[secdir] Secdir telechat review of draft-ietf-ace-revoked-token-notification-08

Kyle Rose via Datatracker <noreply@ietf.org> Fri, 02 August 2024 18:39 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: secdir@ietf.org
Delivered-To: secdir@ietfa.amsl.com
Received: from [10.244.2.66] (unknown [104.131.183.230]) by ietfa.amsl.com (Postfix) with ESMTP id 8C14EC14F5E6; Fri, 2 Aug 2024 11:39:02 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Kyle Rose via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.21.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <172262394218.84165.7103365413162997369@dt-datatracker-6dd76c4557-2mkrj>
Date: Fri, 02 Aug 2024 11:39:02 -0700
Message-ID-Hash: PMTXYYR7BHOOLJ3MAOMJKEEACPVW6Z2W
X-Message-ID-Hash: PMTXYYR7BHOOLJ3MAOMJKEEACPVW6Z2W
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-secdir.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: ace@ietf.org, draft-ietf-ace-revoked-token-notification.all@ietf.org, last-call@ietf.org
X-Mailman-Version: 3.3.9rc4
Reply-To: Kyle Rose <krose@krose.org>
Subject: [secdir] Secdir telechat review of draft-ietf-ace-revoked-token-notification-08
List-Id: Security Area Directorate <secdir.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/82Rc_TtvfeBS3F6mO8Y36xDeYk8>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Owner: <mailto:secdir-owner@ietf.org>
List-Post: <mailto:secdir@ietf.org>
List-Subscribe: <mailto:secdir-join@ietf.org>
List-Unsubscribe: <mailto:secdir-leave@ietf.org>

Reviewer: Kyle Rose
Review result: Ready

I have reviewed this document as part of the security directorate's ongoing
effort to review all IETF documents being processed by the IESG. These comments
were written primarily for the benefit of the security area directors. Document
editors and WG chairs should treat these comments just like any other last call
comments.

This is a re-review following my original review from 4/1/2024. This document
is Ready.

Marco has addressed my concerns in subsequent revisions. In particular,
clarifying in the text that deciding why some token might be in or out of a TRL
is out-of-scope for this document. That might suggest attention be paid
elsewhere in the ecosystem where such concerns might still be relevant and
actionable, while respecting the inherent limitations of the constrained
environments at the core of ACE.