Genart last call review of draft-ietf-httpbis-encryption-encoding-08

Pete Resnick <presnick@qti.qualcomm.com> Thu, 06 April 2017 05:52 UTC

Return-Path: <presnick@qti.qualcomm.com>
X-Original-To: ietf@ietf.org
Delivered-To: ietf@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id AC94E12943D; Wed, 5 Apr 2017 22:52:48 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Pete Resnick <presnick@qti.qualcomm.com>
To: gen-art@ietf.org
Cc: draft-ietf-httpbis-encryption-encoding.all@ietf.org, ietf@ietf.org, ietf-http-wg@w3.org
Subject: Genart last call review of draft-ietf-httpbis-encryption-encoding-08
X-Test-IDTracker: no
X-IETF-IDTracker: 6.49.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <149145796867.21962.18267109107454658774@ietfa.amsl.com>
Date: Wed, 05 Apr 2017 22:52:48 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/4L3MEKMcGUJ41Lnn9jSv45YuSj4>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.22
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Apr 2017 05:52:49 -0000

Reviewer: Pete Resnick
Review result: Ready

I am the assigned Gen-ART reviewer for this draft. The General Area
Review Team (Gen-ART) reviews all IETF documents being processed
by the IESG for the IETF Chair.  Please treat these comments just
like any other last call comments.

For more information, please see the FAQ at

<https://trac.ietf.org/trac/gen/wiki/GenArtfaq>.

Document: draft-ietf-httpbis-encryption-encoding-??
Reviewer: Pete Resnick
Review Date: 2017-04-05
IETF LC End Date: 2017-04-06
IESG Telechat date: 2017-04-13

Summary: Ready

Major issues: None

Minor issues: None

Nits/editorial comments: Looks fine from a non-security-expert's
perspective. It is my duty to ask about keyid in section 2.1:

      A "keyid" parameter SHOULD be a UTF-8
      [RFC3629] encoded string, particularly where the identifier
might
      need to appear in a textual form.

I presume that simply means "might need to be rendered" and does not
include "might need to be typed in by someone", correct? The former is
easy; the latter probably requires a bit more text.