[secdir] secdir review of draft-ietf-fecframe-simple-rs-05.txt

Jeffrey Hutzelman <jhutz@cmu.edu> Thu, 13 December 2012 19:04 UTC

Return-Path: <jhutz@cmu.edu>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 509CD21F8A32 for <secdir@ietfa.amsl.com>; Thu, 13 Dec 2012 11:04:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -105.953
X-Spam-Status: No, score=-105.953 tagged_above=-999 required=5 tests=[AWL=-0.646, BAYES_00=-2.599, MISSING_HEADERS=1.292, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id pFah3L4VkV49 for <secdir@ietfa.amsl.com>; Thu, 13 Dec 2012 11:04:30 -0800 (PST)
Received: from smtp01.srv.cs.cmu.edu (SMTP01.SRV.CS.CMU.EDU []) by ietfa.amsl.com (Postfix) with ESMTP id BE1E521F8623 for <secdir@ietf.org>; Thu, 13 Dec 2012 11:04:30 -0800 (PST)
Received: from [] (minbar.fac.cs.cmu.edu []) (authenticated bits=0) by smtp01.srv.cs.cmu.edu (8.13.6/8.13.6) with ESMTP id qBDJ4Soq007638 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=NO); Thu, 13 Dec 2012 14:04:28 -0500 (EST)
Message-ID: <1355425468.2312.68.camel@minbar.fac.cs.cmu.edu>
From: Jeffrey Hutzelman <jhutz@cmu.edu>
Date: Thu, 13 Dec 2012 14:04:28 -0500
Content-Type: text/plain; charset="UTF-8"
X-Mailer: Evolution 3.2.3-0ubuntu6
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0
X-Scanned-By: mimedefang-cmuscs on
Cc: draft-ietf-fecframe-simple-rs.all@tools.ietf.org, secdir@ietf.org, jhutz@cmu.edu
Subject: [secdir] secdir review of draft-ietf-fecframe-simple-rs-05.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Dec 2012 19:04:31 -0000

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

This document defines a forward error correction scheme for use with the
FECFRAME framework, based on Reed-Solomon codes over finite fields of
order 2^m.  However, this is mostly a protocol document; the actual FEC
code is defined in RFC5510.

In discussing security considerations, this document relies heavily on
the security discussion in the already-published FEC framework document
(RFC6363).  It also contains a reasonably complete discussion of issues
that can arise if an attacker can modify the encoding parameters.  These
generally amount to resource exhaustion if a receiver accepts an overly
large parameter, or denial of service as a result of a receiver being
unable to recover data due to misinterpretation of the code.

I found that this document, especially the introduction, did not read
very smoothly.  However, the technical content was entirely
understandable, despite my abstract algebra being a bit rusty.

-- Jeff