[secdir] Secdir review of draft-ietf-lwig-cellular-04

Radia Perlman <radiaperlman@gmail.com> Sat, 15 August 2015 02:03 UTC

Return-Path: <radiaperlman@gmail.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id 2A0BD1B2B6D; Fri, 14 Aug 2015 19:03:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id ke5So0vpbOcH; Fri, 14 Aug 2015 19:03:11 -0700 (PDT)
Received: from mail-lb0-x236.google.com (mail-lb0-x236.google.com [IPv6:2a00:1450:4010:c04::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8AD051B2B69; Fri, 14 Aug 2015 19:03:10 -0700 (PDT)
Received: by lbcbn3 with SMTP id bn3so54504806lbc.2; Fri, 14 Aug 2015 19:03:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:cc:content-type; bh=9rdOeaE5YC7k63sESeSqVHxsEPiEWX6Q+VGHbQOwko8=; b=sp6d8FvWk/cWv9YaV1w8lYiN+d4LiGJtPeQrs6By8Qzg7Bwyei0CFe2lxliG7l9Nhj GM6j0GAD+W0D7hQ09ehsfp39RcJa0w62MpNxLryi/9R3qmUAnW7QTeWOeMruaHTk9jhj OH1FxJydc2+nHnM5+/Y0BA/HoHBq8RUTRc0Z7D1asH/2L1pcMxbL1js75o5SmjLTAoBR uTWgVCNDWZU0GOjD7Pm5Tf0KlT7YJHMIMOD4LrfCCBPCfGTNj3h3YS4Ep+bzjcmFr5Qg 2/BnB9Ftpb9lQ9hZ0i1/nb1vF5EOL1bPfPerzgK3OYoEKmE3WM5T9GXNyrPmCsuSxDIt AIKw==
MIME-Version: 1.0
X-Received: by with SMTP id ol2mr47082634lbb.56.1439604189003; Fri, 14 Aug 2015 19:03:09 -0700 (PDT)
Received: by with HTTP; Fri, 14 Aug 2015 19:03:08 -0700 (PDT)
Date: Fri, 14 Aug 2015 19:03:08 -0700
Message-ID: <CAFOuuo4LvRpVGSEj87xh1WwKyCYP+vay8GmiAD-wDaSY0a1tpw@mail.gmail.com>
From: Radia Perlman <radiaperlman@gmail.com>
To: "secdir@ietf.org" <secdir@ietf.org>
Content-Type: multipart/alternative; boundary="047d7b3a83a64d85ad051d4ff896"
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/FyRAxIibVkGRuZxJBTQlW3tUDQ4>
Cc: draft-ietf-lwig-cellular.all@tools.ietf.org, The IESG <iesg@ietf.org>
Subject: [secdir] Secdir review of draft-ietf-lwig-cellular-04
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Aug 2015 02:03:12 -0000

I have reviewed this document as part of the security directorate's ongoing
effort to review all IETF documents being processed by the IESG. These
comments were written primarily for the benefit of the security area
directors. Document editors and WG chairs should treat these comments just
like any other last call comments.

This document is about using the CoAP protocol (constrained application
protocol) for sensors, and focuses on saving power.

As it correctly points out, there really are no security issues with what
is discussed in this draft.  If they wanted, they could say that not
constantly pinging in order for the network to find you not only saves
power (if all you want to do is send messages when you want to rather than
being reachable for receiving messages), but also could be seen as a
privacy enhancement.

Typo, first line of page 5.  "For economical reasons..." should probably be
"For economic reasons"