[secdir] secdir review of draft-ietf-tcpm-experimental-options-03

Carl Wallace <carl@redhoundsoftware.com> Mon, 17 December 2012 23:24 UTC

Return-Path: <carl@redhoundsoftware.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 833B71F0CE3 for <secdir@ietfa.amsl.com>; Mon, 17 Dec 2012 15:24:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L9nmNuJe2cwn for <secdir@ietfa.amsl.com>; Mon, 17 Dec 2012 15:24:49 -0800 (PST)
Received: from mail-vb0-f44.google.com (mail-vb0-f44.google.com [209.85.212.44]) by ietfa.amsl.com (Postfix) with ESMTP id 9332C1F0CB2 for <secdir@ietf.org>; Mon, 17 Dec 2012 15:24:49 -0800 (PST)
Received: by mail-vb0-f44.google.com with SMTP id fc26so7989268vbb.31 for <secdir@ietf.org>; Mon, 17 Dec 2012 15:24:49 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=user-agent:date:subject:from:to:message-id:thread-topic :mime-version:content-type:content-transfer-encoding :x-gm-message-state; bh=cnInBUjcQ6s09b9iWQNycIV6v6F4VMLns12Gu+WBn88=; b=mA8a5yJ8EmKJUgfreynaOT2swERw8DvcmNOKQD3ZozZi6FTfpepRRyR9dhqp0q5CSA X/XPP663p784Gp70Fu20yF2B0f+xqR091TfNtLy69Q7EhGCnSQFh2r2zLSZKiqmRF+aE /kSF2NdI3knzA+PTFFpfK2qWJIrmHFj71ve/3DZgZHAuifjOJUykiW5ik0mz0ed34Sxj dCEaGLt7yJf4oq0Ql3JJpY2Om7TDJ/mou0MgmVQJ2BSN+gybPn38IiPPsXV82Ye0DCTZ 79czcDqS8vWo8489wSUtz7gUXbthL8NQEBkwNBSihpdR9WzL5C2CF6NAdNDEWYAVeqTp 2KKA==
Received: by 10.52.175.106 with SMTP id bz10mr22392682vdc.125.1355786689012; Mon, 17 Dec 2012 15:24:49 -0800 (PST)
Received: from [192.168.2.3] (pool-173-79-110-220.washdc.fios.verizon.net. [173.79.110.220]) by mx.google.com with ESMTPS id j3sm13018811vdv.0.2012.12.17.15.24.46 (version=SSLv3 cipher=OTHER); Mon, 17 Dec 2012 15:24:47 -0800 (PST)
User-Agent: Microsoft-MacOutlook/14.2.5.121010
Date: Mon, 17 Dec 2012 18:24:43 -0500
From: Carl Wallace <carl@redhoundsoftware.com>
To: The IESG <iesg-secretary@ietf.org>, <secdir@ietf.org>, <draft-ietf-tcpm-experimental-options.all@tools.ietf.org>
Message-ID: <CCF513EB.37B90%carl@redhoundsoftware.com>
Thread-Topic: secdir review of draft-ietf-tcpm-experimental-options-03
Mime-version: 1.0
Content-type: text/plain; charset="US-ASCII"
Content-transfer-encoding: 7bit
X-Gm-Message-State: ALoCoQlgSNRNRgrU88B6i4ZNcCts1yaG/L7IY5UbSG0XaNb/eaZHJdAqTaXUcHqouU9k+TwORvEn
Subject: [secdir] secdir review of draft-ietf-tcpm-experimental-options-03
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Dec 2012 23:24:50 -0000

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
These comments were written primarily for the benefit of the security area
directors.  Document editors and WG chairs should treat these comments
just like any other last call comments.


This document describes how the experimental TCP option code points can
support concurrent use through the use of a magic number.  It states it
does not intend to provide security for TCP option processing and that it
does not weaken security for TCP option processing.  This seems right to
me.  I found no issues with this document.