Re: [secdir] secdir review for draft-ietf-simple-simple

Jonathan Rosenberg <jdrosen@jdrosen.net> Sat, 16 February 2013 12:33 UTC

Return-Path: <jdrosen@jdrosen.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B233621F8756; Sat, 16 Feb 2013 04:33:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.976
X-Spam-Level:
X-Spam-Status: No, score=-101.976 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id flR+cI6Af3sf; Sat, 16 Feb 2013 04:33:00 -0800 (PST)
Received: from ecbiz71.inmotionhosting.com (ecbiz71.inmotionhosting.com [70.39.232.100]) by ietfa.amsl.com (Postfix) with ESMTP id 1066921F8700; Sat, 16 Feb 2013 04:33:00 -0800 (PST)
Received: from mail-wg0-f52.google.com ([74.125.82.52]:36361) by ecbiz71.inmotionhosting.com with esmtpsa (TLSv1:RC4-SHA:128) (Exim 4.80) (envelope-from <jdrosen@jdrosen.net>) id 1U6gwt-0002JF-3W; Sat, 16 Feb 2013 07:32:59 -0500
Received: by mail-wg0-f52.google.com with SMTP id 12so3515784wgh.7 for <multiple recipients>; Sat, 16 Feb 2013 04:32:58 -0800 (PST)
MIME-Version: 1.0
X-Received: by 10.194.76.7 with SMTP id g7mr9456882wjw.50.1361017978807; Sat, 16 Feb 2013 04:32:58 -0800 (PST)
Received: by 10.194.165.230 with HTTP; Sat, 16 Feb 2013 04:32:58 -0800 (PST)
In-Reply-To: <F1DFC16DCAA7D3468651A5A776D5796E06A110A0@SN2PRD0510MB372.namprd05.prod.outlook.com>
References: <F1DFC16DCAA7D3468651A5A776D5796E06A110A0@SN2PRD0510MB372.namprd05.prod.outlook.com>
Date: Sat, 16 Feb 2013 07:32:58 -0500
Message-ID: <CA+23+fGWXONUDbM4miujw4CbYB61n9pS+dpbxmsKN5rFdGtpYA@mail.gmail.com>
From: Jonathan Rosenberg <jdrosen@jdrosen.net>
To: Stephen Hanna <shanna@juniper.net>
Content-Type: multipart/alternative; boundary=047d7beba20228e4c504d5d6b1b6
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - ecbiz71.inmotionhosting.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - jdrosen.net
X-Source:
X-Source-Args:
X-Source-Dir:
X-Mailman-Approved-At: Sat, 16 Feb 2013 04:33:33 -0800
Cc: "draft-ietf-simple-simple.all@tools.ietf.org" <draft-ietf-simple-simple.all@tools.ietf.org>, The IESG <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>
Subject: Re: [secdir] secdir review for draft-ietf-simple-simple
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 16 Feb 2013 12:33:00 -0000

Thanks Stephen for the comments. Great catch on the typo. It is indeed
supposed to say, "of any kind" and has been fixed.

Thanks,
Jonathan R.


On Thu, Feb 14, 2013 at 12:18 PM, Stephen Hanna <shanna@juniper.net> wrote:

> I have reviewed this document as part of the security directorate's
> ongoing effort to review all IETF documents being processed by the
> IESG.  These comments were written primarily for the benefit of the
> security area directors.  Document editors and WG chairs should treat
> these comments just like any other last call comments.
>
> This document provides a guide to the many specifications related to
> SIMPLE (SIP for Instant Messaging and Presence Leveraging Extensions).
> The document is quite useful for people like me who know little about
> SIMPLE and would like to get a quick overview. Bravo to the authors!
>
> The Security Considerations section of the document states that
> "This specification is an overview of existing specifications, and
> does not introduce any security considerations on its own." I agree.
>
> I did notice one thing that may be a typo. Section 3.2 says:
>
>    RFC 4975, The Message Session Relay Protocol (MSRP) (S):  [RFC4975]
>       defines a small text-based protocol for exchanging arbitrarily
>       sized content of any time between users.
>
> I don't understand the words "of any time". Maybe they're supposed
> to say "of any kind"? Or "at any time"? Not a big deal but the text
> is confusing.
>
> Other than that little glitch, I think the document is ready to go.
>
> Thanks,
>
> Steve
>
>
>


-- 
Jonathan Rosenberg, Ph.D.
jdrosen@jdrosen.net
http://www.jdrosen.net