[secdir] SecDir Review of draft-ietf-ecrit-unauthenticated-access-07

Tina TSOU <Tina.Tsou.Zouting@huawei.com> Fri, 27 September 2013 22:57 UTC

Return-Path: <Tina.Tsou.Zouting@huawei.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E729221F9BF2; Fri, 27 Sep 2013 15:57:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.59
X-Spam-Level:
X-Spam-Status: No, score=-5.59 tagged_above=-999 required=5 tests=[AWL=-0.658, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4, SARE_FWDLOOK=1.666]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mGTcfV7L7kUb; Fri, 27 Sep 2013 15:57:39 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) by ietfa.amsl.com (Postfix) with ESMTP id C124621F9DED; Fri, 27 Sep 2013 15:57:38 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml204-edg.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id AYI95421; Fri, 27 Sep 2013 22:57:34 +0000 (GMT)
Received: from LHREML402-HUB.china.huawei.com (10.201.5.241) by lhreml204-edg.china.huawei.com (172.18.7.223) with Microsoft SMTP Server (TLS) id 14.3.146.0; Fri, 27 Sep 2013 23:56:40 +0100
Received: from SJCEML401-HUB.china.huawei.com (10.212.94.42) by lhreml402-hub.china.huawei.com (10.201.5.241) with Microsoft SMTP Server (TLS) id 14.3.146.0; Fri, 27 Sep 2013 23:57:33 +0100
Received: from SJCEML501-MBS.china.huawei.com ([169.254.2.42]) by sjceml401-hub.china.huawei.com ([::1]) with mapi id 14.03.0146.000; Fri, 27 Sep 2013 15:57:27 -0700
From: Tina TSOU <Tina.Tsou.Zouting@huawei.com>
To: "draft-ietf-ecrit-unauthenticated-access@tools.ietf.org" <draft-ietf-ecrit-unauthenticated-access@tools.ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
Thread-Topic: SecDir Review of draft-ietf-ecrit-unauthenticated-access-07
Thread-Index: Ac671O5/aaM/A3W3Ty2ARse4ihsI+g==
Date: Fri, 27 Sep 2013 22:57:26 +0000
Message-ID: <C0E0A32284495243BDE0AC8A066631A8173B2256@sjceml501-mbs.china.huawei.com>
Accept-Language: en-US, zh-CN
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.212.244.153]
Content-Type: multipart/alternative; boundary="_000_C0E0A32284495243BDE0AC8A066631A8173B2256sjceml501mbschi_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Subject: [secdir] SecDir Review of draft-ietf-ecrit-unauthenticated-access-07
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Sep 2013 22:57:45 -0000

Dear all,
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.

Draft-ietf-ecrit-unauthenticated-access-07 provides extensions to the emergency services architecture described in other documents to allow emergency services calling to proceed even when the caller is unauthenticated and unauthorized. The draft is particularly relevant to mobile devices, where such a situation is most likely to arise. It assumes separate entities provide network access and process calls at the application level, and based on that, deals with three cases, not necessarily mutually exclusive:
   -- no access authentication;
   -- no application service provider reachable;
   -- subscribed application service provider reachable but ordinary
      service denied because of zero credit balance or other reasons.
Full understanding of this document required review of RFC 5069 (security requirements specifically for emergency call marking and mapping), RFC 6443, the emergency calling framework, and RFC 6881, a BCP specifying requirements for various components of the emergency calling system beginning with the subscriber device.

The draft states that it is forward-looking, and is input for other SDOs. One example of this is the reliance on DHCP provisioning, which is at this point little-implemented in cellular devices.

General remark: the document is very heavy on abbreviations, which makes serious demands on the novice reader at some points. The terminology and abbreviations are introduced quite properly at the beginning of the document, but the authors might still ease the reader's task by spelling out at least the less-used abbreviations either whenever used (if only two or three times) or perhaps once per section.

General assessment: The document is basically ready, but lacks a statement of the specific points in RFCs 6443 and 6881 that need to be changed due to lack of authentication or authorization. As a result, the NASP and NAA sections are unmotivated.

Editorial: Section 7 in a few places does not quite seem to say what I think it means, hence the following suggestions:

Suggestion, sec. 7, fourth para, first sentence:
Currently: "We only illustrate a possible model."
Suggested: "We illustrate just one possible model for obtaining the destination addresses to which emergency callers should be restricted in the NAA case."

In the next sentence, missing some words: "... as well
    as the address of the LoST server itself."
       ^^^^^^^^^^^^^^

Suggestion, sec. 7, fifth para, first sentence:
Currently: "For the ZBP case the additional aspect of fraud has to be considered."
Suggested: "The additional aspect of fraud also has to be considered for the ZBP case."


Typos:

Typo, sec. 5, first bullet: devices -> device

Typo, sec. 7, second para, last sentence: lead -> led

Typo, sec. 7, third para, fourth line: fraudulent -> fraudulently

Thank you,
Tina