to identity spoofing." - S3: s/through means entirely up to the authentication service,/through per-arranged means with the authentication service,/ - S3: s/credentials that will be trusted by relying parties to sign for telephone numbers are a key component of the architecture./credentials that will be trusted by relying parties to be authoritative for telephone numbers become a key component of the architecture./ - S3: s/not so easy to/not as easy to/ - S3: s/ but this document does not mandate or specify a credential system. [I-D.ietf-stir-certificates] describes a credential system compatible with this architecture./ but this document does not mandate or specify a particular credential system; [I-D.ietf-stir-certificates] describes one credential system compatible with this architecture." - S3 s/This is typically easier to deal with, as these identities are issued to users by authorities over Internet domains./This is typically easier to deal with as these identities are issued by organizations that have authority over Internet domains./ - S3: s/can issue them an identity/issues an identity/ - S3: s/prove in some fashion/proves/ - vijay -- Vijay K. Gurbani, Bell Laboratories, Nokia Networks 1960 Lucent Lane, Rm. 9C-533, Naperville, Illinois 60563 (USA) Email: vkg@bell-labs.com / vijay.gurbani@nokia-bell-labs.com Web: http://ect.bell-labs.com/who/vkg/ | Calendar: http://goo.gl/x3Ogq
- [Gen-art] PARTIAL Gen-Art review of draft-ietf-st… Vijay K.Gurbani