[secdir] review of draft-ietf-avt-rtcp-guidelines-04

Tom Yu <tlyu@MIT.EDU> Tue, 18 May 2010 22:06 UTC

Return-Path: <tlyu@mit.edu>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost []) by core3.amsl.com (Postfix) with ESMTP id BF69B3A69BD; Tue, 18 May 2010 15:06:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.411
X-Spam-Status: No, score=-1.411 tagged_above=-999 required=5 tests=[AWL=1.188, BAYES_00=-2.599]
Received: from mail.ietf.org ([]) by localhost (core3.amsl.com []) (amavisd-new, port 10024) with ESMTP id yHXiqR2-q3Uq; Tue, 18 May 2010 15:06:12 -0700 (PDT)
Received: from dmz-mailsec-scanner-6.mit.edu (DMZ-MAILSEC-SCANNER-6.MIT.EDU []) by core3.amsl.com (Postfix) with ESMTP id C8C593A68F9; Tue, 18 May 2010 15:06:11 -0700 (PDT)
X-AuditID: 12074423-b7c0bae0000030f0-d7-4bf30f4b7601
Received: from mailhub-auth-2.mit.edu (MAILHUB-AUTH-2.MIT.EDU []) by dmz-mailsec-scanner-6.mit.edu (Symantec Brightmail Gateway) with SMTP id 49.E7.12528.B4F03FB4; Tue, 18 May 2010 18:06:03 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH.MIT.EDU []) by mailhub-auth-2.mit.edu (8.13.8/8.9.2) with ESMTP id o4IM627m029996; Tue, 18 May 2010 18:06:03 -0400
Received: from cathode-dark-space.mit.edu (CATHODE-DARK-SPACE.MIT.EDU []) (authenticated bits=56) (User authenticated as tlyu@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.6/8.12.4) with ESMTP id o4IM60Vq019291 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Tue, 18 May 2010 18:06:01 -0400 (EDT)
Received: (from tlyu@localhost) by cathode-dark-space.mit.edu ( id o4IM5xuF018333; Tue, 18 May 2010 18:05:59 -0400 (EDT)
To: secdir@ietf.org, iesg@ietf.org, avt-chairs@tools.ietf.org, draft-ietf-avt-rtcp-guidelines.all@tools.ietf.org
From: Tom Yu <tlyu@MIT.EDU>
Date: Tue, 18 May 2010 18:05:58 -0400
Message-ID: <ldv4oi4dfw9.fsf@cathode-dark-space.mit.edu>
Lines: 9
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Brightmail-Tracker: AAAAAA==
Subject: [secdir] review of draft-ietf-avt-rtcp-guidelines-04
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 May 2010 22:06:12 -0000

draft-ietf-avt-rtcp-guidelines-04 provides guidelines for extending
the RTP Control Protocol (RTCP) if its existing capabilities are
insufficient for some purpose.

The guidelines seem good, and many of them are applicable to network
protocol and extension design in general.  The Security Considerations
section contains a reasonable collection of advice to designers of
RTCP extensions regarding the potential security impact of new