[secdir] Secdir early review of draft-ietf-cellar-ffv1-02

Liang Xia <frank.xialiang@huawei.com> Fri, 01 June 2018 09:23 UTC

Return-Path: <frank.xialiang@huawei.com>
X-Original-To: secdir@ietf.org
Delivered-To: secdir@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 225E51275AB; Fri, 1 Jun 2018 02:23:20 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Liang Xia <frank.xialiang@huawei.com>
To: secdir@ietf.org
Cc: draft-ietf-cellar-ffv1.all@ietf.org, cellar@ietf.org, ietf@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.81.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <152784500007.15152.9045057653501275171@ietfa.amsl.com>
Date: Fri, 01 Jun 2018 02:23:20 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/CHfPHNF4vTXbfOflIwU43MSAEdQ>
Subject: [secdir] Secdir early review of draft-ietf-cellar-ffv1-02
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Jun 2018 09:23:21 -0000

Reviewer: Liang Xia
Review result: Ready

The whole draft is in good shape and well written.
Some nits:
1. every word should start with capital letter for the section title;
2. section 2.2.4: / ceil(a) the largest integer less than or equal to a /
ceil(a) the smallest integer larger than or equal to a / 3. section 3.7.2:
[ISO.15444-1.2016]? 4. section 12.1: [I-D.ietf-cellar-ffv1]? 5. section 12.2:
should all the RFC move to the Normative References (section 12.1)?

Issues for clarification:
In Security Considerations, besides the DoS attacks brought by the malicious
payloads, is there any other kinds of attack possibly? For example, virus or
worm are hidden in the malicious payloads to attack the system for more
damages? Does it make sense and what's the consideration?