[secdir] SECDIR review of draft-sinnreich-sip-tools-06

Tobias Gondrom <tobias.gondrom@gondrom.org> Thu, 04 June 2009 16:15 UTC

Return-Path: <tobias.gondrom@gondrom.org>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost []) by core3.amsl.com (Postfix) with ESMTP id C8C193A6E74; Thu, 4 Jun 2009 09:15:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.249
X-Spam-Status: No, score=-3.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([]) by localhost (core3.amsl.com []) (amavisd-new, port 10024) with ESMTP id zoLJrccqkzdr; Thu, 4 Jun 2009 09:15:36 -0700 (PDT)
Received: from leela.webpack.hosteurope.de (leela.webpack.hosteurope.de []) by core3.amsl.com (Postfix) with ESMTP id D5A783A6E62; Thu, 4 Jun 2009 09:15:35 -0700 (PDT)
Received: from 78-86-27-62.zone2.bethere.co.uk ([] helo=[]); authenticated by leela.webpack.hosteurope.de running ExIM with esmtpa id 1MCFb4-0004Ye-LN; Thu, 04 Jun 2009 18:15:18 +0200
Message-ID: <4A27F317.8020608@gondrom.org>
Date: Thu, 04 Jun 2009 17:15:19 +0100
From: Tobias Gondrom <tobias.gondrom@gondrom.org>
User-Agent: Thunderbird (X11/20081227)
MIME-Version: 1.0
To: secdir@ietf.org
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-bounce-key: webpack.hosteurope.de; tobias.gondrom@gondrom.org; 1244132138; 9fe7ee46;
Cc: fluffy@cisco.com, kns10@cs.columbia.edu, eunsoo@locus.net, iesg@ietf.org, alan@sipstation.com, rjsparks@nostrum.com
Subject: [secdir] SECDIR review of draft-sinnreich-sip-tools-06
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Jun 2009 16:15:36 -0000

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  These comments were written primarily for the benefit of the
security area directors. Document editors and WG chairs should treat
these comments just like any other last call comments.

This informational document is mainly based on refers to RFC 3261, 4566, 3264, 3840, 3263, 3265, 3856, 3863, 3428, 4474 and 3581. The key elements are security considerations in the referred documents and the document's section about NAT traversal and its Security considerations section - which I find both sufficient. I believe this document adds no new security issues and do not see any issues with this informational draft. 
>From my point of view security considerations have been addressed appropriately. 

Best regards, Tobias