[Gen-art] Gen-ART Review of draft-ietf-pkix-crlaia-03.txt
"Spencer Dawkins" <spencer@mcsr-labs.org> Tue, 30 August 2005 22:31 UTC
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EAEdC-0002xJ-Cd; Tue, 30 Aug 2005 18:31:02 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EAEdB-0002xE-6m for gen-art@megatron.ietf.org; Tue, 30 Aug 2005 18:31:01 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA14028 for <gen-art@ietf.org>; Tue, 30 Aug 2005 18:30:58 -0400 (EDT)
Received: from sccrmhc12.comcast.net ([63.240.76.22]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1EAEem-0007zP-AD for gen-art@ietf.org; Tue, 30 Aug 2005 18:32:42 -0400
Received: from s73602 (unknown[65.104.224.98]) by comcast.net (sccrmhc12) with SMTP id <20050830223019012001ornie>; Tue, 30 Aug 2005 22:30:20 +0000
Message-ID: <055901c5adb2$6b821bc0$75087c0a@china.huawei.com>
From: Spencer Dawkins <spencer@mcsr-labs.org>
To: General Area Review Team <gen-art@ietf.org>
Date: Tue, 30 Aug 2005 17:30:22 -0500
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"; charset="iso-8859-1"; reply-type="original"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 7baded97d9887f7a0c7e8a33c2e3ea1b
Content-Transfer-Encoding: 7bit
Cc: tim.polk@nist.gov, stefans@microsoft.com, Russell Housley <housley@vigilsec.com>, hartmans-ietf@mit.edu, Stephen Kent <kent@bbn.com>
Subject: [Gen-art] Gen-ART Review of draft-ietf-pkix-crlaia-03.txt
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/gen-art>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
Sender: gen-art-bounces@ietf.org
Errors-To: gen-art-bounces@ietf.org
Summary: this document is nearly ready for publication as a Proposed Standard, but one question should be asked. Overall - I'm not a security guy, but this document seemed pretty clearly written to me, and made sense. Nice work. Extreme Nit: I apologize in advance for asking, but do we use abbreviations in RFC titles? From ftp://ftp.rfc-editor.org/in-notes/rfc-editor/instructions2authors.txt: Abbreviations (e.g., acronyms) in a title must generally be expanded when first encountered. In Section 2. Authority Information Access CRL Extension Nit: this paragraph was a little harder to parse than it should have been: This extension MUST be identified by the extension object identifier (OID) defined in RFC 3280 (1.3.6.1.5.5.7.1.1), and the AuthorityInfoAccessSyntax MUST be used to form the extension value. For convenience, the ASN.1 [X.680] definition of the Authority Information Access extension is repeated below. Could I suggest something like "This extension MUST be identified by the extension Object IDentifier (OID) defined in RFC 3280 (1.3.6.1.5.5.7.1.1), and the Authority Information Access syntax MUST be used to form the extension value. For convenience, the ASN.1 [X.680] definition of the Authority Information Access extension is repeated below." In Section 3 Security Considerations Question: Is there any more specific guidance that could be given about how implementers "take into account" the possible existence described here? Even a reference someplace would be nice. Implementers should take into account the possible existence of multiple unrelated CAs and CRL issuers with the same name. _______________________________________________ Gen-art mailing list Gen-art@ietf.org https://www1.ietf.org/mailman/listinfo/gen-art
- [Gen-art] Gen-ART Review of draft-ietf-pkix-crlai… Spencer Dawkins