Re: [secdir] review of draft-ietf-ecrit-country-emg-urn-01
Leif Johansson <leifj@sunet.se> Mon, 09 December 2013 12:08 UTC
Return-Path: <leifj@sunet.se>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CF31A1ADF57; Mon, 9 Dec 2013 04:08:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.127
X-Spam-Level: *
X-Spam-Status: No, score=1.127 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, HELO_EQ_SE=0.35, RP_MATCHES_RCVD=-0.001, SPF_NEUTRAL=0.779] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id frSc0XqU7P82; Mon, 9 Dec 2013 04:08:16 -0800 (PST)
Received: from e-mailfilter01.sunet.se (e-mailfilter01.sunet.se [IPv6:2001:6b0:8:2::201]) by ietfa.amsl.com (Postfix) with ESMTP id 6A6B81ADDD1; Mon, 9 Dec 2013 04:08:16 -0800 (PST)
Received: from smtp1.sunet.se (smtp1.sunet.se [IPv6:2001:6b0:8:2::214]) by e-mailfilter01.sunet.se (8.14.3/8.14.3/Debian-9.4) with ESMTP id rB9C86ho005425 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 9 Dec 2013 13:08:07 +0100
Received: from kerio.sunet.se (kerio.sunet.se [192.36.171.210]) by smtp1.sunet.se (8.14.4/8.14.4) with ESMTP id rB99ORT1025586 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 9 Dec 2013 10:24:30 +0100 (CET)
X-Footer: c3VuZXQuc2U=
Received: from [192.36.125.226] ([192.36.125.226]) (authenticated user leifj@sunet.se) by kerio.sunet.se (Kerio Connect 8.2.1) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256 bits)); Mon, 9 Dec 2013 13:08:02 +0100
Message-ID: <52A5B2A1.6080609@sunet.se>
Date: Mon, 09 Dec 2013 13:08:01 +0100
From: Leif Johansson <leifj@sunet.se>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.1.1
MIME-Version: 1.0
To: Christer Holmberg <christer.holmberg@ericsson.com>, "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, "draft-ietf-ecrit-country-emg-urn.all@tools.ietf.org" <draft-ietf-ecrit-country-emg-urn.all@tools.ietf.org>
References: <52A57F11.40502@sunet.se> <uu9381cimwgt2dktcna9t626.1386580735418@email.android.com>
In-Reply-To: <uu9381cimwgt2dktcna9t626.1386580735418@email.android.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Bayes-Prob: 0.0001 (Score 0, tokens from: outbound, sunet-se:default, base:default, @@RPTN)
X-CanIt-Geo: ip=192.36.171.210; country=SE; latitude=62.0000; longitude=15.0000; http://maps.google.com/maps?q=62.0000,15.0000&z=6
X-CanItPRO-Stream: outbound-sunet-se:outbound (inherits from outbound-sunet-se:default, sunet-se:default, base:default)
X-Canit-Stats-ID: 09KXo87mU - 3d7b626ec759 - 20131209
X-CanIt-Archive-Cluster: PfMRe/vJWMiXwM2YIH5BVExnUnw
X-Scanned-By: CanIt (www . roaringpenguin . com)
Subject: Re: [secdir] review of draft-ietf-ecrit-country-emg-urn-01
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Dec 2013 12:08:19 -0000
On 12/09/2013 10:18 AM, Christer Holmberg wrote: > Hi Leif, > > The 'TBD' shall not be there. The document does not update the security considerations of RFC 5031, so I'll replace it with the sentence you suggested. Excellet. This turns this into a "no issues" document for me. > Thanks! > > Regards, > > Christer > > Sent from my Sony Ericsson Xperia arc S > > Leif Johansson <leifj@sunet.se> wrote: > > > I have reviewed this document as part of the security directorate's > ongoing effort to review all IETF documents being processed by the > IESG. These comments were written primarily for the benefit of the > security area directors. Document editors and WG chairs should treat > these comments just like any other last call comments. > > The issue I have with this document is that the Security Considerations > section sais "TBD". At least say something like "This document does not > update the Security Considerations of RFC 5031". > > Perhaps it could be argued that ECRIT URNs that are country-specific > makes it more likely that they be targeted for local attacks but that > may be a stretch. > > Cheers Leif > >
- [secdir] review of draft-ietf-ecrit-country-emg-u… Leif Johansson
- Re: [secdir] review of draft-ietf-ecrit-country-e… Christer Holmberg
- Re: [secdir] review of draft-ietf-ecrit-country-e… Leif Johansson