[secdir] Secdir review of draft-bundesbank-eurosystem-namespace-02
Dorothy Gellert <dgellert@silverspringnet.com> Fri, 06 December 2013 23:16 UTC
Return-Path: <dgellert@silverspringnet.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3E3C21ADF63; Fri, 6 Dec 2013 15:16:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YdD9KBaFCXdf; Fri, 6 Dec 2013 15:16:55 -0800 (PST)
Received: from it-ipcorp-01.silverspringnet.com (it-ipcorp-01.silverspringnet.com [74.121.22.25]) by ietfa.amsl.com (Postfix) with ESMTP id 144BA1ADE87; Fri, 6 Dec 2013 15:16:55 -0800 (PST)
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AsUEAD5aolIKOQxz/2dsb2JhbABZgkOBT7kOgTV0gicFaQEhAQweVicEARrIcxeOX4NYgRMDrVCCKg
X-IronPort-AV: E=Sophos;i="4.93,843,1378882800"; d="scan'208,217";a="4270267"
Received: from sfo-barrlb-01.silverspringnet.com (HELO mail.silverspringnet.com) ([10.57.12.115]) by it-ipcorp-01.silverspringnet.com with ESMTP/TLS/AES128-SHA; 06 Dec 2013 15:16:52 -0800
Received: from SFO-EXMB-03.silverspringnet.com ([fe80::e877:a0b0:2e8d:1b57]) by SFO-EXCA-02.silverspringnet.com ([::1]) with mapi id 14.02.0318.004; Fri, 6 Dec 2013 15:16:51 -0800
From: Dorothy Gellert <dgellert@silverspringnet.com>
To: "draft-bundesbank-eurosystem-namespace-02.all@tools.ietf.org" <draft-bundesbank-eurosystem-namespace-02.all@tools.ietf.org>, "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>
Thread-Topic: Secdir review of draft-bundesbank-eurosystem-namespace-02
Thread-Index: AQHO8tk+/bReB0dT0k+ZU2dppNRULw==
Date: Fri, 06 Dec 2013 23:16:50 +0000
Message-ID: <B01B11D1C8F1994AB77D0EF55A5030264373EE@SFO-EXMB-03.silverspringnet.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.57.12.115]
Content-Type: multipart/alternative; boundary="_000_B01B11D1C8F1994AB77D0EF55A5030264373EESFOEXMB03silversp_"
MIME-Version: 1.0
Subject: [secdir] Secdir review of draft-bundesbank-eurosystem-namespace-02
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Dec 2013 23:16:57 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This draft registers a new URN Namespace, eurosystem, with IANA. The draft is well written and straight forward and includes a security consideration section referencing that in RFC 3986, 2141 and 3406. Additionally, its noted that non authorized resolvers will result in errors. This namespace will be owned and maintained by Eurosystem, and the URNs will be used in ISO20022 message exchanges over IP networks. Perhaps it would be more comprehensive if any security concerns, threats or attacks from this protocol exchange also be referenced within the security consideration section of this draft. I believe this draft is Ready. Best Regards, Dorothy Gellert
- [secdir] Secdir review of draft-bundesbank-eurosy… Dorothy Gellert