[secdir] Secdir review of draft-daboo-srv-caldav-07

Brian Weis <bew@cisco.com> Wed, 01 September 2010 23:51 UTC

Return-Path: <bew@cisco.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost []) by core3.amsl.com (Postfix) with ESMTP id 99F473A67EF; Wed, 1 Sep 2010 16:51:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.599
X-Spam-Status: No, score=-110.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([]) by localhost (core3.amsl.com []) (amavisd-new, port 10024) with ESMTP id gC3qvv0tRcDA; Wed, 1 Sep 2010 16:51:41 -0700 (PDT)
Received: from sj-iport-1.cisco.com (sj-iport-1.cisco.com []) by core3.amsl.com (Postfix) with ESMTP id 75D6A3A67DB; Wed, 1 Sep 2010 16:51:41 -0700 (PDT)
Authentication-Results: sj-iport-1.cisco.com; dkim=neutral (message not signed) header.i=none
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AvsEADuEfkyrR7Hu/2dsb2JhbACgdnGlBZwXhTkEhD6FVg
X-IronPort-AV: E=Sophos;i="4.56,306,1280707200"; d="scan'208";a="357392173"
Received: from sj-core-5.cisco.com ([]) by sj-iport-1.cisco.com with ESMTP; 01 Sep 2010 23:52:11 +0000
Received: from dhcp-128-107-105-29.cisco.com (dhcp-128-107-105-29.cisco.com []) by sj-core-5.cisco.com (8.13.8/8.14.3) with ESMTP id o81NqBFs028569; Wed, 1 Sep 2010 23:52:11 GMT
Message-Id: <6D149E99-3A9D-49D5-AACE-4C3253BF6625@cisco.com>
From: Brian Weis <bew@cisco.com>
To: secdir@ietf.org, iesg@ietf.org
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v936)
Date: Wed, 1 Sep 2010 16:52:04 -0700
X-Mailer: Apple Mail (2.936)
Cc: draft-daboo-srv-caldav@tools.ietf.org
Subject: [secdir] Secdir review of draft-daboo-srv-caldav-07
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Sep 2010 23:51:42 -0000

I have reviewed this document as part of the security directorate's  
ongoing effort to review all IETF documents being processed by the   
IESG.  These comments were written primarily for the benefit of the  
security area directors. Document editors and WG chairs should treat  
these comments just like any other review comments.

This document describes new DNS SRV service types for the CalDAV  
protocol, and a bootstrapping method by which clients can find CalDAV  
servers. There's not much that is security critical in the document.  
The security considerations section seems sufficient. I do not see the  
need for any changes.