Review of draft-harkins-owe-05

Lucy Yong <lucy.yong@huawei.com> Fri, 09 December 2016 17:17 UTC

Return-Path: <lucy.yong@huawei.com>
X-Original-To: ietf@ietf.org
Delivered-To: ietf@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 87E4C1298C5; Fri, 9 Dec 2016 09:17:05 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Lucy Yong <lucy.yong@huawei.com>
To: <gen-art@ietf.org>
Subject: Review of draft-harkins-owe-05
X-Test-IDTracker: no
X-IETF-IDTracker: 6.39.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <148130382551.4722.6409764037485645504.idtracker@ietfa.amsl.com>
Date: Fri, 09 Dec 2016 09:17:05 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/uhyBoj5sq6P8-iul1uyf0IY_ULs>
Cc: gen-art-private@ietf.org, mahoney@nostrum.com, ietf@ietf.org, draft-harkins-owe.all@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.17
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Dec 2016 17:17:05 -0000

Reviewer: Lucy Yong
Review result: Ready with Nits

The draft is nearly ready for the publication.
 
Minor comment: Suggest adding this in security considerations: OWE
provides encryption over the wireless medium, i.e., Wi-Fi without
authentication. Thus it does not provide security for end-to-end
traffic.  users should still use application level security such as
VPN for end-to-end security. In this case, use of OWE prevents VPN
authentication info. to be spoofed in open public Wi-Fi.
one question: Will a user notices if OWE is used or not?  This may be
important for some users. 

nit: r/encryption of the wireless medium/encryption over the wireless
medium/