[pcp] Terry Manderson's No Objection on draft-ietf-pcp-authentication-13: (with COMMENT)
"Terry Manderson" <terry.manderson@icann.org> Wed, 08 July 2015 02:57 UTC
Return-Path: <terry.manderson@icann.org>
X-Original-To: pcp@ietfa.amsl.com
Delivered-To: pcp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 677091B2D7A; Tue, 7 Jul 2015 19:57:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e6jRuXih-7iP; Tue, 7 Jul 2015 19:57:39 -0700 (PDT)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A6B51B2D71; Tue, 7 Jul 2015 19:57:39 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Terry Manderson <terry.manderson@icann.org>
To: The IESG <iesg@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 6.0.4.p1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20150708025739.480.3240.idtracker@ietfa.amsl.com>
Date: Tue, 07 Jul 2015 19:57:39 -0700
Archived-At: <http://mailarchive.ietf.org/arch/msg/pcp/oC9FuAHVkcHNynlgR2-4rysMvUA>
Cc: pcp@ietf.org
Subject: [pcp] Terry Manderson's No Objection on draft-ietf-pcp-authentication-13: (with COMMENT)
X-BeenThere: pcp@ietf.org
X-Mailman-Version: 2.1.15
List-Id: PCP wg discussion list <pcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pcp>, <mailto:pcp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pcp/>
List-Post: <mailto:pcp@ietf.org>
List-Help: <mailto:pcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pcp>, <mailto:pcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Jul 2015 02:57:40 -0000
Terry Manderson has entered the following ballot position for draft-ietf-pcp-authentication-13: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-pcp-authentication/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Thanks for addressing an aspect of security in relation to PCP, especially the Advanced Threat Model from RFC6887. I have a few comments 1) I'm sure the RFC editor will pick these up, however there is some comma usage in the document that caused me to re-read some of the paragraphs to understand. The Abstract is one example of this. I'm certainly no expert so perhaps have a skim over this: http://www.grammarbook.com/punctuation/commas.asp 2) s 3.1.1, please consider rewording the text "Section 5.1 updates the PCP request message format to have a result code." to something like "Section 5.1 updates the PCP request message format with result codes for the PCP Authentication mechanism" ...The wording as it stands seems a little non-specific. 3) Basic DoS attacks (such as state bloat) are mentioned in the security section, are there any complex DoS attacks that can be leveraged using the PCP authentication mechanism itself?
- [pcp] Terry Manderson's No Objection on draft-iet… Terry Manderson
- Re: [pcp] Terry Manderson's No Objection on draft… Tirumaleswar Reddy (tireddy)
- Re: [pcp] Terry Manderson's No Objection on draft… Terry Manderson