[rddp] Re: [Gen-art] IETF LC reviews: rddp security and applicability
"Joel M. Halpern" <joel@stevecrocker.com> Sat, 22 April 2006 01:26 UTC
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1FX6t1-0001ki-Qh; Fri, 21 Apr 2006 21:26:11 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FX6ev-00033e-5A; Fri, 21 Apr 2006 21:11:37 -0400
Received: from elasmtp-kukur.atl.sa.earthlink.net ([209.86.89.65]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FX6eq-0004Lr-Ry; Fri, 21 Apr 2006 21:11:37 -0400
Received: from [162.84.74.71] (helo=JMHLap3.stevecrocker.com) by elasmtp-kukur.atl.sa.earthlink.net with asmtp (Exim 4.34) id 1FX6el-0000iC-SD; Fri, 21 Apr 2006 21:11:28 -0400
Message-Id: <7.0.1.0.0.20060417151610.03638760@stevecrocker.com>
X-Mailer: QUALCOMM Windows Eudora Version 7.0.1.0
Date: Fri, 21 Apr 2006 21:10:26 -0400
To: Mary Barnes <mary.barnes@nortel.com>, gen-art@ietf.org
From: "Joel M. Halpern" <joel@stevecrocker.com>
In-Reply-To: <E3F9D87C63E2774390FE67C924EC99BB0AB3D8BA@zrc2hxm1.corp.nor tel.com>
References: <E3F9D87C63E2774390FE67C924EC99BB0AB3D8BA@zrc2hxm1.corp.nortel.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
X-ELNK-Trace: 9f083ca8aeb2d326d5a073bfd238dd844d2b10475b571120ee62521f15bdca46f7f2a7be40bd911ef83aa984341be17f350badd9bab72f9c350badd9bab72f9c
X-Originating-IP: 162.84.74.71
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 082a9cbf4d599f360ac7f815372a6a15
X-Mailman-Approved-At: Fri, 21 Apr 2006 21:26:10 -0400
Cc: lars.eggert@netlab.nec.de, rddp@ietf.org
Subject: [rddp] Re: [Gen-art] IETF LC reviews: rddp security and applicability
X-BeenThere: rddp@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "IETF Remote Direct Data Placement \(rddp\) WG" <rddp.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/rddp>, <mailto:rddp-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:rddp@ietf.org>
List-Help: <mailto:rddp-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/rddp>, <mailto:rddp-request@ietf.org?subject=subscribe>
Errors-To: rddp-bounces@ietf.org
I was selected as General Area Review Team reviewer for this specification (for background on Gen-ART, please see http://www.alvestrand.no/ietf/gen/art/gen-art-FAQ.html). (These reviews treat DDP and RDMAP as given, and do not comment directly on those protocols.) RDDP/ RDMAP Security Given the nature of RDDP, this document is a very good idea. I am glad to see it. This review does not check the completeness of the security coverage. However, as a lay reader I am quite impressed. The document is ready for publication as an Informational RFC, and probably ready as a Proposed Standard. Personally, I would put the one IPSec requirement into the main document, and consider the rest of the material to be in the category of good advice. This is driven by the fact that the actual advice is somewhere between difficult and impossible to observe on the wire. minor point: The last sentence of the introduction reads: If all recommended mitigations are in place the implemented usage models, the RDMAP/DDP protocol can be shown to not expose any new security vulnerabilities. Aside from the linguistic oddity of this sentence, it is unclear what state is being compared. I.e., compared with what condition is there an absence of new security vulnerabilities. (Presumably some state other than "not communicating".) There are scattered other odd English usages. minor: In section 2.3.2, in describing three mechanisms, the text refers to one mechanism (X) and one mechanism (Y and Z). It should refer to two mechanisms (Y and Z). IDNits reports some references missing and some unused. RDMA/DDP Applicability: Other than needing a good English language editor, this document appears ready for publication as an Informational RFC. An example of this is that the references ought to actually be referenced in the body of the document. At 03:46 PM 4/13/2006, Mary Barnes wrote: >Reviewer: Joel Halpern > >- 'DDP/RDMAP Security ' > <draft-ietf-rddp-security-08.txt> as a Proposed Standard >- 'Applicability of Remote Direct Memory Access Protocol (RDMA) and >Direct Data > Placement (DDP) ' > <draft-ietf-rddp-applicability-05.txt> as an Informational RFC > >IETF LC ends on 2006-04-19. > >The file can be obtained via >http://www.ietf.org/internet-drafts/draft-ietf-rddp-security-08.txt >http://www.ietf.org/internet-drafts/draft-ietf-rddp-applicability-05.txt _______________________________________________ rddp mailing list rddp@ietf.org https://www1.ietf.org/mailman/listinfo/rddp
- [rddp] Re: [Gen-art] IETF LC reviews: rddp securi… Joel M. Halpern
- RE: [rddp] Re: [Gen-art] IETF LC reviews: rddp se… Jim Pinkerton
- RE: [rddp] Re: [Gen-art] IETF LC reviews: rddp se… Joel M. Halpern