IETF Logo Mail Archive

secdir review of draft-snell-atompub-bidi-06

"David Harrington" <ietfdbh@comcast.net> Wed, 16 April 2008 00:11 UTC

Return-Path: <ietf-bounces@ietf.org>
X-Original-To: ietf-archive@megatron.ietf.org
Delivered-To: ietfarch-ietf-archive@core3.amsl.com
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 66F693A684B; Tue, 15 Apr 2008 17:11:37 -0700 (PDT)
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EB9963A6837 for <ietf@core3.amsl.com>; Tue, 15 Apr 2008 17:11:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MY1fogrDDHlT for <ietf@core3.amsl.com>; Tue, 15 Apr 2008 17:11:35 -0700 (PDT)
Received: from QMTA05.emeryville.ca.mail.comcast.net (qmta05.emeryville.ca.mail.comcast.net [76.96.30.48]) by core3.amsl.com (Postfix) with ESMTP id 0A6F53A684B for <ietf@ietf.org>; Tue, 15 Apr 2008 17:11:35 -0700 (PDT)
Received: from OMTA12.emeryville.ca.mail.comcast.net ([76.96.30.44]) by QMTA05.emeryville.ca.mail.comcast.net with comcast id DwWc1Z00F0x6nqcA50S000; Wed, 16 Apr 2008 00:09:53 +0000
Received: from Harrington73653 ([66.122.107.58]) by OMTA12.emeryville.ca.mail.comcast.net with comcast id E0BD1Z0021Fdc9e8Y00000; Wed, 16 Apr 2008 00:12:07 +0000
X-Authority-Analysis: v=1.0 c=1 a=48vgC7mUAAAA:8 a=Gz7s5_CCAAAA:8 a=hkWWVXNTbSphbP7JYdUA:9 a=1oz6L-KaxCSYyqN_dpEA:7 a=rrsp469wuXr4LG3Wm4mzUWHnTGIA:4 a=si9q_4b84H0A:10 a=hPjdaMEvmhQA:10 a=gi0PWCVxevcA:10
From: David Harrington <ietfdbh@comcast.net>
To: secdir-secretary@mit.edu, iesg@ietf.org, lisa@osafoundation.org, 'IETF Discussion' <ietf@ietf.org>
References: <20080411214431.K16434@fledge.watson.org>
Subject: secdir review of draft-snell-atompub-bidi-06
Date: Tue, 15 Apr 2008 17:11:11 -0700
Message-ID: <00c801c89f56$711c67f0$5e0a0a0a@china.huawei.com>
MIME-Version: 1.0
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <20080411214431.K16434@fledge.watson.org>
thread-index: AcicP4xAEql3hBnfTzalGQ9Wp83xJwDE3M2g
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3138
Cc: paul.hoffman@vpnc.org, tbray@textuality.com, mnot@pobox.com, rfsayre@boswijck.com
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

draft-snell-atompub-bidi-06 is a very short document and adds an
experimental attribute to the atom syndication format to indicate
whether text should be presented left-to-right or right-to-left. This
experimental approach would replace the current "direction guessing"
heuristic approach.

I see nothing that leads me to believe there is any additional
security consideration that is not already discussed in the security
considerations of RFC4287 "The Atom Syndication Protocol". RFC4287
considers the HTML/XHTML content, URIs, IRIs, Spoofing, and encryption
and digital signatures. 

David Harrington
dbharrington@comcast.net
ietfdbh@comcast.net
dharrington@huawei.com


