IETF Logo Mail Archive

[secdir] Secdir review of draft-ietf-xcon-event-package-01

Yaron Sheffer <yaronf@checkpoint.com> Thu, 05 February 2009 07:24 UTC

Return-Path: <yaronf@checkpoint.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EDC993A6359; Wed, 4 Feb 2009 23:24:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.551
X-Spam-Level:
X-Spam-Status: No, score=-2.551 tagged_above=-999 required=5 tests=[AWL=0.047, BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5hd-8IIoOr1G; Wed, 4 Feb 2009 23:24:50 -0800 (PST)
Received: from dlpdemo.checkpoint.com (dlpdemo.checkpoint.com [194.29.32.54]) by core3.amsl.com (Postfix) with ESMTP id A590D3A67C1; Wed, 4 Feb 2009 23:24:49 -0800 (PST)
Received: by dlpdemo.checkpoint.com (Postfix, from userid 105) id 232F029C005; Thu, 5 Feb 2009 09:24:26 +0200 (IST)
Received: from michael.checkpoint.com (michael.checkpoint.com [194.29.32.68]) by dlpdemo.checkpoint.com (Postfix) with ESMTP id 9E75C29C002; Thu, 5 Feb 2009 09:23:15 +0200 (IST)
X-CheckPoint: {498A90EA-10000-88241DC2-7B6}
Received: from il-ex01.ad.checkpoint.com (localhost [127.0.0.1]) by michael.checkpoint.com (8.12.10+Sun/8.12.10) with ESMTP id n157NEei019224; Thu, 5 Feb 2009 09:23:15 +0200 (IST)
Received: from il-ex01.ad.checkpoint.com ([194.29.32.26]) by il-ex01.ad.checkpoint.com ([194.29.32.26]) with mapi; Thu, 5 Feb 2009 09:23:14 +0200
From: Yaron Sheffer <yaronf@checkpoint.com>
To: "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, "draft-ietf-xcon-event-package@tools.ietf.org" <draft-ietf-xcon-event-package@tools.ietf.org>, "adam@nostrum.com" <adam@nostrum.com>, "alan@sipstation.com" <alan@sipstation.com>
Date: Thu, 05 Feb 2009 09:23:17 +0200
Thread-Topic: Secdir review of draft-ietf-xcon-event-package-01
Thread-Index: AcmHYp24ieqmVErzS/u49aQNwjkO7g==
Message-ID: <7F9A6D26EB51614FBF9F81C0DA4CFEC8D97E66FC8E@il-ex01.ad.checkpoint.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/alternative; boundary="_000_7F9A6D26EB51614FBF9F81C0DA4CFEC8D97E66FC8Eilex01adcheck_"
MIME-Version: 1.0
Subject: [secdir] Secdir review of draft-ietf-xcon-event-package-01
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Feb 2009 07:24:54 -0000

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other last call comments.

This draft extends the existing SIP conference package by adding additional functionality (the XCON data model) and XML document patching.

The Security Considerations section references predecessor documents, and this seems reasonable to me.

One functionality comment, with security implications: Sec. 5.3 specifies that a "patch" document MUST be well formed and SHOULD be valid. I believe non-valid documents significantly increase the vulnerability "attack surface". And since the "patch" schema is extensible by design, I see no reason to not validate the document. In other words, please consider changing validation to a MUST.

Thanks,
            Yaron



Email secured by Check Point

v2.23.0 | Report a Bug | By Email