[secdir] secdir review of draft-ietf-fecframe-simple-rs-05.txt
Jeffrey Hutzelman <jhutz@cmu.edu> Thu, 13 December 2012 19:04 UTC
Return-Path: <jhutz@cmu.edu>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 509CD21F8A32 for <secdir@ietfa.amsl.com>; Thu, 13 Dec 2012 11:04:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -105.953
X-Spam-Level:
X-Spam-Status: No, score=-105.953 tagged_above=-999 required=5 tests=[AWL=-0.646, BAYES_00=-2.599, MISSING_HEADERS=1.292, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pFah3L4VkV49 for <secdir@ietfa.amsl.com>; Thu, 13 Dec 2012 11:04:30 -0800 (PST)
Received: from smtp01.srv.cs.cmu.edu (SMTP01.SRV.CS.CMU.EDU [128.2.217.196]) by ietfa.amsl.com (Postfix) with ESMTP id BE1E521F8623 for <secdir@ietf.org>; Thu, 13 Dec 2012 11:04:30 -0800 (PST)
Received: from [128.2.193.239] (minbar.fac.cs.cmu.edu [128.2.193.239]) (authenticated bits=0) by smtp01.srv.cs.cmu.edu (8.13.6/8.13.6) with ESMTP id qBDJ4Soq007638 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=NO); Thu, 13 Dec 2012 14:04:28 -0500 (EST)
Message-ID: <1355425468.2312.68.camel@minbar.fac.cs.cmu.edu>
From: Jeffrey Hutzelman <jhutz@cmu.edu>
Date: Thu, 13 Dec 2012 14:04:28 -0500
Content-Type: text/plain; charset="UTF-8"
X-Mailer: Evolution 3.2.3-0ubuntu6
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0
X-Scanned-By: mimedefang-cmuscs on 128.2.217.196
Cc: draft-ietf-fecframe-simple-rs.all@tools.ietf.org, secdir@ietf.org, jhutz@cmu.edu
Subject: [secdir] secdir review of draft-ietf-fecframe-simple-rs-05.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Dec 2012 19:04:31 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document defines a forward error correction scheme for use with the FECFRAME framework, based on Reed-Solomon codes over finite fields of order 2^m. However, this is mostly a protocol document; the actual FEC code is defined in RFC5510. In discussing security considerations, this document relies heavily on the security discussion in the already-published FEC framework document (RFC6363). It also contains a reasonably complete discussion of issues that can arise if an attacker can modify the encoding parameters. These generally amount to resource exhaustion if a receiver accepts an overly large parameter, or denial of service as a result of a receiver being unable to recover data due to misinterpretation of the code. I found that this document, especially the introduction, did not read very smoothly. However, the technical content was entirely understandable, despite my abstract algebra being a bit rusty. -- Jeff
- [secdir] secdir review of draft-ietf-fecframe-sim… Jeffrey Hutzelman