[secdir] Review of draft-ietf-tictoc-security-requirements-11

Shawn M Emery <shawn.emery@oracle.com> Wed, 06 August 2014 02:31 UTC

Return-Path: <shawn.emery@oracle.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id 0F1001B2A68 for <secdir@ietfa.amsl.com>; Tue, 5 Aug 2014 19:31:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id GOVz1oAdf0dO for <secdir@ietfa.amsl.com>; Tue, 5 Aug 2014 19:31:12 -0700 (PDT)
Received: from aserp1040.oracle.com (aserp1040.oracle.com []) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 908761B28B3 for <secdir@ietf.org>; Tue, 5 Aug 2014 19:31:12 -0700 (PDT)
Received: from ucsinet22.oracle.com (ucsinet22.oracle.com []) by aserp1040.oracle.com (Sentrion-MTA-4.3.2/Sentrion-MTA-4.3.2) with ESMTP id s762VAuL019825 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Wed, 6 Aug 2014 02:31:11 GMT
Received: from userz7022.oracle.com (userz7022.oracle.com []) by ucsinet22.oracle.com (8.14.5+Sun/8.14.5) with ESMTP id s762VAfR000596 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 6 Aug 2014 02:31:10 GMT
Received: from abhmp0018.oracle.com (abhmp0018.oracle.com []) by userz7022.oracle.com (8.14.5+Sun/8.14.4) with ESMTP id s762V7hq000461; Wed, 6 Aug 2014 02:31:08 GMT
Received: from [] (/ by default (Oracle Beehive Gateway v4.0) with ESMTP ; Tue, 05 Aug 2014 19:31:06 -0700
Message-ID: <53E1937A.9000502@oracle.com>
Date: Tue, 05 Aug 2014 20:31:22 -0600
From: Shawn M Emery <shawn.emery@oracle.com>
User-Agent: Mozilla/5.0 (X11; SunOS i86pc; rv:17.0) Gecko/20140508 Thunderbird/17.0.11
MIME-Version: 1.0
To: secdir@ietf.org
References: <53E16AFC.4080108@oracle.com>
In-Reply-To: <53E16AFC.4080108@oracle.com>
X-Forwarded-Message-Id: <53E16AFC.4080108@oracle.com>
Content-Type: multipart/alternative; boundary="------------080501050908040304060300"
X-Source-IP: ucsinet22.oracle.com []
Archived-At: http://mailarchive.ietf.org/arch/msg/secdir/hDn7h1-QMKHNzs_br4yJ_YTCLio
Cc: draft-ietf-tictoc-security-requirements.all@tools.ietf.org
Subject: [secdir] Review of draft-ietf-tictoc-security-requirements-11
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Aug 2014 02:31:14 -0000

Adding secdir, sorry for the duplicate post to this draft's list.

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the IESG.
These comments were written primarily for the benefit of the security
area directors. Document editors and WG chairs should treat these
comments just like any other last call comments.

This informational draft describes the various security issues with time
distribution protocols, specifically the Network Time Protocol (NTP) and
the Precision Time Protocol (PTP).  This is my second review of this draft
and I believe that all of my comments/concerns have been addressed in this
version of the draft.  Thank you.

General comments:


Editorial comments: