[secdir] secdir review of draft-ietf-sidr-rescerts-provisioning-10
Ondřej Surý <ondrej.sury@nic.cz> Fri, 19 August 2011 16:10 UTC
Return-Path: <ondrej.sury@nic.cz>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 645C821F8B1D; Fri, 19 Aug 2011 09:10:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.7
X-Spam-Level:
X-Spam-Status: No, score=-1.7 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, J_CHICKENPOX_23=0.6, MIME_8BIT_HEADER=0.3, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0OMckKXlXj1W; Fri, 19 Aug 2011 09:10:12 -0700 (PDT)
Received: from mail.nic.cz (mail.nic.cz [IPv6:2001:1488:800:400::400]) by ietfa.amsl.com (Postfix) with ESMTP id B8E3421F8A36; Fri, 19 Aug 2011 09:10:11 -0700 (PDT)
Received: from [IPv6:2001:1488:ac14:1400:d03d:a0:8f9b:2ed1] (unknown [IPv6:2001:1488:ac14:1400:d03d:a0:8f9b:2ed1]) by mail.nic.cz (Postfix) with ESMTPSA id C66332A0BC8; Fri, 19 Aug 2011 18:10:59 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=nic.cz; s=default; t=1313770259; bh=quEVv3/fiXHAxLDyewn0tcXrART6QNMJrlU9mGB5FFI=; h=From:Content-Type:Content-Transfer-Encoding:Subject:Date: Message-Id:To:Mime-Version; b=OJwkB439tbDHjd21IK0tEB2f130KL/8IQHWcTAYmGM2PO8NlC5Te0PQajq94URXqv qDAleaM5WsQAkxBnGlGGnVf7pY258nDM1f1e66MSuE6YGBnaHUdWijrwA4PdNTpA6C 212ghvBiHfZJBFvdmqie9f3n7buMelYwqn2vgh1Q=
From: Ondřej Surý <ondrej.sury@nic.cz>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Date: Fri, 19 Aug 2011 18:10:59 +0200
Message-Id: <C5559F41-D328-47F2-A463-00F118ED61D5@nic.cz>
To: iesg@ietf.org, secdir@ietf.org, draft-ietf-sidr-rescerts-provisioning.all@tools.ietf.org
Mime-Version: 1.0 (Apple Message framework v1244.3)
X-Mailer: Apple Mail (2.1244.3)
X-Virus-Scanned: clamav-milter 0.96.5 at mail
X-Virus-Status: Clean
Subject: [secdir] secdir review of draft-ietf-sidr-rescerts-provisioning-10
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Aug 2011 16:10:13 -0000
I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG. These comments were written primarily for the benefit of the
security area directors. Document editors and WG chairs should treat
these comments just like any other last call comments.
This I-D is a part of RPKI infrastructure built in the SIDR WG. And
this document defines a framework for certificate management interactions
between a resource issuer and a resource recipient.
I am not following the SIDR working group and thus I found it quite
hard to review this draft. (So sorry for the big delay, it took me
a while to find a time get at least quick introduction into RPKI.)
I read the document and the security considerations and I consider them
well thought, but there are some parts which are a bit confusing for
someone not involved in the whole RPKI stuff.
1. I think that you should move the I-D.sidr-arch and I-D.sidr-res-certs
from Informative to Normative References. The document uses much of the
terminology ("resources", "Resource Certificates", etc.) which cannot be
understood without reading at least those two.
2. In the terminology and the scope you use terms "Certificates"
and "Certificate Authority" and it's not clear if you talk about X.509
or RPKI. I think you should add few sentences from I-D.sidr-res-certs
to explain the very basics of Resource Certificates to the reader of this
draft.
Apart from the difficulty to understand the document I found that all my
concerns from reading the draft were addressed in the security considerations.
However I would recommend to review the security of the output of the SIDR
WG as a whole, because it defines quite an important infrastructure which
will have an impact on the IPv4/6 resource handling. Personally I think
that I may have overlooked something by reviewing just this one document
without thorough review of all related drafts.
O.
--
Ondřej Surý
vedoucí výzkumu/Head of R&D department
-------------------------------------------
CZ.NIC, z.s.p.o. -- Laboratoře CZ.NIC
Americka 23, 120 00 Praha 2, Czech Republic
mailto:ondrej.sury@nic.cz http://nic.cz/
tel:+420.222745110 fax:+420.222745112
-------------------------------------------