Re: [Gen-art] RE: Gen-Art Review: draft-ietf-msec-newtype-keyid-01.txt
Russ Housley <housley@vigilsec.com> Tue, 14 February 2006 16:14 UTC
Received: from localhost.cnri.reston.va.us ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F92p1-0007MQ-4l; Tue, 14 Feb 2006 11:14:35 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F92oz-0007MJ-UC for gen-art@megatron.ietf.org; Tue, 14 Feb 2006 11:14:34 -0500
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA07680 for <gen-art@ietf.org>; Tue, 14 Feb 2006 11:12:48 -0500 (EST)
Received: from eikenes.alvestrand.no ([158.38.152.233]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1F932p-00075C-Bb for gen-art@ietf.org; Tue, 14 Feb 2006 11:28:52 -0500
Received: by eikenes.alvestrand.no (Postfix) id 189522596F9; Tue, 14 Feb 2006 17:13:02 +0100 (CET)
Delivered-To: gen-art@alvestrand.no
Received: from localhost (eikenes.alvestrand.no [127.0.0.1]) by eikenes.alvestrand.no (Postfix) with ESMTP id 0B31D2596F8 for <gen-art@alvestrand.no>; Tue, 14 Feb 2006 17:13:02 +0100 (CET)
Received: from eikenes.alvestrand.no ([127.0.0.1]) by localhost (eikenes.alvestrand.no [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 05518-03 for <gen-art@alvestrand.no>; Tue, 14 Feb 2006 17:12:56 +0100 (CET)
X-Greylist: from auto-whitelisted by SQLgrey-1.6.7
Received: from woodstock.binhost.com (woodstock.binhost.com [144.202.243.4]) by eikenes.alvestrand.no (Postfix) with SMTP id DDC452596F5 for <gen-art@alvestrand.no>; Tue, 14 Feb 2006 17:12:55 +0100 (CET)
Received: (qmail 25057 invoked by uid 0); 14 Feb 2006 16:14:11 -0000
Received: from unknown (HELO Russ-Laptop.vigilsec.com) (69.107.221.178) by woodstock.binhost.com with SMTP; 14 Feb 2006 16:14:11 -0000
Message-Id: <7.0.0.16.2.20060214111332.056d7b90@vigilsec.com>
X-Mailer: QUALCOMM Windows Eudora Version 7.0.0.16
Date: Tue, 14 Feb 2006 11:14:11 -0500
To: Brian E Carpenter <brc@zurich.ibm.com>, "Karl Norrman (KI/EAB)" <karl.norrman@ericsson.com>
From: Russ Housley <housley@vigilsec.com>
Subject: Re: [Gen-art] RE: Gen-Art Review: draft-ietf-msec-newtype-keyid-01.txt
In-Reply-To: <43F1B2A7.3060903@zurich.ibm.com>
References: <3AD208E1F0D5EB47AC3C5617420BCB0203ADCE8C@esealmw104.eemea.ericsson.se> <43F1B2A7.3060903@zurich.ibm.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-Virus-Scanned: by amavisd-new at alvestrand.no
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 32b73d73e8047ed17386f9799119ce43
Cc: gen-art@alvestrand.no, "Vesa Lehtovirta (JO/LMF)" <vesa.lehtovirta@ericsson.com>
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/gen-art>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
Sender: gen-art-bounces@ietf.org
Errors-To: gen-art-bounces@ietf.org
This is my fault. I thought -04 had already been posted, but it got delayed. Please look at -04. Russ At 05:36 AM 2/14/2006, Brian E Carpenter wrote: >I'm a bit confused. The version on the IESG agenda this week is -03, >but you attached -04 on January 27. Which should we be looking at? > > Brian > >Karl Norrman (KI/EAB) wrote: >>Hello! >>Thank you very much for your review. >>Please see the attached updated draft and inline. >>[SNIP] >> >>>Summary: >>>[I understand from Laksminath Dondeti that this draft maybe >>>withdrawn, but FWIW, here is my review.] This document has some >>>minor issues with the IANA considerations and needs some editorial tidying up. >>> >>>The 'empty map' option worries me, but I am not sufficiently much >>>of security expert to determine if this is justified. >>>If this is cleared the draft could go forward (but it sounds like >>>there will be another revision pass to go through). >>> >>>Detailed Review: >>> >>>Issues: >>>I am not sure that I fully understand what is going on the >>>justification of the need for an empty map(last para of s2). >>>'... required parameters are signalled in-band.' => in what protocol? >>>I think a slightly less opaque explanation would help here. >> >>An example is now given (the OMA DRM Content Format used for download). >> >>>Associated with this there should be an explicit statement in s4 >>>that no equivalent of SRTP_ID would be needed in this case. >> >>Such a statement is now added (Please note that there is a new Section >>3, so >>this text is now in Section 5). >> >>>IANA considerations: >>>This section should refer to the IANA process setup in RFC3380 for >>>the payload type and the CS ID map type. >>>It needs to define a new process for the Key ID Type registry. >> >>A process is now set up in the IANA considerations section. >> >>>Security Considerations: >>>Are those that understand these things absolutely convinced that >>>creating keys without attaching them to an SA in the process does >>>not create some sort of opportunity to create mayhem? >> >>The security considerations section is now expanded. >> >>>Editorial Nits >>> >>>You should run idnits: there are non ascii characters in the >>>document, e.g. bullet point marks in s2. >> >>This version passed idnits. >>Thanks and regards, >>Karl >> >>>s1: 3rd para: s/possibility/ability/ >>>s1: 3rd para: (I take it that we are trying to make it easier >>>rather than more difficult) s/should be/would be/ >>>s1: 4th para: s/involved/keys/keys involved/ >>>s2: 1st para: s/the MBMS/MBMS/ >>>s2: 2nd para: s/athree level/three level/ >>>s2 10th para: s/involved keys in the/keys being carried in a/ >>>s3: Tables and figures should have captions >>>s3: s/bytes/octets/ (2 places) >>>s3: last para: Actually I think (2^16 -1), but I hope I never have >>>that many keys ;-) >>>s5: s/This memo is not foreseen to introduce security >>>implications./It is not a anticipated that this memo will have any >>>additional security implications beyond those already identified >>>for the MIKEY protocol./ >> >>------------------------------------------------------------------------ >>_______________________________________________ >>Gen-art mailing list >>Gen-art@ietf.org >>https://www1.ietf.org/mailman/listinfo/gen-art > _______________________________________________ Gen-art mailing list Gen-art@ietf.org https://www1.ietf.org/mailman/listinfo/gen-art
- [Gen-art] RE: Gen-Art Review: draft-ietf-msec-new… Karl Norrman (KI/EAB)
- Re: [Gen-art] RE: Gen-Art Review: draft-ietf-msec… Brian E Carpenter
- Re: [Gen-art] RE: Gen-Art Review: draft-ietf-msec… Russ Housley
- RE: [Gen-art] RE: Gen-Art Review: draft-ietf-msec… Vesa Lehtovirta (JO/LMF)
- [Gen-art] Gen-Art Review: draft-ietf-msec-newtype… Elwyn Davies
- [Gen-art] Re: Gen-Art Review: draft-ietf-msec-new… Lakshminath Dondeti
- Re: [Gen-art] Re: Gen-Art Review: draft-ietf-msec… Brian E Carpenter
- [Gen-art] Re: Gen-Art Review: draft-ietf-msec-new… Elwyn Davies
- [Gen-art] Re: Gen-Art Review: draft-ietf-msec-new… Lakshminath Dondeti