IETF Logo Mail Archive

Re: [Roll] draft-ietf-roll-security-framework returned to working group.

Abdussalam Baryun <abdussalambaryun@gmail.com> Sun, 19 August 2012 11:18 UTC

Return-Path: <abdussalambaryun@gmail.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 94FE321F84FA for <roll@ietfa.amsl.com>; Sun, 19 Aug 2012 04:18:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.493
X-Spam-Level:
X-Spam-Status: No, score=-3.493 tagged_above=-999 required=5 tests=[AWL=0.105, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7VTVOhEky7st for <roll@ietfa.amsl.com>; Sun, 19 Aug 2012 04:18:06 -0700 (PDT)
Received: from mail-vc0-f172.google.com (mail-vc0-f172.google.com [209.85.220.172]) by ietfa.amsl.com (Postfix) with ESMTP id 8366A21F84F8 for <roll@ietf.org>; Sun, 19 Aug 2012 04:18:06 -0700 (PDT)
Received: by vcbfo14 with SMTP id fo14so4844118vcb.31 for <roll@ietf.org>; Sun, 19 Aug 2012 04:18:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=f7tZ3P8h/V9QbVAQ2ummWKT7eiNartUjpqMJhUgl6BM=; b=DY9MYtM6n6E7E0oRla4aXMkYHtxg4Z5U89Q9cb5/QVui+VCaxkS3lZfutg64Q7/Gux aJqW9mdGDSYyNesc/Xg9WU8Zi8650kMmUQ95LNIfCZVa5sMPLttmMyOTBNU1OCRQBJnr WfDEZeXEopAgdJEJFLk6++IBhgE9EZOgOM/bwiC3K4bzvpYK4mfWaX3oQRV5h6ABweU6 GJpzpJTEcHg2ZTsr8whdB/lOR1Njd8PLk88rxU38u6Ng4k1ZTE2gLW3x93Hafp6Vb1q1 1JmGf6LwzwDsR4czjZJriwJYqdkRNfsndyU3ki2Wrao8pgEIs0QfpxlDcF0/yqmLEqIw EIQA==
MIME-Version: 1.0
Received: by 10.52.24.201 with SMTP id w9mr6160259vdf.125.1345375085895; Sun, 19 Aug 2012 04:18:05 -0700 (PDT)
Received: by 10.220.62.77 with HTTP; Sun, 19 Aug 2012 04:18:05 -0700 (PDT)
In-Reply-To: <110101cd7d74$71d47600$557d6200$@olddog.co.uk>
References: <110101cd7d74$71d47600$557d6200$@olddog.co.uk>
Date: Sun, 19 Aug 2012 12:18:05 +0100
Message-ID: <CADnDZ8_RhhEurG=EAJR7-MTP6nC7zLtH47wpb7yOmoxpjhk87A@mail.gmail.com>
From: Abdussalam Baryun <abdussalambaryun@gmail.com>
To: roll <roll@ietf.org>
Content-Type: multipart/alternative; boundary="bcaec501620715a0d904c79c8cd2"
Subject: Re: [Roll] draft-ietf-roll-security-framework returned to working group.
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/roll>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 19 Aug 2012 11:18:09 -0000

>
>
> The right thing to do is to publish documents with the right content. As
> Michael
> said, the problem with the Security Framework document is that it does not
> answer the *how* and *why* of what security to apply in what places. While
> it
> does an *AWESOME* job of identify threats it doesn't tell us which protocol
> mechanisms deal with what threats.


 I think the document did n't have to explain *how* and *why*, because this
document is an informational framework not a standard/Best-Practice
framework. The job of the document was intended to give information of
identifying threats. I don't like a documet that has pages more than 50, so
I think this document can change its title and scope to clarify its use
(threats identification informational I-D), and a future standard I-D of
security framwork can have the *how* and *why* related to
protocol/mechanism.

AB

v2.23.0 | Report a Bug | By Email