Re: [kitten] Gen-art LC review: draft-ietf-kitten-rfc6112bis-02

Benjamin Kaduk <kaduk@MIT.EDU> Sun, 23 October 2016 18:22 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2C19E129567; Sun, 23 Oct 2016 11:22:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.632
X-Spam-Level:
X-Spam-Status: No, score=-4.632 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.431, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SilvWjRBFNd5; Sun, 23 Oct 2016 11:22:21 -0700 (PDT)
Received: from dmz-mailsec-scanner-6.mit.edu (dmz-mailsec-scanner-6.mit.edu [18.7.68.35]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A196712954C; Sun, 23 Oct 2016 11:22:19 -0700 (PDT)
X-AuditID: 12074423-1f7ff70000002479-9d-580cffd8fe95
Received: from mailhub-auth-3.mit.edu ( [18.9.21.43]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by (Symantec Messaging Gateway) with SMTP id F8.84.09337.8DFFC085; Sun, 23 Oct 2016 14:22:17 -0400 (EDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-3.mit.edu (8.13.8/8.9.2) with ESMTP id u9NIMF6T019238; Sun, 23 Oct 2016 14:22:16 -0400
Received: from multics.mit.edu (system-low-sipb.mit.edu [18.187.2.37]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id u9NIMCeM031012 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sun, 23 Oct 2016 14:22:15 -0400
Received: (from kaduk@localhost) by multics.mit.edu (8.12.9.20060308) id u9NIMBBa026476; Sun, 23 Oct 2016 14:22:11 -0400 (EDT)
Date: Sun, 23 Oct 2016 14:22:11 -0400 (EDT)
From: Benjamin Kaduk <kaduk@MIT.EDU>
To: Robert Sparks <rjsparks@nostrum.com>
In-Reply-To: <023b4b96-77ef-a78e-3546-4d05f339d5e0@nostrum.com>
Message-ID: <alpine.GSO.1.10.1610231420240.5272@multics.mit.edu>
References: <023b4b96-77ef-a78e-3546-4d05f339d5e0@nostrum.com>
User-Agent: Alpine 1.10 (GSO 962 2008-03-14)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrEIsWRmVeSWpSXmKPExsUixCmqrXvzP0+EQed7AYvjp9awWlx99ZnF 4tnG+SwWRzevYrG4NqeRzYHVY8mSn0wes3Y+YQlgiuKySUnNySxLLdK3S+DKeLGum7VgG0/F m9NHWRoY/3N2MXJySAiYSFzcdpC1i5GLQ0igjUmi/8J8FghnI6PE1Sl3oDKHmCSe7joA5TQw StxaupcFpJ9FQFti2tsGJhCbTUBFYuabjWwgtoiAhsS1JUvYQRqYBZoZJdqWdbGDJIQF7CXO LjsG1swJZK9f0M0MYvMKOEjMPdwH1iwkYCexteMMWL2ogI7E6v1TWCBqBCVOznwCZjMLaEks n76NZQKjwCwkqVlIUgsYmVYxyqbkVunmJmbmFKcm6xYnJ+blpRbpmunlZpbopaaUbmIEBS27 i/IOxpd93ocYBTgYlXh4T1ziiRBiTSwrrsw9xCjJwaQkyntUljtCiC8pP6UyI7E4I76oNCe1 +BCjBAezkgjvxt9A5bwpiZVVqUX5MClpDhYlcd7/bl/DhQTSE0tSs1NTC1KLYLIyHBxKErya /4AaBYtS01Mr0jJzShDSTBycIMN5gIZ7gNTwFhck5hZnpkPkTzEqSonz6oIkBEASGaV5cL3g pLKbSfUVozjQK8K8x0GqeIAJCa77FdBgJqDBgvFgg0sSEVJSDYxcDypdre3TmqVbSllDs2Q2 H518kst8k+sm6+SqyrcPuR7H8mfe3cR6IPXQu27vqleXnwtxch18fv9qplYAp8dLqw3bp7+a +e9FytH0mztdn0uHCHxju/lQeSPjmvO2Rfm+bQmH7Lbd5lqbwCQ80e/awv79rs0FjL2mgTe8 HkpHeXcaPXlbsUOJpTgj0VCLuag4EQCFWe32BQMAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/kitten/xlWvnNIb2XN1_o-tbwCWfWxlJak>
Cc: kitten@ietf.org, General Area Review Team <gen-art@ietf.org>, ietf@ietf.org, draft-ietf-kitten-rfc6112bis.all@ietf.org
Subject: Re: [kitten] Gen-art LC review: draft-ietf-kitten-rfc6112bis-02
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 23 Oct 2016 18:22:23 -0000

On Fri, 21 Oct 2016, Robert Sparks wrote:

> I am the assigned Gen-ART reviewer for this draft. The General Area
> Review Team (Gen-ART) reviews all IETF documents being processed
> by the IESG for the IETF Chair.  Please treat these comments just
> like any other last call comments.
>
> For more information, please see the FAQ at
>
> <http://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>;.
>
> Document: draft-ietf-kitten-rfc6112bis-02
> Reviewer: Robert Sparks
> Review Date: 21 Oct 2016
> IETF LC End Date: 2 Nov 2016
> IESG Telechat date: Not yet scheduled on a telechat
>
> Summary: Ready with nits
>
> Nits/editorial comments:
>
> Shouldn't the IANA considerations instruct IANA to update the registries at
> http://www.iana.org/assignments/kerberos-parameters/kerberos-parameters.xhtml
> to update the three rows that currently point to 6112 to point to this
> document instead (or at least in addition to 6112)?

Yes, thanks for spotting that.

> Micro-nit: There is a 2119 MUST carried forward from RFC6112 that could be
> improved if the group is willing. "Care MUST be taken by the TGS to not
> reveal". I would suggest "The TGS MUST NOT reveal...". If you need to further
> highlight care, add a sentence that says "Implementers need to be particularly
> careful when addressing this requirement." It is a very small nit - please
> feel free to ignore it.

That looks like a good change to me.  Folks on kitten@, does anyone think
otherwise?  If we do not get any objections, I think we can include that
in an RFC Editor Note.

-Ben