> -----Original Message-----
> From: secdir-bounces@mit.edu [mailto:secdir-bounces@mit.edu] 
> On Behalf Of Samuel Weiler
> Sent: Friday, April 11, 2008 6:49 PM
> To: secdir@mit.edu
> Subject: [secdir] Assignments for April 18th
> 
> Two new reviewers enter the rotation this week: Richard 
> Barnes and Sam 
> Hartman.
> 
> We've moved the review instructions and related resources (e.g. the 
> list of reviewers) to a wiki:
>           http://tools.ietf.org/area/sec/trac/wiki/SecDirReview
> The mailing list may be moving from mit.edu to the IETF's servers 
> within the next week.  Stay tuned.
> 
> Paul Hoffman is next in the rotation.
> 
> -- Sam
> 
> 
> For telechat 2008-04-24
> 
> Lakshminath Dondeti            T  draft-ietf-mipshop-4140bis-02
> Susan Thomson                  T  draft-funk-eap-ttls-v0-04
> 
> Last calls and special requests:
> 
> Rob Austein                       draft-klensin-rfc2821bis-09
> Rob Austein                       draft-ietf-rmt-bb-norm-revised-04
> Richard Barnes                    draft-ietf-lemonade-msgevent-05
> Uri Blumenthal                    draft-ietf-smime-sha2-04
> Pat Cain                          draft-ietf-rserpool-threats-09
> Ran Canetti                       draft-ietf-rserpool-asap-19
> Ran Canetti
draft-ietf-rserpool-common-param-16
> Ran Canetti                       draft-ietf-rserpool-enrp-19
> Ran Canetti                       draft-ietf-rserpool-policies-08
> Lakshminath Dondeti               draft-irtf-nmrg-snmp-measure-04
> Donald Eastlake
draft-ietf-mpls-ldp-capabilities-02
> Shawn Emery                       draft-ietf-mpls-ldp-interarea-03
> Stephen Farrell                   draft-ietf-mpls-upstream-label-04
> Tobias Gondrom
draft-ietf-mpls-multicast-encaps-07
> Phillip Hallam-Baker              draft-ietf-krb-wg-anon-05
> Phillip Hallam-Baker              
> draft-ietf-mpls-number-0-bw-te-lsps-09
> Steve Hanna                       
> draft-ietf-tsvwg-rsvp-user-error-spec-06
> David Harrington                  draft-snell-atompub-bidi-06
> Sam Hartman                       draft-resnick-2822upd-06
> Tero Kivinen                      
> draft-ietf-softwire-mesh-framework-04
> Tero Kivinen                      draft-ietf-softwire-encaps-safi-00
> Tero Kivinen
draft-ietf-softwire-encaps-ipsec-00
> Tero Kivinen                      draft-ietf-softwire-v4nlri-v6nh-00
> Julien Laganier                   
> draft-ietf-softwire-mesh-framework-04
> Julien Laganier                   draft-ietf-softwire-encaps-safi-00
> Julien Laganier
draft-ietf-softwire-encaps-ipsec-00
> Julien Laganier                   draft-ietf-softwire-v4nlri-v6nh-00
> Catherine Meadows                 draft-ietf-speechsc-mrcpv2-15
> Sandy Murphy                      
> draft-vanelburg-sipping-served-user-04
> Sandy Murphy                      
> draft-ietf-l1vpn-bgp-auto-discovery-04
> Vidya Narayanan                   draft-ietf-nfsv4-nfsdirect-07
> Vidya Narayanan                   draft-ietf-enum-experiences-09
> Vidya Narayanan                   
> draft-ietf-l1vpn-ospf-auto-discovery-05
> Blake Ramsdell                    draft-ietf-ospf-rfc2370bis-02
> Stefan Santesson                  
> draft-iijima-netconf-soap-implementation-06
> Stefan Santesson                  draft-ietf-pim-lasthop-threats-03
> Juergen Schoenwaelder             draft-freed-sieve-environment-05
> Susan Thomson                     draft-carpenter-rfc2026-changes-02
> Sam Weiler                        draft-ietf-pim-bsr-mib-04
> Nico Williams                     draft-ietf-l1vpn-basic-mode-04
> Kurt Zeilenga                     draft-daboo-imap-annotatemore-12
> Larry Zhu                         
> draft-hautakorpi-sipping-uri-list-handling-refused-03
> Glen Zorn                         draft-ietf-iptel-tel-reg-05
> _______________________________________________
> secdir mailing list
> secdir@mit.edu
> https://mailman.mit.edu/mailman/listinfo/secdir
> 


_______________________________________________
IETF mailing list
IETF@ietf.org
https://www.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email