[secdir] secdir review of draft-ietf-rtcweb-transports-14

David Mandelberg <david@mandelberg.org> Sun, 17 July 2016 21:54 UTC

Return-Path: <david@mandelberg.org>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D71712D135 for <secdir@ietfa.amsl.com>; Sun, 17 Jul 2016 14:54:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J0DXhzumpjlk for <secdir@ietfa.amsl.com>; Sun, 17 Jul 2016 14:54:16 -0700 (PDT)
Received: from nm10-vm1.access.bullet.mail.bf1.yahoo.com (nm10-vm1.access.bullet.mail.bf1.yahoo.com [216.109.114.208]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ABDFA12D137 for <secdir@ietf.org>; Sun, 17 Jul 2016 14:54:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1468792453; bh=vQPJYxDu5FaZH2H0m+SVKftqbD0VGkiWIc8hw3gwfsA=; h=From:Subject:To:Date:From:Subject; b=fbb2bTke3LUuJ5r0wjsuNvGzxc5OskDj3b1IJsEvYIRBopie9pBv6DRE0poet+/UYfSXQqe0C77PdTcfk4XcGG2c82/ZCpeTycYF4DF0o+3bM2JY0BgaOBCFcWgw/G01PMkIcw7Z+YwnQYA+Xq1w6iJFbt8k0Jykl2wFgXmdh+221e8T8tRtKYVZ3LjDOLiVHdt+5qGmNRxd6hED/fNiXJ4y8Q6G7CrUTivLErRPob7M+YU9KqF+oKGDVTzMidancnGGQ8/58O78pj3ZIkb73LuVo+4rNW+lLQI8ptnhlgjYuhVbcfwAtb6ojseSMIMxj5MczeDfV1jA6FjCOIXgNA==
Received: from [66.196.81.166] by nm10.access.bullet.mail.bf1.yahoo.com with NNFMP; 17 Jul 2016 21:54:13 -0000
Received: from [98.138.226.244] by tm12.access.bullet.mail.bf1.yahoo.com with NNFMP; 17 Jul 2016 21:54:13 -0000
Received: from [127.0.0.1] by smtp115.sbc.mail.ne1.yahoo.com with NNFMP; 17 Jul 2016 21:54:13 -0000
X-Yahoo-Newman-Id: 473317.31496.bm@smtp115.sbc.mail.ne1.yahoo.com
X-Yahoo-Newman-Property: ymail-3
X-YMail-OSG: O7XgePEVM1mxUgO7u3UDd8qTT.gSYN2TQpVSV4m9hKqApCA W6q9PWY8E8X0tsv782ol6L0_n4_ZSioszcVkY7NEFCO1m2dbWaUlC14epb_M xLGdLtPotpH_Vwr6JEeXRAv3RCY8m7HMADgDLljXlC8pnyM.adCnTxNh1ugq HOqJOhXeJSjuC0dhZk_kUyOn44NAOxJHwwSBoIHusSrDMSBF2.Znd1BeNeaq 5EZG6HYhTDKl0okIcyS.v.YEu_uXXiZ_dLoBT4Tt8kJzRLcNCYNgEFAJgJ5F HwVgSXwNUzvi0AfG_ud0wXJHW2YVU6CY9QqmxiwswffTt0yzxHYlODtVMRw_ 8ve5wES52B4Uk7QZNyd2BjFoQ42d7ebcqA362r.Vd5JPCaIRrGPmfbKKrA5z oob7dmwQSjMYqiGecRTG1GnOKiNAn_1rqvXXMiNjRcWd9dulwCtO20des4AV S5XVPhl1Gn1zSeC8oxhRuIJyR32HHJBfgvBYE4cHy.COhUZS9aD1p.dAeBf1 ghogf4KKme1L2T7.syoFAvKO8P33D.dHpIQJd9ZE_2KEgfMXVNBVqplRXrkc 1E.cYg3vo4bHOMvaeIHUn8MH0WQ--
X-Yahoo-SMTP: 4kJJK.qswBDPuwyc5wW.BPAQqNXdy5j09UNyeAS0pyOQ708-
Received: from [192.168.1.153] (209-6-88-55.c3-0.smr-ubr1.sbo-smr.ma.cable.rcn.com [209.6.88.55]) by uriel.mandelberg.org (Postfix) with ESMTPSA id 925EA1C6035; Sun, 17 Jul 2016 17:54:11 -0400 (EDT)
From: David Mandelberg <david@mandelberg.org>
To: iesg@ietf.org, secdir@ietf.org, draft-ietf-rtcweb-transports.all@ietf.org
Message-ID: <578BFE7E.7050202@mandelberg.org>
Date: Sun, 17 Jul 2016 17:54:06 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.8.0
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="v3flw0h5wgE8ITRD2jbJfbs16Hpn0COTV"
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/FS2TZahexMK2o7xx8ZLABXJJR6E>
Subject: [secdir] secdir review of draft-ietf-rtcweb-transports-14
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 17 Jul 2016 21:54:17 -0000

Hi,

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
 These comments were written primarily for the benefit of the security
area directors.  Document editors and WG chairs should treat these
comments just like any other last call comments.

I think this draft is ready.

This draft does not define any new protocols, but rather references many
existing protocols. I did not notice any places where it chooses a
protocol that does not provide adequate security.

As far as I can tell, it addresses all of the parts of
draft-ietf-rtcweb-security-08 that it should address, primarily sections
4.2 and 4.3.

-- 
David Eric Mandelberg / dseomn
http://david.mandelberg.org/