[secdir] secdir review for draft-ietf-simple-simple

Stephen Hanna <shanna@juniper.net> Thu, 14 February 2013 17:21 UTC

Return-Path: <shanna@juniper.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 27F1221F87AA; Thu, 14 Feb 2013 09:21:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.467
X-Spam-Status: No, score=-102.467 tagged_above=-999 required=5 tests=[AWL=-1.000, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, SARE_RAND_6=2, UNRESOLVED_TEMPLATE=3.132, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id ZdvAdS7wGGJq; Thu, 14 Feb 2013 09:21:27 -0800 (PST)
Received: from exprod7og119.obsmtp.com (exprod7og119.obsmtp.com []) by ietfa.amsl.com (Postfix) with ESMTP id 5076E21F863F; Thu, 14 Feb 2013 09:21:27 -0800 (PST)
Received: from P-EMHUB03-HQ.jnpr.net ([]) (using TLSv1) by exprod7ob119.postini.com ([]) with SMTP ID DSNKUR0dDGyhhZHEn1HIXLamQ31z8yskHQG1@postini.com; Thu, 14 Feb 2013 09:21:27 PST
Received: from P-CLDFE01-HQ.jnpr.net ( by P-EMHUB03-HQ.jnpr.net ( with Microsoft SMTP Server (TLS) id; Thu, 14 Feb 2013 09:18:59 -0800
Received: from o365mail.juniper.net ( by o365mail.juniper.net ( with Microsoft SMTP Server id 14.1.355.2; Thu, 14 Feb 2013 09:18:58 -0800
Received: from db3outboundpool.messaging.microsoft.com ( by o365mail.juniper.net ( with Microsoft SMTP Server (TLS) id 14.1.355.2; Thu, 14 Feb 2013 09:27:39 -0800
Received: from mail88-db3-R.bigfish.com ( by DB3EHSOBE009.bigfish.com ( with Microsoft SMTP Server id; Thu, 14 Feb 2013 17:18:54 +0000
Received: from mail88-db3 (localhost []) by mail88-db3-R.bigfish.com (Postfix) with ESMTP id 75EA9160394; Thu, 14 Feb 2013 17:18:54 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:; KIP:(null); UIP:(null); (null); H:SN2PRD0510HT005.namprd05.prod.outlook.com; R:internal; EFV:INT
X-SpamScore: -1
X-BigFish: PS-1(zz4015Izz1f42h1ee6h1de0h1202h1e76h1d1ah1d2ahzzz2dh2a8h668h839h944hd25hf0ah1220h1288h12a5h12a9h12bdh137ah13b6h1441h1504h1537h153bh15d0h162dh1631h1758h18e1h1946h19b5h19ceh1155h)
Received: from mail88-db3 (localhost.localdomain []) by mail88-db3 (MessageSwitch) id 1360862332169077_28829; Thu, 14 Feb 2013 17:18:52 +0000 (UTC)
Received: from DB3EHSMHS019.bigfish.com (unknown []) by mail88-db3.bigfish.com (Postfix) with ESMTP id 249F8A007E; Thu, 14 Feb 2013 17:18:52 +0000 (UTC)
Received: from SN2PRD0510HT005.namprd05.prod.outlook.com ( by DB3EHSMHS019.bigfish.com ( with Microsoft SMTP Server (TLS) id; Thu, 14 Feb 2013 17:18:51 +0000
Received: from SN2PRD0510MB372.namprd05.prod.outlook.com ([]) by SN2PRD0510HT005.namprd05.prod.outlook.com ([]) with mapi id 14.16.0263.000; Thu, 14 Feb 2013 17:18:48 +0000
From: Stephen Hanna <shanna@juniper.net>
To: The IESG <iesg@ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "draft-ietf-simple-simple.all@tools.ietf.org" <draft-ietf-simple-simple.all@tools.ietf.org>
Thread-Topic: secdir review for draft-ietf-simple-simple
Thread-Index: Ac4K11jPA2hth1f7SJmGYyh0I+VW8A==
Date: Thu, 14 Feb 2013 17:18:47 +0000
Message-ID: <F1DFC16DCAA7D3468651A5A776D5796E06A110A0@SN2PRD0510MB372.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
x-originating-ip: []
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-FOPE-CONNECTOR: Id%12219$Dn%IETF.ORG$RO%2$TLS%5$FQDN%onpremiseedge-1018244.customer.frontbridge.com$TlsDn%o365mail.juniper.net
X-FOPE-CONNECTOR: Id%12219$Dn%TOOLS.IETF.ORG$RO%2$TLS%5$FQDN%onpremiseedge-1018244.customer.frontbridge.com$TlsDn%o365mail.juniper.net
Subject: [secdir] secdir review for draft-ietf-simple-simple
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Feb 2013 17:21:28 -0000

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  These comments were written primarily for the benefit of the
security area directors.  Document editors and WG chairs should treat
these comments just like any other last call comments.

This document provides a guide to the many specifications related to
SIMPLE (SIP for Instant Messaging and Presence Leveraging Extensions).
The document is quite useful for people like me who know little about
SIMPLE and would like to get a quick overview. Bravo to the authors!

The Security Considerations section of the document states that
"This specification is an overview of existing specifications, and
does not introduce any security considerations on its own." I agree.

I did notice one thing that may be a typo. Section 3.2 says:

   RFC 4975, The Message Session Relay Protocol (MSRP) (S):  [RFC4975]
      defines a small text-based protocol for exchanging arbitrarily
      sized content of any time between users.

I don't understand the words "of any time". Maybe they're supposed
to say "of any kind"? Or "at any time"? Not a big deal but the text
is confusing.

Other than that little glitch, I think the document is ready to go.