Re: [radext] Secdir review of draft-ietf-radext-dynamic-discovery-13

Jounikor <jounikor@gmail.com> Wed, 01 April 2015 14:20 UTC

Return-Path: <jounikor@gmail.com>
X-Original-To: expand-draft-ietf-radext-dynamic-discovery.all@virtual.ietf.org
Delivered-To: radext@ietfa.amsl.com
Received: by ietfa.amsl.com (Postfix, from userid 65534) id 290DB1A9177; Wed, 1 Apr 2015 07:20:18 -0700 (PDT)
X-Original-To: xfilter-draft-ietf-radext-dynamic-discovery.all@ietfa.amsl.com
Delivered-To: xfilter-draft-ietf-radext-dynamic-discovery.all@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 06AB41A9151 for <xfilter-draft-ietf-radext-dynamic-discovery.all@ietfa.amsl.com>; Wed, 1 Apr 2015 07:20:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.334
X-Spam-Level:
X-Spam-Status: No, score=-1.334 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S59gwzU5gw3d for <xfilter-draft-ietf-radext-dynamic-discovery.all@ietfa.amsl.com>; Wed, 1 Apr 2015 07:20:13 -0700 (PDT)
Received: from zinfandel.tools.ietf.org (zinfandel.tools.ietf.org [IPv6:2001:1890:123a::1:2a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5453C1A916D for <draft-ietf-radext-dynamic-discovery.all@ietf.org>; Wed, 1 Apr 2015 07:20:13 -0700 (PDT)
Received: from mail-ob0-x22e.google.com ([2607:f8b0:4003:c01::22e]:33975) by zinfandel.tools.ietf.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.82_1-5b7a7c0-XX) (envelope-from <jounikor@gmail.com>) id 1YdJV6-0006GP-4P for draft-ietf-radext-dynamic-discovery.all@tools.ietf.org; Wed, 01 Apr 2015 07:20:13 -0700
Received: by obbgh1 with SMTP id gh1so77562657obb.1 for <draft-ietf-radext-dynamic-discovery.all@tools.ietf.org>; Wed, 01 Apr 2015 07:20:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=0dg89tURZ4MZ4d7ax4Ml5dlJQ7SWYTfp78W0TWhbEFk=; b=jmY5C4pVtdNVrwKzu5gwTbp0Yg5Z/xauwFXkQPlD7LzM6ooq399FbT+D0QnZrx8I0m ZefwSGIDeJDpZtoWgTEeZYtY9d5X62cLpuqqAVbJXPNrENnWlBipu124m9x9Vd+H9+Y7 CtPlgcW7THfSgPlNkvO8p2FUuoQX1kn1g3cWS/hPomOuU+GMpta6miiuE/QlL3ZeuVZB R1g7K4NxgM0s6Qq5gln8qbin66ZR8+NhsgrVjop33xZNqRkalNzKU5vM79i5HaH7xwgX gM3hhkQTiomrtXRj3yhEFybs5Bot7K/KAzxCO1871+O+etWnd1yWkMr5JJ78Ut2LrWPF pvuA==
X-Received: by 10.183.24.168 with SMTP id ij8mr41188113obd.15.1427897984976; Wed, 01 Apr 2015 07:19:44 -0700 (PDT)
Received: from [198.18.97.107] ([12.190.128.2]) by mx.google.com with ESMTPSA id u9sm1856079obx.13.2015.04.01.07.19.44 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 01 Apr 2015 07:19:44 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (1.0)
From: Jounikor <jounikor@gmail.com>
X-Mailer: iPhone Mail (12D508)
In-Reply-To: <779642F1-4094-4524-A6B8-EE4E40B1CF8A@cisco.com>
Date: Wed, 01 Apr 2015 08:19:43 -0600
Content-Transfer-Encoding: quoted-printable
Message-Id: <780CC07C-5873-47FC-8002-5C8B3BE13F7C@gmail.com>
References: <779642F1-4094-4524-A6B8-EE4E40B1CF8A@cisco.com>
To: "Brian Weis (bew)" <bew@cisco.com>
X-SA-Exim-Connect-IP: 2607:f8b0:4003:c01::22e
X-SA-Exim-Rcpt-To: draft-ietf-radext-dynamic-discovery.all@tools.ietf.org
X-SA-Exim-Mail-From: jounikor@gmail.com
X-SA-Exim-Version: 4.2.1 (built Mon, 26 Dec 2011 16:24:06 +0000)
X-SA-Exim-Scanned: Yes (on zinfandel.tools.ietf.org)
Resent-To: draft-ietf-radext-dynamic-discovery.all@ietf.org
Resent-Message-Id: <20150401142013.5453C1A916D@ietfa.amsl.com>
Resent-Date: Wed, 01 Apr 2015 07:20:13 -0700
Resent-From: jounikor@gmail.com
Archived-At: <http://mailarchive.ietf.org/arch/msg/draft-ietf-radext-dynamic-discovery.all@tools/ciGEW4xRrlCmJF9AQqqHEZ2dWwU>
Archived-At: <http://mailarchive.ietf.org/arch/msg/radext/T73tMxJKloPnC2u_ynoSckyvCqs>
X-Mailman-Approved-At: Wed, 01 Apr 2015 07:46:50 -0700
Cc: The IESG <iesg@ietf.org>, "draft-ietf-radext-dynamic-discovery.all@tools.ietf.org" <draft-ietf-radext-dynamic-discovery.all@tools.ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
Subject: Re: [radext] Secdir review of draft-ietf-radext-dynamic-discovery-13
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Apr 2015 14:20:18 -0000

Thanks Brian!

- jouni

Sent from a smart phone.. Mind the typos..

> Brian Weis (bew) <bew@cisco.com> kirjoitti 31.3.2015 kello 22.54:
> 
> I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. 
> 
> Previously I reviewed draft-ietf-radext-dynamic-discovery-12, and while I didn’t have any particular issues with it there were some questions and suggestions for clarifying trust model. The current draft added some really valuable text and figures. I believe it is ready to be published.
> 
> Brian
> 
>