[secdir] SecDir review of draft-ietf-avt-rapid-rtp-sync-10.txt

Paul Hoffman <paul.hoffman@vpnc.org> Tue, 01 June 2010 00:51 UTC

Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost []) by core3.amsl.com (Postfix) with ESMTP id 026893A6819 for <secdir@core3.amsl.com>; Mon, 31 May 2010 17:51:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.693
X-Spam-Status: No, score=0.693 tagged_above=-999 required=5 tests=[AWL=0.139, BAYES_50=0.001, HELO_MISMATCH_COM=0.553]
Received: from mail.ietf.org ([]) by localhost (core3.amsl.com []) (amavisd-new, port 10024) with ESMTP id 4zXADwqNjUPg for <secdir@core3.amsl.com>; Mon, 31 May 2010 17:50:59 -0700 (PDT)
Received: from hoffman.proper.com (Hoffman.Proper.COM []) by core3.amsl.com (Postfix) with ESMTP id F16123A6817 for <secdir@ietf.org>; Mon, 31 May 2010 17:50:58 -0700 (PDT)
Received: from [] (75-101-30-90.dsl.dynamic.sonic.net []) (authenticated bits=0) by hoffman.proper.com (8.14.4/8.14.3) with ESMTP id o510oM4c090487 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 31 May 2010 17:50:24 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
Mime-Version: 1.0
Message-Id: <p06240832c82a082d91b2@[]>
Date: Mon, 31 May 2010 17:50:21 -0700
To: secdir@ietf.org
From: Paul Hoffman <paul.hoffman@vpnc.org>
Content-Type: text/plain; charset="us-ascii"
Cc: ts@thomas-schierl.de, csp@csperkins.org
Subject: [secdir] SecDir review of draft-ietf-avt-rapid-rtp-sync-10.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Jun 2010 00:51:00 -0000

I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat these comments just like any other comments.

The extensions described in this document probably do not cause any security problems for the Internet. As the security considerations section says, the security of these extensions inherit most of the security considerations of RTP.

>From my admittedly naive reading, it seems that an attacker could use one or more of these extensions to amplify a denial-of-service attack by causing nodes to try to synch when they can't; if so, that might be added to the security considerations section. However, this is a trivial point even if true, and the document is fine as-is.

--Paul Hoffman, Director
--VPN Consortium