Re: [Gen-art] Re: Gen-Art Review: draft-ietf-msec-newtype-keyid-01.txt
Brian E Carpenter <brc@zurich.ibm.com> Thu, 16 February 2006 09:38 UTC
Received: from localhost.cnri.reston.va.us ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F9fac-0004Y2-FB; Thu, 16 Feb 2006 04:38:18 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F9faa-0004Xx-PM for gen-art@megatron.ietf.org; Thu, 16 Feb 2006 04:38:17 -0500
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA03735 for <gen-art@ietf.org>; Thu, 16 Feb 2006 04:36:28 -0500 (EST)
Received: from mtagate1.uk.ibm.com ([195.212.29.134]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1F9fom-0004lc-Q3 for gen-art@ietf.org; Thu, 16 Feb 2006 04:52:57 -0500
Received: from d06nrmr1407.portsmouth.uk.ibm.com (d06nrmr1407.portsmouth.uk.ibm.com [9.149.38.185]) by mtagate1.uk.ibm.com (8.12.10/8.12.10) with ESMTP id k1G9c4nk180076 for <gen-art@ietf.org>; Thu, 16 Feb 2006 09:38:04 GMT
Received: from d06av01.portsmouth.uk.ibm.com (d06av01.portsmouth.uk.ibm.com [9.149.37.212]) by d06nrmr1407.portsmouth.uk.ibm.com (8.12.10/NCO/VERS6.8) with ESMTP id k1G9c85M180816 for <gen-art@ietf.org>; Thu, 16 Feb 2006 09:38:08 GMT
Received: from d06av01.portsmouth.uk.ibm.com (loopback [127.0.0.1]) by d06av01.portsmouth.uk.ibm.com (8.12.11/8.13.3) with ESMTP id k1G9c3mo012156 for <gen-art@ietf.org>; Thu, 16 Feb 2006 09:38:03 GMT
Received: from sihl.zurich.ibm.com (sihl.zurich.ibm.com [9.4.16.232]) by d06av01.portsmouth.uk.ibm.com (8.12.11/8.12.11) with ESMTP id k1G9c3kA012147; Thu, 16 Feb 2006 09:38:03 GMT
Received: from zurich.ibm.com (sig-9-145-253-225.de.ibm.com [9.145.253.225]) by sihl.zurich.ibm.com (AIX4.3/8.9.3p2/8.9.3) with ESMTP id KAA46658; Thu, 16 Feb 2006 10:37:59 +0100
Message-ID: <43F447F2.9040804@zurich.ibm.com>
Date: Thu, 16 Feb 2006 10:37:54 +0100
From: Brian E Carpenter <brc@zurich.ibm.com>
Organization: IBM
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6) Gecko/20040113
X-Accept-Language: en, fr, de
MIME-Version: 1.0
To: Lakshminath Dondeti <ldondeti@qualcomm.com>
Subject: Re: [Gen-art] Re: Gen-Art Review: draft-ietf-msec-newtype-keyid-01.txt
References: <43F3BFC6.4050903@dial.pipex.com> <6.2.5.6.2.20060215163516.03d9b660@qualcomm.com>
In-Reply-To: <6.2.5.6.2.20060215163516.03d9b660@qualcomm.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 67c1ea29f88502ef6a32ccec927970f0
Content-Transfer-Encoding: 7bit
Cc: vesa.lehtovirta@ericsson.com, carrara@kth.se, karl.norrman@ericsson.com, gen-art@ietf.org, Russ Housely <housley@vigilsec.com>, Elwyn Davies <elwynd@googlemail.com>
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/gen-art>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
Sender: gen-art-bounces@ietf.org
Errors-To: gen-art-bounces@ietf.org
Since it looks like a new version anyway, I will be No Objection
and just point to this thread.
Brian
Lakshminath Dondeti wrote:
> Hi Elwyn,
>
> Thanks for your review.
>
> I interpret the word "cost" as cost of an attack, which is a perfectly
> acceptable term in analyzing security properties of a protocol or a
> mechanism. Your wording is also fine. I don't have strong feelings
> either way.
>
> GMARCH is a typo and should be GKMARCH for Group key management
> architecture (RFC 4046).
>
> Sam has a DISCUSS on this. The discussion so far indicates that we'll
> need an -05-. I will ask Karl et. al. to wait until after the IESG
> telecon is over (Thursday morning ET?) before starting revisions on this.
