[secdir] secdir review of draft-ietf-kitten-rfc6112bis-02

Carl Wallace <carl@redhoundsoftware.com> Mon, 07 November 2016 23:16 UTC

Return-Path: <carl@redhoundsoftware.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D686C129BEE for <secdir@ietfa.amsl.com>; Mon, 7 Nov 2016 15:16:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=redhoundsoftware.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FJikHVYTrspB for <secdir@ietfa.amsl.com>; Mon, 7 Nov 2016 15:16:44 -0800 (PST)
Received: from mail-vk0-x232.google.com (mail-vk0-x232.google.com [IPv6:2607:f8b0:400c:c05::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2CD33129BC2 for <secdir@ietf.org>; Mon, 7 Nov 2016 15:16:44 -0800 (PST)
Received: by mail-vk0-x232.google.com with SMTP id w194so134764165vkw.2 for <secdir@ietf.org>; Mon, 07 Nov 2016 15:16:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhoundsoftware.com; s=google; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :mime-version:content-transfer-encoding; bh=sEyWmh7f91qHlComdUZ/h+CSyjk1cebFXCN3uNUs9lQ=; b=eXfExXC5twgc4QZ+E7jOj5FAbAzS7H4pF/Zs6wXpeBOKPFoxUc/6a8XOhu+FjrWVHr rLWjluQTm5aNg7MtprndwkNAKPNxdLRdGxYEsGqtTNfBP0k/KHkeCAABuaNU52GLVjP3 EtM6Mkk7w3vKVkfS3dTeyF6c1dpX5864Eh45U=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:user-agent:date:subject:from:to:cc:message-id :thread-topic:mime-version:content-transfer-encoding; bh=sEyWmh7f91qHlComdUZ/h+CSyjk1cebFXCN3uNUs9lQ=; b=ah0yOfd0+CNO+/0vbB0KcFbKRbDBi2VZE7Jq4xAzZQ6/6T3Y62j5zHtB/axfJW4vRf tXwL9/ddFKmEHshwqEYaCYix/++XM9nsYhp717e4I/gpef33tCvIw60bic+BUWfs8swe thTa9LerrU2FBWv5QwxMPe6Q4YkiNGTS8CEDXyjIQRzDui98ZSYS+kyF8oNFlwMmij5Q buw4z3cfXaF1rG+Y8vmpFwWqy/re0aYauspv3SDzVIL2bHKwQryomBKQgArnbsUmkWgE x+EzxcI1CFH1epC4vwc93IR89FwQUipTaiQ7EJ8wtnptcCeXueV+/I1x2cmgnIsBUgPv e44g==
X-Gm-Message-State: ABUngve2MQFT5vZJIKx26PS7Yl6Mh/9aDXExCJZWIgNtRKG9wIYSc/NgA1io5kEbM7hHKw==
X-Received: by 10.31.125.136 with SMTP id y130mr6215553vkc.1.1478560603040; Mon, 07 Nov 2016 15:16:43 -0800 (PST)
Received: from [10.83.104.17] ([64.94.31.206]) by smtp.googlemail.com with ESMTPSA id f195sm1209245vke.24.2016.11.07.15.16.38 (version=TLS1 cipher=AES128-SHA bits=128/128); Mon, 07 Nov 2016 15:16:41 -0800 (PST)
User-Agent: Microsoft-MacOutlook/14.5.8.151023
Date: Mon, 07 Nov 2016 18:16:46 -0500
From: Carl Wallace <carl@redhoundsoftware.com>
To: <draft-ietf-kitten-rfc6112bis.all@ietf.org>
Message-ID: <D446758E.7721C%carl@redhoundsoftware.com>
Thread-Topic: secdir review of draft-ietf-kitten-rfc6112bis-02
Mime-version: 1.0
Content-type: text/plain; charset="UTF-8"
Content-transfer-encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/QK7VOWcFJikCsCH84zZDVW6TcGM>
Cc: The IESG <iesg@ietf.org>, secdir@ietf.org
Subject: [secdir] secdir review of draft-ietf-kitten-rfc6112bis-02
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Nov 2016 23:16:47 -0000

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
These comments were written primarily for the benefit of the security area
directors.  Document editors and WG chairs should treat these comments
just like any other last call comments.

draft-ietf-kitten-rfc6112bis-02 is an update that obsoletes RFC 6112. It's
a copy of 6112 with a few corrections, some word-smithing and a small
amount of new text. A few minor comments are below:

- RFC6112 should appear in the bibliography.

- I'd add a few more items to section 1.1 (changes since 6112) to call out
the corrections to type names from RFC4556 and highlight the
KeyExchange->KEYEXCHANGE change. Rationale for the MUST->SHOULD change
might be nice here too.

- The IANA considerations section was right in 6112, but probably doesn't
belong here (at not least as defining a 'new' well-known name).