[Int-dir] Intdir telechat review of draft-ietf-drip-auth-46
Carlos Jesús Bernardos via Datatracker <noreply@ietf.org> Mon, 29 January 2024 23:28 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: int-dir@ietf.org
Delivered-To: int-dir@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 8A1B5C15793B; Mon, 29 Jan 2024 15:28:29 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Carlos Jesús Bernardos via Datatracker <noreply@ietf.org>
To: int-dir@ietf.org
Cc: draft-ietf-drip-auth.all@ietf.org, last-call@ietf.org, tm-rid@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.4.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <170657090955.33481.12239763862500079837@ietfa.amsl.com>
Reply-To: Carlos Jesús Bernardos <cjbc@it.uc3m.es>
Date: Mon, 29 Jan 2024 15:28:29 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-dir/pWjgQt9gHU9yRhNcoPE3VXxYCX8>
Subject: [Int-dir] Intdir telechat review of draft-ietf-drip-auth-46
X-BeenThere: int-dir@ietf.org
X-Mailman-Version: 2.1.39
List-Id: "This list is for discussion between the members of the Internet Area directorate." <int-dir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-dir>, <mailto:int-dir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-dir/>
List-Post: <mailto:int-dir@ietf.org>
List-Help: <mailto:int-dir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-dir>, <mailto:int-dir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Jan 2024 23:28:29 -0000
Reviewer: Carlos Jesús Bernardos Review result: Ready with Nits I am an assigned INT directorate reviewer for <draft-ietf-drip-auth>. These comments were written primarily for the benefit of the Internet Area Directors. Document editors and shepherd(s) should treat these comments just like they would treat comments from any other IETF contributors and resolve them along with any other Last Call comments that have been received. For more details on the INT Directorate, see https://datatracker.ietf.org/group/intdir/about/. Please note that this particular document is really outside of my area of expertise [1]. Based on my review, if I was on the IESG I would ballot this document as NO OBJECTION. The only issue/comment I have is on the use of the DNS indicated in the document: An Observer SHOULD query DNS for the UA's HI. If not available it may have been revoked. Note that accurate revocation status is a DIME inquiry; DNS non-response is a hint that a DET is expired or revoked. It MAY be retrieved from a local cache, if present. The local cache is typically populated by DNS lookups and/or by received Broadcast Endorsements (Section 3.1.2). I think additional details would be helpful on the assumptions of the DNS security mechanisms that are assumed are in place for this to work (or to make this not subject of attacks). The following are minor issues (typos, misspelling, minor text improvements) with the document: - Expand DRIP in the introduction (it is done in the abstract, but I think it improves readability if done also the first time the term is used in the main body of the document). Thanks, Carlos [1] I should have probably realized this when assigning this document to myself for review, thus I owe another apology.
- [Int-dir] Intdir telechat review of draft-ietf-dr… Carlos Jesús Bernardos via Datatracker
- Re: [Int-dir] Intdir telechat review of draft-iet… mohamed.boucadair
- Re: [Int-dir] Intdir telechat review of draft-iet… CARLOS JESUS BERNARDOS CANO