[secdir] sec-dir review of draft-turner-asymmetrickeyformat-04

Derek Atkins <derek@ihtfp.com> Fri, 19 March 2010 02:34 UTC

Return-Path: <derek@ihtfp.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost []) by core3.amsl.com (Postfix) with ESMTP id C534C3A69E2; Thu, 18 Mar 2010 19:34:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.742
X-Spam-Level: *
X-Spam-Status: No, score=1.742 tagged_above=-999 required=5 tests=[BAYES_50=0.001, DNS_FROM_OPENWHOIS=1.13, HELO_MISMATCH_ORG=0.611]
Received: from mail.ietf.org ([]) by localhost (core3.amsl.com []) (amavisd-new, port 10024) with ESMTP id I863IDRGte2B; Thu, 18 Mar 2010 19:34:54 -0700 (PDT)
Received: from mail.ihtfp.org (MAIL.IHTFP.ORG []) by core3.amsl.com (Postfix) with ESMTP id D61A73A67DF; Thu, 18 Mar 2010 19:34:52 -0700 (PDT)
Received: from pgpdev.ihtfp.org (unknown []) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "cliodev.ihtfp.com", Issuer "IHTFP Consulting Certification Authority" (verified OK)) by mail.ihtfp.org (Postfix) with ESMTP id 3798BBD82FF; Thu, 18 Mar 2010 22:35:02 -0400 (EDT)
Received: (from warlord@localhost) by pgpdev.ihtfp.org (8.14.3/8.14.3/Submit) id o2J2YsV2011007; Thu, 18 Mar 2010 22:34:54 -0400
From: Derek Atkins <derek@ihtfp.com>
To: iesg@ietf.org, secdir@ietf.org
Date: Thu, 18 Mar 2010 22:34:54 -0400
Message-ID: <sjmiq8tavjl.fsf@pgpdev.ihtfp.org>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.1 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Cc: cwallace@cygnacom.com
Subject: [secdir] sec-dir review of draft-turner-asymmetrickeyformat-04
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Mar 2010 02:34:54 -0000

I have reviewed this document as part of the security directorate's 
ongoing effort to review all IETF documents being processed by the 
IESG.  These comments were written primarily for the benefit of the 
security area directors.  Document editors and WG chairs should treat 
these comments just like any other last call comments.

   This document defines the syntax for private key information and a 
   content type for it.  Private-key information includes a private key 
   for a specified public-key algorithm and a set of attributes. The 
   Cryptographic Message Syntax (CMS), as defined in RFC 5652, can be 
   used to digitally sign, digest, authenticate, or encrypt the 
   asymmetric key format content type.  This document obsoletes RFC 

In particular this document describes extensions to existing protocols
to encode and transfer public and private asymmetric key information.
I find no additional issues with this document.

       Derek Atkins                 617-623-3745
       derek@ihtfp.com             www.ihtfp.com
       Computer and Internet Security Consultant