>
> thanks and regards,
> Lakshminath
>
> At 03:56 PM 2/15/2006, Elwyn Davies wrote:
>
>> Background for those on the CC list, who may be unaware of GenART:
>> GenART is the Area Review Team for the General Area of the IETF. We
>> advise the General Area Director (i.e. the IETF/IESG chair) by providing
>> more in depth reviews than he could do himself of documents that come up
>> for final decision in IESG telechat. I was selected as the GenART
>> member to review this document. Below is my review, which was written
>> specifically with an eye to the GenART process, but since I believe that
>> it will be useful to have these comments more widely distributed, others
>> outside the GenART group are being copied.
>>
>> Document: draft-ietf-msec-newtype-keyid-04.txt
>> Intended Status: Proposed Standard
>> Shepherding AD: Russ Housely
>> Review Trigger: IESG Telechat 16 February 2006
>>
>> Summary:
>> This document is in much better shape than when I reviewed v01 for
>> IETF LC. There are a couple of points which I think still need
>> clarification before it is quite ready for PS:
>>
>> - In s1 the rationale talks about money costs: the IETF generally
>> tries to avoid this as we are defining purely technical standards. I
>> have suggested some alternative words below which reflect the purely
>> technical approach.
>> - There are some rather vague words in the start of the security
>> considerations that lead one to wonder if the security considerations
>> are incomplete. It is entirely possible that this is merely
>> inappropriate English but this needs editing.
>>
>> There are also a couple of editorial nits which can be fixed during
>> copy editing if more substantial changes are not to be made.
>>
>> Detailed Review:
>>
>> Issues:
>>
>> s1, para 3: I misunderstood what this was trying to say in v01. I can
>> now discern the intent but it needs some tuning. In line with normal
>> IETF practice we should specify a technical proposal which will
>> achieve a business aim rather than actually specifying the business
>> behaviour:
>>
>>> The rationale behind this is
>>> that it will be costly for subscribers to re-distribute the
>>> decryption keys to non-subscribers. The cost for re-distributing the
>>> keys using the unicast channel should be higher than the cost of
>>> purchasing the keys for this scheme to have an effect.
>>
>> How about:
>> The rationale behind this is that it should be made substantially
>> more inconvenient for subscribers to re-distribute the decryption keys
>> to non-subscribers as compared with the non-subscribers becoming
>> subscribers in order to acquire these keys. In order for this scheme
>> to induce this behavior, the impact of the effort required to
>> re-distribute the keys using separate unicast channels should
>> therefore be sufficiently high that it will not be worthwhile for
>> potential users of the service to access the content without subscribing.
>>
>> Security Considerations:
>> s6, para 1: The phrase 'there are mainly two points...' sounds
>> dangerous when it appears in Security Considerations. Is this
>> supposed to mean there are (exactly) two points? If not, are there
>> others which you don't tell us about: we need to know so we can check
>> they aren't significant or alternatively they might not be about
>> security, in which you might write 'There are two main points which
>> affect the security considerations.'
>>
>> Editorial Nits:
>> s2, last para: s/to the "empty map"/for the "empty map"/
>>
>> s3: The acronym GMARCH is not defined and is only used in the section
>> title. I take it is something about Group key Management ARCHitecture
>> but it doesn't seem to be in general usage.
>>
>> s3, title: s/Relations/Relationship/
>>
>> s6, para 1: s/designed./designed to be used./
>>
>> s6: Acronyms not expanded: MAC, TESLA.
>>
>> s6, para 2: s/is not compatible with/is not appropriate for use with/
>>
>>
>
>
> _______________________________________________
> Gen-art mailing list
> Gen-art@ietf.org
> https://www1.ietf.org/mailman/listinfo/gen-art
>
_______________________________________________
Gen-art mailing list
Gen-art@ietf.org
https://www1.ietf.org/mailman/listinfo/gen-art
- [Gen-art] RE: Gen-Art Review: draft-ietf-msec-new… Karl Norrman (KI/EAB)
- Re: [Gen-art] RE: Gen-Art Review: draft-ietf-msec… Brian E Carpenter
- Re: [Gen-art] RE: Gen-Art Review: draft-ietf-msec… Russ Housley
- RE: [Gen-art] RE: Gen-Art Review: draft-ietf-msec… Vesa Lehtovirta (JO/LMF)
- [Gen-art] Gen-Art Review: draft-ietf-msec-newtype… Elwyn Davies
- [Gen-art] Re: Gen-Art Review: draft-ietf-msec-new… Lakshminath Dondeti
- Re: [Gen-art] Re: Gen-Art Review: draft-ietf-msec… Brian E Carpenter
- [Gen-art] Re: Gen-Art Review: draft-ietf-msec-new… Elwyn Davies
- [Gen-art] Re: Gen-Art Review: draft-ietf-msec-new… Lakshminath Dondeti