Re: [rtcweb] I-D Action: draft-ietf-rtcweb-security-arch-10.txt

Colin Perkins <csp@csperkins.org> Sun, 20 July 2014 17:10 UTC

Return-Path: <csp@csperkins.org>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D37841B289E for <rtcweb@ietfa.amsl.com>; Sun, 20 Jul 2014 10:10:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.13
X-Spam-Level:
X-Spam-Status: No, score=-1.13 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_SORBS_WEB=0.77] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ED3HEzlKf2_I for <rtcweb@ietfa.amsl.com>; Sun, 20 Jul 2014 10:10:06 -0700 (PDT)
Received: from haggis.mythic-beasts.com (haggis.mythic-beasts.com [IPv6:2a00:1098:0:86:1000:0:2:1]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A257D1A8BB4 for <rtcweb@ietf.org>; Sun, 20 Jul 2014 10:10:06 -0700 (PDT)
Received: from [207.236.147.203] (port=62251 helo=[10.255.253.157]) by haggis.mythic-beasts.com with esmtpsa (TLS1.0:RSA_AES_128_CBC_SHA1:128) (Exim 4.80) (envelope-from <csp@csperkins.org>) id 1X8uce-00052Q-La for rtcweb@ietf.org; Sun, 20 Jul 2014 18:10:05 +0100
Content-Type: text/plain; charset=windows-1252
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
From: Colin Perkins <csp@csperkins.org>
In-Reply-To: <20140704195354.9574.18912.idtracker@ietfa.amsl.com>
Date: Sun, 20 Jul 2014 13:10:01 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <B581BF88-E2AC-4D53-AA7A-F0BB82A4BF17@csperkins.org>
References: <20140704195354.9574.18912.idtracker@ietfa.amsl.com>
To: rtcweb@ietf.org
X-Mailer: Apple Mail (2.1878.6)
X-BlackCat-Spam-Score: -28
X-Mythic-Debug: Threshold = On =
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/e6TsenOZVf9GhkJMpLjD6pYCF54
Subject: Re: [rtcweb] I-D Action: draft-ietf-rtcweb-security-arch-10.txt
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 20 Jul 2014 17:10:08 -0000

On 4 Jul 2014, at 15:53, Internet-Drafts@ietf.org wrote:
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the Real-Time Communication in WEB-browsers Working Group of the IETF.
> 
>        Title           : WebRTC Security Architecture
>        Author          : Eric Rescorla
> 	Filename        : draft-ietf-rtcweb-security-arch-10.txt
> 	Pages           : 45
> 	Date            : 2014-07-04
> 
> Abstract:
>   The Real-Time Communications on the Web (RTCWEB) working group is
>   tasked with standardizing protocols for enabling real-time
>   communications within user-agents using web technologies (commonly
>   called "WebRTC").  This document defines the security architecture
>   for WebRTC.
> 
> 
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-rtcweb-security-arch/

One minor point, to avoid potential confusion due to acronym clash, I suggest changing “WebRTC implementations MUST NOT offer SDES or select it if offered” in Section 5.5 to “…MUST NOT offer SDP Security Descriptions [RFC…] or select…”

Cheers,
Colin




-- 
Colin Perkins
http://csperkins.org/